summaryrefslogtreecommitdiffstats
path: root/source4
Commit message (Collapse)AuthorAgeFilesLines
...
* s4:ldb: add ldb_parse_tree_copy_shallow() and change version to 0.9.7Stefan Metzmacher2009-09-203-1/+65
| | | | metze
* s4-auth: add SID_NT_ENTERPRISE_DCS is a server trust accountAndrew Tridgell2009-09-191-1/+13
|
* s4-drs: security checking on DRS needs to default to onAndrew Tridgell2009-09-191-1/+2
|
* s4-ldb: display an error if we can't decode a NDR blobAndrew Tridgell2009-09-191-1/+3
|
* s4-repl: need param.h for lp_parm_boolAndrew Tridgell2009-09-191-0/+1
|
* Handle dsdb_class_by_lDAPDisplayName returned values in schema_inferiors.cAnatoliy Atanasov2009-09-191-0/+8
|
* Move replmd_drsuapi_DsReplicaCursor2_compare to a common place.Anatoliy Atanasov2009-09-193-14/+8
|
* Add drs_security_level_check for dcesrv calls security checksAnatoliy Atanasov2009-09-196-20/+36
| | | | | | There is also an option to disable the security check by specifying in the smb.conf file: drs:disable_sec_check = true
* s4:provision_basedn_modify - fix the "auditPolicy" attributeMatthias Dieter Wallnöfer2009-09-201-1/+2
| | | | | | I had to think about how to encode the string 0x0001 (taken from Windows Server). The problem is due to the "0" byte at the beginning of it. BASE64 encoding seems a good method to do it.
* s4:utils Remove typo...Andrew Bartlett2009-09-191-1/+0
|
* s4:dsdb Print the partition we failed to suggest replication forAndrew Bartlett2009-09-191-1/+2
|
* s4:utils Explian fix for testparm -vAndrew Bartlett2009-09-191-2/+6
| | | | | | | The problem here was that we take an address of a bool, and then (via a void*) cast it to a int *, so put this in a comment. Andrew Bartlett
* s4-ldb: bump minimum version in ldb tooAndrew Tridgell2009-09-191-1/+1
|
* more include minimisationAndrew Tridgell2009-09-1912-41/+0
|
* tdb: increase minor versionAndrew Tridgell2009-09-191-1/+1
| | | | we depend on reads in transactions for s4 replication
* s4-smbd: removed unnecessary includesAndrew Tridgell2009-09-195-11/+0
|
* s4-scripts: make minimal_includes handle our -I overridesAndrew Tridgell2009-09-191-10/+20
|
* s4-smbd: minimise includes in smbd/ and smb_serverAndrew Tridgell2009-09-1921-40/+0
|
* s4-testparm: fixed -v optionAndrew Tridgell2009-09-191-1/+1
| | | | never pass a bool pointer to popt
* s4-rpc_server: removed remaining unnecessary #includesAndrew Tridgell2009-09-194-5/+2
|
* s4-rpc: remove some unnecessary #include linesAndrew Tridgell2009-09-194-8/+0
| | | | I should remember to run script/minimal_includes.pl more often
* s4:samdb.py - further reworkMatthias Dieter Wallnöfer2009-09-191-12/+9
| | | | | | | | | - I added a comment to the "new user" operation to point out that this works only on s4, since we add also ID mapping entries for winbind there - The "new user" operation adds now the password through the "set password" operation which I find better due to the re-use principle - Remove the word "DC" after "SAMBA 4" in the comment over the "set password" operation since this note and operation applies also to s4 in standalone mode
* s4-netlogon: implement dcesrv_netr_DsRAddressToSitenamesExWAndrew Tridgell2009-09-191-2/+24
| | | | | We don't implement sites properly at the moment so we just return Default-First-Site-Name
* s4-resolve: fixed a crash bug on timeoutAndrew Tridgell2009-09-199-11/+13
| | | | | | | We were creating the name resolution context as a child of lp_ctx, which meant when we gave up on a connection the timer on name resolution kept running, and when it timed out the callback crashed as the socket was already removed.
* s4-pipes: convert pipe names to lowercase and validateAndrew Tridgell2009-09-181-0/+19
| | | | | clients may provide arbitrary names, but we only want lowercase alnum names
* s4-server: kill main daemon if a task fails to initialiseAndrew Tridgell2009-09-1825-77/+159
| | | | | | When one of our core tasks fails to initialise it can now ask for the server as a whole to die, rather than limping along in a degraded state.
* s4-kdc: ignore unknown keytypes Andrew Tridgell2009-09-181-0/+6
| | | | don't fail hdb operations if one of the key types is unknown
* s4-drs: cope with dupliate linked attributesAndrew Tridgell2009-09-181-1/+41
| | | | | | | With a w2k8-R2 DC, we sometimes get linked attribute updates via DRS which are duplicates of entries that we already have. We need to cope with this by using a remove/add pair in the ldb_modify() to avoid a "entry already exists" error
* s4:provision_configuration - "sPNMappings": "http" missed on regenerationMatthias Dieter Wallnöfer2009-09-181-1/+1
|
* s4/provision_configuration - re-add the "sPNMappings"Matthias Dieter Wallnöfer2009-09-181-0/+3
| | | | Accidentally removed by a previous commit.
