| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
| |
smb.conf variable %I
|
| |
|
|
| |
when given a trailing directory/
|
| |
|
|
|
| |
a users logon hours restrictions.
Jeremy.
|
| |
|
|
|
| |
logon hours attributes in an LDAP database.
Jeremy.
|
| | |
|
| |
|
|
| |
Jeremy.
|
| |
|
|
|
| |
enforce logon hours. ldap fixes to follow.
Jeremy.
|
| |
|
|
|
|
| |
contacting an ADS server fails. This allows net ads lookup to work with clapd (very useful for testing).
from aliguori@us.ibm.com
|
| |
|
|
| |
Jeremy.
|
| |
|
|
| |
Guenther
|
| |
|
|
| |
Guenther
|
| |
|
|
|
|
|
|
| |
a system
call, and gcc -Wall complains about a shadowed definition.
Volker
|
| |
|
|
| |
guenther
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
* add IA64 to the architecture table of printer-drivers
* add new "net"-subcommands:
net rpc printer migrate {drivers|printers|forms|security|settings|all}
[printer]
net rpc share migrate {shares|files|all} [share]
this is the first part of the migration suite. this will will (once
feature-complete) allow to do 1:1 server-cloning in the best possible way by
making heavy use of samba's rpc_client-functions. all migration-steps
are implemented as rpc/smb-client-calls; net communicates via rpc/smb
with two servers at the same time (a remote, source server and a
destination server that currently defaults to the local smbd). this
allows e. g. printer-driver migration including driverfiles, recursive
mirroring of file-shares including file-acls, etc. almost any migration
step can be called with a migrate-subcommand to provide more flexibility
during a migration process (at the cost of quite some redundancy :) ).
"net rpc printer migrate settings" is still in a bad condition (many
open questions that hopefully can be adressed soon).
"net rpc share migrate security" as an isolated call to just migrate
share-ACLs will be added later.
Before playing with it, make sure to use a test-server. Migration is a
serious business and this tool-set can perfectly overwrite your
existing file/print-shares.
* along with the migration functions had to make I the following
changes:
- implement setprinter level 3 client-side
- implement net_add_share level 502 client-side
- allow security descriptor to be set in setprinterdata level 2
serverside
guenther
|
| |
|
|
|
|
| |
<patrakov@ums.usu.ru>. Main change, hardcode replacement char
to '_' as I really don't want a new parameter.
Jeremy.
|
| |
|
|
| |
Jeremy.
|
| |
|
|
|
| |
supported by the underlying OS.
Jeremy.
|
| |
|
|
|
|
|
| |
consists of a 16 byte salt, followed by the 16 byte MD5 hash of
the concatination of the salt plus the NThash of the historical
password. Allows these to be exposed in LDAP without security issues.
Jeremy.
|
| |
|
|
| |
Volker
|
| |
|
|
|
|
|
|
|
|
|
| |
> This patch is (probably) needed for all systems that don't have a
> C99/UNIX98 compliant vsnprintf by default. The builtin sm_*printf
> were no being called, causing things like talloc_init to fail, with
> predictable results.
The should fix 6 (solaris/hpux/irix) builds on the build farm.
Vance
|
| | |
|
| | |
|
| |
|
|
|
| |
winbindd_fill_pwent consistently.
Jeremy.
|
| |
|
|
|
|
| |
(Botched LANMAN2 session setup code)
Andrew Bartlett
|
| |
|
|
|
|
| |
save the password as it is being changed into the password
history list.
Jeremy.
|
| |
|
|
|
| |
against broken filesystems which return zero blocksize.
Jeremy.
|
| |
|
|
|
| |
identical symbols in the global namespace when loading libnss_wins.so.
Bugzilla #1360.
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
coding have passed, but I could not find a way to get the OpenLDAP libraries
to reliably time out on any of the queries we make, *and* get correct error
returns. No, async calls and ldap_result does NOT work, or I was simply too
stupid to correctly interpret the OpenLDAP manpage and source.
We can not allow to hang indefinitely in an ldap query, especially not for
winbindd. "ldap timeout" now specifies the overall timeout for the complete
operation, that's why I increased that to 15 seconds.
Volker
|
| |
|
|
|
|
|
|
| |
We may not have any interfaces up at all, so initialise the return variable.
Fixes Debian bug #252591
Andrew Bartlett
|
| |
|
|
| |
Andrew Bartlett
|
| |
|
|
|
|
|
|
|
|
|
| |
pointless. With a well-known session key, we may as well put the
password change directly on the wire, with it's own 'crypted with old
password' as the protection.
This should fix some 'long password change' issues, against Samba in
particular.
Andrew Bartlett
|
| |
|
|
| |
manually
|
| | |
|
| |
|
|
|
|
|
|
|
| |
requested actually is of type asked for. I've come across more than one
installation where a group sid had ended up as a uid in idmap and vice
versa. This just closes one possible for this misconfiguration, people
are actually using wbinfo.
Volker
|
| | |
|
| |
|
|
|
|
|
|
| |
correct :-)
When sending a mailslot datagram, get the packet length correction correct.
Volker
|
| |
|
|
|
|
| |
restarted if
need be. We should also make sure the main line know we no longer have a child.
|
| |
|
|
|
| |
entries from rpcclient.
Jeremy.
|
| |
|
|
|
|
|
| |
of zero)
leave it locked out until an admin unlocks it (but log a message).
Jeremy.
|
| |
|
|
|
|
| |
and account lockout flags. This is set when an account is updated
only from smbd or pdbedit. Bug found by "Dunn, Drew A." <Drew.Dunn@jhuapl.edu>.
Jeremy.
|
| | |
|
| |
|
|
|
|
| |
corruption problem, and smbd_log_tdb happily destoyed the evidence ....
Volker
|
| |
|
|
|
|
|
| |
<michael@hum.aau.dk> - ensure
home directory service number is correctly reused.
Jeremy.
|
| |
|
|
|
| |
in smbpasswd. Use -s if you want to script this.
Jeremy.
|
| |
|
|
| |
Jeremy.
|
| |
|
|
| |
compiler errors on IRIX
|
| |
|
|
|
|
|
|
|
|
| |
On systems with /dev/urandom, this avoids a change to secrets.tdb for every fork().
For other systems, we now only re-seed after a fork, and on startup.
No need to do it per-operation. This removes the 'need_reseed'
parameter from generate_random_buffer().
Andrew Bartlett
|
| |
|
|
| |
Andrew Bartlett
|
| |
|
|
| |
fnpcn() request without previously sending a ffpcn(). Return what win2k sp4 does
|
