Age | Commit message (Collapse) | Author | Files | Lines |
|
Implement vfs_full_audit.c that can log every vfs.h operation. So if you
change vfs.h, from now on you also have to change full_audit :-)
Volker
(This used to be commit 9cb9c5f7c97fe8f76735a77b321c9500d28b55b2)
|
|
metze
(This used to be commit efba85d76e20096e1d7acfe855a18a21b8553468)
|
|
(This used to be commit 52df0905cdb68c0b83f64ccca39d377254e371cc)
|
|
user/group enumeration on systems whose libc does not call setgrent()
before trying to enumerate users (i.e. FreeBSD 5.2)
(This used to be commit 8106d8097258eae260ed834399881bf0be9b515b)
|
|
names on FreeBSD 5.x
(This used to be commit 6fcb8e5a48af3cd5421fbf376c510c8bc092c071)
|
|
license on tdb has changed.
(This used to be commit c6a18beafe702018f18acba76d7f796d7c89d2aa)
|
|
(This used to be commit 2a7aaedab66e1b69648cff2293f6661541c3a2a4)
|
|
Apr 27 16:05:59 delphin smbd_audit[14946]: 1011|192.168.234.100|unlink|New Folder/TESTDIR.TMP
where 1011 is the user's uid, 192.168.234.100 is the client IP etc.
Volker
(This used to be commit 9a1a8e26636d75cb7d1880558430bbffd5057052)
|
|
(0x20)
(This used to be commit d96929b5b1d8d149ac023a30964925952587c258)
|
|
your quota on an AFS file system. The specific errno was thrown away by
close_normal_file(). Thus we returned NT_STATUS_UNSUCCESSFUL and not
NT_STATUS_DISK_FULL as we should. Fix that. (Not that this gives more sane
Windows app behaviour.... :-( )
Jerry, jra, could you please look over this one, it's been quite a while since
I touch file server code.
Volker
(This used to be commit 588351d1b37a900eb90eddd80882170c201e9162)
|
|
metze
(This used to be commit 908d8a412559997256f51caa30da254f0768f114)
|
|
(This used to be commit f902d52c82c31d38157d4f1c77c27ee1c395afc3)
|
|
I'll add documentation to the Samba-Howto-Collection
metze
(This used to be commit 2bef5d2741807fe3f38a95710533520700e253a4)
|
|
valgrind log
:-)
Volker
(This used to be commit 91296a6003417e8704114ea63511c2c9201da122)
|
|
get_global_sam_name().
Error case: Adding a domain user to a XP local group did a lsalookupname on
the user without domain prefix, and this then failed.
Jerry: This is a must-fix before 3.0.3.
Volker
(This used to be commit f35e353454b6825da1de138a3f0d8106787e938b)
|
|
(This used to be commit bdbf6458a8154177beb3bfc52bb35797c18fc56e)
|
|
ntlmssp code
(This used to be commit a2e93dda24d079693a220b4551d264cba4c2bc82)
|
|
and AD) as well as on a Samba DC
(This used to be commit 157d53782d6a7d0b7e30676a674ff2a25a15369c)
|
|
(This used to be commit 870313956652a0f809cf43f13bd8905467e878e5)
|
|
(This used to be commit 39a2ab4d3d8d37e685b32b811f87b72851066120)
|
|
(This used to be commit 4d806384c0c1b97ca1707809c609090b7a252f90)
|
|
(This used to be commit d02e3c14f5e986239df397456955b9cbcee81568)
|
|
remove_duplicate_gids() to smbd and winbindd
(This used to be commit 95c68103ea9dbd02651e26fcaa15dd054b157529)
|
|
(This used to be commit df94b0471eb0628aa27f534134d60b62ed123688)
|
|
(This used to be commit 4a8339fa8434f547fead424445913a8d090887ed)
|
|
delete'.
Volker
(This used to be commit ec321674961cc62c048b149ee19b6e36325c8eb3)
|
|
lars @suse)
(This used to be commit c9db3da255e3b349cae8596136ee624a0482f38b)
|
|
(This used to be commit bf9f02be5fc1d09c8c08c78c3f2df23b2099ba4f)
|
|
Jeremy.
(This used to be commit c664a277b428c036510966734ba71e43112c1cac)
|
|
/etc/cups/cupsd.conf -- documentation to follow
(This used to be commit 2f323b0991c37022fb59ef8c69454eff03296662)
|
|
there is now a public patch that uses it, make it always available.
