summaryrefslogtreecommitdiffstats
path: root/source3/utils
Commit message (Collapse)AuthorAgeFilesLines
...
* s3-net: also dump security descriptors from ntprinters.tdb in "net printing ↵Günther Deschner2010-05-181-0/+39
| | | | | | dump". Guenther
* s3-net: Added a rather trivial "net printing dump" command.Günther Deschner2010-05-183-0/+214
| | | | Guenther
* s3-secdesc: use SD_REVISION from security.idl.Günther Deschner2010-05-181-1/+1
| | | | Guenther
* s3-secdesc: remove "typedef struct security_descriptor SEC_DESC".Günther Deschner2010-05-186-22/+22
| | | | Guenther
* s3-secdesc: remove "typedef struct security_acl SEC_ACL".Günther Deschner2010-05-183-12/+12
| | | | Guenther
* s3-secdesc: remove "typedef struct security_ace SEC_ACE".Günther Deschner2010-05-182-26/+28
| | | | Guenther
* s3: Remove use of iconv_convenience.Jelmer Vernooij2010-05-184-12/+12
|
* smbconf: only include smbconf headers where needed.Günther Deschner2010-05-181-0/+3
| | | | Guenther
* s3-registry: only include registry headers when really needed.Günther Deschner2010-05-186-2/+6
| | | | Guenther
* s3-crypto: only include crypto headers when crypto is done.Günther Deschner2010-05-181-0/+1
| | | | Guenther
* s3-rpc_misc: clean out include/rpc_misc.h.Günther Deschner2010-05-182-7/+7
| | | | | | | Well known rids don't really belong into an rpc header, just use the ones defined in security.idl. Guenther
* s3-libgpo: move group policy protos to where they belong.Günther Deschner2010-05-171-0/+2
| | | | Guenther
* added support for a -I flagMatthew McGillis2010-05-171-2/+148
|
* Consolidate all set SEC_DESC into single procedure set_secdescMatthew McGillis2010-05-171-25/+32
|
* s3:kerberos Return PAC_LOGON_INFO rather than the full PAC_DATAAndrew Bartlett2010-05-112-6/+4
| | | | | | | | | | | | | | | All the callers just want the PAC_LOGON_INFO, so search for that in ads_verify_ticket(), and don't bother the callers with the rest of the PAC. This change makes sense on it's own (removing boilerplate wrappers that just confuse the code), but it also makes it much easier to implement a matching ads_verify_ticket() function in Samba4 for the s3compat proposal. Andrew Bartlett Signed-off-by: Günther Deschner <gd@samba.org>
* s3-net: Fix Bug #7417. 'net rpc user password' can set the wrong password.Günther Deschner2010-05-101-1/+4
| | | | Guenther
* s3-eventlog: move all eventlog headers to lib/eventlog and only include ↵Günther Deschner2010-05-062-0/+2
| | | | | | where required. Guenther
* s3: only include gen_ndr headers where needed.Günther Deschner2010-05-068-0/+9
| | | | | | | | | | | | | | | | | This shrinks include/includes.h.gch by the size of 7 MB and reduces build time as follows: ccache build w/o patch real 4m21.529s ccache build with patch real 3m6.402s pch build w/o patch real 4m26.318s pch build with patch real 3m6.932s Guenther
* s3: Fix bug 5972 -- remove -L testparm parameterVolker Lendecke2010-05-051-6/+0
| | | | | Thanks to TAKAHASHI Motonobu <monyo@samba.gr.jp> to point out that this does not work and to agree it's not worth fixing :-)
* s3-net: fix crash in rap_share_add().Günther Deschner2010-05-051-1/+1
| | | | Guenther
* Consolidate all get SEC_DESC into single procedure get_secdescMatthew McGillis2010-05-031-44/+37
|
* always pass filename as const charMatthew McGillis2010-05-031-2/+2
|
* Fix more S3 build breakage. Matthias, please ensure S3 builds whenJeremy Allison2010-04-271-2/+2
| | | | | | changing common code. Jeremy.
* s3: use shared registry functions.Günther Deschner2010-04-273-3/+3
| | | | Guenther
* s3: fix some build warnings.Günther Deschner2010-04-261-3/+3
| | | | Guenther
* s3: use generated rap header.Günther Deschner2010-04-261-3/+4
| | | | Guenther
* s3: Implement "net rpc user setprimarygroup"Volker Lendecke2010-04-261-0/+59
|
* Fix i18n of net conf import error message.Jim McDonough2010-04-201-3/+4
| | | | Thanks gd
* Display an error on net conf import failures.Jim McDonough2010-04-201-0/+3
| | | | | | When something goes wrong, such as a typo in a parameter name, we'll now display the failure instead of just returning with -1 and no message.
* s3: add iconv_convenience handle to pull/push sz helpers.Günther Deschner2010-04-092-8/+8
| | | | Guenther
* s3: Slightly simplify unmap_unix_groupVolker Lendecke2010-03-281-4/+1
|
* Fix bug #7240 - Net usershare is not case sensitive.Jeremy Allison2010-03-261-4/+19
| | | | | | | | Updates usershare files in a backwards compatible way. I don't intend to back port this fix to 3.5.x as it depends on a version upgrade in the share_info.tdb share security database. Jeremy.
