summaryrefslogtreecommitdiffstats
path: root/source/nsswitch/winbindd_misc.c
Commit message (Collapse)AuthorAgeFilesLines
* NTLM Authentication:Andrew Bartlett2003-03-231-0/+17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | - Add a 'privileged' mode to Winbindd. This is achieved by means of a directory under lockdir, that the admin can change the group access for. - This mode is now required to access with 'CRAP' authentication feature. - This *will* break the current SQUID helper, so I've fixed up our ntlm_auth replacement: - Update our NTLMSSP code to cope with 'datagram' mode, where we don't get a challenge. - Use this to make our ntlm_auth utility suitable for use in current Squid 2.5 servers. - Tested - works for Win2k clients, but not Win9X at present. NTLMSSP updates are needed. - Now uses fgets(), not x_fgets() to cope with Squid environment (I think somthing to do with non-blocking stdin). - Add much more robust connection code to wb_common.c - it will not connect to a server of a different protocol version, and it will automatically try and reconnect to the 'privileged' pipe if possible. - This could help with 'privileged' idmap operations etc in future. - Add a generic HEX encode routine to util_str.c, - fix a small line of dodgy C in StrnCpy_fn() - Correctly pull our 'session key' out of the info3 from th the DC. This is used in both the auth code, and in for export over the winbind pipe to ntlm_auth. - Given the user's challenge/response and access to the privileged pipe, allow external access to the 'session key'. To be used for MSCHAPv2 integration. Andrew Bartlett
* Updates to the NTLMSSP code again - moving the base64 decode fuctionality outAndrew Bartlett2003-01-161-0/+12
| | | | | | | | | | | | | of the SWAT code, and adding a base64 encoder. The main purpose of this patch is to add NTLMSSP support to 'ntlm_auth', for use with Squid. Unfortunetly the squid side doesn't quite support what we need yet. Changes to winbind to get us the info we need, and a couple of consequential changes/cleanups in the rest of the code. Andrew Bartlett
* Remove wrapper function _get_trust_account_password() as it doesn'tTim Potter2003-01-141-15/+2
| | | | | seem to do anything useful anymore other than call secrets_fetch_trust_account_password().
* Merge of remove "winbindd holding pattern" from appliance. It's a bitTim Potter2003-01-131-1/+5
| | | | simpler as the rescanning of trusted domains helps us out a bit.
* Removed global_myworkgroup, global_myname, global_myscope. Added liberalJeremy Allison2002-11-121-3/+1
| | | | | | dashes of const. This is a rather large check-in, some things may break. It does compile though :-). Jeremy.
* must add one to the extra_data size to transfer the 0 string terminator.Herb Lewis2002-10-181-1/+2
| | | | | This was causing "wbinfo --sequence" to access past the end of malloced memory.
* more debug classess activatedSimo Sorce2002-06-181-0/+3
|
* As per rsharpe's request, require only a Masters in Astrophysics toAndrew Bartlett2002-05-181-2/+8
| | | | | | correctly configure winbind. (Next job: Fill in the 'error_msg' field with somthing useful)
* Fix a double-free bug in wbinfo -t's call in winbindd.Andrew Bartlett2002-03-191-5/+4
| | | | | | | | | | I forgot to clean this up when netlogon move across to the connection cache arrangement. Also add some smb_panics to the connection_ok() code to try to catch this kind of thing better in future. Andrew Bartlett
* get the test for disconnection the right way around!Andrew Tridgell2002-03-121-3/+3
|
* nicer message for --sequence when the server is disconnectedAndrew Tridgell2002-03-061-2/+7
|
* added 'wbinfo --sequence' to show sequence numbers of all domainsAndrew Tridgell2002-01-311-0/+29
|
* Removed version number from file header.Tim Potter2002-01-301-2/+1
| | | | Changed "SMB/Netbios" to "SMB/CIFS" in file header.
* Allow a winbind client to obtain the server's domain name.Andrew Bartlett2002-01-261-1/+13
|
* Always query the PDC for the list of trusted domains rather than interatingTim Potter2002-01-111-3/+6
| | | | | | | | | | | | | | | | | the list received at startup or we get an out of date list. I thought there might be some sequence number that is incremented when a trusted domain is added or removed - perhaps there is but I just haven't found it yet. - Renamed get_domain_info() to init_domain_list() - Made an accessor function to return the list of trusted domains rather than using a global so we don't have to remember to put a magic init function - The getent state can not keep a pointer to a winbind_domain structure as it may be freed if init_domain_list() is called again so we keep the domain name instead
* Return the winbind separator over the socket, so programs don't have to parseAndrew Bartlett2002-01-101-1/+27
| | | | | | | | | | | | | | | | smb.conf to get it right. While wb_client needs its lp_load() for samba dependency reasons, it now uses the new method both to example and test the new code. Also add an interface version function, and return the winbind's samba version string. In preperation for default domains, its now up to winbindd to reject plaintext auths that don't have a seperator, but NTLM (CRAP) auths now have two feilds, hence need parsing. Andrew Bartlett
* This changes the winbind protcol a bit:Andrew Bartlett2002-01-101-11/+10
| | | | | | | | | | | | | | It adds a 'ping' request, just to check winbind is in fact alive It also changes winbindd_pam_auth_crap to take usernames and domain seperatly. (backward incompatible change, needs merge to 2.2, but this is not yet released code, so no workarounds) Finally, it adds some debugs and fixes a few memory leaks (uses talloc to do it). Andrew Bartlett
* Fixed delete on close bug. Added core dump code to winbindd.Jeremy Allison2001-11-231-2/+1
| | | | Jeremy.
* Fixed check machine account function.Tim Potter2001-11-231-55/+29
|
* Get list of trusted domains if we haven't fetched them yet.Tim Potter2001-11-151-0/+3
|
* Added NT_USER_TOKEN into server_info to fix extra groups problem.Jeremy Allison2001-11-031-1/+3
| | | | | Got "medieval on our ass" about const warnings (as many as I could :-). Jeremy.
* move to SAFE_FREE()Simo Sorce2001-09-171-2/+2
|
* more static/dead fnsAndrew Tridgell2001-09-101-2/+2
|
* the next stage in the NTSTATUS/WERROR change. smbd and nmbd now compile, but ↵Andrew Tridgell2001-09-041-10/+8
| | | | the client code still needs some work
* converted another bunch of stuff to NTSTATUSAndrew Tridgell2001-08-271-1/+1
|
* this is a big global fix for the ptr = Realloc(ptr, size) bug.Simo Sorce2001-08-121-3/+8
| | | | | | many possible mem leaks, and segfaults fixed. someone should port this fix to 2.2 also.
* Merge of change machine account password race fix from appliance branch.Tim Potter2001-07-251-1/+17
|
* The big character set handling changeover!Andrew Tridgell2001-07-041-6/+2
| | | | | | | This commit gets rid of all our old codepage handling and replaces it with iconv. All internal strings in Samba are now in "unix" charset, which may be multi-byte. See internals.doc and my posting to samba-technical for a more complete explanation.
* iAdditional files for winbind merge.Tim Potter2001-05-071-0/+159
generated by cgit (git 2.34.1) at 2025-09-25 02:14:27 +0000