* s4:scripts - Cleans also the rest under the "setup" directory upMatthias Dieter Wallnöfer2009-09-183-30/+43
| | | | | | - I removed also the "-H" parameter since those scripts are all thought for the use on a local s4 domain controller. Another reason is also the bind as SYSTEM account which itself is only possible on local binds.
* s4:various scripts under "setup" - UnificationMatthias Dieter Wallnöfer2009-09-184-73/+74
| | | | | | | - This unified the shape of those four scripts (comments, command sequence, call of SamDB) - To consider the samdb.py changes regarding the filter: there is now always the possibility either to specify the username or the search filter
* s4:domainlevel/pwsettings - Remove unused importMatthias Dieter Wallnöfer2009-09-182-2/+0
|
* s4:samdb.py - Unification of the interfacesMatthias Dieter Wallnöfer2009-09-182-38/+54
| | | | | | | | | - When a user account is requested by a call always the search filter will be passed as argument. This helps us to unify the API - Add/fix some comments; in particular new comments inform the developer which requirements exist if he wants to use calls which manipulate the "userPassword" attribute (On s4 no problem - but on certain domain levels on Windows Server)
* s4:minschema/fullschema - add correct header commentsMatthias Dieter Wallnöfer2009-09-182-2/+2
|
* s4:rpc_server: remove some now unused codeStefan Metzmacher2009-09-182-199/+0
| | | | metze
* s4:ntvfs_ipc: add real named pipe supportStefan Metzmacher2009-09-182-236/+652
| | | | | | | | | | | | | | | | | | We now open a named via the named_pipe_auth code and process IO via the tstream interface. This means we support byte mode and message mode named pipes. We also correctly issue NT_STATUS_PIPE_BUSY when a smb_trans request comes in and a read or smb_trans is already pending. We also have support for async dcerpc over ncacn_np now, and we now can remove the ncacn_np specific hacks from the rpc_server/ code. metze
* s4:torture: the spoolss notify test should listen on the ncacn_np endpointStefan Metzmacher2009-09-181-0/+20
| | | | metze
* s4:rpc_server: export dcesrv_add_ep() so that torture tests can use itStefan Metzmacher2009-09-182-5/+9
| | | | metze
* s4:service_named_pipe: accept delegated credentialsStefan Metzmacher2009-09-182-3/+101
| | | | metze
* s4:torture: don't use 'pipe' as variable name it's a system callStefan Metzmacher2009-09-181-3/+3
| | | | metze
* s4:heimdal/gssapi/krb5: set cred_handle in _gsskrb5_import_credStefan Metzmacher2009-09-181-0/+1
| | | | metze
* s4:domainlevel - fix indentationsMatthias Dieter Wallnöfer2009-09-181-4/+4
|
* s4:domainlevel - Add a script which allows raising the domain/forest levelMatthias Dieter Wallnöfer2009-09-181-0/+181
| | | | | | This simple script allows raising the domain and/or forest level for s4. I integrated also the basic checks (since we don't perform them in LDB yet): e.g. the forest level can't be higher than the domain level(s).
* s4:pwsettings - Simplify the error handling a bitMatthias Dieter Wallnöfer2009-09-181-5/+2
|
* python: create a script for reorgnizing an LDB file.Matthieu Patou2009-09-181-0/+60
| | | | This script helps to reclaim waisted place.
* s4:provision - Bump down the domain and forest level to Windows 2000Matthias Dieter Wallnöfer2009-09-182-9/+10
| | | | | | | | | | | | - The DC level we keep on Windows Server 2008 R2 (we should call ourself always the newest server type) - The domain/forest level we set to the minimum (Windows 2000 native) to allow all AD DC types (from Windows 2000 on) in our domain - the NT4 "mixed" mode isn't supported by us (discussed on mailing list) -> "nTMixedDomain" is set always to 0 - I'll add a script which allows to bump the DC level (basically sets the "msDS-Behaviour-Version" attributes on the "Partitions/Configuration/DC" and on the "DC" object)
* s4:provision - Some rework (continuation)Matthias Dieter Wallnöfer2009-09-174-40/+311
| | | | | | | | | | | - Fix up "servicePrincipalNames" attributes on the DC object - Add some informative comments (most in "provision_self_join.ldif") - Add also comments where objects are missing which we may add later when we support the feature (mainly for FRS) - Add "domain updates" objects also under "CN=Configuration" (they exist twice) - Add the default services under "Services" to allow interoperability with some MS client tools - Smaller changes
* pyldb: Don't segfault when invalid type is specified to as_sddl and from_sddl.Matthieu Patou2009-09-172-2/+19
| | | | Fix bug #6723
* s4-sam: add a note about the solaris clientAndrew Tridgell2009-09-171-0/+2
|
generated by cgit (git 2.34.1) at 2025-09-27 19:55:44 +0000