Don't report anonymous as a success when relaying

[zeroSteiner]

When running a relay attack, the point is to obtain an authenticated session as an identity that would not otherwise be available to us. With that in mind, it's not a true success to report that relaying anonymous authentication was able to establish and authenticated session. The changes in this PR tweak the reporting slightly to demote the message from print_good to print_status when the relayed identity is anonymous. It also skips the #on_relay_success callback because the module doesn't need to be notified of an authenticated session which likely lacks any real privileges or access that we couldn't obtain ourselves by simply logging in anonymously.

Verification

• Setup the smb_to_ldap relay to a domain controller. DCs respond to a bind request with a blank username and password with a success.
• Use the smb_to_ldap relay module
• Trigger authentication to the SMB server with no credentials (pro-tip use Update examples with argument parsing ruby_smb#298 and examples/authenticate.rb)
• See that it no longer reports an anonymous session and the session object isn't created

Demo (After)

msf auxiliary(server/relay/smb_to_ldap) > 
[*] SMB Server is running. Listening on 0.0.0.0:445
[*] Server started.
[*] New request from 192.168.159.128
[*] Relaying to next target ldap://192.168.159.10:389
[*] Anonymous Identity - Successfully authenticated against relay target ldap://192.168.159.10:389
[*] New request from 192.168.159.128
[*] Relaying to next target ldap://192.168.159.10:389
[*] Anonymous Identity - Successfully authenticated against relay target ldap://192.168.159.10:389

Demo (Before)

msf auxiliary(server/relay/smb_to_ldap) > 
[*] SMB Server is running. Listening on 0.0.0.0:445
[*] Server started.
[*] New request from 192.168.159.128
[*] Relaying to next target ldap://192.168.159.10:389
[+] Identity:  - Successfully authenticated against relay target ldap://192.168.159.10:389
[+] Relay succeeded
[*] New request from 192.168.159.128
[*] Relaying to next target ldap://192.168.159.10:389
[+] Identity:  - Successfully authenticated against relay target ldap://192.168.159.10:389
[+] Relay succeeded

msf auxiliary(server/relay/smb_to_ldap) > sessions -i -1
[-] Invalid session identifier: -1

[Copilot]

Pull request overview

Adjusts SMB relay success reporting so that anonymous (blank identity) relays are not treated as meaningful “success” events and do not trigger session-related callbacks.

Changes:

• Demotes anonymous relay authentication messaging from print_good to print_status.
• Skips on_relay_success when the relayed identity is blank, and disconnects the relayed connection immediately in that case.