summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2001-12-10switch off level 100 debug for server securityAndrew Tridgell1-1/+0
(This used to be commit 75ad6df18454022372526332dcde51bcb4285b97)
2001-12-10added some commentsAndrew Tridgell1-0/+2
(This used to be commit 34589d5a4786b7e441efecaef0575f9eaa0d7edf)
2001-12-10moved the domain sid lookup and enumeration of trusted domains intoAndrew Tridgell5-109/+143
the backends at startup, loop until we get the domain sid for our primary domain, trying every 10 seconds. This makes winbindd handle a room-wide power failure better (This used to be commit 7c60ae59378be1b2af2e57ee3927966a29a797a5)
2001-12-10added some commentsAndrew Tridgell2-4/+2
(This used to be commit 5ab2c8b8214236b4cd028f791e9ddb76a9973d74)
2001-12-10make sid_binstring available without HAVE_ADSAndrew Tridgell6-91/+48
(This used to be commit 4a6d29768665f71b72cf48ee34ee9a9c451232f6)
2001-12-10explicitly encode NULL strings in the cacheAndrew Tridgell1-1/+15
(This used to be commit 77c1376456765a7afe90afad96fab819fdcf8af3)
2001-12-10removed a debug lineAndrew Tridgell1-2/+0
(This used to be commit ec4c90fd7f56f8870884e5a27622cae71d154eca)
2001-12-09completely new winbindd cache infrastructureAndrew Tridgell9-756/+591
this one looks like just another winbind backend, and has the following properties: - does -ve and +ve cacheing of all queries - can be disabled with -n switch to winbindd - stores all records packed, so even huge domains are not a problem for a complete cache - handles the server being down - uses sequence numbers for all entries This fixes a lot of problems with winbindd. Serving from cache is now *very* fast. (This used to be commit fddb4f4c04473a60a97212c0c8e143d6a4d68380)
2001-12-09add smb_xvasprintf() panic wrapper around vasprintfAndrew Tridgell1-3/+13
(This used to be commit fa1e7a62acdbcc550e6b29dc69454dcf7472210d)
2001-12-09added fr.msg from FanchMotonobu Takahashi1-0/+1709
(This used to be commit 3a3b3469e66e25531f4531dce8a1d7bc9c17896e)
2001-12-09added a simple tdbdump utilityAndrew Tridgell2-0/+92
(This used to be commit c4f5a6c65d7dd933e9d6faf14ebf6afcf5232a1e)
2001-12-09set return value to total errorsAndrew Tridgell1-2/+9
(This used to be commit 4a7e1f6bb12e74effad83410c4b07683eaaa4617)
2001-12-09better error checking in nsstestAndrew Tridgell1-9/+64
(This used to be commit 3c17c64e31cbd56ada4e4bc0d371cef81e2e42cf)
2001-12-09- check for correct error codesAndrew Tridgell1-27/+48
- handle no initgroups fn (This used to be commit 84a3390eace7f6cf1f5fb867fc58a982f24fd0b6)
2001-12-09- use accountype not accountcontrolAndrew Tridgell1-8/+26
- better debug code (This used to be commit 01f63b9c92137e6de906412952c7a2c8da21dfbe)
2001-12-09fixed type passed to ads_searchAndrew Tridgell1-2/+1
(This used to be commit 0ff30848f3ef4f38e9bc80dc96be4f37bb2dcb0e)
2001-12-09fixed used of string after freeAndrew Tridgell1-1/+1
(This used to be commit f7ead035ebe55e94cdd5807b173bd4612866b06f)
2001-12-08small comment I don't want to loose.Jean-François Micouleau1-0/+5
J.F. (This used to be commit a0b5ae58228d01ff5099180f16ffba4353bd28a7)
2001-12-08Fix domain logon that I broke 3 days ago.Jean-François Micouleau1-1/+4
And it's in sync with the docs, %U is really replaced by the name the user asked. Whereas in 2.2 that's false, %U is replaced by the name the user was mapped to. J.F. (This used to be commit 39f2b23347011acabe9dd3ab15025022da352b74)
2001-12-08By popular demand: a new config.guess and config.subAndrew Bartlett2-127/+184
