summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* more specific DNS instructionsAndrew Tridgell2001-12-011-6/+9
|
* KDC DNS domain must be the kerberos realm. Or so it seems that wayJim McDonough2001-12-011-0/+3
|
* we need to look for liblber before libldapAndrew Tridgell2001-11-302-665/+678
|
* XFS quota patch for Linux.Jeremy Allison2001-11-304-657/+736
| | | | Jeremy.
* merge from APPLIANCE_HEADGerald Carter2001-11-301-16/+20
|
* Check error returns.Jeremy Allison2001-11-301-4/+12
| | | | Jeremy.
* Gerald's fix.Jeremy Allison2001-11-301-6/+2
| | | | Jeremy
* After conversations with Andrew, improved the robustness of theJeremy Allison2001-11-301-26/+53
| | | | | | | | | | | | | | | | | | | | | | | | | | sharemode db in the following way. Originally, on startup and shutdown, smbd would scan the share mode db to ensure it was correct. This lead to scalability issues as scans lock the db for quite a long time. Andrew had the brainstorm that we only care about the record we're about to read. This new code (small change really, but quite significant) causes get_share_modes() to do a process_exists() call against each pid in each record, and to delete any that don't and re-write the entry if any dead records were detected. This allowed me to remove the startup/shutdown scans of the db (they can be added into smbstatus if anyone really cares to have them back). This will please the vfs author who was worried about the time taken on open() calls, and will lead to much greater robustness and scalability in the share mode db. We need much testing of this, and also netbench tests to ensure the extra process_exists() calls don't hurt performance (they shouldn't it's a very simple system call). Jeremy.
* preparing for release of 3.0-alpha0Samba Release Account2001-11-301-412/+76
|
* Renamed sid field in SEC_ACE to trustee to be more in line with MS'sTim Potter2001-11-308-46/+58
| | | | definitions.
* Missing return in free_privilege()Tim Potter2001-11-301-0/+2
|
* Ensured the %G substitution exactly matches what the man page states.Jeremy Allison2001-11-301-1/+2
| | | | Jeremy.
* Comment deconfusification.Tim Potter2001-11-301-1/+1
|
* Added close-share message.Jeremy Allison2001-11-291-1/+10
| | | | Jeremy.
* Changed again how the privilege list is handled in the group mapping code.Jean-François Micouleau2001-11-299-155/+850
| | | | | | | | | | | | | | | | This time it's a PRIVILEGE_SET struct instead of a simple uint32 array. It makes much more sense. Also added a uint32 systemaccount to the GROUP_MAP struct as some privilege showing in USRMGR.EXE are not real privs but a bitmask flag. I guess it's an heritage from NT 3.0 ! I could setup an NT 3.1 box to verify, but I'm too lazy (yes I still have my CDs). Added 3 more LSA calls: SetSystemAccount, AddPrivileges and RemovePrivileges, we can manage all this privilege from UserManager. Time to change the NT_USER_TOKEN struct and add checks in all the rpc functions. Fun, fun, fun. J.F.
* ads->realm must not be NULLAndrew Tridgell2001-11-291-0/+3
| | | | perhaps we should just fail ads_init() in this case?
* define LDAP_PORT when not availableAndrew Tridgell2001-11-291-0/+3
|
* fixed typoAndrew Tridgell2001-11-291-1/+1
|
* Fix up the ./configure tests for kerberos. This ensures a more consistantAndrew Bartlett2001-11-292-667/+657
| | | | | behaviour no matter if kerberos was found automatically, found in the /usr/kerberos path or was specified.
* Make better use of the ads_init() function to get the kerberos relam etc.Andrew Bartlett2001-11-298-127/+221
| | | | | | | | | This allows us to use automagically obtained values in future, and the value from krb5.conf now. Also fix mem leaks etc. Andrew Bartlett
* I think the lookup_pdc_name() should be called lookup_dc_name() and theTim Potter2001-11-294-27/+37
| | | | | | | | name_status_find() call here should look up a #1c name instead of #1d. This fixes some bugs currently with BDC authentication in winbindd and in smbd as you can't query the #1d name with the ip address of a BDC. Who is Uncle Tom Cobbley anyway?
