summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* add Replicator and RAS Servers to list of builtin SIDs we resolve; bug 608Gerald Carter2003-12-011-0/+2
| | | | (This used to be commit 4bc58129e073973620aed1bfb161ee83c1863f81)
* don't mistake pre-existing UNIX jobs for smb jobs; patch from SATOH Fumiyasu ↵Gerald Carter2003-12-011-3/+5
| | | | | | bug 770 (This used to be commit 3a55788dca537248d0aea9973a84075e142b7736)
* In the brief 'net rpc group' listing, don't cut off group names at 21 chars.Volker Lendecke2003-12-011-3/+3
| | | | | Volker (This used to be commit 5d0b8280f6c4990ee3a26c310efebfa859ee21be)
* Beautify the net status help message a bitVolker Lendecke2003-12-011-4/+4
| | | | | Volker (This used to be commit e9391e206a8cdbcc08597a33b557b86f9a5d73ce)
* I needed a decently parseable format of smbstatus. Looking at smbstatus codeVolker Lendecke2003-12-014-1/+270
| | | | | | | | | tells me that this should not be expanded, so I implemented net status [sessions|shares] [parseable] Volker (This used to be commit 63d877c6b4786dcddf5f389842f798857be282c0)
* Fix spurious error msg. when seq=0.Jeremy Allison2003-12-011-0/+2
| | | | | Jeremy (This used to be commit 4912ad8f18041c9c3abe2cfa67dd26a324c9c31e)
* Ensure the server can cope with multiple secondary transJeremy Allison2003-12-013-0/+24
| | | | | | requests when signing is turned on. Jeremy. (This used to be commit 206464a748a59b1d485d4d3d0cb4d257d60fbd00)
* Subtract NT_STATUS from common flag, don't add it...Jeremy Allison2003-12-012-7/+7
| | | | | Jeremy. (This used to be commit 4e73faa7b4af7f73bdce9fcc2ee1825249dc7da7)
* Ensure we use the same mid for the secondary trans requests, W2K3Jeremy Allison2003-12-011-0/+6
| | | | | | does this. Jeremy. (This used to be commit 8adf0cd27a23b1bc6e0da08789a8b1e9eefb54a7)
* Don't automatically set nt status code flag unless client tells us it canJeremy Allison2003-12-012-14/+29
| | | | | | cope. Jeremy. (This used to be commit 0d82ac57a59276adb403f8e023578c2d6d5136e4)
* Better fix for client signing bug. Ensure we don't malloc/free trans signingJeremy Allison2003-12-012-36/+40
| | | | | | state info each packet. Jeremy. (This used to be commit 818cf32d6330f7e7855ce662326003e75d4a1d46)
* Fix signing bug with secondary client trans requests. Turns out the lastJeremy Allison2003-11-301-0/+20
| | | | | | | | packet is the one that matters for checking the signing replies. Need to check the server code does this correctly too.... Bug #832 reported by Volker. Jeremy. (This used to be commit 6750dc33b46c422582176b704592d9b2f1fb04d7)
* Implement 'net rpc group list [global|local|builtin]*' for a select listing ofVolker Lendecke2003-11-282-0/+36
| | | | | | | the respective user databases. Volker (This used to be commit 39e4ee0c5be9f8d5a26b03ae17865b8e576b0b62)
* Fix for pdbedit error code returns (sorry, forgot who sent in the patch).Jeremy Allison2003-11-271-2/+11
| | | | | Jeremy. (This used to be commit 685097bc50a8ef387c5082401858d482329c37bc)
* Only ask for 512 names at a time.Volker Lendecke2003-11-271-8/+19
| | | | | Volker (This used to be commit d5775b7106dc5d6326db89f7369d2ffd61646426)
* Correct freebsd 5.1 support for winbind contributed by Aaron Collins.Tim Potter2003-11-272-1/+85
| | | | | Let the build farm chew on it for a bit. (This used to be commit 41e4b036dff0af7be69bf95ea3d64dfccd3a4b8e)
* use samr_dispinfo(level == 1) for enumerating domain users so we can include ↵Gerald Carter2003-11-271-17/+34
