diff options
author | Andrew Bartlett <abartlet@samba.org> | 2019-09-05 16:12:10 +1200 |
---|---|---|
committer | Karolin Seeger <kseeger@samba.org> | 2019-09-06 07:03:22 +0000 |
commit | 04867f4c513c70313f71c59ed3131307c0d1c4dc (patch) | |
tree | 38e6886554e8575a377b7a2ca8ed51b9cea006de /WHATSNEW.txt | |
parent | f1d2b5eba72df50f98860557e3d3523b1e82f625 (diff) | |
download | samba-04867f4c513c70313f71c59ed3131307c0d1c4dc.tar.gz |
WHATSNEW: Add entry for deprecation of "lanman auth" and "encrypt passwords = no"
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14117
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Diffstat (limited to 'WHATSNEW.txt')
-rw-r--r-- | WHATSNEW.txt | 14 |
1 files changed, 14 insertions, 0 deletions
diff --git a/WHATSNEW.txt b/WHATSNEW.txt index eece43fcd9e..904db5fefc3 100644 --- a/WHATSNEW.txt +++ b/WHATSNEW.txt @@ -68,6 +68,18 @@ in the following years. If you have a strong requirement for SMB1 (except for supporting old Linux Kernels), please file a bug at https://bugzilla.samba.org and let us know about the details. +LanMan and plaintext authentication deprecated +---------------------------------------------- + +The "lanman auth" and "encrypt passwords" parameters are deprecated +with this release as both are only applicable to SMB1 and are quite +insecure. NTLM, NTLMv2 and Kerberos authentication are unaffected, as +"encrypt passwords = yes" has been the default since Samba 3.0.0. + +If you have a strong requirement for these authentication protocols, +please file a bug at https://bugzilla.samba.org and let us know about +the details. + BIND9_FLATFILE deprecated ------------------------- @@ -357,6 +369,8 @@ smb.conf changes fruit:zero_file_id Changed default False debug encryption New: dump encryption keys False rndc command Deprecated + lanman auth Deprecated + encrypt passwords Deprecated CHANGES SINCE 4.11.0rc2 |