summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorAndrew Bartlett <abartlet@samba.org>2002-01-06 01:37:14 +0000
committerAndrew Bartlett <abartlet@samba.org>2002-01-06 01:37:14 +0000
commit08a5c5bf940fac7a779be01db01ae7d97df80f79 (patch)
tree4591fc64186b4bf7365dfe4249211c37e6efae83
parent0e564cb32acc70c1fc43f1be5ceb3637f0dc7361 (diff)
downloadsamba-08a5c5bf940fac7a779be01db01ae7d97df80f79.tar.gz
samba-08a5c5bf940fac7a779be01db01ae7d97df80f79.tar.xz
samba-08a5c5bf940fac7a779be01db01ae7d97df80f79.zip
Get this code back to where it belongs...
Apparently (and I will doublecheck) its legal to do an annoymous session setup when we negoitiated SPNEGO, but we can't do an authenticated one becouse we didn't give a challange. Andrew Bartlett
-rw-r--r--source/smbd/sesssetup.c14
1 files changed, 7 insertions, 7 deletions
diff --git a/source/smbd/sesssetup.c b/source/smbd/sesssetup.c
index c6cb40fcda5..a1591113190 100644
--- a/source/smbd/sesssetup.c
+++ b/source/smbd/sesssetup.c
@@ -681,6 +681,13 @@ int reply_sesssetup_and_X(connection_struct *conn, char *inbuf,char *outbuf,
DEBUG(3,("sesssetupX:name=[%s]\\[%s]@[%s]\n", domain, user, remote_machine));
if (*user) {
+ if (global_spnego_negotiated) {
+
+ /* This has to be here, becouse this is a perfectly valid behaviour for guest logons :-( */
+
+ DEBUG(0,("reply_sesssetup_and_X: Rejecting attempt at 'normal' session setup after negotiating spnego.\n"));
+ return ERROR_NT(NT_STATUS_UNSUCCESSFUL);
+ }
pstrcpy(sub_user, user);
} else {
pstrcpy(sub_user, lp_guestaccount());
@@ -704,13 +711,6 @@ int reply_sesssetup_and_X(connection_struct *conn, char *inbuf,char *outbuf,
}
if (!*user) {
- if (global_spnego_negotiated) {
-
- /* This has to be here, becouse this is a perfectly valid behaviour for guest logons :-( */
-
- DEBUG(0,("reply_sesssetup_and_X: Rejecting attempt at 'normal' session setup after negotiating spnego.\n"));
- return ERROR_NT(NT_STATUS_UNSUCCESSFUL);
- }
nt_status = check_guest_password(&server_info);