(I hope I did this right) Andrew Bartlett (This used to be commit 75d0f4cf198534680dd2b50227b230bf5d5aa777)
2001-12-08check for gssapi_generic.hAndrew Tridgell4-676/+725
(This used to be commit 838fbac7a086ff82498c3f0ba95b714123a7428c)
2001-12-08fix a DEBUG() lineAndrew Tridgell1-2/+3
(This used to be commit 18da530293b11d895c62d08895ee1f77d8f97a12)
2001-12-08added internal sasl/gssapi code. This means we are no longer dependent on ↵Andrew Tridgell15-784/+1074
cyrus-sasl which makes the code much less fragile. Also added code to auto-determine the server name or realm (This used to be commit 435fdf276a79c2a517adcd7726933aeef3fa924b)
2001-12-08Fix segfault, and add a comment.Andrew Bartlett1-2/+5
(This used to be commit ff91131ef9b384765de3e4f22202d1e493f02efc)
2001-12-08Leak less memory.Andrew Bartlett1-8/+18
Now, is there any reason that the prs_init() doesn't use the talloc context that it is supplied as an argument for the actual data buffer? It would seem logical to replace the malloc with a talloc, but I'm sure there is some method to the madness (extrnal use/Reallocing of it I presume) Andrew Bartlett (This used to be commit ad18f33bfa79ce93024f3cb3a334cff622fe82a4)
2001-12-08Ensure that 'use spnego' restricts, rather than just advises our clients.Andrew Bartlett1-1/+6
This means that if a hole is found in the spnego code, we can tell people to just set 'use spengo' in their config file while we sort it out. Other than that, preventing 'unusual' behaviour is always a good thing. Andrew Bartlett (This used to be commit a8a53c08f7d607268a3959486a850a2df50ca7a2)
2001-12-07basic howtoJean-François Micouleau1-0/+77
(This used to be commit b48d58c768999abf4f044e474880e47c5a7bb144)
2001-12-07include/build_env.h wasn't getting built by default with new rules unlessHerb Lewis1-1/+1
you did make headers - fixed (This used to be commit ce84993e8e66a151fcb7d5709763b0bf2d513a7c)
2001-12-07added a "use spnego" optionAndrew Tridgell2-0/+7
you need to set "use spnego = no" for w2k to be able to join a samba domain. Otherwise the w2k box will assume we can do kerberos as a KDC (This used to be commit b5cb57a367a6d9a82e082e2838e83e0997eb4930)
2001-12-07OK I think this does what everyone wants with the .headers.stampHerb Lewis1-3/+3
it gets removed on a make clean it gets created on a make headers (if it doesn't already exist) This makes it so I only rebuild everthing once after a make clean and also so nothing gets rebuilt after jfm does a make headers (proto) (This used to be commit bc918bce104954b39bd54cab3149a0f4573feb5f)
2001-12-06allow nsstest to test any nss moduleAndrew Tridgell1-13/+19
(This used to be commit c531f4773e33cce4b4eb97c8f9147eed02edc2d5)
2001-12-06add smbgroupeditHerb Lewis1-0/+1
(This used to be commit ba2dd34407aa51cdbfe6fe7fe8730af2b2cd00ed)
2001-12-06again an intrusive patch:Jean-François Micouleau14-270/+122
- removed the ugly as hell sam_logon_in_ssb variable, I changed a bit the definition of standard_sub_basic() to cope with that. - removed the smb.conf: 'domain admin group' and 'domain guest group' parameters ! We're not playing anymore with the user's group RIDs ! - in get_domain_user_groups(), if the user's gid is a group, put it first in the group RID list. I just have to write an HOWTO now ;-) J.F. (This used to be commit fef52c4b96c987115fb1818c00c2352c67790e50)
2001-12-06remove .headers.stamp from the delheaders definitionJean-François Micouleau1-2/+2
It forced a complete build to occur each time the proto are rebuild ! J.F. (This used to be commit 9866c18193226ec4dc69ccc459f4f9b36610b945)
2001-12-06merge from 2.2Gerald Carter5-439/+0
