summaryrefslogtreecommitdiffstats
path: root/source4
Commit message (Collapse)AuthorAgeFilesLines
* s4:password_hash LDB module - don't break the provisionMatthias Dieter Wallnöfer2010-05-101-0/+3
| | | | | This is to don't break the provision process at the moment. We need to find a better solution.
* s4:passwords.py - add a python unittest for additional testing of my ↵Matthias Dieter Wallnöfer2010-05-102-0/+580
| | | | | | | | passwords work This performs checks on direct password changes over LDB/LDAP. Indirect password changes over the RPCs are already tested by some torture suite (SAMR passwords). So no need to do this again here.
* s4:samdb_set_password - adapt it for the user password change handlingMatthias Dieter Wallnöfer2010-05-101-0/+12
| | | | Make use of the new "change old password checked" control.
* s4:samdb_set_password/samdb_set_password_sid - ReworkMatthias Dieter Wallnöfer2010-05-104-383/+159
| | | | | | | | Adapt the two functions for the restructured "password_hash" module. This means that basically all checks are now performed in the mentioned module. An exception consists in the SAMR password change calls since they need very precise NTSTATUS return codes on wrong constraints ("samr_password.c") file
* s4:password_hash - Implement password restrictionsStefan Metzmacher2010-05-101-0/+195
| | | | | | Based on the Patch from Matthias Dieter Wallnöfer <mwallnoefer@yahoo.de>. metze
* s4:password_hash - Rework to handle password changesMatthias Dieter Wallnöfer2010-05-101-138/+450
| | | | | | | | - Implement the password restrictions as specified in "samdb_set_password" (complexity, minimum password length, minimum password age...). - We support only (administrative) password reset operations at the moment - Support password (administrative) reset and change operations (consider MS-ADTS 3.1.1.3.1.5)
* s4:password_hash - Rework unique value checksMatthias Dieter Wallnöfer2010-05-101-49/+71
| | | | | Windows Server performs the constraint checks in a different way than we do. All testing has been done using "passwords.py".
* s4:password_hash - Various (mostly cosmetic) preworkMatthias Dieter Wallnöfer2010-05-101-176/+240
| | | | | | | | - Enhance comments - Get some more attributes from the domain and user object (needed later) - Check for right objectclass on change/set operations (instances of "user" and/or "inetOrgPerson") - otherwise forward the request - (Cosmetic) cleanup in asynchronous results regarding return values
* s4:dsdb: add new controlsMatthias Dieter Wallnöfer2010-05-102-0/+24
| | | | | | | - Add a new control for getting status informations (domain informations, password change status) directly from the module - Add a new control for allowing direct hash changes - Introduce an addtional control "change_old password checked" for the password
* s4:setup: mark DSDB_CONTROL_DN_STORAGE_FORMAT_OID 1.3.6.1.4.1.7165.4.3.4 as ↵Stefan Metzmacher2010-05-101-2/+4
| | | | | | allocated metze
* v2 Latest enhancements in ldapcmp toolZahari Zahariev2010-05-101-140/+262
| | | | | | | | | | | - Added support for replicating hosts versus hosts in different domains - Added switches for the following modes: = two - ignores additional attributes that cannot be the same in two different provisions (domains) = quiet - display nothing, only return code = verbose - display all dn objects through compare fase = default - display only objects with differences - Added more placeholders for nETBIOSDomainName and ServerName
* s4-rodc: Fix provision warnings by creating ntds objectGUID in provisionAnatoliy Atanasov2010-05-103-1/+32
|
* s4:acl ldb module - fix typosMatthias Dieter Wallnöfer2010-05-101-3/+3
|
* s4:dsdb/util.c - Add a new function for retrieving password change attributesMatthias Dieter Wallnöfer2010-05-101-0/+41
| | | | | | | | | This is needed since we have not only reset operations on password fields (attributes marked with REPLACE flag) but also change operations which can be performed by users itself. They have one attribute with the old value marked with the REMOVE flag and one with the new one marked with the ADD flag. This function helps to retrieve them (argument "new" is used for the new password on both reset and change).
* s4:blackbox password tests - more complex passwordsStefan Metzmacher2010-05-102-5/+5
|
* s4:selftest: add --socket-wrapper[-keep]-pcap options to "waf test"Stefan Metzmacher2010-05-101-0/+10
| | | | metze
* s3:provision_basedn_modify.ldif - add "msDS-NcType" attribute and fix commentsMatthias Dieter Wallnöfer2010-05-101-1/+5
|
* s4:samldb LDB module - make "samldb_member_check" synchronous againMatthias Dieter Wallnöfer2010-05-091-64/+33
|
* s4:samldb LDB module - make "samldb_prim_group_users_check" synchronous againMatthias Dieter Wallnöfer2010-05-091-235/+24
|
* s4:samldb LDB module - update the copyright noticeMatthias Dieter Wallnöfer2010-05-091-1/+1
|
* s4:net utility - make outprinted description comments more consistentMatthias Dieter Wallnöfer2010-05-0914-16/+16
| | | | | I've added a [server connection needed] when commands won't work on the local SamDB.
* s4:net utility - remove unixname parameter of samdb.newuserMatthias Dieter Wallnöfer2010-05-091-9/+4
| | | | We don't handle the id mapping stuff manually anymore.
