summaryrefslogtreecommitdiff
path: root/auth
Commit message (Expand)AuthorAgeFilesLines
* auth/credentials: try to use kerberos with the machine account unless we're i...Stefan Metzmacher2017-02-281-1/+16
* CVE-2016-2126: auth/kerberos: only allow known checksum types in check_pac_ch...Stefan Metzmacher2016-12-191-0/+22
* gensec/spnego: work around missing server mechListMIC in SMB serversStefan Metzmacher2016-09-131-1/+68
* auth: fix a memory leak in gssapi_get_session_key()Uri Simchoni2016-07-081-6/+1
* auth/ntlmssp: add ntlmssp_{client,server}:force_old_spnego option for testingStefan Metzmacher2016-04-292-0/+10
* auth/spnego: add spnego:simulate_w2k option for testingStefan Metzmacher2016-04-291-1/+27
* auth/ntlmssp: do map to guest checking after the authenticationStefan Metzmacher2016-04-292-15/+41
* auth/spnego: only try to verify the mechListMic if signing was negotiated.Stefan Metzmacher2016-04-291-8/+10
* auth/ntlmssp: don't require NTLMSSP_SIGN for smb connectionsStefan Metzmacher2016-04-291-1/+4
* auth/ntlmssp: don't require any flags in the ccache_resume codeStefan Metzmacher2016-04-291-6/+1
* auth/spnego: handle broken mechListMIC response from Windows 2000Stefan Metzmacher2016-04-291-0/+18
* auth/spnego: change log level for 'Failed to setup SPNEGO negTokenInit reques...Stefan Metzmacher2016-04-291-1/+1
* CVE-2016-2111: auth/gensec: correctly report GENSEC_FEATURE_{SIGN,SEAL} in sc...Stefan Metzmacher2016-03-291-3/+9
* CVE-2016-2111: auth/gensec: require DCERPC_AUTH_LEVEL_INTEGRITY or higher in ...Stefan Metzmacher2016-03-291-0/+10
* CVE-2016-2110: auth/ntlmssp: implement new_spnego support including MIC gener...Stefan Metzmacher2016-03-292-5/+202
* CVE-2016-2110: auth/ntlmssp: implement new_spnego support including MIC check...Stefan Metzmacher2016-03-294-12/+367
* CVE-2016-2110: libcli/auth: pass server_timestamp to SMBNTLMv2encrypt_hash()Stefan Metzmacher2016-03-292-1/+2
* CVE-2016-2110: auth/credentials: pass server_timestamp to cli_credentials_get...Stefan Metzmacher2016-03-293-4/+9
* CVE-2016-2110: auth/credentials: clear the LMv2 key for NTLMv2 in cli_credent...Stefan Metzmacher2016-03-291-0/+6
* CVE-2016-2110: auth/ntlmssp: implement gensec_ntlmssp_may_reset_crypto()Stefan Metzmacher2016-03-293-12/+55
* CVE-2016-2110: auth/ntlmssp: call ntlmssp_sign_init if we provide GENSEC_FEAT...Stefan Metzmacher2016-03-292-2/+2
* CVE-2016-2110: auth/gensec: add gensec_may_reset_crypto() infrastructureStefan Metzmacher2016-03-293-0/+22
* CVE-2016-2110: auth/gensec: require spnego mechListMIC exchange for new_spneg...Stefan Metzmacher2016-03-291-54/+208
* CVE-2016-2110: auth/gensec: fix the client side of a spnego downgradeStefan Metzmacher2016-03-291-3/+5
* CVE-2016-2110: auth/gensec: fix the client side of a new_spnego exchangeStefan Metzmacher2016-03-291-0/+9
* CVE-2016-2110: auth/ntlmssp: let gensec_ntlmssp_client_start require NTLM2 (E...Stefan Metzmacher2016-03-291-1/+1
* CVE-2016-2110: auth/ntlmssp: let gensec_ntlmssp_client_start require flags de...Stefan Metzmacher2016-03-291-8/+10
* CVE-2016-2110: auth/ntlmssp: don't let ntlmssp_handle_neg_flags() change ntlm...Stefan Metzmacher2016-03-293-9/+21
* CVE-2016-2110: auth/ntlmssp: don't allow a downgrade from NTLMv2 to LM_AUTHStefan Metzmacher2016-03-291-0/+2
* CVE-2016-2110: auth/ntlmssp: split allow_lm_response from allow_lm_keyStefan Metzmacher2016-03-293-4/+10
* CVE-2016-2110: auth/ntlmssp: maintain conf_flags and required_flags variablesStefan Metzmacher2016-03-294-0/+31
* CVE-2016-2110: auth/ntlmssp: let ntlmssp_handle_neg_flags() return NTSTATUSStefan Metzmacher2016-03-294-18/+33
* auth/gensec: split out a gensec_verify_dcerpc_auth_level() functionStefan Metzmacher2016-03-291-53/+50
* auth/gensec: make sure gensec_security_by_auth_type() returns NULL for AUTH_T...Stefan Metzmacher2016-03-291-1/+7
* auth/ntlmssp: remove ntlmssp_unwrap() fallback for LDAPStefan Metzmacher2016-03-291-44/+5
* auth/ntlmssp: add more compat for GENSEC_FEATURE_LDAP_STYLEStefan Metzmacher2016-03-291-0/+8
* auth/ntlmssp: implement GENSEC_FEATURE_LDAP_STYLEStefan Metzmacher2016-03-294-0/+36
* auth/gensec: add GENSEC_FEATURE_LDAP_STYLE defineStefan Metzmacher2016-03-291-0/+1
* auth/ntlmssp: use ndr_push_AV_PAIR_LIST in gensec_ntlmssp_server_negotiate().Günther Deschner2016-03-292-10/+34
* auth/ntlmssp: use ntlmssp_version_blob() in the serverStefan Metzmacher2016-03-291-26/+1
* auth/ntlmssp: let the client always include NTLMSSP_NEGOTIATE_VERSIONStefan Metzmacher2016-03-291-6/+11
* auth/ntlmssp: add ntlmssp_version_blob()Stefan Metzmacher2016-03-292-0/+36
* auth/ntlmssp: don't send domain and workstation in the NEGOTIATE_MESSAGEStefan Metzmacher2016-03-291-14/+2
* auth/ntlmssp: set NTLMSSP_ANONYMOUS for anonymous authenticationStefan Metzmacher2016-03-291-0/+1
* auth/ntlmssp: define all client neg_flags in gensec_ntlmssp_client_start()Stefan Metzmacher2016-03-291-10/+10
* auth/ntlmssp: NTLMSSP_NEGOTIATE_VERSION is not a negotiated optionStefan Metzmacher2016-03-291-4/+0
* auth/ntlmssp: split out a debug_ntlmssp_flags_raw() that's more completeStefan Metzmacher2016-03-291-41/+36
* auth/ntlmssp: implement GENSEC_FEATURE_NTLM_CCACHEStefan Metzmacher2016-03-292-4/+92
* auth/gensec: add GENSEC_FEATURE_NTLM_CCACHE defineStefan Metzmacher2016-03-291-0/+1
* auth/ntlmssp: provide a "ntlmssp_resume_ccache" backendStefan Metzmacher2016-03-294-0/+146
View Lorry Controller Status