summaryrefslogtreecommitdiffstats
path: root/source/utils
Commit message (Collapse)AuthorAgeFilesLines
...
* r21606: Implement escaping function for ldap RDN valuesSimo Sorce2007-03-012-1/+12
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Fix escaping of DN components and filters around the code Add some notes to commandline help messages about how to pass DNs revert jra's "concistency" commit to nsswitch/winbindd_ads.c, as it was incorrect. The 2 functions use DNs in different ways. - lookup_usergroups_member() uses the DN in a search filter, and must use the filter escaping function to escape it Escaping filters that include escaped DNs ("\," becomes "\5c,") is the correct way to do it (tested against W2k3). - lookup_usergroups_memberof() instead uses the DN ultimately as a base dn. Both functions do NOT need any DN escaping function as DNs can't be reliably escaped when in a string form, intead each single RDN value must be escaped separately. DNs coming from other ldap calls (like ads_get_dn()), do not need escaping as they come already escaped on the wire and passed as is by the ldap libraries DN filtering has been tested. For example now it is possible to do something like: 'net ads add user joe#5' as now the '#' character is correctly escaped when building the DN, previously such a call failed with Invalid DN Syntax. Simo.
* r21540: Fix Bug #3713 and readd reporting what the profiles tool does (whenGünther Deschner2007-02-261-4/+56
| | | | | | | | called with the -v option). Patch from William Jojo <jojowil@hvcc.edu>. Guenther
* r21420: Looks big, but isn't really. Move internal namesJeremy Allison2007-02-184-75/+75
| | | | | | | | | of SEC_DESC over from grp_owner -> group_owner, ace -> aces and info.mask -> mask. Makes it *much* easier to move code within branches as they're now referring to the same names for the same things (which is what the NDR code also uses). Jeremy.
* r21398: update sharesec to allow add modify and remove commandsHerb Lewis2007-02-161-124/+316
|
* r21322: No feedback means consent :-)Volker Lendecke2007-02-132-13/+17
| | | | | | | | | | | It does not matter if I screw up 3.0.25 or 3.0.26 with this, so do it rather sooner than later. Add the notify support that already exists in 3_0 to 3_0_25. If you want to see this patch dissected into digestable parts, look at 3_0, revisions at about 20800 and following. Volker
* r21241: Merge from 3_0:Günther Deschner2007-02-081-2/+2
| | | | | | | | | | | | | | | | | | | Fix longstanding Bug #4009. For the winbind cached ADS LDAP connection handling (ads_cached_connection()) we were (incorrectly) assuming that the service ticket lifetime equaled the tgt lifetime. For setups where the service ticket just lives 10 minutes, we were leaving hundreds of LDAP connections in CLOSE_WAIT state, until we fail to service entirely with "Too many open files". Also sequence_number() in winbindd_ads.c needs to delete the cached LDAP connection after the ads_do_search_retry() has failed to submit the search request (although the bind succeeded (returning an expired service ticket that we cannot delete from the memory cred cache - this will get fixed later)). Guenther
* r21194: sync DNS update code from SAMBA_3_0Gerald Carter2007-02-062-65/+73
|
* r21186: * Merge nss_info and idmap interface changes to current Gerald Carter2007-02-062-200/+177
| | | | | | stable branch * Also include pam_winbind changes for multiple groups in the require-membership-of parameter
* r21114: Fix 'net usershare': Adding "guest_ok=y" required a correct acl. Set theVolker Lendecke2007-02-011-4/+6
| | | | | | | | default if "" is set. And fix the calculation for too man shares. Thanks to Karolin Seeger <ks@sernet.de> Volker
* r20917: Fix missing error returns pointed out by "Li, Ying (ESG)" ↵Jeremy Allison2007-01-191-0/+3
| | | | | | <ying.li2@hp.com> Jeremy.
* r20903: Replace the hardcoded "smb.conf" string with the dyn_CONFIGFILEGerald Carter2007-01-191-6/+7
|
* r20874: We need to distinguish client sitenames per realm. We were overwritingGünther Deschner2007-01-181-2/+4
| | | | | | | the stored client sitename with the sitename from each sucessfull CLDAP connection. Guenther
* r20857: Silence gives assent :-). Checking in the fix forJeremy Allison2007-01-172-16/+17
| | | | | | | | | site support in a network where many DC's are down. I heard via Volker there is still a bug w.r.t the wrong site being chosen with trusted domains but we'll have to layer that fix on top of this. Gd - complain if this doesn't work for you. Jeremy.
* r20744: Fix the build (I missed some chkpth -> checkpath renames).Jeremy Allison2007-01-131-2/+2
| | | | Jeremy.
* r20654: Fix from Karolin Seeger <ks@sernet.de>: Accept "forever", "off" and ↵Volker Lendecke2007-01-101-7/+15
| | | | | | | | "never" as key words for -1 as policy values for net sam policy. Volker
* r20431: svn merge branches/SAMBA_3_0 -r 20426:20428 .James Peach2006-12-311-2/+2
| | | | | Rename dns_open. This conflicts with the dns_open symbol in libSystem on Mac OS X.
