summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r5471: In cli_samr_lookup_rids, flags is not a flags but an array size. W2k3 ↵Volker Lendecke5-12/+10
rejects everything but 1000 here, so there's no point in exposing that to the caller. Thanks, Volker (This used to be commit 03ec1bd9e54b065c0494bc57a3d78ac0ae28e234)
2007-10-10r5469: Fix error codes of samr_lookup_rids: There's also STATUS_SOME_UNMAPPED.Volker Lendecke3-14/+32
Thanks, Volker (This used to be commit 43dcf0f5cb5dc2dd37ab3cdc2905970d9cc50ba4)
2007-10-10r5467: Optimize _samr_query_groupmem with LDAP backend for large domains.Volker Lendecke4-38/+380
Could someone else please look at this patch, verifying that I did not break the ldapsam:trusted = False fallback to the old behaviour? It works fine for me, but you never know. You're certainly free to review the new code as well :-) Thanks, Volker (This used to be commit e1c3ca182b299dc65da1fa39aadb69876b5e16b8)
2007-10-10r5462: BUG 1549: patch from SATOH Fumiyasu <fumiya@samba.gr.jp> to fix ↵Gerald Carter1-1/+1
trunction of service names (This used to be commit 440a4ecc1641658a2553312b759b6b97a8e5c981)
2007-10-10r5460: Fix "restrict anonymous = 1". If we have schannel connection, we must beJim McDonough1-0/+4
validated with a user, so allow it even if pipe itself had an anonymous connection. (This used to be commit 469a649ad7271159960335419fd3ce2633cf2c8b)
2007-10-10r5458: Generate a sane response to exceeding lookupsids limit. Truncate ↵Jim McDonough1-2/+3
list to zero and return NT_STATUS_NONE_MAPPED. This does not crash windows and maintains the benefit of not overallocating memory. The previous response of truncating to the MAX limit was not useful because it crashed lsass.exe on windows (bug opened with MS), and it was also misleading the client to believe that a complete answer was received. (This used to be commit c03a93957404663bbd026668fb95d6c253524fe9)
2007-10-10r5456: Increase limit of mapped SIDS to 0x5000, which is what 2k and later do.Jim McDonough1-2/+2
NT has no limit. We still don't respond the way 2k would to requests larger, which is to actually allocate the memory and send back the entire response, plus a return status of NT_STATUS_NONE_MAPPED. Still looking into ways of doing this without crashing windows. (This used to be commit 9afe5acdc22adaed4b4b3d70ba3a1a7898256282)
2007-10-10r5455: Remove bogus DEBUG messages (dump for a failure to parse NTLMSSP,Andrew Bartlett1-4/+2
before trying the alternate format). This only caused confusion and bug reports... Andrew Bartlett (This used to be commit 5cb02b569b39aa7a9dc6692a79ff1d1dfa69aee6)
2007-10-10r5444: Add adssearch.pl utility (on volkers request).Günther Deschner1-0/+1492
Added to samba3 due to some header and machine-account dependencies, although it's possibly of more interest to samba4 developers. adssearch.pl is a kind of ldapsearch + dump-filters for various ADS-attributes. It can also register asynchronous change notifications. ./adssearch.pl -h w2k3host -D administrator@MY.REALM.NET -x -w mypass -n and *any* change in your entire DIT will show up immediately (after a second change of an object even as object diff). It's very interesting to see the interaction of GPOs, the various steps of account modification with dsa.msc, etc. Gracefully ignore some parts of adssearch.pl that are rather immature... Guenther (This used to be commit fd947b5ee060a48597bc1166614a05f81457e5e0)
2007-10-10r5436: small merges from trunkGerald Carter1-5/+5
(This used to be commit f17ffdf805ef8afad2b8d63b619c52540001a546)
2007-10-10r5432: compile fixes from Jason Mader <jason@ncac.gwu.edu> -- BUGS 2340Gerald Carter1-3/+3
(This used to be commit 3fd86a1f9d5b63aa066aed3347209913cdf782a8)
