summaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* sync with 1.9.18 branch (clean up comments)Herb Lewis1998-05-141-19/+21
|
* some pretty horrible formatting in standard_sub_basic(): makes the functionLuke Leighton1998-05-141-48/+56
| | | | unreadable and unmaintainable
* robert frank - some Next3 compilation errors detected.Luke Leighton1998-05-141-1/+1
|
* Fixed dce/rpc to use global_machine_sid (auto generated in server.c ifJeremy Allison1998-05-144-24/+13
| | | | | not present in smb.conf). Jeremy.
* namequery.c: Fixed SGI IRIX 5.x compiler problem.Jeremy Allison1998-05-144-7/+199
| | | | | | server.c: Added MACHINE.SID file generation - use lp_domain_sid() be default. smbpass.c: Exposed do_file_lock() as I now use it in server.c Jeremy.
* chgpasswd.c: Added comments to #ifdefsJeremy Allison1998-05-1417-427/+491
| | | | | | | | | | | | | | | | | | | | | ipc.c: Caused samba password changing not to be done if UNIX password changing requested and not successful. util.c: Added string_to_sid() and sid_to_string() functions. lib/rpc/client/cli_samr.c: lib/rpc/include/rpc_misc.h: lib/rpc/parse/parse_lsa.c: lib/rpc/parse/parse_misc.c: lib/rpc/parse/parse_net.c: lib/rpc/parse/parse_samr.c: lib/rpc/server/srv_lsa.c: lib/rpc/server/srv_lsa_hnd.c: lib/rpc/server/srv_netlog.c: lib/rpc/server/srv_samr.c: lib/rpc/server/srv_util.c: Changes so that instead of passing SIDs around as char *, they are converted to DOM_SID at the earliest opportunity, and passed around as that. Also added dynamic memory allocation of group sids. Preparing to auto-generate machine sid. Jeremy.
* Fixed up HPUX entry.Jeremy Allison1998-05-131-2/+4
| | | | Jeremy.
* initialise some variables (stops warning)Andrew Tridgell1998-05-131-2/+2
|
* test for overflow in nmb name parsing codeAndrew Tridgell1998-05-131-1/+1
|
* initialise a variableAndrew Tridgell1998-05-131-1/+1
|
* we don't need a typedef for stringAndrew Tridgell1998-05-131-2/+0
|
* includes.h: SunOS doesn't have strcasecmp, solaris versions prior to 2.6 don'tJeremy Allison1998-05-127-75/+15
| | | | | | | | | | have vsnprintf. locking_slow.c: slight tidy. make_smbcodepage.c: Use safe_strcpy instead of pstrcpy. nmbd_winsserver.c: Use pstrcpy instead of fstrcpy. smbmount.c: Fixed reported bug. util.c: Removed old fstrcpy/fstrcat functions. Jeremy.
* - removed ldap_get_trust()Luke Leighton1998-05-121-101/+74
| | | | - #ifdef around putting 16 byte hashes instead of plaintext password.
* function comments wrongLuke Leighton1998-05-121-2/+2
|
* removed lp_domain_workstation() parameterLuke Leighton1998-05-123-10/+1
|
* retired this file: it's not actually needed now that passdb.c providesLuke Leighton1998-05-121-152/+0
| | | | the interface point.
* a new slprintf() function. This one is totally portable but a bit of aAndrew Tridgell1998-05-121-27/+41
| | | | | | | | | | | | | | | | | | kludge. It is a safe kludge with our current code but I would like to revisit it at some point in the future. The problem with the one I committed yesterday is it used non-portable functions. (it also had a bug in it, but that's another matter) This one works by just using vsprintf() into a 8k buffer and a memcpy from there. No memory protection tricks or other non-portable stuff. This is safe because all calls to slprintf() in samba use strings which have been through a pstrcpy and thus are less than 1024 bytes. No call uses more than 2 of these strings. See what I mean by kludge? Note that the 8k is way overkill but I like overkill :) Someday (after autoconf) we will replace this with something better, but meanwhile this is simple, secure and portable.
* This is a security audit change of the main source.Jeremy Allison1998-05-1268-787/+887
| | | | | | | | | | | | | | | | | | It removed all ocurrences of the following functions : sprintf strcpy strcat The replacements are slprintf, safe_strcpy and safe_strcat. It should not be possible to use code in Samba that uses sprintf, strcpy or strcat, only the safe_equivalents. Once Andrew has fixed the slprintf implementation then this code will be moved back to the 1.9.18 code stream. Jeremy.
