diff options
author | Simo Sorce <simo@redhat.com> | 2014-04-13 02:06:32 -0400 |
---|---|---|
committer | Simo Sorce <simo@redhat.com> | 2014-05-04 17:21:06 -0400 |
commit | 6b3900fae26a05824cbe874f79ec649f3b7a14f1 (patch) | |
tree | db607a4cc688902b27c8f944fc41ed953e61c338 /src | |
parent | 1fedabdb1e3de36e9aa88b899292d24a240ae38b (diff) | |
download | gss-ntlmssp-6b3900fae26a05824cbe874f79ec649f3b7a14f1.tar.gz gss-ntlmssp-6b3900fae26a05824cbe874f79ec649f3b7a14f1.tar.xz gss-ntlmssp-6b3900fae26a05824cbe874f79ec649f3b7a14f1.zip |
Always use Extedned Session Security when possible
MS-NLMP 3.1.5.1.1 recommends to set the extended session security flag
if LM authentication is not going to be used.
Diffstat (limited to 'src')
-rw-r--r-- | src/gss_sec_ctx.c | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/src/gss_sec_ctx.c b/src/gss_sec_ctx.c index cd1418e..eeb9787 100644 --- a/src/gss_sec_ctx.c +++ b/src/gss_sec_ctx.c @@ -189,6 +189,7 @@ uint32_t gssntlm_init_sec_context(uint32_t *minor_status, } if (!(sec_req & SEC_LM_OK)) { ctx->neg_flags &= ~NTLMSSP_NEGOTIATE_LM_KEY; + ctx->neg_flags |= NTLMSSP_NEGOTIATE_EXTENDED_SESSIONSECURITY; } if (!(sec_req & SEC_EXT_SEC_OK)) { ctx->neg_flags &= ~NTLMSSP_NEGOTIATE_EXTENDED_SESSIONSECURITY; |