| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
- new kerberos code, allowing the account to change it's own password
without special SD settings required
- NTLMSSP client code, now seperated from cliconnect.c
- NTLMv2 client code
- SMB signing fixes
Andrew Bartlett
(This used to be commit 837680ca517982f2e5944730581a83012d4181ae)
|
|
an optional list of groups the user is in.
(This used to be commit 39f3bec0f62520e49a087403287330ed5f3a79c5)
|
|
- user_ok() and user_in_group() now take a list of groups, instead of
looking for the user in the members of all groups.
- The 'server_info' returned from the authentication is now kept around
- in future we won't copy the sesion key, username etc, we will just
referece them directly.
- rhosts upgraded to use the SAM if possible, otherwise fake up based on
getpwnam().
- auth_util code to deal with groups upgraded to deal with non-winbind domain
members again.
Andrew Bartlett
(This used to be commit 74b5436c75114170ce7c780c19226103d0df9060)
|
|
> Exit path cleanup for cli_samr_enum_dom_users()
(This used to be commit 655c1e03519d4fa174a85534c165bdd1ce163ae8)
|
|
(This used to be commit ffaa608be01d72075942ca3aff2325c6364e0556)
|
|
safe_strcpy() isn't particularly safe (this has been noted before) as it does
not take the size of the buffer, but instead the size of the buffer *minus 1*
The locking.c fix was causing segfaults on machines running with
--enable-developer, and was tracked down thanks to the fact that vance's build
farm machine runs with such an option, and smbtorture's DIR1 test hits this
bug very well.
(The --enable-developer code writes to the last byte of the string, to check
for incorrect use of safe_strcpy()).
Andrew Bartlett
(This used to be commit e908fd164d1b11b6f76a6fdffb22e139813cb3c0)
|
|
(This used to be commit 822f6c2f38b9b30dca2358e99ad6a379f5890c89)
|
|
(This used to be commit f3be08472b8b34d8921ff23c52dd2ba030c96f25)
|
|
(This used to be commit 70fce680c01fa1baa65fb3cbc83dfaf822fdadd7)
|
|
Andrew Bartlett
(This used to be commit 5a472e2a3cffe175ac4341e19c153a931505a2e8)
|
|
Andrew Bartlett
(This used to be commit cfc4cc776899da92a5c9a17f0ea36c7cb65d7a80)
|
|
make x_fwrite() match fwrite() in returning a size_t.
Andrew Bartlett
(This used to be commit 2943c695787b742e9a96b2eefe2d75f681bacf7c)
|
|
(make it possible to build both shared and static) and -lcrypt handling.
(This used to be commit 30510f50077fd157664c127ac0182ce26843d43f)
|
|
(This used to be commit 523d1429b1072c999d376d2b4e13a1c08349990a)
|
|
(This used to be commit d0365f20c242bcfc4f5d8286c6c5654e310a9d45)
|
|
the user a second time now.
Andrew Bartlett
(This used to be commit a1e27a02f52315df0dd05ab8a94ae5a2bf398655)
|
|
The intention is to remove the muliple passdb backends, but we need the
'guest' account to always be there. If the admin adds the guest account to
(say) LDAP, there will only be one backend required for operation.
This helps remove some nasty behaviours with adding accounts to the system
for both the RPC 'create user' and the SAMSYNC code. Users 'added' with
an 'add user/machine' script won't magicly appear, and machine accounts
'pre-added' to unix, but not the smbpasswd file will not cause mayhem.
This commit also implements somthing tridge discussed with me, the concept
of 'default' passdb operation pointers - so that each backend does not
need it's own stub funcitons wrapping the default tdb privilages/group
mapping code.
This also removes an implicit 'sid->name' and 'name->sid' mapping from our
own local SID space, to winbind usernames. When adding mapping for NIS/LDAP
non-sam users in future, we need to be careful.
Andrew Bartlett
(This used to be commit 6f32fa234961a525760a05418a08ec48d22d7617)
|
|
We check passdb becouse the user might have things like a logon script set,
but we have to check the passdb becouse the user might not be in smbpasswd at
all.
This is in preperation for the removal of unixsam as an assuption.
Andrew Bartlett
(This used to be commit 61e3e2695860c58f9b0e8d1856972318666682c8)
|
|
if the context is the same. See LOCKTEST7 in smbtorture.
Jeremy.
