summaryrefslogtreecommitdiff
path: root/libds
diff options
context:
space:
mode:
authorStefan Metzmacher <metze@samba.org>2012-05-12 12:00:00 +0200
committerStefan Metzmacher <metze@samba.org>2012-05-15 08:18:28 +0200
commitb4abd3faaf3bdcbcd24fed8325960ccdee43bea9 (patch)
tree72b6ef1be7b90ff79401843cc36efb91c5db2470 /libds
parent053fcfef0fa680e2443a07933973f0f21624c336 (diff)
downloadsamba-b4abd3faaf3bdcbcd24fed8325960ccdee43bea9.tar.gz
s3-auth: remove "security=server" (depricated since 3.6)
"security=server" has a lot of problems in the world with modern security (ntlmv2 and krb5). It was also not very reliable, as it needed a stable connection to the password server for the lifetime of the whole client connection! Please use "security=domain" or "security=ads" is you authentication against remote servers (domain controllers). metze -------------- / \ / REST \ / IN \ / PEACE \ / \ | SEC_SERVER | | security=server | | | | | | 12 May | | | | 2012 | *| * * * | * _________)/\\_//(\/(/\)/\//\/\///|_)_______
Diffstat (limited to 'libds')
-rw-r--r--libds/common/roles.h19
1 files changed, 17 insertions, 2 deletions
diff --git a/libds/common/roles.h b/libds/common/roles.h
index 90281ba788..9dc9a00d28 100644
--- a/libds/common/roles.h
+++ b/libds/common/roles.h
@@ -60,10 +60,25 @@ enum server_role {
*| * * * | *
_________)/\\_//(\/(/\)/\//\/\///|_)_______
- */
+ --------------
+ / \
+ / REST \
+ / IN \
+ / PEACE \
+ / \
+ | SEC_SERVER |
+ | security=server |
+ | |
+ | |
+ | 12 May |
+ | |
+ | 2012 |
+ *| * * * | *
+ _________)/\\_//(\/(/\)/\//\/\///|_)_______
+
+*/
enum security_types {SEC_AUTO = 0,
SEC_USER = 2,
- SEC_SERVER = 3,
SEC_DOMAIN = 4,
SEC_ADS = 5};