* r20260: clean up a bunch of no previous prototype warningsHerb Lewis2006-12-194-20/+21
|
* r20157: get rid of a few no previous prototype warningsHerb Lewis2006-12-131-0/+3
|
* r20153: allow bin/sharesec to be built (not by default)Herb Lewis2006-12-131-0/+415
|
* r20119: Update help info indicating how to use separators (forward slash only) Jim McDonough2006-12-121-0/+2
| | | | and properly use backslashes in "net ads join computername="
* r20001: Fix bug 4273, thanks to Pascal TerjanVolker Lendecke2006-12-021-1/+1
|
* r19978: More "net sam policy" improvements. Thanks to Karolin Seeger ↵Volker Lendecke2006-12-012-31/+68
| | | | | | <ks@sernet.de> Volker
* r19976: merge r19840 from 3_0Volker Lendecke2006-12-011-0/+7
|
* r19944: Fix from Don Watson -- thanksVolker Lendecke2006-11-291-7/+2
|
* r19835: Some net sam policy improvements.Volker Lendecke2006-11-221-50/+77
| | | | | | Thanks to Karolin Seeger <ks@sernet.de> Volker
* r19814: Fix 'make everything build'Gerald Carter2006-11-211-7/+7
| | | | | | | The only major remaining pieces that are not being merged are: * The IDL work * The security descriptor merge.
* r19810: more merge work....does not compile currently. Working on smbd mergeGerald Carter2006-11-213-418/+121
|
* r19806: merge time.c changesGerald Carter2006-11-203-215/+278
|
* r19801: grabbing minor changes (some missing pieces from jmcd's SAMR work as ↵Gerald Carter2006-11-201-43/+0
| | | | well)
* r19798: reducing some diffs...bringing over ntlm_auth changesGerald Carter2006-11-196-113/+504
|
* r19796: * copy libgpo and grab libads changesGerald Carter2006-11-1911-257/+840
|\ | | | | | | | | * update net to include dns and gpo commands * include server name rap call in net
| * r19790: Check in the PIDL change and the converted unixinfo and winbind ↵Volker Lendecke2006-11-191-5/+13
| | | | | | | | | | | | | | | | | | | | | | | | | | pipes without waiting for comments. This is what version control is for, and it does fix a segfault I ran into ;-) Nevertheless, Jelmer & Jerry, please take a look! Thanks, Volker
| * r19766: Fix a const-warning. Jerry, what did you want to fix with this line?Volker Lendecke2006-11-181-1/+0
| | | | | | | | Volker
| * r19762: libaddns/*[ch] code fixes donated by Centeris Corporation Gerald Carter2006-11-172-86/+261
| | | | | | | | | | | | | | | | | | | | (http://www.centeris.com/) under my copyright. * Rework error reporting to use DNS_ERROR instead of int32 * Convert memory allocation to use talloc() * Generalize the DNS request/response packet marshalling * Fix the secure update requests
| * r19754: * When using a krb5 session setup, we don't fill in the server_nameGerald Carter2006-11-162-30/+25
| | | | | | | | | | | | | | string the clis_state struct. So call saf_store() after we have the short domain name in the lsa_query_inof_policy code. * Remove unused server string in saf_delete()
| * r19669: set_share_security does not need a mem_ctx passedVolker Lendecke2006-11-111-1/+1
| |
| * r19651: Fix interesting bug with the automatic site coverage in Active ↵Günther Deschner2006-11-101-1/+1
| | | | | | | | | | | | | | | | | | | | | | Directory: When having DC-less sites, AD assigns DCs from other sites to that site that does not have it's own DC. The most reliable way for us to identify the nearest DC - in that and all other cases - is the closest_dc flag in the CLDAP reply. Guenther
| * r19528: Fix container handling for "net ads user" and "net ads group" functionsGünther Deschner2006-11-011-8/+19
| | | | | | | | | | | | along with some memleaks. Guenther
| * r19527: Fix double free in "net ads group add".Günther Deschner2006-11-011-1/+0
| | | | | | | | Guenther
| * r19525: Fix the same error in "net ads group delete".Günther Deschner2006-11-011-3/+4
| | | | | | | | Guenther
| * r19524: Stop "net ads user delete" from doing funny things.Günther Deschner2006-11-011-3/+4
| | | | | | | | Guenther
| * r19493: There is no point in prompting for a user's password in "net ads" whenGünther Deschner2006-10-251-0/+8
| | | | | | | | | | | | we can't find a domain controller at all. Guenther
| * r19450: Fix smbtree's use of netshareenum.Volker Lendecke2006-10-221-0/+5
| | | | | | | | | | | | Jelmer, how much of r18802 did you actually test?? Volker
| * r19447: Do not throw away informationVolker Lendecke2006-10-211-4/+1
| |
| * r19446: Comment can be NULL nowVolker Lendecke2006-10-211-1/+2
| |
| * r19445: Attempt to fix net rpc shareVolker Lendecke2006-10-211-1/+42
| |
| * r19424: Protect against username == NULLJeremy Allison2006-10-201-0/+4
| | | | | | | | Jeremy.
| * r19422: Doh ! Put the krb5 user@realm code in the right place.Jeremy Allison2006-10-201-3/+37
| | | | | | | | Jeremy.
| * r19416: Fix some c++ warnings.Günther Deschner2006-10-191-2/+2
| | | | | | | | Guenther
| * r19257: Janitor for Guenther - as well as a little massaging to makeJeremy Allison2006-10-121-37/+74
| | | | | | | | | | | | his patch fit SAMBA_3_0. (This is guenthers code). Make site support work correctly in net ads join. Jeremy.
generated by cgit (git 2.34.1) at 2025-09-25 22:34:05 +0000