samba.git - Unnamed repository; edit this file 'description' to name the repository.

	Commit message (Collapse)	Author	Age	Files	Lines
*	This merges in my 'always use ADS' patch. Tested on a mix of NT and ADS	Andrew Bartlett	2004-01-08	1	-5/+12
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	domains, this patch ensures that we always use the ADS backend when security=ADS, and the remote server is capable. The routines used for this behaviour have been upgraded to modern Samba codeing standards. This is a change in behaviour for mixed mode domains, and if the trusted domain cannot be reached with our current krb5.conf file, we will show that domain as disconnected. This is in line with existing behaviour for native mode domains, and for our primary domain. As a consequence of testing this patch, I found that our kerberos error handling was well below par - we would often throw away useful error values. These changes move more routines to ADS_STATUS to return kerberos errors. Also found when valgrinding the setup, fix a few memory leaks. While sniffing the resultant connections, I noticed we would query our list of trusted domains twice - so I have reworked some of the code to avoid that. Andrew Bartlett (This used to be commit 7c34de8096b86d2869e7177420fe129bd0c7541d)
*	s/OM_uint32//uint32/g	Gerald Carter	2003-08-15	1	-2/+2
\| \| \| \|	(This used to be commit f8a092e7b42cd157cf86240984be40badd0afd87)
*	get rid of more compiler warnings	Herb Lewis	2003-08-15	1	-8/+8
\| \| \| \|	(This used to be commit 398bd14fc6e2f8ab2f34211270e179b8928a6669)
*	W00t! Client smb signing is now working correctly with krb5 and w2k server.	Jeremy Allison	2003-07-25	1	-1/+2
\| \| \| \| \| \| \| \| \| \|	Server code should also work (I'll check shortly). May be the odd memory leak. Problem was we (a) weren't setting signing on in the client krb5 sessionsetup code (b) we need to ask for a subkey... (c). The client and server need to ask for local and remote subkeys respectively. Thanks to Paul Nelson @ Thursby for some sage advice on this :-). Jeremy. (This used to be commit 3f9e3b60709df5ab755045a093e642510d4cde00)
*	added an auth flag that indicates if we should be allowed to fallback	Andrew Tridgell	2003-06-10	1	-1/+4
\| \| \| \| \| \| \|	to NTLMSSP for SASL if krb5 fails. This is important as otherwise the admin may think that a join has succeeeded when kerberos is actually broken. (This used to be commit 23a6ea385c4aea208adf36f039244bee14f56a33)
*	Revert patch - we need to try the NTLMSSP code below...	Andrew Bartlett	2003-04-24	1	-9/+4
\| \| \| \| \|	Andrew Bartlett (This used to be commit 317158972ec944742ba47b213999def9abbf7452)
*	Use the kerberos error from ads_kinit_password() in the return value from	Andrew Bartlett	2003-04-24	1	-4/+9
\| \| \| \| \| \| \|	our SASL code - help in printing a useful error message. Andrew Bartlett (This used to be commit 984321bfab79a1ff20b504e115e94bd6270f0196)
*	Merge from HEAD client-side authentication changes:	Andrew Bartlett	2003-02-24	1	-1/+6
\| \| \| \| \| \| \| \| \| \| \|	- new kerberos code, allowing the account to change it's own password without special SD settings required - NTLMSSP client code, now seperated from cliconnect.c - NTLMv2 client code - SMB signing fixes Andrew Bartlett (This used to be commit 837680ca517982f2e5944730581a83012d4181ae)
*	Removed global_myworkgroup, global_myname, global_myscope. Added liberal	Jeremy Allison	2002-11-12	1	-2/+1
\| \| \| \| \| \| \|	dashes of const. This is a rather large check-in, some things may break. It does compile though :-). Jeremy. (This used to be commit f755711df8f74f9b8e8c1a2b0d07d02a931eeb89)
*	After the lord mayors parade......	Jeremy Allison	2002-11-10	1	-2/+9
\| \| \| \| \| \|	Janitor for tridge :-). Jeremy. (This used to be commit 76cdfbd5107fff0c38f5fc339f1c27b33fec3a91)
*	syncing up with HEAD. Seems to be a lot of differences creeping in	Gerald Carter	2002-10-01	1	-1/+3
\| \| \| \| \| \|	(i ignored the new SAMBA stuff, but the rest of this looks like it should have been merged already). (This used to be commit 3de09e5cf1f667e410ee8b9516a956860ce7290f)
*	sync'ing up for 3.0alpha20 release	Gerald Carter	2002-09-25	1	-28/+226
\| \| \| \|	(This used to be commit 65e7b5273bb58802bf0c389b77f7fcae0a1f6139)
*	sync 3.0 branch with head	Jelmer Vernooij	2002-08-17	1	-4/+5
\| \| \| \|	(This used to be commit 3928578b52cfc949be5e0ef444fce1558d75f290)
*	updated the 3.0 branch from the head branch - ready for alpha18	Andrew Tridgell	2002-07-15	1	-2/+1
\| \| \| \|	(This used to be commit 03ac082dcb375b6f3ca3d810a6a6367542bc23ce)
*	Removed version number from file header.	Tim Potter	2002-01-30	1	-2/+1
\| \| \| \| \|	Changed "SMB/Netbios" to "SMB/CIFS" in file header. (This used to be commit 6a58c9bd06d0d7502a24bf5ce5a2faf0a146edfa)
*	much better ADS error handling system	Andrew Tridgell	2001-12-19	1	-21/+33
\| \| \| \|	(This used to be commit 05a90a28843e0d69183a49a76617c5f32817df16)
*	- added initial support for trusted domains in winbindd_ads	Andrew Tridgell	2001-12-19	1	-17/+36
\| \| \| \| \| \| \|	- gss error code patch from a.bokovoy@sam-solutions.net - better sid dumping in ads_dump - fixed help in wbinfo (This used to be commit ee1c3e1f044b4ef62169ad74c5cac40eef81bfda)
*	added internal sasl/gssapi code. This means we are no longer dependent on ↵	Andrew Tridgell	2001-12-08	1	-0/+186
	cyrus-sasl which makes the code much less fragile. Also added code to auto-determine the server name or realm (This used to be commit 435fdf276a79c2a517adcd7726933aeef3fa924b)