| commit | 1282c823978e51d926132502d8f4f652cd572f03 | |
| author | Andrew Bartlett <abartlet@samba.org> | |
| Fri, 22 Oct 2021 10:41:23 +0000 (22 23:41 +1300) | ||
| committer | Jule Anger <janger@samba.org> | |
| Mon, 8 Nov 2021 09:52:10 +0000 (8 10:52 +0100) | ||
| tree | 12d86768b502df4f6943700901ae974856ae47d7 | treesnapshot (tar.gz zip) |
| parent | 17c4928b2d3242aa621d13412e6c55ab534c674c | commitdiff |
CVE-2020-25722 selftest/user_account_control: more work to cope with UAC/objectclass defaults and lock
This new restriction breaks a large number of assumptions in the tests, like
that you can remove some UF_ flags, because it turns out doing so will
make the 'computer' a 'user' again, and this will fail.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14753
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
This new restriction breaks a large number of assumptions in the tests, like
that you can remove some UF_ flags, because it turns out doing so will
make the 'computer' a 'user' again, and this will fail.
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14753
Signed-off-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
| selftest/knownfail.d/uac_objectclass_restrict | diffblobblamehistory | |
| source4/dsdb/tests/python/user_account_control.py | diffblobblamehistory |