search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
(parent: a81f32e) | patch
CVE-2018-10919 tests: Add tests for guessing confidential attributes
commit77421f33f853aed254ed67a6541f86e4070c4128
authorTim Beale <timbeale@catalyst.net.nz>
Mon, 9 Jul 2018 03:57:59 +0000 (9 15:57 +1200)
committerKarolin Seeger <kseeger@samba.org>
Sat, 11 Aug 2018 06:16:01 +0000 (11 08:16 +0200)
treef929b61335b7130fee8f3bc12e22ee6c90070a5ctree | snapshot (tar.gz zip)
parenta81f32e73026c02491983a3136834c3c72d1d03fcommit | diff
CVE-2018-10919 tests: Add tests for guessing confidential attributes

Adds tests that assert that a confidential attribute cannot be guessed
by an unprivileged user through wildcard DB searches.

The tests basically consist of a set of DB searches/assertions that
get run for:
- basic searches against a confidential attribute
- confidential attributes that get overridden by giving access to the
  user via an ACE (run against a variety of ACEs)
- protecting a non-confidential attribute via an ACL that denies read-
  access (run against a variety of ACEs)
- querying confidential attributes via the dirsync controls

These tests all pass when run against a Windows Dc and all fail against
a Samba DC.

BUG: https://bugzilla.samba.org/show_bug.cgi?id=13434

Signed-off-by: Tim Beale <timbeale@catalyst.net.nz>
selftest/knownfail.d/confidential_attr [new file with mode: 0644] blob
source4/dsdb/tests/python/confidential_attr.py [new file with mode: 0755] blob
source4/selftest/tests.py diff | blob | blame | history
Samba GIT mirror