summaryrefslogtreecommitdiffstats
path: root/source/passdb
Commit message (Collapse)AuthorAgeFilesLines
...
* added samr_set_user_info and info_2.Jean-François Micouleau2000-10-071-0/+209
| | | | | | | | | | | | | | cleanup of create_user cleanup of rid/sid mix in samr. now we only have sid. some prs_align() missing in parse_samr.c a small debug change in srv_pipe.c You still can't change a user's password in this commit. Will be availble in the next one. J.F.
* Removed a line by mistake...Jeremy Allison2000-09-281-0/+1
| | | | Jeremy.
* Added comment on JF's new code. Removed ifdef in passdb/smbpass.c as thisJeremy Allison2000-09-281-7/+0
| | | | | was not correct. Jeremy.
* fixed samr_create_user(). we now correctly parse the query and the reply.Jean-François Micouleau2000-09-282-1/+9
| | | | | | | | | | And we create the disabled account. That means we can create user and trust accounts remotely ! ifdef out a return in passdb/smbpass.c. I think I didn't break any security. Jeremy could you check if I didn't make any mistakes ??? J.F.
* Added code to do SID to uid/gid conversion. Needed for ACL support.Jeremy Allison2000-08-231-2/+73
| | | | Jeremy.
* Started to canonicalize our handling of uid -> sid code in order toJeremy Allison2000-08-021-64/+22
| | | | | | | | | | | | | | | | | | | | | | | | | get ready and fix se_access_check(). Added cannonical lookup_name(), lookup_sid(), uid_to_sid(), gid_to_sid() functions that look via winbind first the fall back on local lookup. All Samba should use these rather than trying to call winbindd code directly. Added NT_USER_TOKEN struct in user_struct, contains list of NT sids associated with this user. se_access_check() should use this (cached) value rather than attempting to do the same thing itself when given a uid/gid pair. More work needs to be done to preserve these things accross security context changes (especially with the tricky pipe problem) but I'm beginning to see how this will be done..... probably by registering a new vuid for an authenticated RPC pipe and not treating the pipe calls specially. More thoughts needed - but we're almost there... Jeremy.
* Tidyup removing many of the 0xC0000000 | NT_STATUS_XXX stuff (only need ↵Jeremy Allison2000-08-011-12/+3
| | | | | | | | NT_STATUS_XXX). Removed IS_BITS_xxx macros as they were just reproducing "C" syntax in a more obscure way. Jeremy.
* Fixes for various compile warnings on Solaris 8.Tim Potter2000-07-101-1/+1
|
* Luke, I am moving the code back into passdb/passdb.c, this the correctJeremy Allison2000-06-091-2/+41
| | | | | | | | | | | | | place to do this, not in smbd/passwd.c Please don't change this without asking first, I have run this past Andrew so talk to him (I'm on vacation next week). I also removed the g_newXXX macros. There are essentially a private C extension, not used anywhere else in the code, and add no functionality over malloc(XX) and make the code harder to understand (everyone knows what malloc does). Jeremy.
* reverted jeremy's changes that removed NET_USER_INFO_3. will you pleaseLuke Leighton2000-06-091-0/+2
| | | | not just undercut work in progress, thank you.
* include/smb.h: Removed NET_USER_3 struct from user struct. It doesn't belong ↵Jeremy Allison2000-06-081-0/+29
| | | | | | | | | | | | | there (yet) as there is no infrastructure for it. Replaced it with a dynamic array of group SIDs plus a user. passdb/passdb.c: Added setup_user_sids() function. This is where the lookup should be done, eventually calling winbind. smbd/password.c: Changed to call setup_user_sids(). Removed spurious DEBUG(0) statements. smbd/reply.c: Removed extra parameter to register_vuid(). Jeremy.
* moved secrets handling into secrets.cAndrew Tridgell2000-06-032-49/+43
|
* param/loadparm.c: Looks like someone ran indent on this !Jeremy Allison2000-06-011-1/+3
| | | | | | | | passdb/smbpass.c: Insure uninitialized memory reference fix. printing/nt_printing.c: rpc_server/srv_spoolss_nt.c: Insure memory leak fixes. smbd/unix_acls.c: Shadow ref fix. Jeremy.
* Getting back to a compilable state (not there yet but close).Jeremy Allison2000-06-011-14/+2
| | | | | | | Added patches for random -> sys_random. Added set_effective_xxx patches for AFS code. Memory allocation changes in spoolss code. Jeremy.
* Fixed LsaQueryInformationPolicy level 3 to return primary domain info.Matthew Chapman2000-05-291-0/+32
| | | | | | | Domain SID is saved in secrets.tdb upon joining domain. Added "Authenticated Users" and "SYSTEM" well-known SIDs (under NT Authority).
* passdb/secrets.c: Fix typo in comment.Jeremy Allison2000-05-151-1/+1
| | | | | | | | rpc_server/srv_pipe.c: Use accessor functions rather than diddling with structure internals directly. smbd/process.c: smbd/reply.c: Remove READ_PREDICTION #ifdefs. Jeremy.
* Added code to do a one-way migration of the old DOMAIN.MACHINE.macJeremy Allison2000-05-131-4/+259
| | | | | | file into the secrets tdb. Also restored check for password timeout (this seemed to have gotten lost). Jeremy.
* fixed two uninitialised variablesAndrew Tridgell2000-05-121-1/+1
|
* Someone :-) forgot to add secrets.c to HEAD.Jeremy Allison2000-05-081-0/+90
| | | | Jeremy.
* added secrets.tdb and changed storage of trust account password to useAndrew Tridgell2000-05-081-219/+22
| | | | it
* Added sys_fork() and sys_getpid() functions to stop the overheadJeremy Allison2000-05-022-4/+4
| | | | | of doing a system call every time we want to just get our pid. Jeremy.
