| commit | 53528c71ffdb3377c4e73ac596c8507bc3898e83 | |
| author | Stefan Metzmacher <metze@samba.org> | |
| Wed, 16 Sep 2020 14:15:26 +0000 (16 16:15 +0200) | ||
| committer | Stefan Metzmacher <metze@samba.org> | |
| Fri, 18 Sep 2020 12:48:38 +0000 (18 12:48 +0000) | ||
| tree | 414a96d830a04e6b9e51995f58457bf1d5785079 | treesnapshot (tar.gz zip) |
| parent | 74eb448adf7fb638fe925eab87a2dbfe9c002cc0 | commitdiff |
CVE-2020-1472(ZeroLogon): libcli/auth: add netlogon_creds_is_random_challenge() to avoid weak values
This is the check Windows is using, so we won't generate challenges,
which are rejected by Windows DCs (and future Samba DCs).
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14497
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
This is the check Windows is using, so we won't generate challenges,
which are rejected by Windows DCs (and future Samba DCs).
BUG: https://bugzilla.samba.org/show_bug.cgi?id=14497
Signed-off-by: Stefan Metzmacher <metze@samba.org>
Reviewed-by: Gary Lockyer <gary@catalyst.net.nz>
| libcli/auth/credentials.c | diffblobblamehistory | |
| libcli/auth/proto.h | diffblobblamehistory |