(This used to be commit f1ead192c668abf20f328a691caafd76874c6e47)
2001-12-06merge from 2.2Gerald Carter94-10359/+5220
(This used to be commit c5ee06b7c8fc9f1fec679acc7d7f47f333707456)
2001-12-06commit from 2.2Gerald Carter1-0/+8
(This used to be commit 54a453478a087073a51822086bd9f985a5d8cf6a)
2001-12-06put the winbindd krb5 credentials cache in the lock directoryAndrew Tridgell1-0/+4
this prevents it clobbering the users cache (This used to be commit 3de552f365373de85298dbe911143e036805f9ea)
2001-12-06allow a MAX_DEBUG_LEVEL setting in local.h (or the Makefile)Andrew Tridgell2-6/+21
This allows embedded systems to compile out the higher debug levels. It should gain speed as well as reducing the code size. Setting it to 1 saves about 300k of code on my system. (This used to be commit f34cac3b312f273a2363919655ddd1e25cb91305)
2001-12-06added a propoer kerberos_kinit_password callAndrew Tridgell2-12/+66
contribution from remus@snapserver.com thanks! (This used to be commit 3ace8f1fcc27492d26f5ad0c3cdfc63235ca0609)
2001-12-06Fixed typo in fix for typo in debug. (-:Tim Potter1-1/+1
(This used to be commit 7c64e5f1481e832767ae07e63d7d9d116131b331)
2001-12-05fix up packaging stuffHerb Lewis2-6/+16
(This used to be commit 8f3093fbd092c0ddf38b49c0735308f4f5ba4492)
2001-12-05merge from 2.2Herb Lewis3-17/+17
don't set WINBIND variables unless configure was run --with-winbind (This used to be commit 83ec4c0f4dbfa43c893f18af1c6bb58c55043c9b)
2001-12-05dont add -I./popt to CFLAGS it really belongs in FLAGS1 with other includeHerb Lewis3-651/+652
paths. This make it hard to use a script that overrides CFLAGS options. (This used to be commit 646b5ae752f7cd00e057d0d7cc6001161125fd3f)
2001-12-05Added fetch_domain_sid. Not used in current code, but a nice exampleJeremy Allison1-0/+96
of how to use this interface. Jeremy. (This used to be commit 291985123515f99bb3fd86605d5b8a08301070a2)
2001-12-05changed the DEBUG level of tdb_pack and tdb_unpack. Instead of 8, it's nowJean-François Micouleau1-2/+2
18. when you're looking at a level 10, and it's all clutered with tdb_pack/unpack, it's getting .... And anyway most of our code using tdb_pack/unpack have DEBUG around the call if there is a problem. J.F. (This used to be commit 7e20fad5ed00be4594bfc45603db89d600f46c55)
2001-12-05added samr_queryuseralias(). instead of returning BUILTIN_ALIAS_RID_USERS,Jean-François Micouleau2-16/+228
now return the alias correctly. time to look at the netlogon case. J.F. (This used to be commit 72ee1791084d09e73d8057e37ced4a79cecffb35)
2001-12-05preparing for release of 3.0alpha1Samba Release Account1-1/+12
(This used to be commit b56e8e72d6ae5602be0e3ec36643263f64b6178a)
2001-12-05fixed a return valueAndrew Tridgell1-0/+1
(This used to be commit 56bdb152d8617c0a36c0bc25c677a2d98bcb1328)
2001-12-05OK. Smbpasswd -j is DEAD.Andrew Bartlett14-400/+383
This moves the rest of the functionality into the 'net rpc join' code. Futhermore, this moves that entire area over to the libsmb codebase, rather than the crufty old rpc_client stuff. I have also fixed up the smbpasswd -a -m bug in the process. We also have a new 'net rpc changetrustpw' that can be called from a cron-job to regularly change the trust account password, for sites that run winbind but not smbd. With a little more work, we can kill rpc_client from smbd entirly! (It is mostly the domain auth stuff - which I can rework - and the spoolss stuff that sombody else will need to look over). Andrew Bartlett (This used to be commit 575897e879fc175ba702adf245384033342c903d)