| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
| |
Thanks to Jason Mader for sending the compiler output :-)
Volker
|
| | |
|
| | |
|
| | |
|
| |
|
|
| |
Guenther
|
| |
|
|
| |
All callers are replaced by Get_Pwnam_alloc
|
| |
|
|
|
| |
system).
Jeremy.
|
| |
|
|
| |
Jeremy.
|
| |
|
|
|
| |
precedence.
Jeremy.
|
| |
|
|
|
|
|
|
|
|
| |
<vorlon@debian.org>.
Recent versions of Linux-PAM support localization of user prompts,
so Samba must use the C locale when invoking PAM (directly or via
/usr/bin/passwd) to ensure that password chat values match the prompts in a
locale-invariant fashion.
Jeremy.
|
| |
|
|
|
| |
No more temptations to use static length strings.
Jeremy.
|
| |
|
|
| |
Jeremy.
|
| |
|
|
| |
Jeremy.
|
| |
|
|
|
|
|
|
|
|
| |
Each cli struct has it's own local copy of this variable,
so use that in client code. In the smbd server, add one
static to smbd/proccess.c and use that inside smbd. Fix
a bunch of places where smb_rw_error could be set by
calling read_data() in places where we weren't reading
from the SMB client socket (ie. winbindd).
Jeremy.
|
| |
|
|
|
|
|
| |
bugs in various places whilst doing this (places that assumed
BOOL == int). I also need to fix the Samba4 pidl generation
(next checkin).
Jeremy.
|
| | |
|
| |
|
|
| |
Jeremy.
|
| |
|
|
| |
Make sure we honour the directive not to allow machine password changes.
|
| |
|
|
|
|
|
|
| |
which matches what samba4 has.
also fix all the callers to prevent compiler warnings
metze
|
| |
|
|
| |
Guenther
|
| |
|
|
|
|
|
|
|
|
|
|
| |
password at next logon" code. The "password last set time" of zero now
means "user must change password", because that's how windows seems to
use it. The "can change" and "must change" times are now calculated
based on the "last set" time and policies.
We use the "can change" field now to indicate that a user cannot change
a password by putting MAX_TIME_T in it (so long as "last set" time isn't
zero). Based on this, we set the password-can-change bit in the
faked secdesc.
|
| | |
|
| |
|
|
| |
Jeremy.
|
| |
|
|
| |
HSM is interested in. Tested on both IRIX and SLES9.
|
| |
|
|
|
| |
the POSIX interface. Note that this removes support for inherited
capabilities. This wasn't used, and probably should not be.
|
| |
|
|
|
|
|
|
| |
* Fix a couple of related parsing issues.
* in the info3 reply in a samlogon, return the ACB-flags (instead of
returning zero)
Guenther
|
| |
|
|
| |
* replace all pdb_{init,fill}_sam_pw() calls with samu_set_unix()
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
to make full use of the new talloc() interface. Discussed with Volker
and Jeremy.
* remove the internal mem_ctx and simply use the talloc()
structure as the context.
* replace the internal free_fn() with a talloc_destructor() function
* remove the unnecessary private nested structure
* rename SAM_ACCOUNT to 'struct samu' to indicate the current an
upcoming changes. Groups will most likely be replaced with a
'struct samg' in the future.
Note that there are now passbd API changes. And for the most
part, the wrapper functions remain the same.
While this code has been tested on tdb and ldap based Samba PDC's
as well as Samba member servers, there are probably still
some bugs. The code also needs more testing under valgrind to
ensure it's not leaking memory.
But it's a start......
|
| |
|
|
| |
Volker
|
| |
|
|
| |
Guenther
|
| |
|
|
| |
Guenther
|
| |
|
|
| |
Sync with trunk as off r13315
|
| |
|
|
|
|
|
|
|
| |
to ignore
the sambapwdmustchange field if we can access the corresponding account
policy and calculate it dynamically based on the pwdlastset field.
Volker
|
| |
|
|
|
|
| |
<jojowil@hvcc.edu>.
Jeremy.
|
| |
|
|
|
|
|
|
| |
Ensure it returns a BOOL.
Jerry (and anyone else) please check this, I think
all uses are now correct but could do with another
set of eyes. Essential for 3.0.21 release.
Jeremy.
|
| |
|
|
|
|
|
| |
* \PIPE\unixinfo
* winbindd's {group,alias}membership new functions
* winbindd's lookupsids() functionality
* swat (trunk changes to be reverted as per discussion with Deryck)
|
| |
|
|
| |
Jeremy.
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Removing deprecated lp_min_password_length (the same functionality is
provided by the account policy).
Note that we now allow to set passwords less then 5 chars (if the admins
decides to do so by setting the account policy).
Thanks to Daniel Beschorner <db@unit-netz.de>
Guenther
|
| |
|
|
|
|
| |
safe for using our headers and linking with C++ modules. Stops us
from using C++ reserved keywords in our code.
Jeremy
|
| | |
|
| |
|
|
|
|
| |
platforms.
Volker
|
| |
|
|
|
|
| |
passdb in 3_0 (they are still in trunk).
Guenther
|
| |
|
|
|
|
|
|
| |
Does automated migration from account_policy.tdb v1 and v2 and offers a
pdbedit-Migration interface. Jerry, please feel free to revert that if
you have other plans.
Guenther
|
| |
|
|
|
|
| |
disabled, rather than simply unavailable.
Andrew Bartlett
|
| | |
|
| |
|
|
| |
Bugzilla #1903.
|
| |
|
|
|
|
|
|
|
|
| |
allow e.g. two umlauts and one ascii char to comply with account-policy
"min password length" of 5.
Thanks to Uwe Morgenroth from CC Compunet and Volker.
TODO: we do check the length against AP_MIN_PASSWORD_LEN *and*
lp_min_passwd_length() - both can have differing values.
|
| | |
|
| | |
|
| |
|
|
| |
Heinreichsberger <helmut.heinreichsberger@chello.at>)
|
