| commit | b4abd3faaf3bdcbcd24fed8325960ccdee43bea9 | |
| author | Stefan Metzmacher <metze@samba.org> | |
| Sat, 12 May 2012 10:00:00 +0000 (12 12:00 +0200) | ||
| committer | Stefan Metzmacher <metze@samba.org> | |
| Tue, 15 May 2012 06:18:28 +0000 (15 08:18 +0200) | ||
| tree | 72b6ef1be7b90ff79401843cc36efb91c5db2470 | treesnapshot (tar.gz zip) |
| parent | 053fcfef0fa680e2443a07933973f0f21624c336 | commitdiff |
s3-auth: remove "security=server" (depricated since 3.6)
"security=server" has a lot of problems in the world with
modern security (ntlmv2 and krb5). It was also not very
reliable, as it needed a stable connection to the password
server for the lifetime of the whole client connection!
Please use "security=domain" or "security=ads" is you
authentication against remote servers (domain controllers).
metze
--------------
/ \
/ REST \
/ IN \
/ PEACE \
/ \
| SEC_SERVER |
| security=server |
| |
| |
| 12 May |
| |
| 2012 |
*| * * * | *
_________)/\\_//(\/(/\)/\//\/\///|_)_______
"security=server" has a lot of problems in the world with
modern security (ntlmv2 and krb5). It was also not very
reliable, as it needed a stable connection to the password
server for the lifetime of the whole client connection!
Please use "security=domain" or "security=ads" is you
authentication against remote servers (domain controllers).
metze
--------------
/ \
/ REST \
/ IN \
/ PEACE \
/ \
| SEC_SERVER |
| security=server |
| |
| |
| 12 May |
| |
| 2012 |
*| * * * | *
_________)/\\_//(\/(/\)/\//\/\///|_)_______