summaryrefslogtreecommitdiff
path: root/source4/auth
AgeCommit message (Expand)AuthorFilesLines
2022-12-16s4-auth: fix sam test binary ntstatus include pathGünther Deschner1-1/+1
2022-12-14auth4: Save lines with talloc_asprintf_addbuf() in authsam_domain_group_filter()Volker Lendecke1-12/+6
2022-11-24CVE-2021-20251: s4:auth: fix use after free in authsam_logon_success_accounti...Stefan Metzmacher4-14/+22
2022-11-08s4-auth: Make PAC parameters constJoseph Sutton1-2/+2
2022-11-08build: Remove unused dependenciesJoseph Sutton1-1/+1
2022-10-27gensec: Align an integer typeVolker Lendecke1-1/+1
2022-10-25CVE-2022-3437 s4/auth/tests: Add unit tests for unwrap_des3()Joseph Sutton2-0/+1265
2022-10-21s4:gensec Avoid memory leak in error case in gensec_gssapiJoseph Sutton1-0/+2
2022-10-21s4-auth: Mention correct PAC buffer in error msgJoseph Sutton1-1/+1
2022-10-21s4-auth: Fix typo in erberos_pac_to_user_info_dc()Joseph Sutton1-1/+1
2022-10-05s4-auth: Add missing newlines to log messagesJoseph Sutton1-2/+2
2022-09-12CVE-2021-20251 s4:auth_winbind: Check return status of authsam_logon_success_...Joseph Sutton1-1/+4
2022-09-12CVE-2021-20251 s4-auth: Pass through error code from badPwdCount updateJoseph Sutton1-1/+5
2022-09-12CVE-2021-20251 auth4: Avoid reading the database twice by precaculating some ...Andrew Bartlett1-19/+36
2022-09-12CVE-2021-20251 auth4: Inline samdb_result_effective_badPwdCount() in authsam_...Andrew Bartlett1-5/+8
2022-09-12CVE-2021-20251 auth4: Split authsam_calculate_lastlogon_sync_interval() outAndrew Bartlett1-42/+73
2022-09-12CVE-2021-20251 auth4: Return only the result message and free the surrounding...Gary Lockyer1-1/+2
2022-09-12CVE-2021-20251 auth4: Add missing newline to debug message on PSO read failureAndrew Bartlett1-1/+1
2022-09-12CVE-2021-20251 s4 auth: make bad password count increment atomicAndrew Bartlett1-50/+246
2022-09-12CVE-2021-20251 s4 auth test: Unit tests for source4/auth/sam.cGary Lockyer2-0/+2757
2022-09-12CVE-2021-20251 auth4: Reread the user record if a bad password is noticed.Andrew Bartlett1-0/+82
2022-09-12CVE-2021-20251 s4 auth: Prepare to make bad password count increment atomicGary Lockyer1-0/+187
2022-09-08s4:gensec: Do not link subsystems against dlopen() modules!Andreas Schneider1-1/+1
2022-07-27CVE-2022-2031 s4:auth: Use PAC to determine whether ticket is a TGTJoseph Sutton1-0/+44
2022-07-27CVE-2022-2031 auth: Add ticket type field to auth_user_info_dc and auth_sessi...Joseph Sutton4-5/+7
2022-07-27CVE-2022-2031 gensec_krb5: Add helper function to check if client sent an ini...Joseph Sutton5-18/+157
2022-06-26s4-auth: For LDAP simple bind, fall back to checking the ENCTYPE_AES256_CTS_H...Andrew Bartlett2-29/+239
2022-06-14dsdb/common: Make some parameters constJoseph Sutton1-1/+1
2022-06-09lib/util: Change function to mem_equal_const_time()Joseph Sutton1-1/+1
2022-06-09auth: Use constant-time memcmp when comparing sensitive buffersJoseph Sutton1-1/+1
2022-03-29s4-auth: Remove last traces of LanMan authentiation support in the AD DC.Andrew Bartlett1-2/+2
2022-03-29s4-auth: Only build auth_developer module in developer modeAndrew Bartlett1-1/+2
2022-03-29s4-auth: Do not trigger RODC replication unless missing all passwordsAndrew Bartlett1-1/+4
2022-03-29s4-auth: Remove unused acct_flags parameterAndrew Bartlett1-5/+1
2022-03-18s4:auth: Disable NTLM authentication for Protected UsersJoseph Sutton1-8/+41
2022-03-17dsdb: Remove parsing of LM password hash from "dBCSPwd" attributeAndrew Bartlett2-4/+2
2022-03-17s4-auth: Do not supply the LM hash to the AD DC authentication codeAndrew Bartlett1-13/+4
2022-03-17s4-auth: Disable LM authenticaton in the AD DC despite "lanman auth = yes"Andrew Bartlett1-2/+2
2022-03-10s4:auth: let authenticate_ldap_simple_bind() pass down the mapped nt4namesStefan Metzmacher1-2/+3
2022-03-10s4:auth: rename user_info->mapped_state to user_info->cracknames_calledStefan Metzmacher2-3/+3
2022-03-10s4:auth: fix confusing DEBUG message in authsam_want_check()Stefan Metzmacher1-2/+2
2022-03-10s4:auth: check for user_info->mapped.account_name if it needs to be filledStefan Metzmacher1-6/+1
2022-03-10s4:auth: encrypt_user_info() should set password_state instead of mapped_stateStefan Metzmacher1-2/+2
2022-03-10s4:auth: a simple bind uses the DCs name as workstationStefan Metzmacher1-1/+2
2022-03-10s4:auth_sam: use USER_INFO_INTERACTIVE_LOGON as inducation for an interactive...Stefan Metzmacher1-2/+3
2022-03-04s4:auth: Also look up msDS-AllowedToActOnBehalfOfOtherIdentity for RBCDAndreas Schneider1-0/+1
2022-03-04s4:auth: Remove trailing spaces in sam.cAndreas Schneider1-17/+17
2022-03-04krb5-mit: Enable S4U client support for MIT buildIsaac Boukris1-11/+0
2022-03-01s4:sam: Don't use talloc_steal for msg attributes in authsam_make_user_info_dc()Stefan Metzmacher1-5/+14
2022-01-26s4/auth/simple_bind: correctly report TLS stateDouglas Bagnall1-2/+2
generated by cgit v1.2.3 (git 2.25.1) at 2026-05-07 06:40:55 +0000