summaryrefslogtreecommitdiffstats
path: root/source3
Commit message (Collapse)AuthorAgeFilesLines
...
* s3-auth: Remove security=share (depricated since 3.6).Andrew Bartlett2012-03-0418-827/+67
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This patch removes security=share, which Samba implemented by matching the per-share password provided by the client in the Tree Connect with a selection of usernames supplied by the client, the smb.conf or guessed from the environment. The rationale for the removal is that for the bulk of security=share users, we just we need a very simple way to run a 'trust the network' Samba server, where users mark shares as guest ok. This is still supported, and the smb.conf options are documented at https://wiki.samba.org/index.php/Public_Samba_Server At the same time, this closes the door on one of the most arcane areas of Samba authentication. Naturally, full user-name/password authentication remain available in security=user and above. This includes documentation updates for username and only user, which now only do a small amount of what they used to do. Andrew Bartlett -------------- / \ / REST \ / IN \ / PEACE \ / \ | SEC_SHARE | | security=share | | | | | | 5 March | | | | 2012 | *| * * * | * _________)/\\_//(\/(/\)/\//\/\///|_)_______
* s3:smbd/globals.h: remove unused pollfd pointerStefan Metzmacher2012-03-041-6/+0
| | | | | | | metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Sun Mar 4 23:18:10 CET 2012 on sn-devel-104
* s3: Fix some && vs & warningsVolker Lendecke2012-03-041-3/+3
| | | | | | | Signed-off-by: Andreas Schneider <asn@samba.org> Autobuild-User: Andreas Schneider <asn@cryptomilk.org> Autobuild-Date: Sun Mar 4 13:31:25 CET 2012 on sn-devel-104
* s3-winbindd: Add stdin handler for winbindAndrew Bartlett2012-03-042-3/+48
| | | | | | | This will help avoid runaway processes in the test env, particularly when the whole selftest.pl is killed. Andrew Bartlett
* s3-nmbd: Add stdin handler for nmbdAndrew Bartlett2012-03-041-0/+33
| | | | | | | This will help avoid runaway processes in the test env, particularly when the whole selftest.pl is killed. Andrew Bartlett
* change low FDs are handled in SambaAndrew Bartlett2012-03-044-19/+2
| | | | | | | | | | | We now only close fds 0, 1, 2 when we are a forked daemon, and take care not to close a file descriptor that we might need for foreground stdin monitoring. This should fix stdout logging in the lsa and epmapper deamons (ie in make test). Andrew Bartlett
* s3: don't replace the error message if already definedMatthieu Patou2012-03-041-3/+5
| | | | | Autobuild-User: Matthieu Patou <mat@samba.org> Autobuild-Date: Sun Mar 4 10:13:24 CET 2012 on sn-devel-104
* s3: print a nice warning when HAVE_ADS is not enabled but you still try to ↵Matthieu Patou2012-03-041-0/+5
| | | | do net rpc keytab vampire
* s3: Fix a bogus if (client_len < 0)Volker Lendecke2012-03-031-1/+1
| | | | | | | | | On some platforms socklen_t might be unsigned, so comparing for <0 always returns true. Also, tsocket_address_bsd_sockaddr returns ssize_t. Autobuild-User: Volker Lendecke <vl@samba.org> Autobuild-Date: Sat Mar 3 23:38:31 CET 2012 on sn-devel-104
* s3:libsmb: pass smb2 capabilities and client guid in cli_state_create()Stefan Metzmacher2012-03-031-2/+7
| | | | | | metze Signed-off-by: Michael Adam <obnox@samba.org>
* smbXcli: add the possiblilty to negotiate client capabilites in smb >= 2.2Michael Adam2012-03-031-1/+2
| | | | Pair-Programmed-With: Stefan Metzmacher <metze@samba.org>
* s3:smbd:smb2_write: improve logging in the error caseMichael Adam2012-03-031-4/+14
|
* s3:smb2_server: use SMB2_WATCH_TREEChristian Ambach2012-03-021-1/+1
| | | | | it makes the code easier to understand if it uses the names specified in MS-SMB2 instead of just the underlying values
* s3:smb2_server fix a typoChristian Ambach2012-03-021-1/+1
|
* s3: Fix some blank line endingsVolker Lendecke2012-03-031-5/+5
| | | | | Autobuild-User: Volker Lendecke <vl@samba.org> Autobuild-Date: Sat Mar 3 03:41:03 CET 2012 on sn-devel-104
* s3: Test for statfs before statfs64Volker Lendecke2012-03-021-20/+20
| | | | | Autobuild-User: Volker Lendecke <vl@samba.org> Autobuild-Date: Fri Mar 2 12:04:35 CET 2012 on sn-devel-104
* s3: Further fix for bug 8777Brad Smith2012-03-023-12/+35
|
* s3: Enable statvfs usage on NetBSDVolker Lendecke2012-03-021-30/+30
| | | | | | | linux_statvfs is pretty much what you use when you have susv4. No real code change, this moves linux_statvfs to the bottom of the (LINUX) to #ifdef (STAT_STAVFS).
