Age | Commit message (Collapse) | Author | Files | Lines |
|
Jeremy.
(This used to be commit ef7bcaf1b7e1ca073b27a8836c6aa86e112b5bee)
|
|
Jeremy.
(This used to be commit 983e6d137eaada5cea1235e0cf051bc314b6f9d8)
|
|
Jeremy.
(This used to be commit e2d66c5d238a057175d9316b4491ca26066f34fe)
|
|
Jeremy.
(This used to be commit abeebf33c132c4975ac5dadde57c22176ddc9fda)
|
|
(This used to be commit 5bae773e0270c31ba936ef651dda149601ac6ecd)
|
|
Jeremy.
(This used to be commit c4fcbb2948beb3b6594d53a7ffdc8b94fd0d94e0)
|
|
* fixing some typos after running printing.sgml through ispell
(This used to be commit d20be2e868015266ef3b33f353e1c9a2e6d6b7e1)
|
|
<belanger@yahoo.com>.
Jeremy.
(This used to be commit 8db4d46dc983ce37814fb375d61951b6220a4c61)
|
|
* converting printing internal doc to SGML
(This used to be commit bc74170cd982e520421e8b930710671923d65208)
|
|
(This used to be commit c58d4b3cca9132c5995fa12cf5dfcadce082dba9)
|
|
* fix syntax errors in developer's docs
* update Makefile.in to place HTML files in htmldocs & text
files in textdocs/
(This used to be commit cb96e1a1d9a07314bb60e431484cfd05aef83de6)
|
|
(This used to be commit a42414fe5aff8a9e0fccd1c73a86e3b472f2c149)
|
|
(This used to be commit a4a3469ffb44061c58bbcd807a9585ae13326f7b)
|
|
(This used to be commit 93cb8b47c48d0492e3e699542bdc521aafb8d1b7)
|
|
(This used to be commit b9942092cf3d0a9fbf94b51b576836a86059551b)
|
|
(This used to be commit 2613d3a48a8d60c3db38406a1abd943dbe0b7d09)
|
|
(This used to be commit ac0d1acc5542b0f02a85e38e5adfcc8098ff166a)
|
|
belanger@pobox.com
Jeremy.
(This used to be commit a7009ad5c8aaae350b2521b8c0cd2538e561618a)
|
|
even started), and not in SGML. Plain ASCII right now, but I'll do some
more work on it tomorrow.
(This used to be commit d60afa48e3214a4fa4c0a937635c3acf2a4b4a65)
|
|
System sid. This avoids comparing with ACEs that we don't yet support in the
ADS Domain security descriptor.
(This used to be commit ace7738e123b28f69c290f9f1de50011d230e14b)
|
|
Volker
(This used to be commit f68825e93371e3d3403167f608d1da0d7ada1a04)
|
|
group mapping not as local, but as WKN_GRP.
Volker
(This used to be commit cb05dcab2de117ea4db54af313a05905cd5a0d0a)
|
|
(This used to be commit d83cae2bbd1625aeb3b7c73ba8dde2d1371e7f89)
|
|
In order to reduce complexity, this patch removes the upper layer of the SAM
API. Also, we remove the function pointers on the sam context - there really
is no point making these replaceable - that's for the modules.
Move a number of functions in include/interface.c around to allow for use of
'static' and to keep the external API in one chunk, at the bottem. All these
functions were renamed to remove the context_sam -> sam
Consequential changes in the samtest module, and back out metze's change for
ACB filtering, becouse I think it belongs in the SAM backeds. (But I will take
debate on this one).
Changes to the lib/util_sid.c code to create a 'system' token, and make it a
SAM_ASSERT() enforced requirement to have a token on those calls that specify
it. samtest now uses this.
We should have a samtest call to set your own token.
We also need to extend our se_access code to cover the things that Win2k is
returning in it's access tokens. Currently our system token doesn't pass, due
to unexpected flags. (When running sam_ads against Win2k)
Andrew Bartlett
(This used to be commit b9036900d0bb227ec16c6a5792c18ef943dcf015)
|
|
small fix for the previous merge.
Andrew Bartlett
(This used to be commit 85122800fce7a6f9eeee0651f6d9eb9218e35bb6)
|
|
(This used to be commit b01c55ed5bbf4903a87fd17d70ae9acd832d60fe)
|
|
(This used to be commit 470a1316324821984745bcf7321bafd8d0fd0a77)
|
|
(This used to be commit 9d529256c55e5a5099f69471ed1357cff06003fe)
|
|
installed one.