2007-10-10r5431: couple of cimpile fixes from Jason Mader <jason@ncac.gwu.edu> -- BUGS ↵Gerald Carter2-10/+16
2341 & 2342 (This used to be commit 0edcfc7fa20fd8e3273b29c8f1a97cb7c7179fb6)
2007-10-10r5428: Apply some const. LDAP attribs should now be declared const char ↵Volker Lendecke5-37/+38
*attr[]. This gives some new warnings in smbldap.c, but a the callers are cleaned up. Volker (This used to be commit 543799fc0ddc3176469acc1fab7093c41556d403)
2007-10-10r5421: Fix a memleakVolker Lendecke1-1/+3
(This used to be commit a7df3b5f06085d55cbf1e491aa606312b87e0448)
2007-10-10r5419: Fix some unitialized variable warningsVolker Lendecke1-3/+3
(This used to be commit 9004b7897416d142ab9e3bee60c7bda589f94750)
2007-10-10r5385: when operating in security = domain, allow domain admins to manage ↵Gerald Carter1-1/+13
rigths assignments (This used to be commit fec9cb7daa9b780aab019c0e0d7f2692c168019f)
2007-10-10r5383: add missing checks to allow root to manage user rightsGerald Carter1-2/+12
(This used to be commit ead54b14f6b34f087d3affc2853e16bbbaceb7cc)
2007-10-10r5379: Build-Fix (#2343)Günther Deschner1-1/+1
Guenther (This used to be commit 61ec0b4cf002cfb43ac137bf3e8f8b4877f25e50)
2007-10-10r5359: BUG 2333: use the lpq command to pass in the correct printer name for ↵Gerald Carter2-6/+17
cups_queue_get(). See comments in code for details (This used to be commit 3eee00e0d0e9b58cdd35209691072b625813681c)
2007-10-10r5355: Fill in the access check code for POSIX ACLs to *really* fix bug #2227.Jeremy Allison1-2/+148
Jeremy. (This used to be commit ecc134a2e3546ed77ab6f1dafc0249c78897e1f3)
2007-10-10r5349: After talking with Jerry, reverted the addition of account policies toGünther Deschner15-846/+172
passdb in 3_0 (they are still in trunk). Guenther (This used to be commit fdf9bdbbac1d8d4f3b3e1fc7e49c1e659b9301b1)
2007-10-10r5343: Fix for bug#1525. Timestamps interpreted incorrectly on 64-bit time_t ↵Jeremy Allison2-18/+10
values. Jeremy. (This used to be commit 00f8ac509aaf2f40a067f5fe5c7699ae6f26571e)
2007-10-10r5342: Reformat some very old code.Jeremy Allison1-256/+281
Jeremy. (This used to be commit 08553faeeb77aef46264f4dfe738bc202e87ea23)
2007-10-10r5339: Fix 'net rpc trustdom establish'. Use the right pipe name, therefore theJim McDonough1-1/+1
right pipe FID. Fixes NT_STATUS_INVALID_HANDLE error. (This used to be commit bfd9b9e99711abcaac80d98160723f5dc37b6917)
2007-10-10r5337: BUG 1439: make sure to initialize pointer to prevent invalide ↵Gerald Carter1-42/+42
free()'s on exit (This used to be commit a882a349df1488a4d64c892dbd1ec1ee3624ea42)
2007-10-10r5336: BUG 2329: fix to re-enable winbindd to locate DC's when 'disable ↵Gerald Carter3-70/+87
netbios = yes' (This used to be commit 75a223f1188ae0041c9e3c748af107d642f73810)
2007-10-10r5331: Support SIDs as %s replacements in the afs username map parameter.Volker Lendecke4-0/+52
Add 'log nt token command' parameter. If set, %s is replaced with the user sid, and %t takes all the group sids. Volker (This used to be commit e7dc9fde45c750013ad07f584599dd51f8eb8a54)
2007-10-10r5324: In order to process DELETE_ACCESS correctly and return access deniedJeremy Allison3-7/+40
to a WXPSP2 client we must do permission checking in userspace first (this is a race condition but what can you do...). Needed for bugid #2227. Jeremy. (This used to be commit da23577f162b6bdca7d631fca256a9b3b04043e4)
2007-10-10r5318: Fix a small problem in where we ignore the response from a ↵Richard Sharpe2-16/+21
SamrGetGroupsForUser that says the user is in 0 groups, and we issue an RPC to LookupIds for 0 RIDs. The printing that there are no groups the user is a member of might be overkill in that it might upset existing scripts that don't expect that output. (This used to be commit d3482e118f99002c0460291d41708fdf7708c41f)