* s3 ntlm_auth: Don't malloc data that will be talloc_free()dKai Blin2010-03-261-12/+12
| | | | | This fixes bug #7290 Thanks to Mohan <mohann@silver-peak.com> for the bug report.
* s3:ntlmssp: use client.netbios_name instead of workstationStefan Metzmacher2010-03-241-3/+4
| | | | | | metze Signed-off-by: Günther Deschner <gd@samba.org>
* s3:ntlmssp: rename void *auth_context; into void *callback_private;Stefan Metzmacher2010-03-241-6/+6
| | | | | | metze Signed-off-by: Günther Deschner <gd@samba.org>
* s3:ntlmssp: remove unused get_global_myname() and get_domain() from ↵Stefan Metzmacher2010-03-241-4/+0
| | | | | | | | | | ntlmssp_state Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org>
* s3:ntlmssp: pass names and use_ntlmv2 to ntlmssp_client_start() and store themStefan Metzmacher2010-03-241-1/+5
| | | | | | | | Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org>
* s3:ntlmssp: pass names to ntlmssp_server_start() and store them in ntlmssp_stateStefan Metzmacher2010-03-241-1/+27
| | | | | | | | Inspired by the NTLMSSP merge work by Andrew Bartlett. metze Signed-off-by: Günther Deschner <gd@samba.org>
* s3-testparm: Throw warning when 'workgroup' and 'netbios name' are identical.Karolin Seeger2010-03-241-0/+6
| | | | | | Address bug #7285 (NetBIOS Namespace Clash Handling). Karolin
* s3: fix buildwarning in smbta-util.Günther Deschner2010-03-161-3/+5
| | | | Guenther
* Fix developer build, remove mallocAndreas Schneider2010-03-161-11/+7
|
* Don't exit(0) on errorJim McDonough2010-03-161-3/+3
|
* Add smbta-util to manage the encryption key.Holger Hetterich2010-03-161-0/+211
| | | | | | | This program allows the administrator to enable or disable AES encryption when using vfs_smb_traffic_analyzer. It also generates new keys, stores them to a file, so that the file can be reused on another client or server.
* s3:smbcacls: also honour the "--sddl" flag when setting ACLs.Michael Adam2010-03-161-2/+6
| | | | Michael
* s3: Add "net registry increment"Volker Lendecke2010-03-121-0/+105
| | | | A convenience function to increment a DWORD value under a (cluster-wide) lock
* s3: Add "g_lock_do" as a convenience wrapper functionVolker Lendecke2010-03-121-27/+22
|
* s3: Actually use mem_ctx in net_g_lock_init()Volker Lendecke2010-03-121-3/+3
|
* s3: Fix some "net registry" usage messagesVolker Lendecke2010-03-121-3/+3
|
* s3: Fix a long-standing problem with recycled PIDsVolker Lendecke2010-03-103-0/+164
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When a samba server process dies hard, it has no chance to clean up its entries in locking.tdb, brlock.tdb, connections.tdb and sessionid.tdb. For locking.tdb and brlock.tdb Samba is robust by checking every time we read an entry from the database if the corresponding process still exists. If it does not exist anymore, the entry is deleted. This is not 100% failsafe though: On systems with a limited PID space there is a non-zero chance that between the smbd's death and the fresh access, the PID is recycled by another long-running process. This renders all files that had been locked by the killed smbd potentially unusable until the new process also dies. This patch is supposed to fix the problem the following way: Every process ID in every database is augmented by a random 64-bit number that is stored in a serverid.tdb. Whenever we need to check if a process still exists we know its PID and the 64-bit number. We look up the PID in serverid.tdb and compare the 64-bit number. If it's the same, the process still is a valid smbd holding the lock. If it is different, a new smbd has taken over. I believe this is safe against an smbd that has died hard and the PID has been taken over by a non-samba process. This process would not have registered itself with a fresh 64-bit number in serverid.tdb, so the old one still exists in serverid.tdb. We protect against this case by the parent smbd taking care of deregistering PIDs from serverid.tdb and the fact that serverid.tdb is CLEAR_IF_FIRST. CLEAR_IF_FIRST does not work in a cluster, so the automatic cleanup does not work when all smbds are restarted. For this, "net serverid wipe" has to be run before smbd starts up. As a convenience, "net serverid wipedbs" also cleans up sessionid.tdb and connections.tdb. While there, this also cleans up overloading connections.tdb with all the process entries just for messaging_send_all(). Volker
* s3: Fix the build of net_afs.c with --fake-kaserver=yes, bug 7216Volker Lendecke2010-03-061-1/+1
| | | | Thanks to Geza Gemes <geza@kzsdabas.hu> for filing this bug
generated by cgit (git 2.34.1) at 2025-10-02 13:33:02 +0000