summaryrefslogtreecommitdiffstats
path: root/source
Commit message (Collapse)AuthorAgeFilesLines
...
* Finally get NTLMv2 working on the client!Andrew Bartlett2003-05-094-119/+131
| | | | | | | | | | | | | | | | | | With big thanks to tpot for the ethereal disector, and for the base code behind this, we now fully support NTLMv2 as a client. In particular, we support it with direct domain logons (tested with ntlm_auth --diagnostics), with 'old style' session setups, and with NTLMSSP. In fact, for NTLMSSP we recycle one of the parts of the server's reply directly... (we might need to parse for unicode issues later). In particular, a Win2k domain controller now supplies us with a session key for this password, which means that doman joins, and non-spnego SMB signing are now supported with NTLMv2! Andrew Bartlett
* Fix bug #4 for net rap. Allow more than 50 chars for long form listings of ↵Jim McDonough2003-05-091-2/+2
| | | | users and groups.
* Fix comment - we now have 5 types of error...Andrew Bartlett2003-05-091-1/+1
|
* Make sure we always have some client data, not just the hash. An NTLMv2 orAndrew Bartlett2003-05-091-2/+3
| | | | | | LMv2 response less than 24 bytes is just silly. Andrew Bartlett
* Elsewhere, we use a #define for this environment variable name, so do theAndrew Bartlett2003-05-091-2/+2
| | | | | | same here. Andrew Bartlett
* When checking if a SID is in a domain, make sure that indeed the user RID isAndrew Bartlett2003-05-091-0/+3
| | | | | | one element longer than the domain sid. Andrew Bartlett
* Sync up to head ...Richard Sharpe2003-05-091-34/+100
|
* Sync to the changes in head ...Richard Sharpe2003-05-091-1/+1
|
* Added some more diagnostic tests to check out a theory that having either hashTim Potter2003-05-091-12/+174
| | | | | | | | | | | | - auth with ntlmv2 and lmv2 but deliberately break the ntlmv2 hash - auth with ntlmv2 and lmv2 but deliberately break the lmv2 hash - auth with ntlm and lm but deliberately break the ntlm hash - auth with ntlm and lm but deliberately break the lm hash My theory is that the NTLM or NTLMv2 field must be correct and if it is, it doesn't matter what the value of the LM or LMv2 field is. Fixed cosmetic test name display bug.
* Fix up a bunch of problems in editreg.cRichard Sharpe2003-05-091-16/+16
| | | | Now the build farm will no doubt find more.
* Fix nasty bug pointed out by samba-technical poster. If name is mangledJeremy Allison2003-05-091-1/+12
| | | | | | | then we weren't always correctly detecting that it had a valid stat struct and so might now return a 'file existed'. Finally realized this when installing the W2K resource kit as a test case. Jeremy.
* fix bug #47; revert registration of workgroup<1b> to 2.2 behaviorGerald Carter2003-05-081-1/+1
|
* fixed bug #75; add check for non-zero destlenGerald Carter2003-05-081-1/+1
|
* Hopefully re-enable building heimdal. It needs -lresolv included in LIBSJim McDonough2003-05-081-0/+1
| | | | to link during configure checks.
* Revert a patch that somehow slipped in...Volker Lendecke2003-05-081-2/+2
| | | | Volker
* This puts real netlogon connection caching to winbind. This becomesVolker Lendecke2003-05-0810-123/+186
| | | | | | | | | important once we start doing schannel, as there would be a lot more roundtrips for the second PIPE open and bind. With this patch logging in to a member server is a matter of two (three if you count the ack...) packets between us and the DC. Volker
* This puts back wins.dat into nmbd for easy editing. It leaves most ofVolker Lendecke2003-05-081-194/+222
| | | | | | | | the other infrastructure with name owners etc in place. If anybody is really going to tackle winsrepld, it will probably not be hard to put the additional info back. Volker
* Another attempt at undoing my bogus patch 1.55.2.19Tim Potter2003-05-081-0/+2
|
* Always initialise this - it helps callers who use this in a loop...Andrew Bartlett2003-05-071-0/+2
| | | | Andrew Bartlett
* Fix the spinning bug for 'net rpc user' as well - there are more errors inAndrew Bartlett2003-05-071-4/+4
| | | | | | | | this world than 'status more entires'... Also move all the cases to 'NT_STATUS_EQUAL()' to test it. Andrew Bartlett
* SMB_QUERY_FILE_ALT_NAME_INFO and SMB_FILE_ALTERNATE_NAME_INFORMATIONJeremy Allison2003-05-071-9/+1
| | | | | are identical - noticed by "Dr. Tilo Levante" <tilo@levante.de>. Jeremy.
* Fix irritating typo - non arg functions should be fn(void).Jeremy Allison2003-05-071-1/+1
| | | | Jeremy.
* Make fchown, fchmod conditional for systems that don't have them.Jeremy Allison2003-05-072-5/+20
| | | | Jeremy.