| | | | | | the full name in gecos field; bug 587 (This used to be commit 329065d7cddb52c52667c93e0a0218c0e89938be)
* Patch from Benjamin Riefenstahl <Benjamin.Riefenstahl@epost.de> to addJeremy Allison2003-11-262-13/+49
| | | | | | | | MacOSX (Darwin) specific charset module code. Also had to add AC_CHECK_CPP to configure.in (this took a *long* time to track down) to make autoconf work correctly on Fedora Core 1. Jeremy. (This used to be commit c51d974b18e31a38608a3837d3fee04a209f91c8)
* This commit was manufactured by cvs2svn to create branch 'SAMBA_3_0'.(This ↵cvs2svn Import User2003-11-261-0/+602
|\ | | | | | | used to be commit 9ccf8c530def31ccf6aca4f56b53676512131e66)
| * Patch from Benjamin Riefenstahl <Benjamin.Riefenstahl@epost.de> to addJeremy Allison2003-11-263-13/+651
| | | | | | | | | | | | | | | | MacOSX (Darwin) specific charset module code. Also had to add AC_CHECK_CPP to configure.in (this took a *long* time to track down) to make autoconf work correctly on Fedora Core 1. Jeremy. (This used to be commit a5711943428e4b586fb7f064739c78fa0a3ebd52)
| * Implement "net rpc group members": Get members of a domain group inVolker Lendecke2003-11-262-0/+89
| | | | | | | | | | | | | | human-readable format. Volker (This used to be commit e5770a9433099f86a1f828a35bbecbe5691c000c)
| * Get rid of a const warningVolker Lendecke2003-11-262-3/+3
| | | | | | | | | | Volker (This used to be commit ab1096d58e2447bc91370e0a7f913d9375658c4c)
| * Merge from 3.0:Andrew Bartlett2003-11-264-13/+15
| | | | | | | | | | | | | | | | | | | | - NTLM2 fixes, don't force NTLM2 - Don't use NTLM2 for RPC, it doesn't work yet - Add comments to winbindd_pam.c - Merge 64 bit fixes and better debug messages in winbindd.c Andrew Bartlett (This used to be commit ba94e4a1ab6dc3335bbb29686ca6795d0ffad5b0)
| * Patch from Jim McDonough for bug #802. Retrieve the correct ACL group bitsJeremy Allison2003-11-252-0/+45
| | | | | | | | | | | | if the file has an ACL. Jeremy. (This used to be commit a51d9e947ef012fabf5a13250df6232d23722f68)
| * allow users to delete jobs with cups printing backendGerald Carter2003-11-252-1/+7
| | | | | | | | | | | | | | | | The changes the name of the job passed off to cups from "Test Page" to "smbprn.00000033 Test Page" so that we can get the smb jobid back from lpq. Working on bug 770. (This used to be commit 3a84daf24f80cf44605841c844a0ba516354420b)
| * If signing starts successfully, don't just turn it off automatically ifJeremy Allison2003-11-251-5/+5
| | | | | | | | | | | | it fails later. Only turn it off automatically if it fails at the start. Jeremy. (This used to be commit 2a00d538da61253455db1734b74ef1debaea24ea)
| * Patch for #263 from jpjanosi@us.ibm.com.Jeremy Allison2003-11-251-1/+2
| | | | | | | | | | Jeremy. (This used to be commit 6543bca0cbf6030d2400e30bb7491237d9c818f8)
| * When server signing is set to "auto", if the client doesn't sign justJeremy Allison2003-11-251-2/+23
| | | | | | | | | | | | ignore it. Only fail if signing is set to "required". Jeremy. (This used to be commit ab5db8873e2882900baa1c74706bb907baaff7fd)
| * strequal() returns a BOOL, not an int like strcmp(); this fixes a bug in ↵Gerald Carter2003-11-241-2/+2
| | | | | | | | | | | | check_bind_response() (This used to be commit 84f0e97e5882375b765b818e89a6d96736cd5932)
| * Added "passwd chat timeout" parameter. Docs to follow.Jeremy Allison2003-11-242-3/+10
| | | | | | | | | | Jeremy. (This used to be commit 4d49fb806db6868f97069a603a28a85dc31cfe21)
