summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2004-01-14Fix initgroups() call nss_winbind on solaris; patch from John Klinger ↵Gerald Carter1-0/+16
<john.klinger@lmco.com> (This used to be commit 40b7d863dc246ea23ff3d9cdc167f1fb96166e1d)
2004-01-14bug 770; correct fix this time; Make sure that we send the SMBjobid for ↵Gerald Carter2-10/+19
unix jobs back to the client. Allows windows client to remove print jobs submitted from lpr (This used to be commit 514561118860f982c458930c34763dac9ce0554e)
2004-01-14bug 660; using byte order safe macros (or tdb_unpack) when reading 2 or 4 ↵Gerald Carter1-16/+18
byte values from a tdb buffer (This used to be commit be9f25bea94415af6b631a9c6e7af28d9d6e6565)
2004-01-14revert the cracklib changes until post 3.0.2Gerald Carter4-134/+26
(This used to be commit 6202e0fa727a4307f51bf42f5ced401a7c7b8214)
2004-01-14* Revert to using rpc for mixed mode AD domains.Gerald Carter1-3/+9
The reason for this are: (a) the set_dc_type_and_flags() cannot tell the different between connecting to an NT4 domain and an NT4 BDC of a mixed mode domain. (b) the connection management for the rpc backend only provides on named pipe per cli_state. So it is possible to connect to an NT4 BDC for netlogon and an AD mixed mode DC for lsarpc. RPC is the lowest common demonimator here. (c) Issue with the sequence number value between the highestCommittedUSN LDAP attribute and the seq_num returned via RPC. We will revisit this later, but the changes need to make this work right now are too broad and risky. (This used to be commit 1ed2e521536108229d153c2996f4757d89461166)
2004-01-14Remove duplicate extern.Jeremy Allison1-1/+0
Jeremy. (This used to be commit fb088b5679f1def054d8b433c5e6c5b855411488)
2004-01-14Remove references to 'jn' which gcc-3.4 with precompiled headersJeremy Allison1-36/+36
doesn't like. Jeremy. (This used to be commit da51988cfac91e63f6e0213701aad652bc1bd55e)
2004-01-14fix XFS quotas the macro changed from HAVE_XFS_QUOTA -> HAVE_XFS_QUOTASStefan Metzmacher2-3/+3
metze (This used to be commit c73e845055163c1d814710fe4d9960c7f3587f12)
2004-01-14Remove duplicate comment.Andrew Bartlett1-2/+0
Andrew Bartlett (This used to be commit b0b2010461d8554334b033c4f07d78c308e73e7f)
2004-01-14Finish adding cracklib support - this adds the configure test to enableAndrew Bartlett2-0/+65
it, on machines that actually have a working cracklib, for which we have the correct path to the dictionary. Andrew Bartlett (This used to be commit 17518018c0264d2a8e4afbc712a22ef4a1a00003)
2004-01-13* allow dns lookups to be disabled for DOMAIN#1c (and #1b)Gerald Carter1-7/+26
names * fix some a mispelled variable name (This used to be commit bca702c97620ad8f66015d6e4b41abd4adf22076)
2004-01-12On systems without a working cracklib, ensure we don't include the headerAndrew Bartlett1-0/+2
(the actual call to crack was already in this #ifdef) Andrew Bartlett (This used to be commit 4a01f3dbb4a2e744b48bdb86c4d91ee4692d38e5)
2004-01-12fixing compile problems due to my recent ads.h changesGerald Carter2-2/+2
(This used to be commit d7b6298b9e4e7f83deaa2c6f3d711c390ff9cefd)
2004-01-12First stab at cracklib support (password quality checking) in Samba 3.0Andrew Bartlett4-26/+79
This adds a configure test, that tries to find out if we have a working cracklib installation, and tries to pick up the debian hints on where the dictionary might be found. Default is per my Fedora Core 1 system - I'm not sure how much it changes. Andrew Bartlett (This used to be commit bc770edb788f0b6f719011cda683f045b76b7ba5)
2004-01-11fix formattingGerald Carter1-6/+5
(This used to be commit acc9022550b20b144f749411ecdadf18adb09350)
2004-01-11update copyright to -2004Stefan Metzmacher4-4/+4
metze (This used to be commit 12d6bc3bd0684646e990c2fc6485fe1a92ac98fb)