* s4:samdb python bindings - remove idmap creation stuff from this callMatthias Dieter Wallnöfer2010-05-091-22/+1
| | | | The id mapping should now be handled automatically by the s4 daemon.
* s4:net utility - add an optional password attribute to "net user add"Matthias Dieter Wallnöfer2010-05-091-3/+5
| | | | To make it behave similar to "net newuser".
* s4:dsdb Provide an intelegent fallback if not CN=Subnets is foundAndrew Bartlett2010-05-091-3/+7
| | | | | | | We may as well fall back rather than return NULL (which callers don't do useful things with). Andrew Bartlett
* dsdb/password_hash: remove usage of msDs-KeyVersionNumberStefan Metzmacher2010-05-091-37/+1
| | | | metze
* s4:dsdb Use replPropertyMetaData as the basis for msDS-KeyVersionNumberAndrew Bartlett2010-05-091-10/+76
| | | | | | | | | | | | | This means that the existing kvno will no longer be valid, all unix-based domain members may need to be rejoined, and upgradeprovision run to update the local kvno in secrets.ldb/secrets.keytab. This is required to match the algorithm used by Windows DCs, which we may be replicating with. We also need to find a way to generate a reasonable kvno with the OpenLDAP backend. Andrew Bartlett
* s4-smbtorture: add smbcli_rap_netuserpasswordset2().Günther Deschner2010-05-081-0/+55
| | | | Guenther
* s4-devel: a very useful script when dealing with library/linking issuesAndrew Tridgell2010-05-071-0/+15
| | | | | I use this all the time, so I thought I'd put it in the tree for others
* s4-devel: auto-delete any leftover IPsAndrew Tridgell2010-05-061-0/+8
| | | | remove IP from a previous vampire_ad.sh run
* s4-devel: a useful script for giving DRS replication demosAndrew Tridgell2010-05-061-0/+14
|
* build: added a reconfigure targetAndrew Tridgell2010-05-061-0/+4
| | | | | this is meant to be used by the s3 build, to allow jelmers work on smbtorture4 in s3 to avoid re-running configure unless its needed
* s4-ldb: check for ldap_initializeAndrew Tridgell2010-05-051-1/+1
| | | | HPUX 11.0 has a ldap library that doesn't have ldap_initialize
* s4-smbtorture: remove unused variable from smbcli_rap_netprintdestgetinfo().Günther Deschner2010-05-051-1/+0
| | | | Guenther
* s4-ldb: add msg saying which build system is being usedAndrew Tridgell2010-05-051-0/+2
| | | | | (this is a gratuituous commit to trigger the build farm to rebuild ldb on all systems)
* s4-torture: Added the printername to the AddPrinter comment.Andreas Schneider2010-05-041-2/+4
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s4-torture: Fixed spoolss dsspooler printername test.Andreas Schneider2010-05-041-1/+9
| | | | Signed-off-by: Günther Deschner <gd@samba.org>
* s4/waf: ABI update for lib/ldbAnatoliy Atanasov2010-05-042-1/+225
|
* s4/rodc: Support read-only databaseAnatoliy Atanasov2010-05-048-33/+299
| | | | | | Check on modify if we are RODC and return referral. On the ldap backend side now we pass context and ldb_modify_default_callback to propagate the referral error to the client.
* s4/rodc: Fix the callbacks up the stack to handle referrals on modify requestsAnatoliy Atanasov2010-05-047-0/+63
|
* s4:py_nttime2string - removed unused variable "nt2"Matthias Dieter Wallnöfer2010-05-041-2/+3
| | | | And add some linespaces to look better.
* s4-smbtorture: fill in test_rap_print().Günther Deschner2010-05-041-12/+98
| | | | | | | This tests pauses a printer over RAP, prints a file, enumerates the job, deletes the job and resumes the print queue. Guenther
* s4-smbtorture: add test_netprintdestgetinfo() to RAP-PRINTING.Günther Deschner2010-05-041-0/+54
| | | | Guenther
* s4-smbtorture: add smbcli_rap_netprintdestgetinfo().Günther Deschner2010-05-041-0/+81
| | | | Guenther
* s4-smbtorture: add test_netprintdestenum to RAP-PRINTING.Günther Deschner2010-05-041-0/+24
| | | | Guenther
* s4-smbtorture: add smbcli_rap_netprintdestenum.Günther Deschner2010-05-041-0/+135
| | | | Guenther
* s4-script: added a --waf option to minimal_includes.plAndrew Tridgell2010-05-041-0/+7
| | | | This takes advantage of the new waf target syntax
* build: allow use of target names as commands in wafAndrew Tridgell2010-05-041-1/+10
| | | | | | | | | | | This allows for the following types of commands: waf smbd/samba waf smbd/server.c waf ../lib/util/util_file.c waf ../lib/util/util_file_*.o this will be used as part of an updated minimal_includes.pl script
* s4-smbtorture: add extraformat to smbcli_rap_netprintqgetinfo() as well.Günther Deschner2010-05-031-0/+3
| | | | Guenther
* s4-smbtorture: use RAP extraformat for smbcli_rap_netprintqenum().Günther Deschner2010-05-031-0/+3
| | | | | | | Although w2k3 happily ignores it, the spec (and s3) enforce the addition of that. Guenther
generated by cgit (git 2.34.1) at 2025-09-26 20:21:45 +0000