(This used to be commit 1698092ba5a169de369ad1182a6f270de174c3f5)
|
|
if the context is the same. See LOCKTEST7 in smbtorture.
Jeremy.
(This used to be commit b362cc241b829f585a96b5d285ed12db50b21e2e)
|
|
<sshivanna@pillardata.com>
Jeremy.
(This used to be commit caf298c3808cbdd683e884b32b7a0538505a3066)
|
|
inline the call to prs_copy_all_data_out() so that we can know we are not
overrunning our buffer.
Also check more return values.
Andrew Bartlett
(This used to be commit e3b73d5d658584428c81c9ef3ccf024687a56e2f)
|
|
(This used to be commit 513fb2ddd85a74de7684a6cb09d57011af69161f)
|
|
(This used to be commit de6a2d154e0e863a7628f18cca8fdcaa49d9c0ff)
|
|
* performance optimization in enumprinterdataex() when keyname is empty
* fix a few typos in comments
* reload services after addprinter_command()
dump registry data in ascii when the key is REG_SZ or REG_MULTI_SZ
(This used to be commit fde6ef7cc62c58d512dc8053b214f0a3c59a78ab)
|
|
* performance optimization in enumprinterdataex() when keyname is empty
* fix a few typos in comments
* reload services after addprinter_command()
dump registry data in ascii when the key is REG_SZ or REG_MULTI_SZ
(This used to be commit 3fc90ea1d9b11186f26484516a4dd8502b6d7323)
|
|
before calling it. Fixes seg fault in audit VFS module
(This used to be commit e5acebbe79a97191903ee3a1819410a0fb9ac655)
|
|
before calling it. Fixes seg fault in audit VFS module
(This used to be commit 5e115d43812021f9a16111fc7c05d750026cca1e)
|
|
(This used to be commit e0c1f9ef61a0ec4f06a0b0e257497943195b5297)
|
|
(This used to be commit df3c7c9cbb275e9c35356b4f1cab1a741de6f500)
|
|
section...does this make sense?
(This used to be commit 822083f73e8ba4e096c53ff0f7578f47bc21b7b5)
|
|
must not be freed afterwards.
Jeremy.
(This used to be commit 4015e39d3666dbe240808c9007a8b8faca012a3d)
|
|
must not be freed afterwards.
Jeremy.
(This used to be commit 80bad908c0235a57446c70b9632d3415c9d2fcf5)
|
|
(This used to be commit 9e4eba0ae593cc4422a5ce7bbdc4ab9f06d017b7)
|
|
(This used to be commit 3805a9c5d5e98e089e1cd9e794f7204fc354a311)
|
|
(This used to be commit 09be123c6c1b67621eaf6c8ffb3016eccd375e5b)
|
|
(This used to be commit 1ea27d7987d2c0f67977371a99efec3ded13c872)
|
|
(This used to be commit d15b7425d408f17505c4f3a91ec68bcfc4472c16)
|
|
(This used to be commit b3f9cf8c1c293e905a536dfa5bb6a827627b7024)
|
|
(This used to be commit 30353da3e94f732e9f1b258e62da906f628e09d0)
|
|
(This used to be commit 0bc1dfc68b0d411801a4209c9681c735cd7a73cc)
|
|
(This used to be commit 7418351427071edccb2e825ddbbf31fce8ef381e)
|
|
(This used to be commit 367997562998adb3f80602596c770d9ac319065b)
|
|
This patch adds the architecture for an IDMAP backend system including a new
smb.conf parameter "winbind backend". Right now, the only valid value is "tdb"
but I'm currently working on an LDAP backend.
(This used to be commit 35e4448dcb2deb0d5d34d9e974a49f2fb31f1356)
|
|
modules/developer.c: init_module() should return an int
(This used to be commit 7f59703550378ff2333e3c851bf1a77037510abd)
|
|
Jeremy.
(This used to be commit e81d72ac221023ded9e0932be7dd303ad5280665)
|
|
Jeremy.
(This used to be commit b14e174c65b399e606f4f740762ff4646b8f9eef)
|
|
(This used to be commit adc5a4a263b49e2883aba759cf9dd77f12c0cabb)
|
|
(This used to be commit 6cb124247d10de86bdf6a98f3dd703b3a9eb1d35)
|
|
(This used to be commit 1a68ead4332bd9f5123bd3690784e7e179e3cb1f)
|