* moved trans2.h and nterr.h into includes.h with all our other includesAndrew Tridgell2000-04-252-2/+0
|
* Roll back to using static MACHINE.SID after consultation with Andrew. ThisJeremy Allison2000-04-121-57/+201
| | | | | | code will be removed soon and a SID auto-generated from (probably) primary hostname and never stored in a file will replace it. Jeremy.
* The changes made here broke NT security descriptor returning to NT clients.Jeremy Allison2000-04-111-0/+2
| | | | | We need to talk about the MACHINE.SID/<WORKGROUP_NAME>.SID mess..... Jeremy.
* indent update to make t easier to see setuid mods in TNG. someLuke Leighton2000-03-211-366/+459
| | | | code from these modules i had to leave out (nothing to do withj setuid)
* Tidied up fchown code, error reporting.Jeremy Allison2000-03-021-3/+9
| | | | Jeremy.
* Correctly full buffer smbpasswd i/o streams.Jeremy Allison2000-03-021-1/+1
| | | | Jeremy.
* Update last changed time for new password entry.Jeremy Allison2000-03-021-0/+1
| | | | Jeremy.
* Fixed bugs with -x smbpasswd entry. Thanks to Bruce Tenison ↵Jeremy Allison2000-03-021-20/+21
| | | | | | <btenison@dibbs.net>. Jeremy.
* client/client.c:Jeremy Allison2000-02-255-94/+355
| | | | | | | libsmb/clientgen.c: Fixes for Win2k smbclient browsing. Other fixes implement smbpasswd -x user to delete users. Also allows swat to do the same. Jeremy.
* simple mods to add msrpc pipe redirection. default behaviour: fall backLuke Leighton2000-01-031-201/+56
| | | | to using internal msrpc code in smbd.
* 2nd phase of head branch sync with SAMBA_2_0 - this delets all the files ↵Andrew Tridgell1999-12-137-2843/+0
| | | | that were in the head branch but weren't in SAMBA_2_0
* first pass at updating head branch to be to be the same as the SAMBA_2_0 branchAndrew Tridgell1999-12-139-1071/+3059
|
* final part of "first" phase converting over to msrpc daemon architecture.Luke Leighton1999-12-121-2/+2
| | | | | | | | | | | | done a minimal amout of clean-up in the Makefile, removing unnecessary modules from the link stage. this is not complete, yet, and will involve some changes, for example to smbd, to remove dependencies on the password database API that shouldn't be there. for example, smbd should not ever call getsmbpwXXX() it should call the Samr or Lsa API. this first implementation has minor problems with not reinstantiating the same services as the caller. the "homes" service is a good example.
* fixing joining to domain plus something weird going down with nt logins...Luke Leighton1999-12-011-1/+34
|
* attempting to get nt5 wksta to join domain.Luke Leighton1999-11-161-15/+38
| | | | | | | | 1) had to fix samr "create user" and "set user info" (level 23). 2) had to fix netlogon enum trust domains 3) registry key needed \\ in it not \.
* Whoops ! Being over-paranoid is not good.Jean-François Micouleau1999-09-241-8/+0
| | | | J.F.
* use gecos field to fill the full_nameJean-François Micouleau1999-09-232-7/+36
| | | | | | don't overwrite backend values with defaults values. J.F.
* Fixed an annoying bug in the LDAP code. Attributes not present in theMatthew Chapman1999-09-221-22/+3
| | | | | | | | | LDAP database were being initialised using unix_to_nt_time on -1, rather than -1 as an NTTIME (which is very different). Problems solved (hopefully): * "Access Denied" when accessing an NT share in a Samba controlled domain. * "Your password has expired" sometimes when logging in.
* - initialising mach_passwd_file locks to zero (prev. uninit.)Luke Leighton1999-09-121-2/+2
| | | | | | | - cleanup - #defined report to sprintf as it's #defined to another function in other uses of cmd_lsarpc.c
* BDC support.Luke Leighton1999-07-211-0/+2
|
* code from bertl to allow remap of default built-in names to anything.Luke Leighton1999-07-142-0/+12
| | | | | parameter is "builtin rid file". Copyright 1999 Bertl <bp@vpnet.at>
* renamed getfilepwent() and endfilepwent() to getfileent() and endfileent()Luke Leighton1999-07-132-4/+4
| | | | | | as they are generic "file line-by-line" reading routines. lines with "#" at the front are ignored (as comments). this code started out as the password file reading code.
* NULL pwdb_xxx_map_names() parameter can be passed here (which is a bugLuke Leighton1999-07-112-10/+12
| | | | anyway!)
* issues with pwdb_sam_map_names() and pwdb_smb_map_names() returning NULL.Luke Leighton1999-07-082-3/+20
| | | | found by Bertl <bs@vpnet.at>
* added debug reporting to pwdb_sam_map_names() and pwdb_smb_map_names()Luke Leighton1999-07-072-2/+8
|
* improving authentication code (tidyup).Luke Leighton1999-06-291-1/+0
|
* Moved code that changes the pw_passwd entry (i.e shadow password andTim Potter1999-06-132-64/+2
| | | | | | | | weird unixware stuff) into _Get_Pwnam() to fix a memory allocation bug. Note that the Get_Pwnam() function now returns a const struct passwd * as a hint to other developers not to change entries in the struct passwd.
* Jani Jaakkola's "getpwuid() / getpwnam()" hash-cache-hackLuke Leighton1999-05-061-1/+1
|
* "User Manager" - create user + change password now work.Luke Leighton1999-03-251-0/+42
| | | | | next problem: user group adding not supported so an "access denied" message is reported instead of "ok" when a new user is created.
generated by cgit (git 2.34.1) at 2025-09-27 17:30:18 +0000