Univention Bugzilla – Full Text Bug Listing |
Summary: | UCS still allows NTLMv1, should switch to Samba default "ntlmv2-only" (4.2) | ||
---|---|---|---|
Product: | UCS | Reporter: | Arvid Requate <requate> |
Component: | Samba4 | Assignee: | Arvid Requate <requate> |
Status: | CLOSED FIXED | QA Contact: | Felix Botner <botner> |
Severity: | normal | ||
Priority: | P3 | CC: | gohmann, grandjean |
Version: | UCS 4.2 | ||
Target Milestone: | UCS 4.2-4-errata | ||
Hardware: | Other | ||
OS: | Linux | ||
URL: | https://wiki.samba.org/index.php/Samba_4.7_Features_added/changed#Parameter_changes | ||
What kind of report is it?: | Security Issue | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | Security | |
Max CVSS v3 score: | |||
Bug Depends on: | 46782 | ||
Bug Blocks: |
Description
Arvid Requate
2018-05-29 13:33:19 CEST
*** This bug has been marked as a duplicate of bug 41033 *** Actually this Bug is not a duplicate of Bug #41033, because this one is about Samba/AD and the other one is about Samba/NT. ec91b67435 | Adjust default for samba/ntlm/auth ("ntlm auth") to match samba ("no", i.e. ntlmv2-only) f2acc8ec49 | Advisory Also needed fixing in univention-samba: 8c95d9ee02 | Similar patch for univention-samba f645036405 | Advisories OK - univention-samba4 and yaml OK - univention-samba and yaml |