summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2004-01-05(merge from 3.0)Andrew Bartlett1-14/+15
Based on patch by Petri Asikainen <paca@sci.fi> fix bug #387 and #330. This patch will change order how attributes are modified from: add, delete to: delete, add This is needed to update single valued attributes in Novell NDS and should not harm anyone else. (This used to be commit e925cae0f3846ea95633d38afd652e0f3d8acfb9)
2004-01-05Fix from James Flemer <jflemer@uvm.edu> to make HAVE_ATTR_LIST linked toJeremy Allison1-3/+3
HAVE_SYS_ATTRIBUTES_H to fix AIX compile. Jeremy. (This used to be commit 1d90cc2034c023755981a07a49c3d9958b60fb74)
2004-01-05fix inverted check using krb5_kt_resolve() and HAVE_MEMORY_KEYTAB; bug 912Gerald Carter1-2/+2
(This used to be commit cca2afecd505881412df65c21c0389a0079cf023)
2004-01-05Merge commit to 3_0: add pdb_pgsqlJelmer Vernooij7-507/+1074
(This used to be commit 61cbd5c9be1962d0c33c28ff472a2f82d3aa2a80)
2004-01-04Commit the translation of the realm to the netbios domain name in the kerberosVolker Lendecke5-3/+126
session setup. After talking to jht and abartlet I made this unconditional, no additional parameter. Jerry: This is a change in behaviour, but I think it is necessary. Volker (This used to be commit d32f47fedcff3fdf46f42926d1cd84433e7ab487)
2004-01-03And yet another constVolker Lendecke1-1/+1
Volker (This used to be commit 6121a866659c3b81e790a79432b6d89d7865fbd3)
2004-01-01After talking with abartlet remove the fix for bug 707 again.Volker Lendecke2-140/+29
Volker (This used to be commit a2e384262d0203772a6237b566c294f15bfd8948)
2004-01-01Fix for bug 707, getent group for huge ads groups (>1500 members)Volker Lendecke2-29/+140
This introduces range retrieval of ADS attributes. I've rewritten most of Günther's patch, partly to remove code duplication and partly to get the retrieval of members in one rush, not interrupted by the lookups for the DN. Andrew, you told me that you would like to see a check whether the AD sequence number is the same before and after the retrieval to achieve atomicity. This would be trivial to add, but I'm not sure that we want this, as this adds two roundtrips to every membership query. We can not know before the first query whether we get additional range values, and at that point it's too late to ask for the USN. Tested with a group of 4000 members along with lots of small groups. Volker (This used to be commit a2aa6e41e552abfb6d1056ab3a7c75e8fd0a150c)
2003-12-30Move to short lived TALLOC_CTX* for allocating printerGerald Carter1-4/+22
objects from the print handle cache. Fixes bug that caused smbd to consume large amounts of RAM when (a) a printer handle was kept open over an extended period of time, and (b) the client issued frequent requests that resulted in a call to get_a_printer() (This used to be commit b84ea23f99481f9260dedbe8dd715112ccdc7d7a)
2003-12-30Another little one: Make pdb_test.c at least compile, although its way out ofVolker Lendecke2-8/+4
date. Volker (This used to be commit 0a84173555b29b77b241741c7b1ae4fac595c28f)
2003-12-30The AFS pts command always generates completely lower-case user names. As caseVolker Lendecke1-1/+4
is not significant in windows user names we should not lose information by lower-casing the name before handing it to AFS. Volker (This used to be commit 097e8d44b4a6eb49f36debae1f2cc8af7565b0eb)
2003-12-30Fix Bug # 924Volker Lendecke1-2/+11
Volker (This used to be commit 1f0e045502f802f819738d1b89574b07dfaa6bc6)
2003-12-27Preliminary fix for our signing problem with failed NTLMSSP logins. This patchVolker Lendecke2-9/+19
solves the problem for me here, I can still successfully set up signing using NTLMSSP against w2k3 and it does not show a signing error anymoe when the password was wrong. Jeremy, you might want to take a further look at it as this is not particularly elegant. Volker (This used to be commit 8a82060e3aee6d5ef38b1448035d865f9bce63a7)
2003-12-26Collecting another little patch from gd@suse.deVolker Lendecke1-1/+1
As broken as it might be, smbwrapper.so should be put into the libdir and not bindir. Volker (This used to be commit c374fd982e63209cf555fe8fbf15cfae0f79aca1)
