summaryrefslogtreecommitdiffstats
path: root/source/auth
Commit message (Collapse)AuthorAgeFilesLines
* Fix show-stopper for 3.2. Smbd depends on group SIDJeremy Allison2008-08-151-0/+34
| | | | | | | | | | | position zero being the primary group sid. Authenicating via winbindd call returned a non-sorted sid list. This fixes is for both a winbindd call and a pac list from an info3 struct. Without this we mess up the primary group associated with created files. Found by Herb. Jeremy. (cherry picked from commit 5cfa78d6e45477cb952d3b12cc914635842d6251)
* Fix gcc warnings at -O3.Jeremy Allison2008-06-271-1/+1
| | | | | Jeremy. (cherry picked from commit 096ff390a24ce971c9a207493dc1b5d9f88518b6)
* Fix for bug #5551, smbd recursing back into winbindd from a winbindd call.Jeremy Allison2008-06-251-13/+66
| | | | | Jeremy. (cherry picked from commit 132a5f4a5740f8a4e3bd634af654c9761c11aa1a)
* Fix bug #5555. Don't return NT_STATUS_PASSWORD_MUST_CHANGE error on machine ↵Jeremy Allison2008-06-251-2/+3
| | | | | | | account logon. Jeremy. (cherry picked from commit 2a3e2c9550acb1c55c0c55e4bfb0faaadad2f6fd)
* Fix security=server, bug 5502Volker Lendecke2008-05-301-2/+4
| | | | | | | | | This has brown paper bag quality and is definitely needed for 3.2.0. Thanks to Orion Poplawski for reporting this! Volker (cherry picked from commit 779a3af0cd3ecbf82e3de16a4e0aec046c19d869)
* BUG 5429: Clarify log msgs re: failure to create BUILTIN\{Administrators,Users}Gerald W. Carter2008-05-071-7/+9
| | | | | | | Raise the debug msgs from Lvl 0 in the create_builtin_XX() functions to prevent unnecessary panic from people reading the logs. (cherry picked from commit 2983b9dc790e0f90ec1e6add131438c6bfd361b4) (cherry picked from commit c28e21c63eca87a266078b65d65b436badc4e349)
* auth: add SeDiskOperatorsPrivilege to get_root_nt_token to fix registry shares.Michael Adam2008-04-211-0/+2
| | | | | Michael (cherry picked from commit 6bb107b17d557c27d035ca518ab61296814a3cea)
* Use sid_array_from_info3 in lookup_usergroups_cached().Günther Deschner2008-04-121-1/+1
| | | | | Guenther (cherry picked from commit 65b4cb20ea3fb806cfd50281e08f32bea70fafce)
* Fix typos.Karolin Seeger2008-04-091-1/+1
| | | | | Karolin (cherry picked from commit 6cee34703503fbf3629057345fe221b866560648)
* Fix NETLOGON credential chain with Windows 2008 all over the place.Günther Deschner2008-04-041-1/+1
| | | | | | | | | | | | In order to avoid receiving NT_STATUS_DOWNGRADE_DETECTED from a w2k8 netr_ServerAuthenticate2 reply, we need to start with the AD netlogon negotiate flags everywhere (not only when running in security=ads). Only for NT4 we need to do a downgrade to the returned negotiate flags. Tested with w2k8, w2ksp4, w2k3r2 and nt4sp6. Guenther (cherry picked from commit 0970369ca0cb9ae465cff40e5c75739824daf1d0)
* Be more verbose why create local token has failed duringGünther Deschner2008-03-311-1/+2
| | | | | | | NTLMSSP and Kerberos session setup Guenther (cherry picked from commit 18b8c2c19e50aee8fc900c7507244cb95014a4fa)
* Fix crash bug in check_sam_security() when make_server_info_sam() did aGünther Deschner2008-03-261-1/+0
| | | | | | | talloc_steal and talloc_free on the sam account already. Guenther (cherry picked from commit dbc7237a8a566f3e86bd6e4b48593b93c5bfb94e)
* Add debug statement in auth_winbind to display wbcAuthenticateUserEx error code.Günther Deschner2008-03-261-0/+5
| | | | | Guenther (cherry picked from commit 0ad00a452f03d8af6e6b6fabd4a05ca26a9910d0)
* Fix bug 5317Volker Lendecke2008-03-181-1/+1
| | | | | Thanks to oster@cs.usask.ca (cherry picked from commit f18a80575921a241c7243c5af5a0101a2956ff17)
* Use a separate tdb for mutexesVolker Lendecke2008-03-182-14/+18
| | | | | | | | Another preparation to convert secrets.c to dbwrap: The dbwrap API does not provide a sane tdb_lock_with_timeout abstraction. In the clustered case the DC mutex is needed per-node anyway, so it is perfectly fine to use a local mutex only. (cherry picked from commit f94a63cd8f94490780ad9331da229c0bcb2ca5d6)
* Use netr_SamInfo3 in remaining places.Günther Deschner2008-02-171-5/+5
| | | | Guenther
* Use netr_SamInfo3 in make_server_info_info3().Günther Deschner2008-02-171-25/+27
| | | | Guenther
* Allow auth_ntlmssp_end() to ignore null pointers passed in.Jeremy Allison2008-02-141-1/+6
| | | | Jeremy.