* SMB Signing with NTLMv2 works!Andrew Bartlett2003-05-071-11/+2
| | | | | | | | | | | | | | | | | | (well, under certain conditions :-) There is no length limit on the size of the authentication response added into the MD5 hash. (We had previously limited this to lengths like 40, 44 or 64 in attempts to make sense of what the SNIA spec tells us). Instead, the entire authentication response is added in. Currently, this only works on a Win2k domain members with a Samba PDC, becouse our NTLMv2 code currently fails against an Win2k PDC. However, this splits the problem in half - particularly as the NTLMv2 format is known, and even has an ethereal disector! (thanks tpot). Andrew Bartlett
* Set our 'global sam name' in one place. For domain controllers, this isAndrew Bartlett2003-05-075-35/+15
| | | | | | | | | | | | | | lp_workgroup(), for all other server this is global_myname(). This is the name of the domain for accounts on *this* system, and getting this wrong caused interesting bugs with 'take ownership' on member servers and standalone servers at Snap. (They lookup the username that they got, then convert that to a SID - but becouse the domain out of the smbpasswd entry was wrong, we would fail the lookup). Andrew Bartlett
* Whoops - that wasn't a whitespace syncup after all.Tim Potter2003-05-071-0/+2
|
* Force ASCII for client messages. Patch from David Lee <t.d.lee@durham.ac.uk>Jeremy Allison2003-05-071-3/+2
| | | | Jeremy.
* We used to use the name "*",0x0 here, but some WindowsJeremy Allison2003-05-071-1/+9
| | | | | | | | servers don't answer that name. However we *know* they have the name workgroup#1b (as we just looked it up). So do the node status request on this name instead. Found at LBL labs. Jeremy.
* This commit was manufactured by cvs2svn to create branch 'SAMBA_3_0'.cvs2svn Import User2003-05-061-0/+45
|\
| * sort out some include dependenciesSimo Sorce2003-05-064-33/+65
| | | | | | | | split out privileges from rpc_lsa.h
| * add mapping.h hereSimo Sorce2003-05-061-0/+1
| |
| * restore structures from previous erroneous commitSimo Sorce2003-05-061-22/+30
| |
| * Turn off using lsa_qos.Rafal Szczesniak2003-05-051-5/+2
| | | | | | | | Rafal
| * A good reason to use make variables instead of autoconf substitutionsTim Potter2003-05-051-2/+1
| | | | | | | | | | | | | | | | | | directly - fixed problem where the last line of the link command was '\ @LDAP_LIBS@'. If @LDAP_LIBS@ is zero then the backslash incorrectly includes the next line of the Makefile in the current target. This should fix a bucketload of build farm failures.
| * Fixed typo introduced when reverting patch from revision 1.19Tim Potter2003-05-051-1/+1
| |
| * AIX doesn't append $SHLIB_EXT to NSS libraries.Tim Potter2003-05-052-12/+7
| | | | | | | | | | Also merged a little bit of abartlet's recent configure.in change of duplicated IRIX stuff.
| * move some things aroundSimo Sorce2003-05-044-138/+171
| |
* | Remove unused variablesJelmer Vernooij2003-05-061-4/+0
| |
* | Patch from metze to add exit and interval events. Useful for modulesJelmer Vernooij2003-05-066-4/+166
| |
* | There appears to be no reason why we have to execute theTim Potter2003-05-062-60/+45
| | | | | | | | | | | | | | | | | | | | initialisation code in winbindd_init_common() after the fork when running in dual daemon mode. The only tricky bit is we have to run a tdb_reopen_all() somewhere in the child to avoid tdb corruption. Fixed bug #60.
* | Fix up some of the warnings that the build farm is finding ...Richard Sharpe2003-05-051-3/+2
| |
* | Syncronize head editreg.c with 3.0.0 ...Richard Sharpe2003-05-051-93/+1200
| |
* | We also get back the LM session key on pure 'NTLM' logins.Andrew Bartlett2003-05-051-1/+16
| | | | | | | | Andrew Bartlett
* | Turn off using lsa_qos in OpenPolicy call. This way we avoid annoyingRafal Szczesniak2003-05-051-2/+2
| | | | | | | | | | | | | | debug msg while establishing trust and listing relations of Samba PDC. Rafal
* | Add some comments.Andrew Bartlett2003-05-051-0/+34
| |
* | Add a new entry to make check. If we have compiled python extensions,Tim Potter2003-05-052-1/+52
| | | | | | | | | | run the pythoncheck.py test. At the moment this just checks every python extension can be imported sucessfully.
* | Fix for bug #60. Our autoconf code adds both libraries and linkerTim Potter2003-05-051-21/+30
| | | | | | | | | | flags in the $LIBS make variable. Separate the two so the python extensions can build.
* | Allow the NTLMv2 functions to spit out both possible varients on the sessionAndrew Bartlett2003-05-053-13/+25
| | | | | | | | | | | | | | | | key, so we can test it in ntlm_auth. I suspect the 'lm' version doesn't exist, but it's easy to change back. Andrew Bartlett
* | Add some more tests to the ntlm_auth diagnositics package.Andrew Bartlett2003-05-051-9/+373
| | | | | | | | | | | | | | | | | | | | | | | | Our NTLMv2 client code needs work, becouse we don't get the session key for any of the NTLMv2 stuff... Also test some of the more 'odd' auth cases - like putting the NT password into the LM feild. Clean up some static globals into static locals. Andrew Bartlett
* | Merge of backslash @LDAP_LIBS@ fix from HEAD.Tim Potter2003-05-051-2/+1
| |
generated by cgit (git 2.34.1) at 2025-09-26 11:01:32 +0000