I wonder if anybody knows what CVE-2024-21427 was?
I'll give you a clue:
https://www.catalyst.net.nz/blog/samba-and-catalyst-make-active-directory-more-secure
In short, Samba developers are very, very careful folks who test every angle.
Often as we develop our AD DC we find gaps in the Microsoft implementation, and let them know.
Sadly this one took a while, but if you use Authentication Policies or Silos on Windows AD, it really is time to patch, it doesn't protect what you think it does.
[#]security
(a rare post related to my employer)
=> More informations about this toot | More toots from abartlet@mastodon.nzoss.nz
text/geminiThis content has been proxied by September (ba2dc).