summaryrefslogtreecommitdiff
AgeCommit message (Collapse)AuthorFilesLines
2010-05-10s4-smbtorture: add smbcli_rap_netoemchangepassword().Günther Deschner1-0/+49
Guenther
2010-05-10rap: add rap_NetOEMChangePassword() to IDL.Günther Deschner1-0/+8
Guenther
2010-05-10Fix the processing of unlocks followed by locks. We now pass SMB2-LOCK test.Jeremy Allison1-9/+5
Jeremy.
2010-05-10Fix more of the SMB2-LOCK tests. Correctly unlock locks on error.Jeremy Allison1-3/+19
Jeremy.
2010-05-10s4:password_hash LDB module - quiet a warningMatthias Dieter Wallnöfer1-1/+1
2010-05-10s4:password hash LDB module - check that password hashes are != NULL before ↵Matthias Dieter Wallnöfer1-6/+10
copying them
2010-05-10s4:password_hash LDB module - don't break the provisionMatthias Dieter Wallnöfer1-0/+3
This is to don't break the provision process at the moment. We need to find a better solution.
2010-05-10s4:passwords.py - add a python unittest for additional testing of my ↵Matthias Dieter Wallnöfer2-0/+580
passwords work This performs checks on direct password changes over LDB/LDAP. Indirect password changes over the RPCs are already tested by some torture suite (SAMR passwords). So no need to do this again here.
2010-05-10s4:samdb_set_password - adapt it for the user password change handlingMatthias Dieter Wallnöfer1-0/+12
Make use of the new "change old password checked" control.
2010-05-10s4:samdb_set_password/samdb_set_password_sid - ReworkMatthias Dieter Wallnöfer4-383/+159
Adapt the two functions for the restructured "password_hash" module. This means that basically all checks are now performed in the mentioned module. An exception consists in the SAMR password change calls since they need very precise NTSTATUS return codes on wrong constraints ("samr_password.c") file
2010-05-10s4:password_hash - Implement password restrictionsStefan Metzmacher1-0/+195
Based on the Patch from Matthias Dieter Wallnöfer <mwallnoefer@yahoo.de>. metze
2010-05-10s4:password_hash - Rework to handle password changesMatthias Dieter Wallnöfer1-138/+450
- Implement the password restrictions as specified in "samdb_set_password" (complexity, minimum password length, minimum password age...). - We support only (administrative) password reset operations at the moment - Support password (administrative) reset and change operations (consider MS-ADTS 3.1.1.3.1.5)
2010-05-10s4:password_hash - Rework unique value checksMatthias Dieter Wallnöfer1-49/+71
Windows Server performs the constraint checks in a different way than we do. All testing has been done using "passwords.py".
2010-05-10s4:password_hash - Various (mostly cosmetic) preworkMatthias Dieter Wallnöfer1-176/+240
- Enhance comments - Get some more attributes from the domain and user object (needed later) - Check for right objectclass on change/set operations (instances of "user" and/or "inetOrgPerson") - otherwise forward the request - (Cosmetic) cleanup in asynchronous results regarding return values
2010-05-10s4:dsdb: add new controlsMatthias Dieter Wallnöfer2-0/+24
- Add a new control for getting status informations (domain informations, password change status) directly from the module - Add a new control for allowing direct hash changes - Introduce an addtional control "change_old password checked" for the password
2010-05-10s4:setup: mark DSDB_CONTROL_DN_STORAGE_FORMAT_OID 1.3.6.1.4.1.7165.4.3.4 as ↵Stefan Metzmacher1-2/+4
allocated metze
2010-05-10v2 Latest enhancements in ldapcmp toolZahari Zahariev1-140/+262
- Added support for replicating hosts versus hosts in different domains - Added switches for the following modes: = two - ignores additional attributes that cannot be the same in two different provisions (domains) = quiet - display nothing, only return code = verbose - display all dn objects through compare fase = default - display only objects with differences - Added more placeholders for nETBIOSDomainName and ServerName
2010-05-10s4-rodc: Fix provision warnings by creating ntds objectGUID in provisionAnatoliy Atanasov3-1/+32
2010-05-10s3-rpcclient: fix two more invalid typecasts in spoolss commands.Günther Deschner1-9/+47
Guenther
2010-05-10s3: Work around dependency bug in Samba 4 waf build in merged build.Jelmer Vernooij1-3/+4
2010-05-10libwbclient: Fix a fd-leak at dlclose-timeVolker Lendecke1-0/+3
__attribute__((destructor)) makes winbind_close_sock() being called at dlclose() time. Found while testing apache on Linux with mod_auth_pam. Other platforms will have to find a different fix. One possibility would be to always close the socket after each operation, but this badly sucks performance-wise.