* s3:rpc_server: initialize struct schannel_state to zeroStefan Metzmacher2012-03-021-2/+1
| | | | | | | metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Fri Mar 2 08:48:23 CET 2012 on sn-devel-104
* s3:rpc_client: initialize struct schannel_state to zeroStefan Metzmacher2012-03-021-2/+1
| | | | metze
* s3-selftest: Add tests for ntlm_auth gss-spnego client and serverAndrew Bartlett2012-03-023-0/+46
| | | | | Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Fri Mar 2 07:05:44 CET 2012 on sn-devel-104
* s3-rpcclient: Ensure interfaces are loaded after smb.confAndrew Bartlett2012-03-021-2/+3
| | | | | | This ensures that the interfaces line in the smb.conf is honoured. Andrew Bartlett
* s3-libsmb: Initialise ticket to ensure we do not invalid memoryAndrew Bartlett2012-03-021-0/+1
| | | | | | | | | | | | The free is however a talloc_free(), which has additional protection against freeing the wrong thing. Andrew Bartlett Signed-off-by: Jeremy Allison <jra@samba.org> Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Fri Mar 2 01:45:19 CET 2012 on sn-devel-104
* Move to talloc from malloc.Jeremy Allison2012-03-011-3/+7
|
* Fix mixup between talloc/malloc.Jeremy Allison2012-03-011-1/+1
|
* s3-selftest: make ntlm_auth test more robust to bad inputAndrew Bartlett2012-03-011-2/+5
| | | | | | If we do not know the helper protocol, make sure to error. Andrew Bartlett
* s3-selftest: Add more tests for ntlm_authAndrew Bartlett2012-03-012-19/+79
|
* s3-ntlm_auth fix up gss-spnego-client so as to work with gss-spnegoAndrew Bartlett2012-03-011-16/+5
| | | | | | The SPNEGO code changed since this was last tested. Andrew Bartlett
* s3-ntlm_auth: Wrap kerberos token in GSSAPIAndrew Bartlett2012-03-011-2/+6
| | | | | | | | | | | | While windows will accept this ticket without the wrapping, it is nicer to follow the standard and wrap it up in GSSAPI. This should allow the ntlm_auth gss-spnego-client to talk to the ntlm_auth gss-spengo server. Reported by Christof Schmitt <christof.schmitt@us.ibm.com> Andrew Bartlett
* s3-ntlm_auth: Add --target-service and --target-hostname optionsAndrew Bartlett2012-03-011-9/+40
| | | | | | | This will allow the gss-spnego-client protocol to work with modern SPNEGO servers that do not send the principal in the mechListMIC. Andrew Bartlett
* build: look for backtrace_symbols in libexecAndrew Bartlett2012-03-011-1/+1
|
* Trivial Comment fix: Supply a missing word in a commentRichard Sharpe2012-03-011-1/+1
| | | | | Autobuild-User: Richard Sharpe <sharpe@samba.org> Autobuild-Date: Thu Mar 1 06:55:44 CET 2012 on sn-devel-104
* s3: Fix "make bin/smbtorture4" in the autoconf buildVolker Lendecke2012-03-011-1/+1
| | | | | | | tdb2 support does not work with a system-supplied libtdb yet Autobuild-User: Volker Lendecke <vl@samba.org> Autobuild-Date: Thu Mar 1 05:23:57 CET 2012 on sn-devel-104
* Add open_dir_with_privilege() to ensure we're opening the correct directory ↵Jeremy Allison2012-03-015-3/+72
| | | | | | | when doing backup requests. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Thu Mar 1 03:50:40 CET 2012 on sn-devel-104
* Implement FLAG_TRANS2_FIND_BACKUP_INTENT for trans2 with privileges.Jeremy Allison2012-02-291-4/+46
|
* Add accessor functions to set a bool "priv" on a directory handle. Not yet ↵Jeremy Allison2012-02-292-0/+13
| | | | used, but will be part of FLAG_TRANS2_FIND_BACKUP_INTENT code.