(This used to be commit cc878f43b9a91385ca3671f17a08253b8464c039)
|
|
want to include the globally installed libsmbclient.h - found by jht
(This used to be commit e35a5da3a75c74ab066bff5e0f60d30deb008451)
|
|
history.
Volker
(This used to be commit d47aff38db23815a48e64718ecb6c957101ecdac)
|
|
(This used to be commit 9615ab10c006d8027f6a8b7dd3770eb77304dbdc)
|
|
(This used to be commit cf249f5b222312bb05fb8ab53413d160149f7477)
|
|
(New accounts are created on thier internal talloc context, not a supplied one
and not the one beloning to the SAM)
Also actaully add the sam_skel to the tree.
I need to work out with Jelmer an appropriate way to ensure we still have an
example external build, and if this should move back out again.
Andrew Bartlett
(This used to be commit dc8b0d23e088d1e7f7fbc6ab0423eaa82f14e258)
|
|
Basicly, the password and the salt must be taken from the same place in both
passwd and shadow based systems. Taking salt from one, and password from the
other just doesn't work.
So pull them from passwd, then overwrite them if need be.
When modifying this file, watch the #ifdef hell - as vl found out, some
variables are globals - but only with #ifndef WITH_PAM, and the code jumps all
over the place with the password cracker.
Getting double-reviews of any change to this file highly advised, it is one of
our most system-specifc areas of code.
(So now I get to take the blame for this one... :-)
Andrew Bartlett
(This used to be commit f39f167900db3f06ec3c52c3ddf61e8bf3d57f56)
|
|
This module, primarilly the work of "Stefan (metze) Metzmacher"
<metze@metzemix.de>, uses the Active Directory schema to store the
user/group/other information. I've been testing it against a real AD server,
and it is intended to work with OpenLDAP as well.
I've moved a few functions around in our other libads code, which has made it
easier to tap into that existing code.
Also, I've made some changes to the SAM interface, I hope there are not too
many objections... To ensure we don't get silly bugs in the skel module, it
is now in the default compile. This way you should not forget to update it :-)
Andrew Bartlett
(This used to be commit 24fb0cde2f0b657df1c99474cd694438c94a566e)
|
|
the first cli_push_string do? I suspect that it's a leftover from times
when the password length was needed at some point.
Volker
(This used to be commit df906c156aea46524dedc28ee54f4e87711c7160)
|
|
(This used to be commit f7dd66e88dba947a167d9a14c96810854dfc5c9d)
|
|
(This used to be commit 1e4ac9615d26bfbf90e3a45f088564f448f689ce)
|
|
(This used to be commit 2b54a2fc2c85ea139e2acdbbc2f14b969c0c6315)
|
|
(This used to be commit 0f5d18626bebaa0621ee703ea2cc8bf47e14ea3e)
|
|
Volker, I would like to understand what you are trying to do here...
I'll trust that it's broken (this code is certainly not well tested) but I do
want to keep a close eye on the fixes...
Andrew Bartlett
(This used to be commit 4b72f84cf9bc3f7583318d5dff97257f9dc5b87f)
|
|
opened by an admin user, then used on a pipe handle created
by an anonymous user..... but they're working on security.... riiight !
Jeremy.
(This used to be commit 322d8b4c83439261cfd2ff79b557bddb1e784660)
|
|
Jeremy.
(This used to be commit 0d27cc909b4489b54e57481bd8a9494fb077dc3d)
|
|
Jeremy.
(This used to be commit e42b76337b9a01fee84bc95d6899a724b2fdab29)
|
|
smbclient would announce that it can send UNICODE, but would send the
plain text password in ASCII. This confused Samba HEAD somewhat. This
change has been tested against Samba HEAD of today and Samba 2.2.1a. I
do not have any other servers that do plain text passwords. Anybody?
Volker
(This used to be commit c7de62d839634a85295d1a0ef5a48270ef30aa93)
|
|
English typo fixes and updates of documentation
(This used to be commit bba2ee620a286dcc7fcd509c8954227e203274a1)
|
|
'security = user', 'encrypt passwords = no' did not work anymore.
This is on quite a standard SuSE 7.3, ./configure.developer --with-tdbsam.
I can provide a config.log / config.h on demand.
Please re-check for consequences, I don't really oversee that file.
Thanks,
Volker
(This used to be commit ba754b57ddb78dadedcb7b5877cbee5bab08181e)
|
|
like metze's sam_ads can also use them.
Also add error checking etc to a few more functions.
Andrew Bartlett
(This used to be commit c864edf4fbf8a6c37888a14b861d7c12cf503d4f)
|
|
of groupadd.
Volker
(This used to be commit 3f78923a6feefffae6203d27a765b2a8cf3c5c24)
|