CVE-2017-12150: libgpo: make use of SMB_SIGNING_REQUIRED in gpo_connect_server()

It's important that we use a signed connection to get the GPOs! BUG: https://bugzilla.samba.org/show_bug.cgi?id=12997 Signed-off-by: Stefan Metzmacher <metze@samba.org>
author: Stefan Metzmacher <metze@samba.org> 2016-12-12 05:49:46 +0100
committer: Stefan Metzmacher <metze@samba.org> 2017-09-04 11:28:29 +0200
commit: f42ffde214c3be1d6ba3afd8fe88a3e04470c4bd (patch)
tree: 3ba13e1e885ab6a3e1e91ccfd16a36479c63c3e1 /libgpo/gpo_fetch.c
parent: b760a464ee3d94edeff6eb10a0b08359d6e98099 (diff)
download: samba-f42ffde214c3be1d6ba3afd8fe88a3e04470c4bd.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/libgpo/gpo_fetch.c b/libgpo/gpo_fetch.c
index 836bc23f2d2..3740d4e4b57 100644
--- a/libgpo/gpo_fetch.c
+++ b/libgpo/gpo_fetch.c
@@ -133,7 +133,7 @@ static NTSTATUS gpo_connect_server(ADS_STRUCT *ads,
 			ads->auth.password,
 			CLI_FULL_CONNECTION_USE_KERBEROS |
 			CLI_FULL_CONNECTION_FALLBACK_AFTER_KERBEROS,
-			Undefined);
+			SMB_SIGNING_REQUIRED);
 	if (!NT_STATUS_IS_OK(result)) {
 		DEBUG(10,("check_refresh_gpo: "
 				"failed to connect: %s\n",
author	Stefan Metzmacher <metze@samba.org>	2016-12-12 05:49:46 +0100
committer	Stefan Metzmacher <metze@samba.org>	2017-09-04 11:28:29 +0200
commit	f42ffde214c3be1d6ba3afd8fe88a3e04470c4bd (patch)
tree	3ba13e1e885ab6a3e1e91ccfd16a36479c63c3e1 /libgpo/gpo_fetch.c
parent	b760a464ee3d94edeff6eb10a0b08359d6e98099 (diff)
download	samba-f42ffde214c3be1d6ba3afd8fe88a3e04470c4bd.tar.gz