summaryrefslogtreecommitdiff
path: root/source3/Makefile.in
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r4925: Migrate Account Policies to passdb (esp. replicating ldapsam).Günther Deschner1-9/+11
Does automated migration from account_policy.tdb v1 and v2 and offers a pdbedit-Migration interface. Jerry, please feel free to revert that if you have other plans. Guenther (This used to be commit 75af83dfcd8ef365b4b1180453060ae5176389f5)
2007-10-10r4821: finish off 'net rpc rights [list|grant|revoke]'Gerald Carter1-36/+36
one small todo item is to add a 'accounts' sub option to 'net rpc list' so enumerate all privileged SIDs and their associated rights. (This used to be commit bf4385c79a0ce2e4983ffa11d39367dbf1d4dcfd)
2007-10-10r4820: add beginnings of 'net rpc rights' for managing privilege assignmentsGerald Carter1-1/+1
(This used to be commit 164f94e52929330bd638f19bcf3bfce50303269e)
2007-10-10r4724: Add support for Windows privileges in Samba 3.0Gerald Carter1-3/+3
(based on Simo's code in trunk). Rewritten with the following changes: * privilege set is based on a 32-bit mask instead of strings (plans are to extend this to a 64 or 128-bit mask before the next 3.0.11preX release). * Remove the privilege code from the passdb API (replication to come later) * Only support the minimum amount of privileges that make sense. * Rewrite the domain join checks to use the SeMachineAccountPrivilege instead of the 'is a member of "Domain Admins"?' check that started all this. Still todo: * Utilize the SePrintOperatorPrivilege in addition to the 'printer admin' parameter * Utilize the SeAddUserPrivilege for adding users and groups * Fix some of the hard coded _lsa_*() calls * Start work on enough of SAM replication to get privileges from one Samba DC to another. * Come up with some management tool for manipultaing privileges instead of user manager since it is buggy when run on a 2k client (haven't tried xp). Works ok on NT4. (This used to be commit 77c10ff9aa6414a31eece6dfec00793f190a9d6c)
2007-10-10r4645: patch from Rob to fix the build breakage in vfstest after the ↵Gerald Carter1-1/+1
reload_printers() cleanup (This used to be commit 054b64fb86328556288d097e1201a24d53d0bec9)
2007-10-10r4604: Attempt to fix the buildfarm build.Volker Lendecke1-1/+1
vfstest refers to reload_printers, only defined in smbd/server.c. Jerry, could you take a look at that? Thanks, Volker (This used to be commit a83e5c113257a8bd6a2842e5ba09006e710bfbbf)
2007-10-10r4539: patch from Rob -- adding real printcap name cache function to speed ↵Gerald Carter1-1/+1
up printcap reloads (This used to be commit 1cad5250932b963c2eb9b775221b13db386d601b)
2007-10-10r3705: Nobody has commented, so I'll take this as an ack...Volker Lendecke1-5/+4
abartlet, I'd like to ask you to take a severe look at this! We have solved the problem to find the global groups a user is in twice: Once in auth_util.c and another time for the corresponding samr call. The attached patch unifies these and sends them through the passdb backend (new function pdb_enum_group_memberships). Thus it gives pdb_ldap.c the chance to further optimize the corresponding call if the samba and posix accounts are unified by issuing a specialized ldap query. The parameter to activate this ldapsam behaviour is ldapsam:trusted = yes Volker (This used to be commit b94838aff1a009f8d8c2c3efd48756a5b8f3f989)
2007-10-10r3681: Fix build of libsmbclient on x86_64.Günther Deschner1-3/+4
Patch from Lars Mueller <lmuelle@suse.de> Guenther (This used to be commit b87abdfd0ee7ba1f8a1fb13d47c76baa538a4c6a)
2007-10-10r3668: Fix unresolved symbols in libsmbclient.so.Günther Deschner1-1/+1
Patch from Lars Müller <lmuelle@suse.de> ( Bugzilla #2013 ) Guenther (This used to be commit af3ec11f8d6cae9bbad5dc5f3b9ae6e00bf1dd7e)
2007-10-10r3469: Fix build of smbmount.Günther Deschner1-1/+1
Guenther (This used to be commit d22b29ee9c37b9d35e0d785632a10856045df0dc)
2007-10-10r3437: fix the build.Günther Deschner1-4/+4
Guenther (This used to be commit c4cb2ffa611f79ab3ba17f2afd8e4cd99b0afad3)
2007-10-10r3408: Another build fixVolker Lendecke1-1/+1
(This used to be commit 0bc5105f71c79e8c709d3bdfcc57cf8621e6fad5)
2007-10-10r3339: allow tdbtool to be builtHerb Lewis1-1/+8
(This used to be commit 682b746ab6ff10bf9970e808f0032066e5f3b783)
2007-10-10r3145: Add experimental idmap_rid-Plugin.Günther Deschner1-0/+5
