| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| | |
| |
| |
| | |
otherwise append to output file specified.
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| |
| |
| |
| | |
different directory the temp files should be in, or is /tmp ok?
Still have to get rid of the output file hardcoding, but that is to
come, because I need to cleanup stdout.
|
| | |
| |
| |
| |
| |
| |
| |
| | |
as nmbd skip interfaces with address 127.0.0.1
- add samba3 smbclient -L tests
- add samba3 smbtorture tests
metze
|
| | |
| |
| |
| | |
metze
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| | |
Guenther
|
| | | |
|
| | |
| |
| |
| | |
HSM is interested in. Tested on both IRIX and SLES9.
|
| | |
| |
| |
| |
| |
| |
| |
| | |
Implement enhancement request 3505. Two additional features are added here.
There is now a method of saving an opaque user data handle in the smbc_
context, and there is now a way to request that the context be passed to the
authentication function. See examples/libsmbclient/testbrowse.c for an example
of using these features.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
for module in ; do ... ; done
leads to an error (true64, solaris 8).
We now use {,UN}INSTALL_PAM_MODULES to get replaced by configure.
Therfore we don't run into the {,un}installpammodules rule if no PAM
module is requested.
Thanks to Björn Jacke for pointing to this issue.
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| |
| |
| | |
Might need to rework prs_dcerpc_status().
Guenther
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
* Finally fix parsing idmap uid/gid ranges not to break with spaces
surrounding the '-'
* Allow local groups to renamed by adding info level 2 to
_samr_set_aliasinfo()
* Fix parsing bug in _samr_del_dom_alias() reply
* Prevent root from being deleted via Samba
* Prevent builting groups from being renamed or deleted
* Fix bug in pdb_tdb that broke renaming user accounts
* Make sure winbindd is running when trying to create the Administrators
and Users BUILTIN groups automatically from smbd (and not just check the
winbind nexted groups parameter value).
* Have the top level rid allocator verify that the RID it is about to
grant is not already assigned in our own SAM (retries up to 250 times).
This fixes passdb with existing SIDs assigned to users from the RID algorithm
but not monotonically allocating the RIDs from passdb.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
I'll try to add some tests using samba3's smbtorture and smbclient
later.
can someone check if this would be save to run on the build-farm
without leaking child processes...
metze
|
| | |
| |
| |
| |
| |
| |
| | |
Nothing happens if PAM_MODULES is empty which is our default.
The default destination dir is "${LIBDIR}/security". It's possible to
overwrite the default with --with-pammodulesdir while calling configure.
|
| | |
| |
| |
| | |
metze
|
| | | |
|
| | |
| |
| |
| |
| | |
or --mandir to set them already. Till now we overwrrote a setting made
with --libdir or --mandir.
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
- add configure tests --with-selftest-prefix=/tmp/samba-test
this is needed because the path name of unix socket can only be 108 chars long
- add configure test --with-smbtorture4-path=/home/foo/prefix/samba4/bin/smbtorture
this will be used to run samba4's smbtorture inside samba3's make test later
metze
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
to make the following possible:
timelimit 20000 bin/nmbd -F -S --no-process-group
timelimit 20000 bin/smbd -F -S --no-process-group
this is needed to 'make test' working without losing child processes
metze
|
| | | |
|
| | |
| |
| |
| |
| |
| |
| |
| | |
We were using a far too short renewable_time in the request; newer MIT
releases take care interally that the renewable time is never shorter
then the default ticket lifetime.
Guenther
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
because lck->num_share_modes != 0 doesn't mean that
there *are* other valid share modes. They may be
all marked "UNUSED" or be deferred open entries.
In that case don't downgrade the granted oplock to
level2 needlessly - a client can have an exclusive
oplock in this case. The original code handled this
correctly in the lck->num_share_modes == 0 case but
not in the case where there were no valid share modes
but lck->num_share_modes != 0. I'll clean up my
Samba4 torture tester for this and commit it tomorrow.
Jeremy.
|
| | |
| |
| |
| |
| | |
the POSIX interface. Note that this removes support for inherited
capabilities. This wasn't used, and probably should not be.
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
The sad thing is the core of this bug fix is just
removing a paranoia "exit_server" call, as the
rest of the logic was already correct :-).
Lots of comments to explain the logic added.
I will look at adding tests to exercise this,
might be possible.
Jeremy.
|
| | |
| |
| |
| |
| |
| | |
kerberos_kinit_password_ext provides access to more options.
Guenther
|
| | | |
|
| | | |
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| | |
called from multiple places now (krb5, winbindd auth and domain_client_validate()
|
| | |
| |
| |
| |
| |
| | |
* Add back in the import/export support to pdbedit
* Fix segv in pam_smbpass
* Cleanup some error paths in pdb_tdb and pdb_interface
|
| | |
| |
| |
| |
| |
| |
| |
| |
| | |
krb5_rd_req could decrypt the ticket but that ticket is just not valid
at the moment (either not yet valid or already expired). (This also
prevents an MIT kerberos related crash)
Guenther
|
| | |
| |
| |
| |
| | |
on the particular file we are performing I/O on, irrespective of whether
the write cache is globally enabled
|
| | | |
|
| | | |
|
| | |
| |
| |
| | |
metze
|
| | |
| |
| |
| | |
a AC variable)
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| |
| |
| |
| |
| | |
supported.
Is there a better way to check for the 0x1c010002 status code?
Guenther
|
| | |
| |
| |
| |
| |
| | |
I'm disabling it for now until we have en effective
means of dealing with the ticket request flags for users
and computers.
|
| | | |
|
| | |
| |
| |
| |
| |
| | |
environment.
Guenther
|
| | |
| |
| |
| |
| |
| | |
offline logons work again with NT4 and older Samba3 DCs.
Guenther
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| | |
Guenther
|
| | |
| |
| |
| |
| |
| |
| |
| | |
policies when requested.
No panic, the flags is uint32 so we are not running out of WBFLAG bits.
Guenther
|