| * patch from Matthias Hilbig for bug 467; use the dns name (or IP) as the ↵Gerald Carter2003-11-241-2/+7
| | | | | | | | | | | | originating client name when using CUPS (This used to be commit eae48cda0f7f1346cd66d5a581c1273880f214d4)
| * more access fixes for group enumeration in LDAP; bug 281Gerald Carter2003-11-246-14/+52
| | | | | | | | (This used to be commit c4ce92e80688fe7fd4b2fde2c31e94baf3e4dca0)
| * (Merge from 3.0)Andrew Bartlett2003-11-232-2/+15
| | | | | | | | | | | | | | | | | | Patch by emil@disksites.com <Emil Rasamat> to ensure we always always free() each auth method. (We had relied on the use of talloc() only, despite providing the free() callback) Andrew Bartlett (This used to be commit 58c4963a8389dff4d925548217fabed1c9932abd)
| * Merge from 3.0:Andrew Bartlett2003-11-236-31/+68
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Add support for variable-length session keys in our client code. This means that we now support 'net rpc join' with KRB5 (des based) logins. Now, you need to hack 'net' to do that, but the principal is important... When we add kerberos to 'net rpc', it should be possible to still do user management and the like over RPC. - Add server-side support for variable-length session keys (as used by DES based krb5 logins). Andrew Bartlett (This used to be commit 1287cf5f921327c9ea758de46220c4e2dedc485c)
| * (merge from 3.0)Andrew Bartlett2003-11-2235-597/+1157
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Changes all over the shop, but all towards: - NTLM2 support in the server - KEY_EXCH support in the server - variable length session keys. In detail: - NTLM2 is an extension of NTLMv1, that is compatible with existing domain controllers (unlike NTLMv2, which requires a DC upgrade). * This is known as 'NTLMv2 session security' * (This is not yet implemented on the RPC pipes however, so there may well still be issues for PDC setups, particuarly around password changes. We do not fully understand the sign/seal implications of NTLM2 on RPC pipes.) This requires modifications to our authentication subsystem, as we must handle the 'challege' input into the challenge-response algorithm being changed. This also needs to be turned off for 'security=server', which does not support this. - KEY_EXCH is another 'security' mechanism, whereby the session key actually used by the server is sent by the client, rather than being the shared-secret directly or indirectly. - As both these methods change the session key, the auth subsystem needed to be changed, to 'override' session keys provided by the backend. - There has also been a major overhaul of the NTLMSSP subsystem, to merge the 'client' and 'server' functions, so they both operate on a single structure. This should help the SPNEGO implementation. - The 'names blob' in NTLMSSP is always in unicode - never in ascii. Don't make an ascii version ever. - The other big change is to allow variable length session keys. We have always assumed that session keys are 16 bytes long - and padded to this length if shorter. However, Kerberos session keys are 8 bytes long, when the krb5 login uses DES. * This fix allows SMB signging on machines not yet running MIT KRB5 1.3.1. * - Add better DEBUG() messages to ntlm_auth, warning administrators of misconfigurations that prevent access to the privileged pipe. This should help reduce some of the 'it just doesn't work' issues. - Fix data_blob_talloc() to behave the same way data_blob() does when passed a NULL data pointer. (just allocate) REMEMBER to make clean after this commit - I have changed plenty of data structures... Andrew Bartlett (This used to be commit 57a895aaabacc0c9147344d097d333793b77c947)
