diff options
author | Jeremy Allison <jra@samba.org> | 2003-07-18 00:53:34 +0000 |
---|---|---|
committer | Jeremy Allison <jra@samba.org> | 2003-07-18 00:53:34 +0000 |
commit | e5714edc233424c2f74edb6d658f32f8e0ec9275 (patch) | |
tree | 93c707e1710ab7804ee98817f748c9136a07719a /source/smbd/negprot.c | |
parent | 86c5ebcf8f5eb57e9885627b3da4e486ee3f62d9 (diff) | |
download | samba-e5714edc233424c2f74edb6d658f32f8e0ec9275.tar.gz samba-e5714edc233424c2f74edb6d658f32f8e0ec9275.tar.xz samba-e5714edc233424c2f74edb6d658f32f8e0ec9275.zip |
Signing so far... the client code fails on a SMBtrans2 secondary transaction
I think (my changes haven't affected this I believe). Initial support on the
server side for smbclient. Still doesn't work for w2k clients I think...
Work in progress..... (don't change).
Jeremy.
Diffstat (limited to 'source/smbd/negprot.c')
-rw-r--r-- | source/smbd/negprot.c | 18 |
1 files changed, 13 insertions, 5 deletions
diff --git a/source/smbd/negprot.c b/source/smbd/negprot.c index 0b58eb3eb24..28e3cf97d1f 100644 --- a/source/smbd/negprot.c +++ b/source/smbd/negprot.c @@ -278,11 +278,19 @@ static int reply_nt1(char *inbuf, char *outbuf) secword |= NEGOTIATE_SECURITY_CHALLENGE_RESPONSE; if (lp_server_signing()) { - secword |= NEGOTIATE_SECURITY_SIGNATURES_ENABLED; - /* No raw mode with smb signing. */ - capabilities &= ~CAP_RAW_MODE; - if (lp_server_signing() == Required) - secword |=NEGOTIATE_SECURITY_SIGNATURES_REQUIRED; + if (lp_security() >= SEC_USER) { + secword |= NEGOTIATE_SECURITY_SIGNATURES_ENABLED; + /* No raw mode with smb signing. */ + capabilities &= ~CAP_RAW_MODE; + if (lp_server_signing() == Required) + secword |=NEGOTIATE_SECURITY_SIGNATURES_REQUIRED; + srv_set_signing_negotiated(); + } else { + DEBUG(0,("reply_nt1: smb signing is incompatible with share level security !\n")); + if (lp_server_signing() == Required) { + exit_server("reply_nt1: smb signing required and share level security selected."); + } + } } set_message(outbuf,17,0,True); |