Age | Commit message (Collapse) | Author | Files | Lines |
|
Jeremy.
(This used to be commit 006cf9c3654e7f18e01b75a5fe87798df862d26a)
|
|
Jeremy.
(This used to be commit a28bc614a0eb8409a98b254b32ad17c50c2eec0e)
|
|
Guenther
(This used to be commit c0d91f9d19b33995237847389e4c37e086938b9e)
|
|
Volker
(This used to be commit bb40e544de68f01a6e774753f508e69373b39899)
|
|
error.
Volker
(This used to be commit 5a92df31d69ff7b0f2de6564d644949c2906c8f1)
|
|
Fix parse_domain_user to fail when splitting a full name like "DOM\user"
when "winbind use default domain" and "winbind trusted domains only" are
not enabled.
This allows pam_winbind to behave correctly when more modules are
stacked in the "account" or "password" PAM facility. pam_winbindd calls
WINBINDD_GETPWNAM which can decide whether or not a user is a winbind
user and return correct PAM error codes.
Guenther
(This used to be commit e6d52c1e9d8cec7be6d552c2a67a392df21c3ec9)
|
|
with < 0.
Jeremy.
(This used to be commit 9a083837070c6540a9b92f6a055f8ecc23a32a49)
|
|
Jeremy.
(This used to be commit 4204794cc7c5e2671259652879c33f539d26958c)
|
|
(This used to be commit 62b02a68438e0ff1119e68347b1ac3495572fa8a)
|
|
(This used to be commit a78d94f539e41ac384e09cd6e44cb611dd8e1570)
|
|
set to avoid unnecessary polling.
(This used to be commit 1dce945ccbba25092cf54890301c8f78f8aede33)
|
|
(This used to be commit c15f1d553f03ad1ed4e1d52b8e46c52202bc3a83)
|
|
Jeremy.
(This used to be commit e8e2fc79b4afd6625e1d50e23b31eb49f67526d9)
|
|
-----------------------------------
Thanks to a report from VL:
We were causing mayhem by weakening the keys at the wrong point in time.
I think this is the correct place to do it. The session key for SMB
signing, and the 'smb session key' (used for encrypting password sets)
is never weakened.
The session key used for bulk data encryption/signing is weakened.
This also makes more sense, when we look at the NTLM2 code.
Andrew Bartlett
-----------------------------------
With more 'try all options' testing, I found this 'simple' but in the
NTLM2 signing code.
Andrew Bartlett
-----------------------------------
After Volker's advise, try every combination of parameters. This
isn't every parameter on NTLMSSP, but it is most of the important
ones.
This showed up that we had the '128bit && LM_KEY' case messed up.
This isn't supported, so we must look instead at the 56 bit flag.
Andrew Bartlett
-----------------------------------
We should now try retesting with NT4. This should be standalone
enough to port into a SAMBA_3_0_RELEASE branch fix.
Jeremy.
(This used to be commit b9b8cd1752aeab049983c1a6038edf2231ec10a4)
|
|
* remove pdb_context data structure
* set default group for DOMAIN_RID_GUEST user as RID 513 (just
like Windows)
* Allow RID 513 to resolve to always resolve to a name
* Remove auto mapping of guest account primary group given the
previous 2 changes
(This used to be commit 7a2da5f0cc05c1920c664c9a690a23bdf854e285)
|
|
Jeremy.
(This used to be commit f1a362580ae37730dc8393a79f832aed5d0ea4be)
|
|
Jeremy.
(This used to be commit b57406c89feaf550f6c2d29ef0ed73a935908add)
|
|
Jeremy.
(This used to be commit 2274709587bd1f27bea2eacf633182f20cd07b1e)
|
|
Guenther
(This used to be commit d27771ca1d046aa7fc0c15d410d9fe83da85428f)
|
|
Jeremy.
(This used to be commit a9e1d0f3b4fd7a0732a5023d0b4dcc2c4b1b03f8)
|
|
Guenther
(This used to be commit 7eacb47660fdb4b0100a778062623ad74b755f34)
|
|
Jeremy.
(This used to be commit a164cfab420a2439dad8fd85f8b4d652087fa6b9)
|
|
changereject.
