summaryrefslogtreecommitdiffstats
path: root/source/utils/smbcacls.c
Commit message (Collapse)AuthorAgeFilesLines
* Removed version number from file header.Tim Potter2002-01-301-2/+1
| | | | Changed "SMB/Netbios" to "SMB/CIFS" in file header.
* Back out some of the less well thought out ideas from last weeks work onAndrew Bartlett2002-01-261-5/+2
| | | | | | | | | | winbind default domains, particulary now I understand whats going on a lot better. This ensures that the RPC client code does as little 'magic' as possible - this is up to the application/user. (Where - for to name->sid code - it was all along). This leaves the change that allows the sid->name code to return domains and usernames in seperate paramaters. Andrew Bartlett
* This patch makes the 'winbind use default domain' code interact better withAndrew Bartlett2002-01-201-5/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | smbd, and also makes it much cleaner inside winbindd. It is mostly my code, with a few changes and testing performed by Alexander Bokovoy <a.bokovoy@sam-solutions.net>. ab has tested it in security=domain and security=ads, but more testing is always appricatiated. The idea is that we no longer cart around a 'domain\user' string, we keep them seperate until the last moment - when we push that string into a pwent on onto the socket. This removes the need to be constantly parsing that string - the domain prefix is almost always already provided, (only a couple of functions actually changed arguments in all this). Some consequential changes to the RPC client code, to stop it concatonating the two strings (it now passes them both back as params). I havn't changed the cache code, however the usernames will no longer have a double domain prefix in the key string. The actual structures are unchanged - but the meaning of 'username' in the 'rid' will have changed. (The cache is invalidated at startup, so on-disk formats are not an issue here). Andrew Bartlett
* Fixup JF's weird SID return :-).Jeremy Allison2001-12-181-1/+1
| | | | Jeremy
* Renamed sid field in SEC_ACE to trustee to be more in line with MS'sTim Potter2001-11-301-10/+22
| | | | definitions.
* fix a bunch of places where we can double-free a cli structureAndrew Tridgell2001-11-281-5/+0
|
* Got medieval on another pointless extern. Removed extern struct ipzeroTim Potter2001-11-261-3/+2
| | | | | | | and replaced with two functions: void zero_ip(struct in_adder *ip); BOOL is_zero_ip(struct in_addr ip);
* Removed TimeInit() call from every client program (except for one placeTim Potter2001-11-231-2/+0
| | | | | in smbd/process.c where the timezone is reinitialised. Was replaced with check for a static is_initialised boolean.
* Store some path names in global variables initialized to configureMartin Pool2001-11-191-2/+1
| | | | default, rather than in preprocessor macros.
* move to SAFE_FREE()Simo Sorce2001-09-171-12/+10
|
* declare dbf in one spotAndrew Tridgell2001-09-101-1/+0
|
* replaced stdio in many parts of samba with a XFILE. XFILE is a cut-downAndrew Tridgell2001-09-101-2/+2
| | | | | | | | | replacemnt of stdio that doesn't suffer from the 8-bit filedescriptor limit that we hit with nasty consequences on some systems I would eventually prefer us to have a configure test to see if we need to replace stdio, but for now this code needs to be tested widely so I'm enabling it by default.
* it now all compiles - so try enabling it by default and see what explodes on ↵Andrew Tridgell2001-09-041-7/+6
| | | | the build farm
* converted another bunch of stuff to NTSTATUSAndrew Tridgell2001-08-271-3/+3
|
* fixed handling of 139/445 in clientsAndrew Tridgell2001-08-241-2/+1
|
* strchr and strrchr are macros when compiling with optimisation in gcc, so we ↵Andrew Tridgell2001-07-041-5/+5
| | | | can't redefine them. damn.
* The big character set handling changeover!Andrew Tridgell2001-07-041-2/+0
| | | | | | | This commit gets rid of all our old codepage handling and replaces it with iconv. All internal strings in Samba are now in "unix" charset, which may be multi-byte. See internals.doc and my posting to samba-technical for a more complete explanation.
* Removed bogus server_n local variable in connect_one() function.Tim Potter2001-07-041-5/+2
|
* Added some missing entries to usage().Tim Potter2001-06-271-1/+7
| | | | Added -d option to set debug level.
* next_token() was supposed to be a reentrant replacement for strtok(),Andrew Tridgell2001-06-211-2/+2
| | | | | | | | | but the code suffered from bitrot and is not now reentrant. That means we can get bizarre behaviour i've fixed this by making next_token() reentrant and creating a next_token_nr() that is a small non-reentrant wrapper for those lumps of code (mostly smbclient) that have come to rely on the non-reentrant behaviour
* Warning fix from Andrew Bartlett.Jeremy Allison2001-06-201-1/+1
| | | | Jeremy.
* rpc_server/srv_srvsvc_nt.c: Don't test an uint32 for < 0.Jeremy Allison2001-06-191-1/+1
| | | | | utils/smbcacls.c: Set enum correctly. Jeremy.
