| commit | 1ad1317a815898b52b1803211ab7b502e331e782 | |
| author | Andrew Bartlett <abartlet@samba.org> | |
| Tue, 31 Aug 2004 19:56:16 +0000 (31 19:56 +0000) | ||
| committer | Gerald (Jerry) Carter <jerry@samba.org> | |
| Wed, 10 Oct 2007 15:52:33 +0000 (10 10:52 -0500) | ||
| tree | e3ca0037f5131d07dd6e9f012260a61c6cb839fd | treesnapshot (tar.gz zip) |
| parent | 8ae57a8e8d7334bc0feb2c8afb673bd5c53bffca | commitdiff |
r2137: This is a patch I've been running at Hawker for a while.
The purpose of this patch is to avoid changing the machine account
password, when it has 'already been changed'. This occours in
situations where the secure channel between the workstation and the DC
breaks down, such as occoured in the MS04-11 security patch. This
avoids LDAP replication load issues, due to the client changing the
password repeatedly.
We also now set the LM password to NULL explicitly, rather than the NT
password value, as this is what we get out of a vampire, or when a
long password is set (as XP seems to do these days).
Andrew Bartlett
The purpose of this patch is to avoid changing the machine account
password, when it has 'already been changed'. This occours in
situations where the secure channel between the workstation and the DC
breaks down, such as occoured in the MS04-11 security patch. This
avoids LDAP replication load issues, due to the client changing the
password repeatedly.
We also now set the LM password to NULL explicitly, rather than the NT
password value, as this is what we get out of a vampire, or when a
long password is set (as XP seems to do these days).
Andrew Bartlett
| source/rpc_server/srv_netlog_nt.c | diffblobblamehistory |