2010-05-10s3: Test for "__attribute__((destructor))"Volker Lendecke1-0/+16
2010-05-10s4:acl ldb module - fix typosMatthias Dieter Wallnöfer1-3/+3
2010-05-10s4:dsdb/util.c - Add a new function for retrieving password change attributesMatthias Dieter Wallnöfer1-0/+41
This is needed since we have not only reset operations on password fields (attributes marked with REPLACE flag) but also change operations which can be performed by users itself. They have one attribute with the old value marked with the REMOVE flag and one with the new one marked with the ADD flag. This function helps to retrieve them (argument "new" is used for the new password on both reset and change).
2010-05-10s4:blackbox password tests - more complex passwordsStefan Metzmacher2-5/+5
2010-05-10s4:selftest - change test passwordsMatthias Dieter Wallnöfer1-3/+3
The passwords need to be more complex to meet the new complexity criteria.
2010-05-10s4:selftest: add --socket-wrapper[-keep]-pcap options to "waf test"Stefan Metzmacher1-0/+10
metze
2010-05-10testprogs: update Makefile.mingw (although mingw current cant build it).Günther Deschner1-4/+4
Guenther
2010-05-10testprogs: update README to reflect the util rename.Günther Deschner1-9/+9
Guenther
2010-05-10testprogs: add readme for testspoolss.exe.Günther Deschner2-1/+65
Patch from Kurt Pfeifle <Kurt.Pfeifle@ricoh.de>. Guenther
2010-05-10testprogs: add vcproj and sln files for testspoolss.exe.Günther Deschner2-0/+244
Patch from Kurt Pfeifle <Kurt.Pfeifle@ricoh.de>. Guenther
2010-05-10testprogs: rename spoolss.exe to testspoolss.exe.Günther Deschner5-7/+7
Patch from Kurt Pfeifle <Kurt.Pfeifle@ricoh.de>. Guenther
2010-05-10s3-net: Fix Bug #7417. 'net rpc user password' can set the wrong password.Günther Deschner1-1/+4
Guenther
2010-05-10tevent: Added a description for tevent queue.Andreas Schneider1-0/+9
2010-05-10tevent: Added an introduction to the tevent_queue tutorial.Andreas Schneider1-4/+38
Thanks Volker.
2010-05-10tevent: Fixed a doxygen problem with PRINTF_ATTRIBUTE.Andreas Schneider1-3/+3
2010-05-10talloc: Fixed a doxygen problem with PRINTF_ATTRIBUTE.Andreas Schneider1-3/+3
2010-05-10build: Update the waf build to fix python header checksKai Blin1-0/+0
2010-05-10s3:provision_basedn_modify.ldif - add "msDS-NcType" attribute and fix commentsMatthias Dieter Wallnöfer1-1/+5
2010-05-09s3-proto: add missing protoype for dcerpc_fault_to_nt_status().Günther Deschner1-0/+1
Guenther
2010-05-09s3-lanman: use srvsvc for api_RNetServerGetInfo().Günther Deschner1-45/+47
Following MS-RAP 3.2.5.3 NetServerGetInfo Command. Guenther
2010-05-09s3-spoolss: Make spoolss_Time_to_time_t public.Simo Sorce3-15/+16
Signed-off-by: Günther Deschner <gd@samba.org>
2010-05-09s4:samldb LDB module - make "samldb_member_check" synchronous againMatthias Dieter Wallnöfer1-64/+33
2010-05-09s4:samldb LDB module - make "samldb_prim_group_users_check" synchronous againMatthias Dieter Wallnöfer1-235/+24
2010-05-09s4:samldb LDB module - update the copyright noticeMatthias Dieter Wallnöfer1-1/+1
2010-05-09s4:blackbox/test_kinit.sh - Test the new "net user add <user> [<password>]" ↵Matthias Dieter Wallnöfer1-1/+1
syntax
2010-05-09s4:net utility - make outprinted description comments more consistentMatthias Dieter Wallnöfer14-16/+16
I've added a [server connection needed] when commands won't work on the local SamDB.
2010-05-09s4:net utility - remove unixname parameter of samdb.newuserMatthias Dieter Wallnöfer1-9/+4
We don't handle the id mapping stuff manually anymore.
2010-05-09s4:samdb python bindings - remove idmap creation stuff from this callMatthias Dieter Wallnöfer1-22/+1
The id mapping should now be handled automatically by the s4 daemon.
2010-05-09s4:net utility - add an optional password attribute to "net user add"Matthias Dieter Wallnöfer1-3/+5
To make it behave similar to "net newuser".