summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* s4-pvfs: change the handling of access checking on createAndrew Tridgell2009-10-184-60/+124
| | | | | | | Previously when a file was created, we produces the resulting access mask based on an ACL check against the parent. This change means we now calculate the inherited ACL much earlier, and produce the resulting access mask from that ACL, or the user supplied ACL.
* smb2-torture: samba4 allows SEC_FLAG_SECURITY to be used with privilegesAndrew Tridgell2009-10-181-0/+2
|
* s4: fixed howto for new binary nameAndrew Tridgell2009-10-181-5/+5
|
* Fix the smbtorture4 build. root_fid is a "union smb_handle". tridgeJeremy Allison2009-10-171-1/+1
| | | | | please check. Jeremy.
* Trying to find out why the posix_unlink test build farm is still failing evenJeremy Allison2009-10-171-1/+1
| | | | | though we're now successfully deleting the symlink. Jeremy.
* Merge branch 'master' of ssh://jra@git.samba.org/data/git/sambaJeremy Allison2009-10-17580-34455/+38776
|\
| * s3:winbind: Move fillup_pw_field() as static to wb_fill_pwent.cVolker Lendecke2009-10-173-47/+47
| |
| * s4-smbserver: removed bogus initialisation of two union armsAndrew Tridgell2009-10-172-2/+0
| | | | | | | | Thanks to Metze for spotting this.
| * s4-pvfs: when uwrap is enabled, ignore chown errorsAndrew Tridgell2009-10-171-0/+3
| | | | | | | | chown is expected to fail under uwrap
| * s4-torture: fixed the default ACL for s4Andrew Tridgell2009-10-171-13/+41
| | | | | | | | | | s4 returns group and world ACEs in the default acl, based on unix permissions
| * s4-torture: minor debugging enhancementsAndrew Tridgell2009-10-171-3/+3
| |
| * s4-schema: We should not need Samba4TopExtra nowAndrew Tridgell2009-10-171-23/+0
| | | | | | | | The last attribute this contained was 'privilege' which is now gone
| * s4-pvfs: don't auto-apply privilege bits in unix acl handling eitherAndrew Tridgell2009-10-171-7/+11
| |
| * s4-acl: SEC_FLAG_MAXIMUM_ALLOWED doesn't auto-apply privilege access masksAndrew Tridgell2009-10-171-6/+2
| |
| * s4-torture: the BASE-CREATEX_ACCESS test is broken for non-administratorsAndrew Tridgell2009-10-171-0/+1
| | | | | | | | See my msg to samba-technical about this test and privilege testing.
| * s4-torture: cleanup after the MAXIMUM_ALLOWED testAndrew Tridgell2009-10-171-0/+1
| |
| * s4-pvfs: use privileges rather than "uid == 0" in unix access checkAndrew Tridgell2009-10-171-6/+12
| | | | | | | | This makes the unix access check much closer to the full ACL check
| * s4-security: honor more of the privilege access bitsAndrew Tridgell2009-10-171-4/+12
| |
| * s4-torture: add a special check for administrators and privilegesAndrew Tridgell2009-10-174-18/+57
| | | | | | | | lsa privileges calls don't expand groups. darn.
| * s4-lsasrv: make sure only admins can alter privilegesAndrew Tridgell2009-10-171-0/+6
| |
| * s4-provision: added the default privileges dbAndrew Tridgell2009-10-172-0/+99
| | | | | | | | privileges are now stored in a separate database
| * s4-provision: removed the old privilege attributesAndrew Tridgell2009-10-172-53/+14
| | | | | | | | Our schema is getting a bit cleaner :-)
| * s4-torture: show the sid we are basing privilege tests onAndrew Tridgell2009-10-171-2/+6
| |
| * s4-privileges: moved privileges to private/privilege.ldbAndrew Tridgell2009-10-174-38/+70
| | | | | | | | | | | | | | We were storing privileges in the sam, which was OK when we were a standalone DC, but is no good when we replicate with a windows DC. This moves the privileges to a separate (local) database
| * added NT_STATUS_NOT_OK_RETURN_AND_FREE()Andrew Tridgell2009-10-171-0/+7
| | | | | | | | Try to make it a bit easier to avoid leaks in common code
| * Add comment explaining about symlink following & posix.Jeremy Allison2009-10-161-1/+6
| | | | | | | | Jeremy.
