]> git.ipfire.org Git - thirdparty/samba.git/commit
projects / thirdparty / samba.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: e5bc5ee) | patch
s4:rpc_server/netlogon: if we require AES there's no need to remove the ARCFOUR flag
authorStefan Metzmacher <metze@samba.org>
Thu, 10 Oct 2024 10:34:33 +0000 (12:34 +0200)
committerDouglas Bagnall <dbagnall@samba.org>
Wed, 30 Oct 2024 23:08:35 +0000 (23:08 +0000)
commita0bc372dee68ad255da005d2e2078da754bbef2a
tree7b2f9eba71a671126cf0aeaf5a94668e73f415a2tree
parente5bc5ee3e04138b10c0630640469a08fad847e56commit | diff
s4:rpc_server/netlogon: if we require AES there's no need to remove the ARCFOUR flag

With SAMBA_WEAK_CRYPTO_DISALLOWED dcesrv_netr_ServerAuthenticate3_check_downgrade()
will return DOWNGRADE_DETECTED with negotiate_flags = 0, if AES was not
negotiated...

And if AES was negotiated there's no harm in returning the ARCFOUR
flag...

BUG: https://bugzilla.samba.org/show_bug.cgi?id=15425

Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
source4/rpc_server/netlogon/dcerpc_netlogon.c diff | blob | blame | history
Mirror of https://github.com/samba-team/samba.git