2003-12-26Collecting some minor patches...Volker Lendecke1-8/+10
This adds the ability to specify the new user password for 'net ads password' on the command line. As this needs the admin password on the command line, the information leak is minimally more. Patch from gd@suse.de Volker (This used to be commit 68af56f517014476ab4549de72a0585a0a07c72f)
2003-12-25(merge from 3.0)Andrew Bartlett2-5/+5
ldap rebind sleep -> ldap replication sleep While writing documentation for metze's patch, it became clear that this is a better name. Andrew Bartlett (This used to be commit bac2c20adf6a8f541f227652d4da3d8f31f1a648)
2003-12-25This is metze's LDAP rebind sleep patch:Volker Lendecke3-0/+34
When smb.conf tells us to write to a read-only LDAP replica and we are redirected by the LDAP server, the replication might take some seconds, especially over slow links. This patch delays the next read after a rebind for 'ldap rebind sleep' milliseconds. Metze, thanks for your patience. Volker (This used to be commit 7293550e3642e2553684a7011084dabb0b78fd24)
2003-12-25Fix our parsing of the LDAP url. We get around it as all decent systems seemVolker Lendecke1-1/+1
to have ldap_initialize. Thanks to abartlet for the fix (and the bug in the first place ;-)) Volker (This used to be commit 943e156788ea361cb3ec0ab37a87653494e47f2e)
2003-12-25abartlet pointed me at the fact that the order and flags in loadparm.c areVolker Lendecke1-1/+1
actually used.... 'afs username map' should not show up in the swat basic view. :-) Maybe I should use swat from time to time.... Volker (This used to be commit 82f47aeca3d376d766efc36fdf2efe158f975484)
2003-12-25(merge from 3.0)Andrew Bartlett2-5/+18
Fix bug 916 - do not perform a + -> space substitution for squid URL encoded strings, only form input in SWAT. Andrew Bartlett (This used to be commit 794ff4da03a3c5b6afa3ee4802f83f04571a5652)
2003-12-24(merge from 3.0)Andrew Bartlett1-4/+9
Thanks to Serassio Guido for noticing issues in our Squid NTLMSSP implementation. We were not resetting the NTLMSSP state for new negotiate packets. Andrew Bartlett (This used to be commit ada064af72e120aacd733245292e988dd696d059)
2003-12-23Fix for special files being hidden from admins by Dmitry Butskoj ↵Jeremy Allison1-1/+1
<buc@odusz.elektra.ru> Jeremy. (This used to be commit a14259d885291c138d3d62d36737472048840aa6)
2003-12-22correct typo in delete user script; bug 887Gerald Carter1-1/+1
(This used to be commit 44ef3dd2b346176e756b5e361a38da19ea93e071)
2003-12-22add well known rid for pre win2k compatible access group; bug 897Gerald Carter2-0/+2
(This used to be commit 426a02cf678236f902c143b56eaaf854fca2237f)
2003-12-22Patch from Jianliang Lu j.lu@tiesse.com to manage Power UsersJeremy Allison1-0/+1
group. Jeremy. (This used to be commit 72174634aa26c01431ccf85331aaa8b51e70c8ff)
2003-12-19* add a few useful debug linesGerald Carter2-9/+30
* fix bug involving Win9x clients. Make sure we save the right case for the located username in fill_sam_account() (This used to be commit d22b4097d4c2bde7989af31ccb572871c6e63424)
2003-12-17Add in comments explaining NTLMv2 selection. Use lm session key if that'sJeremy Allison1-1/+13
all there is. Jeremy. (This used to be commit 3e6abeffe176cdba43d251f55f3b7aecd8fa55b1)
2003-12-17Tidyup debug message in ntlmssp code. Add brackets around dodgy if statement.Jeremy Allison1-5/+17
Jeremy (This used to be commit 6cd0f6e7c0a28ddccf55acb1e411e5ed5bd3cf47)
2003-12-17Make sure we correctly generate the lm session key.Gerald Carter2-2/+26
This fixes a problem joining a Samba domain from a vanilla win2k client that doesn't set the NTLMSSP_NEGOTIATE_NTLM2 flag. Reported on samba ml as "decode_pw: incorrect password length" when handling a samr_set_userinfo(23 or 24) RPC. (This used to be commit 14558c942beb05cd12c0e40c1bb30c3dcde8ce48)
2003-12-16make sure we delete the group mapping before calling the delete group ↵Gerald Carter1-2/+4
script; patch from Jianliang Lu <j.lu@tiesse.com> (This used to be commit 66edeb855e7d7a0bfa20cbe93275c86880bd453d)