* auth_winbind: use wbcAuthenticateUserEx()Stefan Metzmacher2008-02-132-69/+277
| | | | | | | | smbd doesn't need $(WBCOMMON_OBJ) anymore, it works with any libwbclient.so now and may talk to an older winbindd. metze
* Fix typo.Karolin Seeger2008-02-051-1/+1
| | | | Karolin
* Always pass a TALLOC_CTX to str_list_make and str_list_copyVolker Lendecke2008-02-041-10/+26
|
* tiny simplificationVolker Lendecke2008-02-041-5/+3
|
* Windows 2008 (Longhorn) auth2 flag fixes.Andreas Schneider2008-01-231-1/+1
| | | | Interop fixes for AD specific flags. Original patch from Todd Stetcher.
* Fix CID 460 - resource leak on error.Jeremy Allison2008-01-081-0/+1
| | | | Jeremy.
* Convert add_sid_to_array() add_sid_to_array_unique() to return NTSTATUS.Michael Adam2008-01-092-34/+52
| | | | Michael
* More logical operations on booleans. IBM checker.Jeremy Allison2008-01-042-2/+6
| | | | Jeremy.
* Fix a panicVolker Lendecke2007-12-291-1/+1
| | | | | get_root_nt_token asks for "struct nt_user_token". talloc_get_type is not smart enough to see that this is the same as NT_USER_TOKEN... :-)
* Convert get_root_nt_token to memcacheVolker Lendecke2007-12-281-3/+15
|
* Remove static zerosVolker Lendecke2007-12-281-3/+6
|
* Fix "may be used uninitialized" compiler warnings.James Peach2007-12-221-3/+3
|
* De-couple smbd from staticly linking against winbindd client files.Gerald (Jerry) Carter2007-12-211-3/+3
| | | | | | | | Implements a wrapper layer in winbind_util.c which are just stubs if compiled --without-winbind. When building with winbindd, it is now required to build the libwbclient DSO first (in the Makefile) and then either set LD_LIBRARY_PATH or /etc/ld.so.conf to pick up the library PATH.
* Remove Get_Pwnam and its associated static variableVolker Lendecke2007-12-191-1/+2
| | | | All callers are replaced by Get_Pwnam_alloc
* Correctly define prototypes for accessor functions.Jeremy Allison2007-12-171-3/+3
| | | | Jeremy.
* More static fstring removal.Jeremy Allison2007-12-171-33/+116
| | | | Jeremy.
* Reformat: Remove trailing spaces.Michael Adam2007-12-171-47/+47
| | | | Michael
* Fix flags in caller of lookup_name() in create_builtin_administrators().Michael Adam2007-12-171-1/+2
| | | | Michael
* Remove another static string and static passwd.Jeremy Allison2007-12-161-19/+22
| | | | Jeremy.
* Replace sid_string_static by sid_string_dbg in DEBUGsVolker Lendecke2007-12-152-7/+8
|
* Use sid_string_talloc where we have a tmp talloc ctxVolker Lendecke2007-12-151-2/+2
|
* Fix typo in debug statement.Michael Adam2007-12-131-1/+1
| | | | Michael
* Rename get_trust_pw() to get_trust_pw_hash().Michael Adam2007-12-131-2/+2
| | | | Michael
* Let get_trust_pw() determine the machine_account_name to use.Michael Adam2007-12-131-2/+5
| | | | | | | | | | | | | | | | | Up to now each caller used its own logic. This eliminates code paths where there was a special treatment of the following situation: the domain given is not our workgroup (i.e. our own domain) and we are not a DC (i.e. it is not a typical trusted domain situation). In situation the given domain name was previously used as the machine account name, resulting in an account name of DOMAIN\\DOMAIN$, which does not seem very reasonable to me. get_trust_pw would not have obtained a password in this situation anyways. I hope I have not missed an important point here! Michael
* Correctly unbecome_root() on errorVolker Lendecke2007-12-101-0/+2
|
* Fix two incompatible pointer warningsVolker Lendecke2007-12-081-1/+1
| | | | Jeremy, please check
* Remove next_token - all uses must now be next_token_talloc.Jeremy Allison2007-12-073-31/+44
| | | | | No more temptations to use static length strings. Jeremy.
* Remove pstrings from everything except srv_spoolss_nt.c.Jeremy Allison2007-11-271-3/+3
| | | | Jeremy.
* Remove pstring from auth/*Jeremy Allison2007-11-142-16/+43
| | | | Jeremy.
* Remove last pstring from smbd/*.cJeremy Allison2007-11-131-1/+1
| | | | Jeremy.
* Remove most of the remaining globals out of lib/util_sock.c.Jeremy Allison2007-11-031-2/+2
| | | | | | I have a plan for dealing with the remaining..... Watch this space. Jeremy.
* I can't get away without a 'length' arg. :-).Jeremy Allison2007-11-031-1/+1
| | | | Jeremy.
generated by cgit (git 2.34.1) at 2025-09-27 05:21:06 +0000