summaryrefslogtreecommitdiffstats
path: root/source3
Commit message (Collapse)AuthorAgeFilesLines
...
* s3: Fix formattingVolker Lendecke2011-07-271-2/+4
|
* s3: Fix an error messageVolker Lendecke2011-07-271-1/+1
|
* s3: Fix async smb handlingVolker Lendecke2011-07-272-9/+22
| | | | | | | | | | | | In cli_echo with more than one response we ended up with more than one read_smb request. One from the call to cli_smb_req_set_pending called from cli_smb_received. The other one from cli_smb_received itself. I don't really see another way to deal with this than to hold the read_smb request in the cli_state. Metze, please check! Volker
* s3 swat: Create random nonce in CGI modeKai Blin2011-07-261-1/+19
| | | | | | | | | | | | | In CGI mode, we don't get access to the user's password, which would reduce the hash used so far to parameters an attacker can easily guess. To work around this, read the nonce from secrets.tdb or generate one if it's not there. Also populate the C_user field so we can use that for token creation. Signed-off-by: Kai Blin <kai@samba.org> Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Tue Jul 26 23:33:24 CEST 2011 on sn-devel-104
* s3 swat: Add time component to XSRF tokenKai Blin2011-07-262-5/+25
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to printer pageKai Blin2011-07-261-10/+18
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to password pageKai Blin2011-07-261-3/+8
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to shares pageKai Blin2011-07-261-5/+13
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to globals pageKai Blin2011-07-261-0/+7
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to wizard pageKai Blin2011-07-261-0/+7
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to wizard_params pageKai Blin2011-07-261-0/+7
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to viewconfig pageKai Blin2011-07-261-0/+7
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add XSRF protection to status pageKai Blin2011-07-261-0/+7
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3 swat: Add support for anti-XSRF tokenKai Blin2011-07-262-0/+59
|
* s3 swat: Allow getting the user's HTTP auth passwordKai Blin2011-07-262-0/+10
| | | | Signed-off-by: Kai Blin <kai@samba.org>
* s3-swat: Fix typo.Karolin Seeger2011-07-261-1/+1
| | | | | | | | Thanks to Simo for reporting! Karolin (cherry picked from commit 9f73c1990a19daa899fa5345530a867e69a5be94) (cherry picked from commit bcb052c29212954a3ed10c9f095c51e4e0a96af5)
* s3 swat: Fix possible XSS attack (bug #8289)Kai Blin2011-07-261-12/+2
| | | | | | | | | | | Nobuhiro Tsuji of NTT DATA SECURITY CORPORATION reported a possible XSS attack against SWAT, the Samba Web Administration Tool. The attack uses reflection to insert arbitrary content into the "change password" page. This patch fixes the reflection issue by not printing user-specified content on the website anymore. Signed-off-by: Kai Blin <kai@samba.org>
* s3-build: Only define ldb3 when not in standalone build.Jelmer Vernooij2011-07-261-4/+3
| | | | | | | | This prevents errors about it by 'make SYMBOLCHECK=1' if there is a system ldb present. Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Tue Jul 26 18:21:48 CEST 2011 on sn-devel-104
* s3:lib change default share security access maskChristian Ambach2011-07-261-3/+3
| | | | | | | | | | | | | | | | | | | | | | | | | | when there is no share SD set, the default share SD that is used e.g. for the output of sharesec -v defaults to a value that is not equivalent to the desired FULL access. This is a more or less a cosmetical follow-up for the patches in Bug #8201 that makes them more consumeable by printing FULL (that is what the user expects) instead of a bitmask in hexadecimal form. previous output: REVISION:1 OWNER:(NULL SID) GROUP:(NULL SID) ACL:S-1-1-0:ALLOWED/0/0x101f01ff with patch: REVISION:1 OWNER:(NULL SID) GROUP:(NULL SID) ACL:S-1-1-0:ALLOWED/0/FULL Autobuild-User: Christian Ambach <ambi@samba.org> Autobuild-Date: Tue Jul 26 15:57:55 CEST 2011 on sn-devel-104
* libsamba-util: Build in libbitmap.Jelmer Vernooij2011-07-261-1/+1
| | | | | Autobuild-User: Jelmer Vernooij <jelmer@samba.org> Autobuild-Date: Tue Jul 26 14:45:27 CEST 2011 on sn-devel-104
* cli_smb_common: Lowercase name.Jelmer Vernooij2011-07-261-3/+3
|
* cli_cldap: Lowercase name.Jelmer Vernooij2011-07-261-1/+1
|
* cli_spools: Lowercase name.Jelmer Vernooij2011-07-261-5/+5
|
* s3: Fix MIT trustsVolker Lendecke2011-07-261-0/+5