Written by Sumit Bose <sbose@suse.de> and myself a while ago. idmap_rid does a direct, static mapping between RIDs and UIDs/GIDs using the idmap-range as offset. It does thus allow to have a unified mapping over several winbindd-systems without having the need of a central LDAP-Server (and all related dependencies and problems this solution can bring). Compile: ./configure --with-shared-modules=idmap_rid Usage: idmap backend = idmap_rid idmp_rid does even allow you to have multiple mappings (for trusted domains). This is a rather problemtic feature and will be turned off by default rather soon. The problem is that ranges can quickly overlap when not measured with caution. idmap backend = idmap_rid:"MYDOMAIN=1000-9999 OTHER=10000-19999" Will valgrind idmap_rid later today and fix a couple of things. Guenther (This used to be commit 49a238bd37105bf1a33d4a230ca594c4cf304dd3)
2007-10-10r2453: I think this is the last lot of fixes to get shared libraries working onTim Potter1-31/+31
HPUX. This is Richard Allen's suggestion to get HPUX to use cc instead of ld. Also he added some missing $(DYNEXP) on link lines and removed the definition of $(LINK) as it is no longer used in the Makefile. (This used to be commit 9481f2a79e83b0dae9141f65ccc59e59bcf682e7)
2007-10-10r2112: Simplify the mangle hash code to use an in-memory tdb.Jeremy Allison1-1/+1
Should be ready for the new directory code now... Jeremy. (This used to be commit c2eff8ef1b65570d2e590f62f026cc18f9142652)
2007-10-10r2026: Simplify statcache to use an in-memory tdb. Modify tdb to useJeremy Allison1-1/+1
a customer hash function for this tdb (yes it does make a difference on benchmarks). Remove the no longer used hash.c code. Jeremy. (This used to be commit 3fbadac85b8cad89b93d295968e99c38c8677575)
2007-10-10r2015: Reverting fix for #1474.Günther Deschner1-8/+4
Jelmer, we need to find another way to solve this bug. This way, rpcclient is linked to libxml2, libmysqlclient and libpg (with according dependencies in samba-client.rpm's) if one just wants to build the more experimental pdb-modules as well. Guenther (This used to be commit 67bffc5034121cc0069007a7b79ce189ab0d10be)
2007-10-10r1863: Fix build of exp stuff on Solaris (#1474)Jelmer Vernooij1-4/+8
(This used to be commit d5c757d89b76bfe5cbd23e4a241971aaa32e4949)
2007-10-10r1692: first commit :)Günther Deschner1-1/+1
* add IA64 to the architecture table of printer-drivers * add new "net"-subcommands: net rpc printer migrate {drivers|printers|forms|security|settings|all} [printer] net rpc share migrate {shares|files|all} [share] this is the first part of the migration suite. this will will (once feature-complete) allow to do 1:1 server-cloning in the best possible way by making heavy use of samba's rpc_client-functions. all migration-steps are implemented as rpc/smb-client-calls; net communicates via rpc/smb with two servers at the same time (a remote, source server and a destination server that currently defaults to the local smbd). this allows e. g. printer-driver migration including driverfiles, recursive mirroring of file-shares including file-acls, etc. almost any migration step can be called with a migrate-subcommand to provide more flexibility during a migration process (at the cost of quite some redundancy :) ). "net rpc printer migrate settings" is still in a bad condition (many open questions that hopefully can be adressed soon). "net rpc share migrate security" as an isolated call to just migrate share-ACLs will be added later. Before playing with it, make sure to use a test-server. Migration is a serious business and this tool-set can perfectly overwrite your existing file/print-shares. * along with the migration functions had to make I the following changes: - implement setprinter level 3 client-side - implement net_add_share level 502 client-side - allow security descriptor to be set in setprinterdata level 2 serverside guenther (This used to be commit 8f1716a29b7e85baf738bc14df7dabf03762f723)
2007-10-10r1531: smbd/tdbutil.c isn't used anymore. Bug 1443 is suspected to be a tdbVolker Lendecke1-1/+1
corruption problem, and smbd_log_tdb happily destoyed the evidence .... Volker (This used to be commit 359b9dcffeb66146c5405f8022d5d4e4a833aa51)
2007-10-10r1318: Install libsmbclient into $(LIBDIR), not into hardcoded ↵Volker Lendecke1-3/+3
${prefix}/lib. This helps amd64 systems with /lib and /lib64 and an explicit configure --libdir setting. Thanks to Bjoern Jacke <bj@sernet.de> Volker (This used to be commit cc1881c143b16fa8f0abd80190877d0018bc282e)
2007-10-10r1220: Revert last change. Apparently, NOTPARALLEL blocks all parallel buildsJelmer Vernooij1-1/+0
(This used to be commit 0ca894d5cf8f292e7f560120a28b15b28ba5812c)
2007-10-10r1219: Don't make proto parallelJelmer Vernooij1-0/+1
(This used to be commit d08ce198b56b42baef5a0aceae706c006244372c)
2007-10-10r1215: Intermediate checkin of the new keytab code. I need to make sure IJeremy Allison1-1/+1