* password back-end database supportLuke Leighton1998-05-114-118/+168
| | | | | | | | | | | | | | | | | | | | | ldap.c : - added getldap21pwent() function passdb.c : - getsam21pwent() no longer a stub: calls ldap21 or smb21 smbpass.c : - added getsmb21pwent() function (he he :-) lib/rpc/server/srv_samr.c : - removed "specific" calls to ldap functions; replaced with call to get_sampwd_entries instead (which is unfinished). - rewrote get_user_info_21 function to call getsam21pwrid.
* reply.c: Added code to not overwrite sesssetup_user when in share level securityJeremy Allison1998-05-112-2/+9
| | | | | | | and null session setup done. smbpasswd.c: Fix from Gerald Carter <cartegw@Eng.Auburn.EDU> to fix incorrect use of pointer. Jeremy.
* add lp_domain_workstations() parameter. this is a list of workstation namesLuke Leighton1998-05-112-0/+6
| | | | | | from which an NT user can log in from. empty (default) indicates no restrictions. exactly how this is enforced is unknown. from past experience it's likely that the enforcement is left to the client to carry out...
* ldap back-end database developmentLuke Leighton1998-05-1110-604/+725
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Makefile: created PASSBD_OBJ group includes.h: added #ifdef USE_LDAP to #include <ldap> headers ldap.c: - renamed "_machine" to "_trust" everywhere. - added sam_passwd support routines - removed get_ldappwd_entry function: replaced with get_sampwd_entry - removed getldappwnam/uid: replaced with getsampwnam/uid - other messing about bits which are probably going to annoy the hell out of jean-francois (sorry!) mkproto.awk: - added stuff to wrap ldap.c protos with #ifdef USE_LDAP - added uid_t and gid_t return results to the prototype generation passdb.c: - created getsam21pwent, add_sam21pwd_entry, mod_sam21pwd_entry. - modified getsampwnam/uid and created getsam21pwnam/rid functions to replace the local get_smbpwd_entry() and get_ldappwd_entry() functions, which jeremy didn't like anyway because they were dual-purpose. - added utility routines which are or may be useful to all the password database routines. password.c: - renamed "machine_" to "trust_" everywhere. smbpass.c: - removed get_smbpwd_entry function: replaced it with get_sampwd_entry functions in passdb.c - moved code that decoded acct_ctrl into passdb.c - moved encode_acct_ctrl into passdb.c - removed getsmbpwnam/uid: replaced with getsampwnam/uid - renamed "machine_" to "trust_" everywhere. smbpasswd.c: - renamed "machine_" to "trust_" everywhere. util.c: - moved gethexpwd function into passdb.c lib/rpc/server/srv_util.c: - moved user_rid_to_uid, group_rid_to_rid etc etc into passdb.c
* don't use system functions as arguments to qsort() as otherwise youAndrew Tridgell1998-05-111-1/+1
| | | | | get stuck on systems with broken headers (like SunOS4). In this case use StrCaseCmp instead of strcasecmp
* include includes.h in all the ubiqx files. I know Chris won't likeAndrew Tridgell1998-05-115-4/+6
| | | | | | | this but it really is necessary (sorry Chris!) ubiqx code didn't compile on SunOS4 otherwise as stdlib didn't define NULL.
* changed to use slprintf() instead of sprintf() just aboutAndrew Tridgell1998-05-1133-94/+207
| | | | | | | everywhere. I've implemented slprintf() as a bounds checked sprintf() using mprotect() and a non-writeable page. This should prevent any sprintf based security holes.
* changed to use slprintf() instead of sprintf() just aboutAndrew Tridgell1998-05-111-1/+1
| | | | | | | everywhere. I've implemented slprintf() as a bounds checked sprintf() using mprotect() and a non-writeable page. This should prevent any sprintf based security holes.
* Updated OSF1_ENH_SEC mode password handling.John Terpstra1998-05-101-1/+8
| | | | | | This now tries Enhanced passwords first and if this fails trys Basic mode (ie: Unix /etc/passwd) authentication. This only happens when OSF1_ENH_SEC is defined at compilation.
* added sam_passwd structure: don't want smb_passwd to be "polluted".Luke Leighton1998-05-081-6/+50
|
* move things around to get rid of make clean warning messagesHerb Lewis1998-05-081-4/+12
|
* removed proto.h from cvsignoreLuke Leighton1998-05-081-1/+0
|
* clitar.c: #ifdef'ed out all the bits that were giving 'defined but not used'Jeremy Allison1998-05-084-48/+35
| | | | | | | | | messages. nttrans.c: More updates. smb.h: Removed stuff that didn't belong in the smb_passwd struct. Persuaded Luke to use a new structure. web/swat.c: Fixed gcc complaints about shadowing global 'string'. Jeremy.
