summaryrefslogtreecommitdiff
path: root/source4/auth
Commit message (Expand)AuthorAgeFilesLines
* s4-auth: fix sam test binary ntstatus include pathGünther Deschner2022-12-161-1/+1
* auth4: Save lines with talloc_asprintf_addbuf() in authsam_domain_group_filter()Volker Lendecke2022-12-141-12/+6
* CVE-2021-20251: s4:auth: fix use after free in authsam_logon_success_accounti...Stefan Metzmacher2022-11-244-14/+22
* s4-auth: Make PAC parameters constJoseph Sutton2022-11-081-2/+2
* build: Remove unused dependenciesJoseph Sutton2022-11-081-1/+1
* gensec: Align an integer typeVolker Lendecke2022-10-271-1/+1
* CVE-2022-3437 s4/auth/tests: Add unit tests for unwrap_des3()Joseph Sutton2022-10-252-0/+1265
* s4:gensec Avoid memory leak in error case in gensec_gssapiJoseph Sutton2022-10-211-0/+2
* s4-auth: Mention correct PAC buffer in error msgJoseph Sutton2022-10-211-1/+1
* s4-auth: Fix typo in erberos_pac_to_user_info_dc()Joseph Sutton2022-10-211-1/+1
* s4-auth: Add missing newlines to log messagesJoseph Sutton2022-10-051-2/+2
* CVE-2021-20251 s4:auth_winbind: Check return status of authsam_logon_success_...Joseph Sutton2022-09-121-1/+4
* CVE-2021-20251 s4-auth: Pass through error code from badPwdCount updateJoseph Sutton2022-09-121-1/+5
* CVE-2021-20251 auth4: Avoid reading the database twice by precaculating some ...Andrew Bartlett2022-09-121-19/+36
* CVE-2021-20251 auth4: Inline samdb_result_effective_badPwdCount() in authsam_...Andrew Bartlett2022-09-121-5/+8
* CVE-2021-20251 auth4: Split authsam_calculate_lastlogon_sync_interval() outAndrew Bartlett2022-09-121-42/+73
* CVE-2021-20251 auth4: Return only the result message and free the surrounding...Gary Lockyer2022-09-121-1/+2
* CVE-2021-20251 auth4: Add missing newline to debug message on PSO read failureAndrew Bartlett2022-09-121-1/+1
* CVE-2021-20251 s4 auth: make bad password count increment atomicAndrew Bartlett2022-09-121-50/+246
* CVE-2021-20251 s4 auth test: Unit tests for source4/auth/sam.cGary Lockyer2022-09-122-0/+2757
* CVE-2021-20251 auth4: Reread the user record if a bad password is noticed.Andrew Bartlett2022-09-121-0/+82
* CVE-2021-20251 s4 auth: Prepare to make bad password count increment atomicGary Lockyer2022-09-121-0/+187
* s4:gensec: Do not link subsystems against dlopen() modules!Andreas Schneider2022-09-081-1/+1
* CVE-2022-2031 s4:auth: Use PAC to determine whether ticket is a TGTJoseph Sutton2022-07-271-0/+44
* CVE-2022-2031 auth: Add ticket type field to auth_user_info_dc and auth_sessi...Joseph Sutton2022-07-274-5/+7
* CVE-2022-2031 gensec_krb5: Add helper function to check if client sent an ini...Joseph Sutton2022-07-275-18/+157
* s4-auth: For LDAP simple bind, fall back to checking the ENCTYPE_AES256_CTS_H...Andrew Bartlett2022-06-262-29/+239
* dsdb/common: Make some parameters constJoseph Sutton2022-06-141-1/+1
* lib/util: Change function to mem_equal_const_time()Joseph Sutton2022-06-091-1/+1
* auth: Use constant-time memcmp when comparing sensitive buffersJoseph Sutton2022-06-091-1/+1
* s4-auth: Remove last traces of LanMan authentiation support in the AD DC.Andrew Bartlett2022-03-291-2/+2
* s4-auth: Only build auth_developer module in developer modeAndrew Bartlett2022-03-291-1/+2
* s4-auth: Do not trigger RODC replication unless missing all passwordsAndrew Bartlett2022-03-291-1/+4
* s4-auth: Remove unused acct_flags parameterAndrew Bartlett2022-03-291-5/+1
* s4:auth: Disable NTLM authentication for Protected UsersJoseph Sutton2022-03-181-8/+41
* dsdb: Remove parsing of LM password hash from "dBCSPwd" attributeAndrew Bartlett2022-03-172-4/+2
* s4-auth: Do not supply the LM hash to the AD DC authentication codeAndrew Bartlett2022-03-171-13/+4
* s4-auth: Disable LM authenticaton in the AD DC despite "lanman auth = yes"Andrew Bartlett2022-03-171-2/+2
* s4:auth: let authenticate_ldap_simple_bind() pass down the mapped nt4namesStefan Metzmacher2022-03-101-2/+3
* s4:auth: rename user_info->mapped_state to user_info->cracknames_calledStefan Metzmacher2022-03-102-3/+3
* s4:auth: fix confusing DEBUG message in authsam_want_check()Stefan Metzmacher2022-03-101-2/+2
* s4:auth: check for user_info->mapped.account_name if it needs to be filledStefan Metzmacher2022-03-101-6/+1
* s4:auth: encrypt_user_info() should set password_state instead of mapped_stateStefan Metzmacher2022-03-101-2/+2
* s4:auth: a simple bind uses the DCs name as workstationStefan Metzmacher2022-03-101-1/+2
* s4:auth_sam: use USER_INFO_INTERACTIVE_LOGON as inducation for an interactive...Stefan Metzmacher2022-03-101-2/+3
* s4:auth: Also look up msDS-AllowedToActOnBehalfOfOtherIdentity for RBCDAndreas Schneider2022-03-041-0/+1
* s4:auth: Remove trailing spaces in sam.cAndreas Schneider2022-03-041-17/+17
* krb5-mit: Enable S4U client support for MIT buildIsaac Boukris2022-03-041-11/+0
* s4:sam: Don't use talloc_steal for msg attributes in authsam_make_user_info_dc()Stefan Metzmacher2022-03-011-5/+14
* s4/auth/simple_bind: correctly report TLS stateDouglas Bagnall2022-01-261-2/+2
View Lorry Controller Status