| * debug and swat fixes from 3.0Gerald Carter2003-11-222-1/+3
| | | | | | | | (This used to be commit 52c1973f39f4c4161097843fcf395e0102531575)
| * fix winbind ping call so that SWAT correctly determines if winbindd is ↵Gerald Carter2003-11-221-5/+1
| | | | | | | | | | | | running; bug 398 (This used to be commit cb12d519cc40b964d022886538044e8613931199)
| * Ensure that items in a list of strings containing whitespaceGerald Carter2003-11-223-6/+18
| | | | | | | | | | | | | | | | | | | | | | | | are written out surrounded by single quotes. This means that both double and single quotes are now used to surround strings in smb.conf. This is a slight change from the previous behavior but needed or else things like printer admin = +ntadmin, 'VALE\Domain, Admin' get written to smb.conf by SWAT. (This used to be commit 59e9d6e301c752e99fb6a50204d7941f7f84566a)
| * Fix for rename across filesystems. Noticed by Rainer Link ↵Jeremy Allison2003-11-211-5/+95
| | | | | | | | | | | | | | <link@foo.fh-furtwangen.de>. Jeremy. (This used to be commit f68c2ff0f3307612ddbe62b8cc2ea12251d54ec6)
| * Fix Jerry's no-proto bug :-).Jeremy Allison2003-11-211-4/+4
| | | | | | | | | | Jeremy. (This used to be commit 2b39e3f12a12f0863bf76d996c0d0db422d593bc)
| * make sure we don't append the ldap suffix when writing out the ldap XXX ↵Gerald Carter2003-11-211-53/+46
| | | | | | | | | | | | suffix values in SWAT; based on tpot's original patch; bug 328 (This used to be commit b1d5173b16c40d55cfb6265f1d1947ec78952b6f)
| * Typo fix.Rafal Szczesniak2003-11-201-2/+2
| | | | | | | | (This used to be commit d1394f02cb0e369701217ce6610f4efe54438c3a)
| * Added useful information to debug lines.Rafal Szczesniak2003-11-191-4/+4
| | | | | | | | | | | | | | | | Patch by metze. rafal (This used to be commit 91e1be66b1a3aa002f68d8f1c2fc148c1374d365)
| * Look at error before using it in debug statement.Jeremy Allison2003-11-191-3/+2
| | | | | | | | | | Jeremy. (This used to be commit 42114b75f2c082522f7806a1af11409609785b06)
| * Group quotas patch from "Heinreichsberger, Helmut" ↵Jeremy Allison2003-11-191-19/+32
| | | | | | | | | | | | | | <Helmut.Heinreichsberger@wincor-nixdorf.com> Jeremy. (This used to be commit 0984b35fbfd0c9579d2a8a6fa748ade604ad6a82)
| * Correct fix for '$' termination test.Jeremy Allison2003-11-191-2/+1
| | | | | | | | | | Jeremy. (This used to be commit b93e44e01edb432e11b9ad6aeb4d4eea0f7fa433)
| * Fix to correct checking of '$' name termination.Rafal Szczesniak2003-11-181-1/+1
| | | | | | | | | | | | | | | | Patch by metze. rafal (This used to be commit 7191186fc64eb0b8092a2f6f1e89b6b6a6df7627)
| * Useful debug message. Patch by metze.Rafal Szczesniak2003-11-181-3/+5
| | | | | | | | | | rafal (This used to be commit 5f02adbd261b7fde22b72703135dec44b7652ef1)
| * Remove unneeded second open for filename ending in '.' now we know it'sJeremy Allison2003-11-182-14/+4
| | | | | | | | | | | | a mangled name. Added const. Fix inspired by Andrew Bartlett ideas. Jeremy. (This used to be commit 8de1d4ebf72928c958d4c5be887f2babe13d3c87)
| * Ensure we mangle names ending in '.' in hash2 mangling method.Jeremy Allison2003-11-181-1/+1
| | | | | | | | | | Jeremy. (This used to be commit 9b50fd8cfc36c817177103b07e7b8a3952e641c7)
generated by cgit (git 2.34.1) at 2025-09-26 20:04:33 +0000