| | | | | | | | | Winbind can't really cope with trusts that don't have a SID associated. This happens with external MIT trusts for example. This filters them out when sending the trust list from child to parent. Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Tue Jul 26 11:39:53 CEST 2011 on sn-devel-104
* s3-utils/net_rpc_printer.c: fix error messageBjörn Baumbach2011-07-241-2/+2
| | | | | | | Signed-off-by: Stefan Metzmacher <metze@samba.org> Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Sun Jul 24 19:01:47 CEST 2011 on sn-devel-104
* s3: Fix Coverity ID 2596, REVERSE_INULLVolker Lendecke2011-07-241-1/+2
| | | | | Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Sun Jul 24 16:37:19 CEST 2011 on sn-devel-104
* charset: Make name lowercase everywhere.Jelmer Vernooij2011-07-231-3/+3
|
* s3:libsmb: cli_set_secdesc() only needs a const struct security_descriptorStefan Metzmacher2011-07-232-2/+2
| | | | | | | metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Sat Jul 23 11:08:19 CEST 2011 on sn-devel-104
* s3:libsmb: remove unused cli_query_secdesc_old()Stefan Metzmacher2011-07-232-50/+0
| | | | metze
* s3:libsmb_xattr: make use of the new cli_query_secdesc()Stefan Metzmacher2011-07-231-13/+13
| | | | metze
* s3-utils/net_rpc.c: replace cli_query_secdesc_old()Björn Baumbach2011-07-231-1/+1
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-utils/net_rpc_printer.c: replace cli_query_secdesc_old()Björn Baumbach2011-07-231-4/+4
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-utils/smbcacls.c: replace cli_query_secdesc_old()Björn Baumbach2011-07-231-3/+4
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-client/client.c: replace cli_query_secdesc_old()Björn Baumbach2011-07-231-5/+5
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-torture: run_nttrans_create(): replace cli_query_secdesc_old()Björn Baumbach2011-07-231-1/+1
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-libsmb: introduce new cli_query_secdesc() which returns NTSTATUSBjörn Baumbach2011-07-232-0/+52
| | | | | | Replacement for cli_query_secdesc_old() Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-libsmb: rename cli_query_secdesc() to cli_query_secdesc_old()Björn Baumbach2011-07-238-9/+9
| | | | | | Will introduce new cli_query_secdesc() function Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-libsmb: finally remove cli_read_old()Björn Baumbach2011-07-232-16/+0
| | | | | | Replaced by new cli_read() which returns NTSTATUS instead of ssize_t. Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-libsmb/libsmb_file.c: replace cli_read_old() with cli_read()Björn Baumbach2011-07-231-5/+5
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-torture/nbio.c: replace cli_read_old() with cli_read()Björn Baumbach2011-07-231-4/+15
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-torture/utable.c: replace cli_read_old() with cli_read()Björn Baumbach2011-07-231-1/+1
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-utils/net_rpc_printer.c: print more info on write errorBjörn Baumbach2011-07-231-2/+5
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-utils/net_rpc_printer.c: return on read error in net_copy_file()Björn Baumbach2011-07-231-4/+13
| | | | | | replace cli_read_old() with cli_read() Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-torture/denytest.c: replace cli_read_old() with cli_read()Björn Baumbach2011-07-231-6/+14
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-libgpo/gpo_filesync.c: return on read errorBjörn Baumbach2011-07-231-2/+6
| | | | | | replace cli_read_old() with cli_read() Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-client/clitar.c: replace cli_read_old() with cli_read()Björn Baumbach2011-07-231-5/+4
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-torture: run_oplock2(): replace cli_read_old() with cli_read()Björn Baumbach2011-07-231-5/+10
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-torture: run_fdsesstest(): replace cli_read_old() with cli_read()Björn Baumbach2011-07-231-8/+7
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-torture: run_fdpasstest(): replace cli_read_old() with cli_read()Björn Baumbach2011-07-231-4/+3
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
* s3-torture: run_locktest7(): replace cli_read_old() with cli_read()Stefan Metzmacher2011-07-231-11/+34
| | | | Signed-off-by: Stefan Metzmacher <metze@samba.org>
generated by cgit (git 2.34.1) at 2025-08-30 21:23:45 +0000