2003-12-13Fix from ndb@theghet.to to allow an existing LDAP machine account to beJeremy Allison1-12/+29
re-used, rather than created from scratch. Jeremy. (This used to be commit 1bcc4c244dd127643c66ed75550f405e90c99c76)
2003-12-12Fix for bug #815. Make plaintext unicode passwords work with NT4.xJeremy Allison1-5/+11
Jeremy. (This used to be commit 29bac18b6971f459c3cb138366ae493d5805f643)
2003-12-12Fix detection of elements in in-memory keytab code.Jeremy Allison1-1/+1
Jeremy. (This used to be commit c208ea44aa4cc8c0cde6aa02d98d87f36aed9589)
2003-12-11fix bug that prevent --mandir from overriding the defaults given in the ↵Gerald Carter1-19/+0
--with-fhs macro (This used to be commit 824218d086d90f6fcf3789e8e87f047e2da55c25)
2003-12-11Correctly detect in-memory krb5 keytab support. Fix for bug #863 fromJeremy Allison1-2/+2
gschafer@zip.com.au (Greg Schafer). Jeremy. (This used to be commit 25d91f8d8c4e3bd8237716052b53350587ffb8dc)
2003-12-11Patch from James Peach <jpeach@sgi.com>. Remove the MAX_CONNECTIONS limitJeremy Allison2-9/+46
by increasing bitmap size. Limited by "max connections" parameter. Bug #716. Jeremy. (This used to be commit 0be57a2eb015f832c6bb6d84525719a3d632f741)
2003-12-11fixed bad formal parameter type in get_static(); patch Andy PolyakovGerald Carter1-1/+1
(This used to be commit 67d893701f09f29e8af56cd98f04131658b39713)
2003-12-11Fix uninitialized variable in passdb code. Reported by Andy Polyakov ↵Alexander Bokovoy1-1/+1
<appro@fy.chalmers.se> (This used to be commit ca21dd3bb682700d628e9fc1aeedd1594cda3094)
2003-12-10Fix UNISTR2 length bug in LsaQueryInfo(3) that cause SID resolution to fail ↵Gerald Carter4-3/+4
on local files on on domain members; bug 875 (This used to be commit a5c5dde1c34ba44f8d9bbb38720a089a6d61806c)
2003-12-10more group lookup access fixes on the neverending bug 281Gerald Carter4-22/+49
(This used to be commit 975ac6f5aa4d8d709733757e4e003f3c551fc9ba)
2003-12-10Fix #558 -- support ISO-8859-1 internally. Makes Solaris users a bit happierAlexander Bokovoy1-0/+28
(This used to be commit 808fc7e9d52ccc61ceb56821f6b977936817b88b)
2003-12-10patch from TAKEDA yasuma to bypass any missing language filesGerald Carter1-0/+9
(This used to be commit c65f63be1eb8bb9350cc7e843c858050c5ce5095)
2003-12-09IRIX spinlock patch from James Peach <jpeach@sgi.com>.Jeremy Allison2-0/+53
Jeremy. (This used to be commit 04abff372b8939bd33c6dceb48baac9fdb7e27b6)
2003-12-09working on packaging; also fixed some path issues in configure.in & Makefile.inGerald Carter14-11/+1423
(This used to be commit c16e51bfaf59b2d5b1b800ee272ac45b13b9a9fc)
2003-12-09Final part of fix for #445. Don't add user for machine accounts.Jeremy Allison1-0/+4
Jeremy. (This used to be commit 0785295fe067093ea1483fc19e30c63512018db3)
2003-12-09fix bug in get_peer_name() caused by --enable-developer and using the same ↵Gerald Carter1-3/+11
src & dest strings to alpha_strcpy(); reported by Michael Young (This used to be commit 0054ce8707038444bec8c4ac8f0deea12ef65820)
2003-12-09Make intent to return only one address clear.Jeremy Allison1-2/+2
Jeremy. (This used to be commit 08b6b1e43ce354cfb77701c8953565e1163ff76b)
2003-12-08working on bug 687; protect against null src strings in alloc_sub_basic()Gerald Carter1-0/+7
(This used to be commit b187511920dc6245faeb5ea6b48132bd5ba69ef9)
2003-12-08make sure we use a real network address in case there are extra non-zero ↵Gerald Carter1-1/+1
octets in hosts allow/deny (This used to be commit f891d434a1406d18f9842ac6b3d1ea49ee96b9bc)
2003-12-07Merge from 3.0:Andrew Bartlett3-10/+21
source/libsmb/ntlmssp.c: Picked up by the build farm - despite all my efforts, security=server was broken by my NTLM2 commit. This should correctly cause the NTLM2 case not to be negotiated when 'security=server' is in effect. testsuide/build_farm/runlist: Without 'non unix accounts' we can't test security=domain on the build farm. source/rpc_server/srv_samr_nt.c: Match Win2k and return 'invalid parameter' for creating of a new account with account flags of 0. Andrew Bartlett (This used to be commit e97f1eb62ae01b5259d7ecfab9b55b07103379c7)