* Ho hum, someone deleted proto.h from cvs... re-adding.Jeremy Allison1998-05-081-0/+2070
| | | | Jeremy.
* proto.h was being a pain. use "make proto" instead. check release andLuke Leighton1998-05-081-2070/+0
| | | | | release-alpha scripts operate correctly when it comes to generating a release or alpha release.
* added proto.h to .cvsignoreLuke Leighton1998-05-081-0/+1
|
* added smb_grpid to smb_passwd structLuke Leighton1998-05-081-0/+1
|
* Se-submitting clitar.c/Richard Sharpe1998-05-082-58/+436
| | | | | | | | I now only have one warning in my code which is the result of some code I have started working on but am not yet using in the code, along with a warning that is caused by one of the include files (a nested comment). I used -Wall -Wshadow -Wstrict-prototypes
* renamed last_change_time to pass_must_change_time. removed "if (bool==True)"Luke Leighton1998-05-082-21/+20
| | | | | | and "if (bool==False)" code from ldap.c - a boolean test may not necessarily return exactly True or exactly False: True may be defined to be -1: you never know...
* added extra fields to struct smb_passwdLuke Leighton1998-05-081-7/+37
| | | | | | | | | the smbpw functions are expected to fill in the blanks by reading the appropriate smb.conf parameters. the ldappw functions are expected to fill in the fields from the ldap database. a separate utility can be written to fill in the ldap database fields from the smb.conf parameters, at a later date.
* The globals section now shows non-default variables (like theHerb Lewis1998-05-082-23/+125
| | | | | | | | | | | view config section does) in the basic view. There is also a reset button to undo all changes you have made (that haven't been committed). In addition each field now has a "Set Default" button. Multi-choice fields are now select fields instead of a set of radio buttons. On the status screen I added a "restart" option for stopping then starting smbd and nmbd.
* added FLAG_BASIC to some browse options for swat.Herb Lewis1998-05-081-4/+4
|
* smb.h: Supporting defines for NT trans calls.Jeremy Allison1998-05-082-4/+33
| | | | | trans2.c: Paranoia bugfixes added when studying nttrans.c. Jeremy.
* Initial cut at the code that will do NT SMB calls. Not linked in, notJeremy Allison1998-05-081-0/+225
| | | | | compiled yet, just checked in for safe keeping :-). Jeremy.
* added first pass at start/get/end-ldappwent functions. unfortunately, lotsLuke Leighton1998-05-071-10/+65
| | | | | of information will be lost as these functions currently return struct smb_passwd not SAM_USER_INFO_21 or any other type of structure...
* remove unused ldap functions: add stub start/get/endldappwent routines.Luke Leighton1998-05-072-146/+97
|
* moving gethexpwd into util.c, because it's used in both smbpass.c and ldap.cLuke Leighton1998-05-075-67/+38
|
* This should (hopefully :-) be the final fix for the %U %G substitutionJeremy Allison1998-05-079-52/+57
| | | | | | | problem.... smbpass.c: Removed Luke's dire warning - as some of the functions in here *need* to be called externally :-). Jeremy.
* created "passdb.c" which is an interface point to (at present) eitherLuke Leighton1998-05-0712-140/+334
| | | | | | | | | smbpasswd or ldap passwd, at compile-time (-DUSE_LDAP). _none_ of the functions in ldap.c or smbpass.c should be called directly: only those in passdb.c should be used. -DUSE_LDAP is unlikely to compile at the moment.
* Fixed changed calls to machine password locking code.Jeremy Allison1998-05-071-5/+4
| | | | Jeremy.
* Andrew redefines the free() function to do some memory management testing.Christopher R. Hertel1998-05-061-1/+19
| | | | | | | He also suggested that some systems may implement free() as a macro (but I think he was looking for an excuse ;). Anyway, I've added a function to mangle.c that calls free(). Chris -)-----
* smbpass.c: Fixed machine_passwd_lock() problems.Jeremy Allison1998-05-064-37/+33
| | | | | | password.c: Fixed machine_passwd_lock() problems. lib/rpc/server/srv_ldap_helpers.c: Oops - broke proto.h with dummy function. Fixed now. Jeremy.
generated by cgit (git 2.34.1) at 2025-09-29 09:55:14 +0000