Guenther
(This used to be commit 98d3c63e04e1317a0a2f100e89d9be65a98ecc7e)
|
|
Guenther
(This used to be commit 58baf718be90d750f51cf51a25714fcdcd5679b7)
|
|
Guenther
(This used to be commit 40a21776a7a16f3200e87c6564d9b6e8c481dd1e)
|
|
Guenther
(This used to be commit f60eddc0a4dfe623e5f115533a62c03810fd5f38)
|
|
Jeremy.
(This used to be commit 9437ffc84f4d924ab67f3e16ef507d2aeeeb5f34)
|
|
Jeremy
(This used to be commit f58d0ebf749ad6dab562e74e9fd2c16606183d6c)
|
|
Jeremy.
(This used to be commit 58544eb3c848e1dddd774270fbaae7d704a37b53)
|
|
Jeremy.
(This used to be commit 666b03b4a92800ed704b7f7e4b39f4e01ca47aee)
|
|
Jeremy.
(This used to be commit 95793d7e64d30190ebf917745c719f9c5a1b31e2)
|
|
the build on Solaris, AIX and S390. The fundamental problem is
that macros like AX_CFLAGS_IRIX_OPTION can spuriously succeed.
(This used to be commit 30122f61c35b1af977efd6e4727204c2e2e1c7a3)
|
|
(This used to be commit 341d554e2f7a117c7098633b24cb18c7ff25a011)
|
|
always assume we can get a struct timespec out of a stat
struct. This will allow us to portably move to nsec timestamps
on files and directories in the file server code in future.
Jeremy.
(This used to be commit 07132d8796a08aa71d6719cb07b5b2c999930632)
|
|
implemented for gcc 3.x, gcc 4.x and MIPSPro compilers.
(This used to be commit 5e57021723f091a33021c30557cace2b70acf172)
|
|
(This used to be commit eb3ba826ef465b95f9597043ee156ad9d7ca16a0)
|
|
linux.
Heads up: This might be required on other OS using glibc too.
(This used to be commit b28e43427b43994404f109ce7da467461af12200)
|
|
(This used to be commit e64134a8599364dc0fa298c7106a7ccf471c5322)
|
|
correct system size. Fixed a bug that was accidentally introduced
by use of uint32 - uid was stored twice, not uid and gid.
Jeremy.
(This used to be commit 89db006997588c6523ce8f2470d67f3136042256)
|
|
(This used to be commit 46f9f7a6f0352329b2e57030b2af4bc0dc72c580)
|
|
Guenther
(This used to be commit 9b19a68456c7b576750aaf64c178ba5323d9a95e)
|
|
Guenther
(This used to be commit 286f6fc2339cf4ef232c16466b8dffdcddbe343f)
|
|
Guenther
(This used to be commit cf86d4c9f0c48e7234945694a4722c35dd33657c)
|
|
makes fixes much easier to port. Fix the size of dc->sess_key to
be 16 bytes, not 8 bytes - only store 8 bytes in the inter-smbd
store in secrets.tdb though. Should fix some uses of the dc->sess_key
where we where assuming we could read 16 bytes.
Jeremy.
(This used to be commit 5b3c2e63c73fee8949108abe19ac7a448a033a7f)
|
|
Jeremy.
(This used to be commit 8ae70122b79fbe682c227ec2c4e5a72bf58d76de)
|
|
from Samba4 on how to decode the 532 byte password buffers.
Getting closer to passing samba4 RPC-SCHANNEL test.
Jeremy.
(This used to be commit 205db6968a26c43dec64c14d8053d8e66807086f)
|
|
solution, but it does this particular job... :-)
Volker
(This used to be commit df6d67cd10c0045f3c6f73381716300221cecf18)
|
|
internally in services_db.c now. This prevents internal services from
being listed twice (one internal and one external) when no
'svcctl list' parameter is explcitly set in smb.conf
(This used to be commit 6c4ede6cee7e1d25a6357e959972e8d390c27fe3)
|
|
actions
(This used to be commit e0c4e5cfded7d22e37aab7c14d3c0fa4263e7983)
|
|
(got it wrong the first time as administrator has this flag set by
default).
Guenther
(This used to be commit e9ccebf45a5db8964793084950fbb2c23b2469a3)
|