summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2001-11-26A number of things to clean up the auth subsytem a bit...Andrew Bartlett7-53/+110
We now default encrypt passwords = yes We now check plaintext passwords (however aquired) with the 'sam' backend rather than unix, if encrypt passwords = yes. (this kills off the 'local' backed. The sam backend may be renamed in its place) The new 'samstrict' wrapper backend checks that the user's domain is one of our netbios aliases - this ensures that we don't get fallback crazies with security = domain. Similarly, the code in the 'ntdomain' and 'smbserver' backends now checks that the user was not local before contacting the DC. The default ordering has changed, we now check the local stuff first - but becouse of the changes above, we will really only ever contact one auth source. Andrew Bartlett (This used to be commit e89b47f65e7eaf5eb288a3d6ba2d3d115c628e7e)
2001-11-26add SEC_ADS auth methodAndrew Tridgell1-0/+12
(This used to be commit b175c42080b15f27589cb6b6d61af5cbbedf5d02)
2001-11-26updated server_role for ADSAndrew Tridgell1-0/+1
(This used to be commit 48df0d2b5dee3c010c88587352554220f8b92b0f)
2001-11-26prevent proto from picking up this as a defintion for 'main()' becoue it ↵Andrew Bartlett1-1/+1
conflicts with nmbd's definition. (This used to be commit 70e9c2efaada4be609ff053d216d554cb036df4e)
2001-11-26More compiler warnings fixed. Some minor reformatting.Tim Potter2-94/+143
(This used to be commit 8227f6909cca67fcc1a8455f4b386df7778ef2e7)
2001-11-26we can safely give NO_SUCH_USER if the ticket decodes but the localAndrew Tridgell1-1/+1
account doesn't exist (This used to be commit 477b6d27fd7281418739bc8ba0b984a53430ecda)
2001-11-26Another merge from appliance-head: in [ug]id_to_sid don't call theTim Potter3-71/+97
winbind function if the id is obviously going to be local. Cleanup of winbind [ug]id parameter handling. (This used to be commit 4ab9ca31a02b3388aa89a00e0390ea9e4c76283a)
2001-11-26challange -> challengeTim Potter12-71/+72
(This used to be commit d6318add27f6bca5be00cbedf2226b642341297a)
2001-11-26Merge from appliance-head: when creating a default security descriptorTim Potter1-1/+11
for a printer, save it in ntprinters.tdb instead of recreating it every time it is required. This can save at least one winbind lookup per secdesc creation. Opening a port monitor and viewing the security tab in the properties dialog required the security descriptor to be returned 25 times! (This used to be commit f85c976acc08a16bce6cb4053708485ccdea0d77)
2001-11-26Got medieval on another pointless extern. Removed extern struct ipzeroTim Potter30-86/+70
and replaced with two functions: void zero_ip(struct in_adder *ip); BOOL is_zero_ip(struct in_addr ip); (This used to be commit 778f5f77a66cda76348a7c6f64cd63afe2bfe077)
2001-11-26Fix up the build farm again.Andrew Bartlett5-3/+54
This should get us 'green' for once... Andrew Bartlett (This used to be commit 042b9e3a6332473dc88c36dd7f99428644324ac4)
2001-11-26dyn_CONFIGFILE fixups.Tim Potter1-4/+3
(This used to be commit 7d10fa208248e201946876168743025866e011fc)
2001-11-26Fixed compiler warnings and dyn_CONFIGFILE related breakage.Tim Potter1-10/+9
(This used to be commit bf491d2aa2e99156b4e80bc9d89ab34cfb3c4cf4)
2001-11-26And delete domain_client_validate.c...Andrew Bartlett1-432/+0
Andrew Bartlett (This used to be commit 6caca4301ba88d026ce1989cefd3e9eeb65df376)
2001-11-26This compleats the of the authenticaion subystem into the new 'auth'Andrew Bartlett12-2722/+415
subdirectory. (The insertion of these files was done with some CVS backend magic, hence the lack of a commit message). This also moves libsmb/domain_client_validate.c back into auth_domain.c, becouse we no longer share it with winbind. Andrew Bartlett (This used to be commit 782835470cb68da2188a57007d6f55c17b094d08)
2001-11-26Removed bogus SAFE_FREE() call of talloced return data fromTim Potter3-19/+19
winbindd_lookup_usergroups() (This used to be commit dd2048c418da7a08bc71305491953731fc427f5a)
2001-11-26Ignore *.po files.Tim Potter1-0/+1
(This used to be commit 091f01f34ab0ff7d394811af0d027ea3bad56d0e)
2001-11-26Fixed some indentation.Tim Potter1-2/+2
(This used to be commit 1dd462844a9b90b498ee79ca33e4048980e2af5f)
2001-11-26use DEBUG() not d_printf() in librariesAndrew Tridgell1-2/+2
(This used to be commit 5100ae4ae032545edaf525de1dfbe5dc9dafecfc)
2001-11-26fixed spnego, non-kerberos negprotAndrew Tridgell1-2/+2
(This used to be commit 2e916222a915c27f919a9841bde5ba0967af2190)
2001-11-26Allow lookup of users with spaces in their name.Tim Potter1-5/+3
(This used to be commit 751ea8cfb931e1de6df447ed05e051262cdeb304)
2001-11-25Fixed compiler warning.Tim Potter1-1/+1