* Fixup smbcacls. Don't return memory already freed, don't free memory allocatedJeremy Allison2001-05-011-10/+3
| | | | | with talloc. Jeremy.
* fixed some uninitialised variablesAndrew Tridgell2001-05-011-1/+1
|
* rpcclient merge from 2.2 (including Jeremy's non-void return fix)Gerald Carter2001-04-281-3/+3
|
* Merge of Andrew's changes in 2.2.Jeremy Allison2001-04-131-7/+4
| | | | Jeremy.
* Added SMB_ prefix to enums that clash with Solaris ACL definitions.Jeremy Allison2001-04-111-9/+9
| | | | Jeremy.
* Ooops - forgot to check the rpcclient and smbcacls compile with the newJeremy Allison2001-02-281-22/+18
| | | | | code :-(. Jeremy.
* make sure denied aces are firstAndrew Tridgell2001-02-231-1/+1
|
* cast the qsortAndrew Tridgell2001-02-231-1/+1
|
* - fixed the sort_acl bug, sorting now works rightAndrew Tridgell2001-02-231-45/+32
| | | | | - don't allow setting of duplicate ACEs - fixed a ACE delete bug
* don't crash on null acl sortAndrew Tridgell2001-02-221-0/+2
|
* - workaround filer lsa lookup bug for unknown sidsAndrew Tridgell2001-02-221-11/+10
| | | | - add \ at start of name if not needed (another filer workaround)
* cope with filer/NT/samba all in one binary. yeah.Andrew Tridgell2001-02-221-7/+35
| | | | we now don't open rw for acls
* don't need _uni hack nowAndrew Tridgell2001-02-201-30/+6
|
* Some systems don't support SEC_RIGHTS_MAXIMUM_ALLOWED for lsa_open_policy()Tim Potter2001-01-231-1/+5
| | | | but NT sends 0x2000000 so we might as well do it too.
* Return appropriate exit codes for various situations:Tim Potter2000-12-211-22/+32
| | | | | | 0 for success 1 if operation failed 2 command line parse error
* Don't call string_to_sid after cli_lsa_lookup_names() fails.Tim Potter2000-12-211-2/+55
| | | | | | | | | | Can't use space as a ACL separator as it breaks NT user/group names that contain spaces (i.e most of the default ones). The MSDN is contradictory over the exact ordering of ACE entries in an ACL. However NT4 gives a "The information may have been modified by a computer running Windows NT 5.0" if denied ACEs do not appear before allowed ACEs. Sort ACE list before calling cli_set_secdesc().
* Some systems seem to only accept a ntcreate&x with a unicode filenameTim Potter2000-12-211-5/+45
| | | | | | | despite samba negotiating ascii filenames. Retry with unicode pathnames if the ascii version fails. Convert all forward slashes to backslashes in the filename argument.
* Cleaned up SidToString() and StringToSid() exit paths.Tim Potter2000-12-211-17/+27
| | | | | Can now use user%password format in $USER environment variable. -U option is now optional.
* Added -C username and -G username that allow a user (usually Administrator)Jeremy Allison2000-12-161-5/+61
| | | | | | | | to change the ownership or group ownership of a file to any arbitrary user from the UNIX command line. This will show the people who quote NT manuals at us about how this is "impossible" how their operating system really works :-). Jeremy.
* Fixed memory leaks in lsa_XX calls. Fixed memory leaks in smbcacls. MergedJeremy Allison2000-12-151-7/+17
| | | | | | in fixes from appliance-head and 2.2. Fixed multiple connection.tdb open problem. Jeremy.
* Renamed parameters and variables called acl to the_acl as it conflictsTim Potter2000-12-141-18/+18
| | | | with a Solaris system call.
* Cache lsa connection and policy handle for resolving names and sids.Tim Potter2000-12-141-48/+56
|
* Convert names to sids when modifying ACLs. Convert sids to names whenTim Potter2000-12-131-10/+68
| | | | displaying ACLs.
* Don't print out the security descriptor type as it is automaticallyTim Potter2000-12-121-7/+1
| | | | calculated by the new make_sec_desc() function.
* Better error checking for ACL parsing.Tim Potter2000-12-121-7/+21
| | | | Print an error when attempting to delete a non-existent ACL.
* Added undocumented -t command for testing parsing of acl entries.Tim Potter2000-12-071-11/+118
| | | | | | | | | | | Print out hex value for ace mask if we can't decode it. We can now parse FULL,CHANGE,READ as well as combos of RWXDPO as ace mask values. Clarified usage message. Bomb out if excess args are given.
* added a commentAndrew Tridgell2000-12-041-0/+2
|
* fixed the parsing again and got setting acls working with w2kAndrew Tridgell2000-12-041-3/+3
|
generated by cgit (git 2.34.1) at 2025-09-26 19:29:35 +0000