* Add the implementation of check_reduced_name_with_privilege(). Now to plumb intoJeremy Allison2012-02-295-8/+177
| | | | SMB1 requests.
* Add check_reduced_name_with_privilege(), filename_convert_with_privilege() ↵Jeremy Allison2012-02-293-5/+103
| | | | | | (currently unimplemented) in order to prepare for adding SeBackup/SeRestore code to the main fileserver. Not yet plumbed into the main SMB1/SMB2 code.
* s3:torture/test_smb2: test path based calls during reauth in SMB2-MULTI-CHANNELStefan Metzmacher2012-02-291-3/+51
| | | | | | | metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Wed Feb 29 07:23:14 CET 2012 on sn-devel-104
* s3:torture/test_smb2: test handle based calls during reauth in ↵Stefan Metzmacher2012-02-291-0/+18
| | | | | | SMB2-MULTI-CHANNEL metze
* s3:torture/test_smb2: do a reauth over multiple channels in SMB2-MULTI-CHANNELStefan Metzmacher2012-02-291-0/+100
| | | | metze
* s3:torture/test_smb2: add a 3rd channel to SMB2-MULTI-CHANNELStefan Metzmacher2012-02-291-1/+154
| | | | metze
* s3:torture/test_smb2: expect FILE_CLOSED on invalid handles in ↵Stefan Metzmacher2012-02-291-2/+4
| | | | | | SMB2-MULTI-CHANNEL metze
* lib/crypto: add aes_cmac_128* (rfc 4493)Stefan Metzmacher2012-02-291-1/+2
| | | | | | Thanks to Jeremy, Michael and Volker for the debugging! metze
* s3: Introduce "req" helper var in reply_lockingX_successVolker Lendecke2012-02-291-3/+5
| | | | | Autobuild-User: Volker Lendecke <vl@samba.org> Autobuild-Date: Wed Feb 29 03:08:53 CET 2012 on sn-devel-104
* s3: Fix a const warningVolker Lendecke2012-02-291-1/+1
|
* s3: Add a test that makes a chained open break an oplockVolker Lendecke2012-02-296-0/+299
| | | | | Autobuild-User: Volker Lendecke <vl@samba.org> Autobuild-Date: Wed Feb 29 01:13:03 CET 2012 on sn-devel-104
* s3: More fix for smbd -iVolker Lendecke2012-02-281-1/+1
| | | | | We need a full re-initialize, otherwise we don't re-init the USR1 signal handler
* Fix problem reported by Tom Lee <tlee2951@gmail.com> - when calculatingJeremy Allison2012-02-281-3/+28
| | | | | | | | the share security mask, take priviliges into account for the connecting user. Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Tue Feb 28 20:21:26 CET 2012 on sn-devel-104
* smbd: detect EOF on stdin in --foreground modeAndrew Tridgell2012-02-281-0/+25
| | | | if EOF is detected on stdin then exit
generated by cgit (git 2.34.1) at 2025-09-25 22:24:43 +0000