2004-01-10Fix swatdir location for --with-fhsJelmer Vernooij2-3/+7
(This used to be commit d12b793d9ca10f966da3446982a5b1d987d51814)
2004-01-09starting new version of release notes -- post 3.0.2pre1Gerald Carter1-35/+73
(This used to be commit 83150b5733033aed4b3556ea94782a5b6c7b9aeb)
2004-01-09fix some warnings from the Sun compilerGerald Carter6-34/+34
(This used to be commit ebabf72a78f0165521268b73e0fcabe1ea7834fd)
2004-01-09Romve debugging assertions (oops...)Andrew Bartlett1-6/+0
Andrew Bartlett (This used to be commit 7e75a6d681fc63cacc7e5caa7a04568c6019367f)
2004-01-09Add a new type of name lookup 'ads'. This seperates this from normalAndrew Bartlett1-33/+59
hostname lookups, and ensures that we don't lookup 'short' (ie NetBIOS) domain names in DNS. Andrew Bartlett (This used to be commit 35f6347a73ce7423adb78c7e95492bb6d98f4c40)
2004-01-08Use StrCaseCmp, not strcasecmp. Should fix winbind build on IRIXJelmer Vernooij1-2/+2
(This used to be commit 65b01f67d5725bc54e6bc19b6e84beef38e372f8)
2004-01-08fix segfault when sid_ptr == 0 in DsEnumDomainTrusts() replyGerald Carter2-6/+5
(This used to be commit ba9dc0d9fd3e30a7ddf97b6a4df753db7ba12cc1)
2004-01-08fix a seg fault caused by abartlet's last checkin; there's no way this could ↵Gerald Carter1-1/+1
have been tested against an NT4 DC (This used to be commit 8e8a351cabb502f1a93b219fec064fb4eb094856)
2004-01-08We might not have the 'samba' directory in the samba_3_0 build.Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit a5cf5701e25e93e4e837f7cdc30a8603d289e4a9)
2004-01-08use SAFE_FREE(), not free().Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit 595dee660742f8bd5770a5f7aaf3a5d1987dbcfa)
2004-01-08This merges in my 'always use ADS' patch. Tested on a mix of NT and ADSAndrew Bartlett20-158/+298
domains, this patch ensures that we always use the ADS backend when security=ADS, and the remote server is capable. The routines used for this behaviour have been upgraded to modern Samba codeing standards. This is a change in behaviour for mixed mode domains, and if the trusted domain cannot be reached with our current krb5.conf file, we will show that domain as disconnected. This is in line with existing behaviour for native mode domains, and for our primary domain. As a consequence of testing this patch, I found that our kerberos error handling was well below par - we would often throw away useful error values. These changes move more routines to ADS_STATUS to return kerberos errors. Also found when valgrinding the setup, fix a few memory leaks. While sniffing the resultant connections, I noticed we would query our list of trusted domains twice - so I have reworked some of the code to avoid that. Andrew Bartlett (This used to be commit 7c34de8096b86d2869e7177420fe129bd0c7541d)
2004-01-08In tdb_allocate(), we would create a new record by writing a local variableAndrew Bartlett1-0/+2
'newrec' into the tdb. This was not initialised, so valgrind warned about it. (Note: valgrind only makes sense on tdbs with 'mmap = no' in your smb.conf) Andrew Bartlett (This used to be commit c9f9d6d3171d720b4ec0ba6af8c0c8ab178cd98b)
2004-01-08Make it clearer that the domain here is the domain of the user forAndrew Bartlett1-5/+5
authentication. Andrew Bartlett (This used to be commit 7e6cc8f0037f9948230a1e1bd380f30cec5d511e)
2004-01-08Move more of winbind to use 'find_our_domain()' rather than the dangerousAndrew Bartlett5-48/+38
find_domain_from_name(lp_workgroup()). (as find_domain_from_name() can change the data in lp_workgroup()) Andrew Bartlett (This used to be commit 2e6eaad9ce6a0ad6923b5952ef6cf1c3688b7cfa)
2004-01-08The correct test for 'is our primary domain' is domain->primaryAndrew Bartlett1-1/+1
(This used to be commit 703f101136b8e9bbc16f57a37cd9d9d739606a84)