(It was #ifdef DEVELOPER)
Andrew Bartlett
(This used to be commit aa3bc79835c79652199ce5aaf2f3981f8211c9bd)
|
|
(This used to be commit fe7daa3b8a080a9e39ff055177b54f476fce2c32)
|
|
Volker
(This used to be commit b4429d97439e511d40901f809e3923945cb52221)
|
|
libiconv.
Based on inital fix from Jason Mader.
Jeremy.
(This used to be commit 2719d0ee7cb8bbaad79a4b73e10453a825de1309)
|
|
I restricted it to 128k max to prevent DOS attacks.
Jeremy.
(This used to be commit 70fb2a196d83c4bde11d27608da27f956f3f19b8)
|
|
lines
removed (modifiersName and modifyTimestamp) lead to warnings upon startup of
the netscape directory server. I can't check this, but it sounds logical.
Thanks,
Volker
(This used to be commit 770b85c32fdd7addd7becf6a42cace91f411b363)
|
|
because not only does it not work on Heimdal, but also since ccaches
created within samba are memory-based, so we shouldn't touch a
FILE-based one (it was probably created via kinit or similar).
(This used to be commit 5971b0980ca8abae2208f22485c5af4c0dde0459)
|
|
bug 1208. Based on a fix from Guether Deschener.
Outstanding pieces:
- Heimdal FILE-based ccaches don't actually remove creds properly, so we
need to code a check for this
- what if ticket expires between our check and when we use it?
Guenther has coded up fixes for these parts, but I still need
to review them, as I'm not totally comfortable with the solutions.
(This used to be commit ef008b9710e682f87f0bbf526d30eb5114264233)
|
|
metze
(This used to be commit 2326c9e0a239de6997a40d8d28c39b9aea965feb)
|
|
metze
(This used to be commit 4d9d8e83aa367fe17a74b81d4417cc2cfbdf200e)
|
|
(allow the use of base64 encoded strings, LM or NT passwords)
Andrew Bartlett
(This used to be commit 57a5563b421b0684e7bb40d10c2168916c59c89d)
|
|
(This used to be commit 6b18012dc8fe92a296c46a12214622d56e1f3fd8)
|
|
(This used to be commit 911a28361b9d8dd50597627f245ebfb57c6294fb)
|
|
(This used to be commit 1501d58b8e23d0c9ae51514773d0429886fa9d58)
|
|
static or shared libraries.
(This used to be commit 35d7435caec55765b39508889d77583c4ec4807c)
|
|
server had said something (such as an error).
Andrew Bartlett
(This used to be commit c05016a2f750960c40387c1d6aba9f6841f66a3b)
|
|
This protocol looks rather like SMTP headers/LDAP:
NT-Domain: TESTWG
Username: abartlet
...
Password: foo
Challenge-response passwords are in hexideciaml, while any 'plain'
string can be base64 encoded when like this:
Password:: Zm9vCg==
(the :: indicates it, just like LDAP - I hope)
The protocol is not final, so it is #ifdef DEVELOPER for now (so
nobody starts to rely on it until I'm happy), but we may as well get
this into subversion.
My intention is to use this to power the next version of my
PPP/ntlm_auth plugin, and hopefully entice a FreeRadius plugin out of
the woods.
Andrew Bartlett
(This used to be commit 8efdd957ba8310515242ba2979ff07130a0b1a3a)
|
|
(This used to be commit 54912b70f2a6e26a278d6e94b830bf1f43896c3f)
|
|
the main ntlm_auth program.
It quite possibly should belong in smbtorture, but relies on the
winbind client for now.
Andrew Bartlett
(This used to be commit 6e1b7a8848062a184ee293cf688135b851f2bd8d)
|
|
with more correct NTLMSSP support in client and server, but it will do
for now.
Also implement LANMAN password only in the classical session setup code, but
#ifdef'ed out. In Samba4, I'll make this run-time so we can torture it.
Lanman passwords over 14 dos characters long could be considered
'invalid' (they are truncated) - so SMBencrypt now returns 'False' if
it generates such a password.
Andrew Bartlett
(This used to be commit 565305f7bb30c08120c3def5367adfd6f5dd84df)
|