Why do people keep adding stuff to includes.h (OK I am guilty of this too)? It's getting really huge and full of random junk. )-: I've noticed TNG have started to split stuff up in to individual header files included as needed. (This used to be commit 36630f3984cb2bc4e60d910889e0396891cbc088)
2001-11-25added 'security=ADS'Andrew Tridgell3-1/+9
(This used to be commit 5a735a88e472a48cd4329832998dc31c1e230ecb)
2001-11-25Minor typosVolker Lendecke1-2/+2
(This used to be commit 1c9d951f86609b08e5660b0fc966c5e5058a3ce2)
2001-11-25Don't close tdb twice.Volker Lendecke1-1/+0
(This used to be commit 6dda341bc80dc7c4d044df134fc153f646a6a4e9)
2001-11-25portability fixesAndrew Tridgell1-3/+6
(This used to be commit 09127d85dc91037c9d0280b57d48d23e93a39f8b)
2001-11-25fixed typoAndrew Tridgell1-1/+1
(This used to be commit b14ae495028da4d2b995cefa786746d2c649460c)
2001-11-25add popt build dependencyAndrew Tridgell1-1/+1
(This used to be commit 0c1f90402bf6aa403719cef59afd127ae42b0865)
2001-11-25move popt out of proto objsAndrew Tridgell1-2/+2
(This used to be commit db0bee1c68d8d9af3febb841c86cd3d4ade87c7b)
2001-11-25added HAVE_LDAP_H checkAndrew Tridgell1-2/+2
(This used to be commit a1304be045d9cfd7bb793bb55ff49e158440a90e)
2001-11-25check for liblber separatelyAndrew Tridgell3-74/+116
(This used to be commit d7216424d94ee89e1760596c8f87d1883f369771)
2001-11-25#ifdefed DMF fix so not compiled by default. We need to look at this...Jeremy Allison1-22/+39
Jeremy. (This used to be commit 97dca242a91c68048e510f42be53421b533183be)
2001-11-25Use "password server" for searching for BDC's also as Tim suggested.Jeremy Allison1-6/+8
Jeremy. (This used to be commit 4aca67761fbe601e27f8f768c28a11241f088bba)
2001-11-25Add the PDC end of the smbtorture test for creating an NT_STATUS -> DOS errorAndrew Bartlett4-0/+72
map. This little authentication module is #ifdef DEVELOPER, becouse it really is of no use execept as a development tool invoke by setting: auth methods = guest sam name_to_ntstatus in the smb.conf file (the SAM and guest elements are required for the member server to authenticate itself). Andrew Bartlett (This used to be commit 9807e66f34c1088399657060977e384c5a7f0664)
2001-11-25oops, I forgot to include the header fileAndrew Bartlett1-0/+2
(This used to be commit c28956d8601c103c3f8dab4253de80e6a00a02d7)
2001-11-25Add a new torture test to extract a NT->DOS error map from an NT member of aAndrew Bartlett5-5/+148
samba domain. The PDC must be running a special authenticaion module that spits out NT errors based on username. Andrew Bartlett (This used to be commit adc7a6048c13342b79b6228beafb5142c50f318d)
2001-11-25Unless the error is exactly NT_STATUS_OK, we might not have a server info, soAndrew Bartlett1-1/+1
we need to bail here. (This used to be commit ea0331354e5968aa0a25c0b12379a56c72d7946b)
2001-11-25I think this is a fix for the "out of space" errors with oplocks=no.Jeremy Allison1-49/+58
Jeremy. (This used to be commit 84b62d3c8ebd78cd578ac36168631b3bbcafdd8c)
2001-11-25Fix ./configure --enable-developer warnings (shadow of global)Andrew Bartlett1-2/+2
(This used to be commit 3f1cfb62e85343a45817651f111f01051fc66b18)
2001-11-25better helpAndrew Tridgell1-1/+7
(This used to be commit b390d6eef95ee6094eb193006bc2f23c40291026)
2001-11-25use generate_random_str()Andrew Tridgell1-47/+4
(This used to be commit 720c50a7514febdd7cfd6ce40b7b5a0c5cc0abf8)
2001-11-25added "net ads user" and "net ads group" commandsAndrew Tridgell2-29/+80
(This used to be commit f482583139eedb75a23c7a720dca4e8fb7070fd5)
2001-11-25added "net ads status" commandAndrew Tridgell2-29/+115
(This used to be commit ae0eabd04c97320c2cf3c4575263c53cf61d03ea)
2001-11-25made a "net ads" command, currently with "net ads join" and "net ads leave"Andrew Tridgell3-5/+192
(This used to be commit 2f8fa175b189c2d11676245b01d3201c0a4f0826)
2001-11-25stop popt from doing its own intl stuffAndrew Tridgell1-16/+0
(This used to be commit 1a5ef2425747c2e0c7cf28fc7712563039086100)
2001-11-25better auto-selection of realm and ldap serverAndrew Tridgell1-3/+4
(This used to be commit 69d256af4612f5c1277202eb8a7ef37eb6bb55f4)
2001-11-24added "net join" commandAndrew Tridgell19-251/+902
this completes the first stage of the smbd ADS support (This used to be commit 058a5aee901e6609969ef7e1d482a720a84a4a12)
2001-11-24removed unused functionAndrew Tridgell1-18/+0
(This used to be commit ad7afbfdea600a62fa1550bd354996ad38807533)
2001-11-24rewrote net.cAndrew Tridgell1-1260/+1071
The rewrite fixes a number of things: - much better command line parsing - fixed usage of static and const - better finding of hosts - clean internal separation of sub-functions - expandable design (This used to be commit 0f88d9c50e419504b9ceca5eadbe30ee04fa42dc)
2001-11-24And add the winbind module I missed in the last run.Andrew Bartlett2-0/+222
(large change to modularise the auth subsystem) Andrew Bartlett (This used to be commit 324c4676280641fee0647221dba1e826e03ba9ab)