| * Last 2 VFS_STAT -> LSTAT fixes I can see in the modules code.Jeremy Allison2009-10-162-2/+14
| | | | | | | | Jeremy.
| * Fix one missing STAT -> LSTAT with POSIX pathnames in vfs_xattr_tdb.c. ↵Jeremy Allison2009-10-162-1/+9
| | | | | | | | Caught by the torture tester. I love unit tests :-). Jeremy.
| * s3: build pam_smbpass when possibleBjörn Jacke2009-10-161-20/+34
| |
| * s3-netlogon: fix updating trust accout passwords with downlevel domains.Günther Deschner2009-10-161-2/+2
| | | | | | | | | | | | | | | | When choosing the netlogon password set function, make sure to look at the *negotiated* flags in the cli->dc state, not the ones we start the negotiation with. Guenther
| * nsswitch: increase libwbclient version after adding wbcChangeTrustCredentials().Günther Deschner2009-10-161-1/+2
| | | | | | | | Guenther
| * s3:packaging: Fix building RHEL packages.Karolin Seeger2009-10-162-6/+23
| | | | | | | | | | | | | | Fix bug #6721. Thanks to Eero Volotinen <eero.volotinen@medicel.com> for providing the patch! Karolin
| * s3:srv_samr_nt - another fix for the reject reasonMatthias Dieter Wallnöfer2009-10-161-1/+1
| |
| * s4-smbtorture: extend netr_LogonControl test in RPC-NETLOGON.Günther Deschner2009-10-161-3/+109
| | | | | | | | Guenther
| * s3-netlogon: Fix _netr_ServerPasswordSet2 cleartext blob handling.Günther Deschner2009-10-161-1/+4
| | | | | | | | | | | | | | Following Andrew's advice, let's straight md4 the plaintext blob and avoid trying to get a paintext string out of the input the client sends. Guenther
| * s4-smbtorture: test wbcLookupUserSids in WINBIND-WBCLIENT as well.Günther Deschner2009-10-161-1/+4
| | | | | | | | Guenther
| * s4-smbtorture: test wbcGuidToString and friends as well in WINBIND-WBCLIENT.Günther Deschner2009-10-161-0/+34
| | | | | | | | Guenther
| * s4:provision - fixed invalid creationTime formatEndi S. Dewata2009-10-161-2/+2
| |
| * s4:ldb - fixed dangling pointer in ldb_request_add_control()Endi S. Dewata2009-10-161-2/+7
| |
| * s4:auth - fixed problem reading bind DN from secrets databaseEndi S. Dewata2009-10-162-0/+8
| |
| * s4:provision - replaced linked_attributes with FDS pluginsEndi S. Dewata2009-10-167-3/+100
| | | | | | | | | | | | | | When FDS is used as a backend, Samba should not use the linked_attributes LDB module, but instead use the built-in DS plugins for attribute linking, indexing, and referential integrity.
| * s4:auth_sam: Restructure tail in "authsam_get_server_info_principal" and fix ↵Matthias Dieter Wallnöfer2009-10-161-3/+8
| | | | | | | | a memory leak
| * s4:winsdb - Substitute LDB result numbers with constantsMatthias Dieter Wallnöfer2009-10-161-19/+20
| |
| * s3: Try to fix the build on Solaris & AIX regarding the password change ↵Matthias Dieter Wallnöfer2009-10-161-1/+1
| | | | | | | | reject reason
| * s4/drs(tort): prefixMap unit test initial implementatoinKamen Mazdrashki2009-10-163-1/+84
| |
| * s4/drs: prefixMap module initial definitionKamen Mazdrashki2009-10-163-1/+69
| |
| * s4/drs(tort): fix compile time warningKamen Mazdrashki2009-10-161-0/+1
| |
| * s4/drs(tort): _drs_util_verify_attids() to verify ATTIDs in objects receivedKamen Mazdrashki2009-10-161-0/+50
| |
| * s4/drs(tort): drs_util_DsAttributeId_to_string() functionKamen Mazdrashki2009-10-161-0/+74
| |
| * s4/drs(tort): _drs_ldap_attr_by_oid() implementationKamen Mazdrashki2009-10-161-0/+49
| | | | | | | | | | Utility function to be used to fetch Attribute name and DN giving attribute OID
generated by cgit (git 2.34.1) at 2025-09-27 10:50:23 +0000