2004-01-07Machines are people too!Andrew Bartlett5-36/+25
While machine accounts cannot use an NTLM login (NT4 style), they are otherwise full and valid members of the domain, and expect to be able to use kerberos to connect to CIFS servers. This means that the LocalSystem account, used by various services, can perform things like backups, without the admin needing to enter further passwords. This particular issue (bug 722) has started to come up a lot on the lists. I have only enabled it for winbindd-based systems, as the macros use use to call the 'add user script' will strip the $ from the username for security reasons. Andrew Bartlett (This used to be commit 6a9bbd1da3bb961d24e74348fa0b68574022855f)
2004-01-07Fix for bug #922. Fast path not called for strlower_m() and strupper_m().Jeremy Allison1-2/+2
From ab@samba.org (Alexander Bokovoy). Jeremy. (This used to be commit fac9e6d7125fb9edfade3c92a3cd9e1f2c60cefd)
2004-01-07Typo fix.Rafal Szczesniak1-1/+1
rafal (This used to be commit 5d7f81eea2f3d9ba59eb549a45de030b0a277263)
2004-01-07Doxygen comment fix.Rafal Szczesniak1-2/+5
rafal (This used to be commit b5e492b8eaf7cefe185d44b6c708f96ff61bd27b)
2004-01-07Fix from Justin Baugh <justin.baugh@request.com> for bugid #948 forJeremy Allison1-1/+4
FreeBSD winbindd. Jeremy. (This used to be commit 7c4d52014e4432c9bd430a8885f0c314312002d5)
2004-01-07commiting jra's fix for Exchange clear test authGerald Carter1-1/+2
(This used to be commit 344e113368cb46fc4d26107d1cd276e4c76a6a9b)
2004-01-07Fix from Luke Howard <lukeh@PADL.COM> for incorrect early free().Jeremy Allison1-5/+7
Jeremy. (This used to be commit 8e20c06ed31d9ec10ff0155b1624eee3d60cd006)
2004-01-07Don't duplicate pulling the 'IPC' username from secrets.tdb, insteadAndrew Bartlett2-7/+45
just use one function for both places. Andrew Bartlett (This used to be commit 85da181e8a0ade839f6d595fabdf4cea606f82e1)
2004-01-07There is a German translation of swat -- surprise :-)Volker Lendecke1-5/+5
Fix some msgs Volker (This used to be commit d42953681731d18aef740cd7dd9919e0f4715645)
2004-01-07Add smbget utility, a simple wget-like utility that uses libsmbclient.Jelmer Vernooij3-4/+585
Supports recursive downloads and resume, progress indication and shows estimated time remaining. (This used to be commit 82bd1b45a4205706b57bae42c7b03974f8b44753)
2004-01-06Fix segfualt caused by incorrect configuration. If lp_realm() was not set,Andrew Bartlett1-5/+9
but security=ADS, we would attempt to free the principal name that krb5 never allocated. Also fix the dump_data() of the session key, now that we use a data_blob to store that. Andrew Bartlett (This used to be commit 4ad67f13404ef0118265ad66d8bdfa256c914ad0)
2004-01-06Patch penguin. Cleaning out old mbp patch.Jeremy Allison1-22/+24
Jeremy. (This used to be commit d75db0bf1eee9c4341a3ec14c05f82b364a202b3)
2004-01-06more commits loggedGerald Carter1-3/+4
(This used to be commit fd357ab4e5d4bc0661bfbdd10053a5664e8d1a01)
2004-01-06Write bug number like in the rest of the fileJelmer Vernooij1-1/+1
(This used to be commit 3c936f1cb58fb0f47e64342f65f72e51b5120387)
2004-01-06Fix -s option to smbcontrol (#908)Jelmer Vernooij2-1/+2
(This used to be commit 7495395c1cc3b09b27d6eeb7dff6f214701d03d6)
2004-01-06remove unused seek_file(); don't hardcode '\' when printing the auth-userGerald Carter2-26/+1
(This used to be commit fac5e05ca1b56cb6e3ab6537d0848fa373c00831)
2004-01-06bumping to 3.0.2pre2Gerald Carter1-1/+1
(This used to be commit 52480d6d05c1008a25b4a45cbf7682fe227df83a)
2004-01-06more commit logsGerald Carter1-3/+9
(This used to be commit dc51a4c1f99d5727b5219b2c98586415ee58585a)
2004-01-06* making sure contributors are listed in alphabetical orderGerald Carter1-3/+7
* adding jra's fix for bug 815 (This used to be commit 4d07f7dff8a60b4bce0e266a6a3b13d35dbff089)