2007-10-10r5316: Get 'net afskey' into a subcommand of its own, 'net afs key'.Volker Lendecke2-5/+43
Implement 'net afs impersonate', generate a token for a specified user. You obviously need to be root for this operation. Volker (This used to be commit 5818b092e6e50d38238b0520329eb8912125c90a)
2007-10-10r5314: Some const, and an uninitialized variable fix.Volker Lendecke1-4/+4
Volker (This used to be commit b48a46162d7971be3d44d403a2d62247ef2321f7)
2007-10-10r5295: fix compile issue with MIT 1.4 due to broken gssapi.hGerald Carter1-30/+0
(This used to be commit f88f5e12187ed87934ae2cafbf9e9599d4fd7f6c)
2007-10-10r5290: Fix for bug #2323 - plaintext problem with WinXP.Jeremy Allison1-0/+8
Jeremy. (This used to be commit 3e10c36cb50462d1f220029e8fa64c3b6e554e6c)
2007-10-10r5287: fix build problem when HAVE_POSIX_ACL not definedHerb Lewis1-0/+6
(This used to be commit 2bd0253c11977122b195dc2f685d5367869973fd)
2007-10-10r5283: Merge -r5279 and-r5280 from trunk.Tim Potter4-8/+154
(This used to be commit 74d872287b5cf5b13512091827a9d065f1fef122)
2007-10-10r5278: BUG 2327: fix compile bug in idmap_rid.cGerald Carter1-1/+2
(This used to be commit dd55ef25d1b24401a743d0367544e535cd17815c)
2007-10-10r5272: BUG 2132, 2134: patch from Jason Mader <jason@ncac.gwu.edu> to remove ↵Gerald Carter2-11/+2
unused variables (This used to be commit 82c4e2f37f1f4c581cd7c792808c9a81ef80db94)
2007-10-10r5271: patch from S Murthy Kambhampaty <smk_va@yahoo.com> to add ↵Gerald Carter2-2/+6
idmap_rid.so to the Fedora and RedHat packaging (This used to be commit ba0c711a4386833da7cdf15bfd0f90177eb41bad)
2007-10-10r5270: fixing some bashism's in autogen.shGerald Carter1-3/+3
(This used to be commit c8b79cd78cff6f5f784d16e6c3168c9ac2c1cf1a)
2007-10-10r5269: BUG 858: fix order of popt args evalution so we don't crash when ↵Gerald Carter1-2/+2
given no command line args (This used to be commit aff2fb7a65a9fc40220d971fba8ba3cf1eeeee9f)
2007-10-10r5268: Fix bug #2310, only do 16-bit normalization on small dfreeJeremy Allison1-5/+5
request. Jeremy. (This used to be commit 96dfec739a7ab6ac082d530ca2b771f9d6acabc6)
2007-10-10r5265: ensure that the Fedora RPMS build with cups supportGerald Carter1-2/+3
(This used to be commit c3f760bea97abd80aab27c125042584b4c243c7c)
2007-10-10r5264: Log with loglevel 0 when account-administration scripts fail.Günther Deschner4-9/+9
Guenther (This used to be commit 3d391ef149639750db376b05528a27422f8a3321)
2007-10-10r5263: bug 2249: patch from Manuel Baena <mbaena@lcc.uma.es> to print error ↵Gerald Carter1-1/+2
message in fullpath() (This used to be commit 0f66db48b09adc5b78a10e5023604c333684cbb3)
2007-10-10r5262: Fix server_role in the samr_query_dom_info calls. When we are a BDC weGünther Deschner4-17/+63
should not say we are a PDC. Guenther (This used to be commit 6cdf3b97de2c28ac92f972621b0ce04c1c80cea5)
2007-10-10r5257: Upadate patches and control filesSimo Sorce6-15/+44
Sync up with 3.0.11 (This used to be commit ed61c84581b364e9d822871944c45a26c2f0e932)
2007-10-10r5246: We can't use a pointer to struct lsa_info until is has beenTim Potter1-1/+1
initialised. Fix for bugzilla #2315. Can the privileges dude(s) please verify this? (This used to be commit bc4f884104c04f7c9ab7d370586115a9328ce9b1)
2007-10-10r5236: Ignore users mount parm (since unneeded by cifs kernel code). ↵Steve French1-1/+5
Suggested by Dirk Jagdmann. (This used to be commit 076485169e44a95981a12606c639b973c4e79d4e)
2007-10-10r5235: Fix compile warning.Günther Deschner1-1/+1
(This used to be commit 00b5990617b341b1fe7863552acb02e30cd022e5)
2007-10-10r5234: Do not use the "Local Unix Group"-default description for all kinds ofGünther Deschner1-2/+16
group-mappings. Guenther (This used to be commit 2556e6570ec8074bb67827f95eb365800c5c9827)