* fixed toupper_w() and friends on big-endianAndrew Tridgell2001-11-291-6/+6
| | | | this fixes the core dumps on sparc
* 2nd attempt at fixing lame char tables on big endian machinesAndrew Tridgell2001-11-291-6/+6
|
* fixed lame char tables on big endian machinesAndrew Tridgell2001-11-291-5/+5
|
* fixed some krb5 ifdefsAndrew Tridgell2001-11-287-10/+10
|
* merge from APPLIANCE_HEADGerald Carter2001-11-285-21/+53
|
* space -> tab.Jeremy Allison2001-11-281-24/+20
| | | | Jeremy.
* add .po32 files to ignore listHerb Lewis2001-11-283-3/+6
|
* Spelling pedents strike again :-).Jeremy Allison2001-11-281-1/+1
| | | | Jeremy.
* minor updateAndrew Tridgell2001-11-281-1/+1
|
* Allow kerberos to work on RedHat and other non /usr systems againAndrew Bartlett2001-11-281-0/+2
| | | | the configure test uses the CPPFLAGS when checking that krb5.h exists
* fixed a core dump in server level securityAndrew Tridgell2001-11-281-2/+4
|
* Some random updates for the ADS-HOWTOAndrew Bartlett2001-11-281-0/+33
|
* Ensure the CAN_WRITE is checked and prevents O_CREAT and O_TRUNC fromJeremy Allison2001-11-282-2/+11
| | | | | | being set. Also prevent an open on a file on a readonly share from setting delete on close. Jeremy.
* Re-added "Share modes" meaning don't allow deny mode conflict. Due toJeremy Allison2001-11-281-2/+10
| | | | | user demand (don't talk to me about removing parameters.... :-). Jeremy.
* turn off the insure xterm hack for nowAndrew Tridgell2001-11-281-1/+1
|
* Added a 'keys' command to tdbtool which prints out all keys in the tdb.Tim Potter2001-11-281-0/+10
|
* fix a bunch of places where we can double-free a cli structureAndrew Tridgell2001-11-2810-31/+18
|
* Cross merge to make 2.2 and HEAD closer.Jeremy Allison2001-11-281-9/+6
| | | | Jeremy.
* added samr_set_domain_info and samr_unknown_2E.Jean-François Micouleau2001-11-284-42/+448
| | | | | | | | | | | | | | We now get the full account policy window in usermanager, and the framework to store all those values. I plan to add a TDB file to store them. oh, and found that the last value in a sam_unknown_info_12_inf struct is an uint16 and not a uint32. andrewb: you hardcoded the MAX_PASSWORD_AGE to 21 days. We can now turn it to a value setable in usermanager. J.F.
* Some reformatting.Tim Potter2001-11-271-223/+229
| | | | M-x tabify
* always send an OID list until we handle raw (unwrapped) NTLMSSPAndrew Tridgell2001-11-271-6/+15
| | | | packets in session setup
* Fix for the logic bug wrt. existant oplocks. See long messageJeremy Allison2001-11-271-5/+2
| | | | | in samba-technical for explaination. Jeremy.
* up the log level for server level security to try to track down theAndrew Tridgell2001-11-271-2/+1
| | | | segvs in the build farm
* don't use /dev/null for a smbpasswd fileAndrew Tridgell2001-11-271-1/+3
|
* Added negative caching to group lookups.Jeremy Allison2001-11-272-48/+87
| | | | Jeremy.
* added test for krb5.hAndrew Tridgell2001-11-274-88/+147
| | | | | this was causing the kerberos stuff to fail compilation on several platforms
* Added negative caching to the user pw lookup by name and by uid.Jeremy Allison2001-11-272-136/+159
| | | | Jeremy.
* Added PRINTER_ALREADY_EXISTS error check from Gerry.Jeremy Allison2001-11-272-3/+18
| | | | Jeremy
* allow printing of NULL pointers with internal snprintfAndrew Tridgell2001-11-271-0/+1
|
generated by cgit (git 2.34.1) at 2025-09-27 03:07:32 +0000