haven't broken krb5 ticket verification in the mainline code path, also need to check with valgrind. Everything now compiles (MIT, need to also check Heimdal) and the "net keytab" utility code will follow. Jeremy. (This used to be commit f0f2e28958cb9abfed216c71f291f19ea346d630)
2007-10-10r643: fix typoHerb Lewis1-1/+1
(This used to be commit 1f4db0b847de582387c0244397d1769b35bbcdbb)
2007-10-10r642: use RPC_CLIENT_OBJ instead of file nameHerb Lewis1-2/+2
already included in PROTO_OBJ by LIBMSRPC_OBJ (This used to be commit a9113df6e9d357d334cd9a8dd937df6b3eec322e)
2007-10-10r635: put files that are referenced multiple times in separateHerb Lewis1-38/+63
definitions to be consistent. (This used to be commit 86e78bf745b4bb10fe60a77c069a9a062aa26637)
2007-10-10r449: Two AFS-related things:Volker Lendecke1-3/+12
Split off the non-crypto related parts of lib/afs.c into lib/afs_settoken.c. This makes wbinfo link without -lcrypto. Commit vfs_afsacl.c, display & set AFS acls via the NT security editor. Volker (This used to be commit 43870a3fc1073cf7d60f1becae5c2ff98ab49439)
2007-10-10r410: merge tpot's changeset 353 from trunk:Stefan Metzmacher1-5/+3
Move msdfs.c into the source/smbd directory and remove source/msdfs. metze (This used to be commit 88e6e6d29ca14e0cddbc1df611051a96568dc0c9)
2007-10-10r404: Revert the change 378 to vfs_extd_audit.c, the parseable auditingVolker Lendecke1-0/+6
Implement vfs_full_audit.c that can log every vfs.h operation. So if you change vfs.h, from now on you also have to change full_audit :-) Volker (This used to be commit 9cb9c5f7c97fe8f76735a77b321c9500d28b55b2)
2007-10-10r329: add the shadow_copy vfs moduleStefan Metzmacher1-0/+6
I'll add documentation to the Samba-Howto-Collection metze (This used to be commit 2bef5d2741807fe3f38a95710533520700e253a4)
2007-10-10r177: Split ntlm_auth --diagnostics into a seperate file, so as not to clutterAndrew Bartlett1-2/+8
the main ntlm_auth program. It quite possibly should belong in smbtorture, but relies on the winbind client for now. Andrew Bartlett (This used to be commit 6e1b7a8848062a184ee293cf688135b851f2bd8d)
2007-10-10r116: volker's patch for local group and group nestingGerald Carter1-0/+1
(This used to be commit b393469d9581f20e4d4c52633b952ee984cca36f)
2007-10-10r63: Remove -lcrypto from wbinfo. Sorry.Volker Lendecke1-1/+1
Volker (This used to be commit b69e8e64d4d89d48f9cb5d07b32110d6ecfc3401)
2004-04-01This restructures lib/afs.c so that the token data can be but into aVolker Lendecke1-3/+3
stream. This is to implement wbinfo -k that asks winbind for authentication which then creates the AFS token for the authenticated user. Volker (This used to be commit 2df6750a079820826013360fb9e47f90bc8223a5)
2004-03-26Move the Client-IP based msdfs target expansion to a VFS module.Volker Lendecke1-0/+6
Volker (This used to be commit 9cb6a4d76f87b28077861d3f4220541fbf704ddf)
2004-03-24Path for bugzilla #1152 from Timur Bakeyev. Allow python modules toTim Potter1-2/+2
build despite libraries added to LDFLAGS instead of LDPATH. (This used to be commit 98a25dcda8e53e22b48930131ff394414056f6a1)
2004-03-18Password lockout for LDAP backend. Caches autolock flag, bad count, andJim McDonough1-1/+2
bad time locally, updating the directory only for hitting the policy limit or resetting. This needed to be done at the passdb level rather than auth, because some of the functions need to be supported from tools such as pdbedit. It was done at the LDAP backend level instead of generically after discussion, because of the complexity of inserting it at a higher level. The login cache read/write/delete is outside of the ldap backend, so it could easily be called by other backends. tdbsam won't call it for obvious reasons, and authors of other backends need to decide if they want to implement it. (This used to be commit 2a679cbc87a2a9111e9e6cdebbb62dec0ab3a0c0)
2004-03-15include swatdir in 'make showlayout'Gerald Carter1-0/+1
(This used to be commit b1115c0fc507e82d828ccbb5853734a964701cd2)
2004-03-10another typoHerb Lewis1-1/+1
(This used to be commit e6c2d9a3f7b5e427c6e7139726160d79e1dfc16d)
2004-03-10fix typo for tag in proto fileHerb Lewis1-1/+1
(This used to be commit 2367d988ae8d33397cd255d39100ae5791401558)
2004-03-09Given how core this code is, I figure it should have it's own testsuite.Andrew Bartlett1-1/+4
Big thanks to tpot and mbp for showing how easy it can be to write a simple unit test, and for providing the STF. This also changes the strstr_m() code to use strstr_w() (avoiding duplication) and fixes it so that it passes the STF. (We now always restart before doing the unicode run, until sombody can show me why the testsuite is wrong). Andrew Bartlett (This used to be commit a893a324f37e6a171719db8ffffe66df31c2dbaa)
2004-02-12fix build of lock testsGerald Carter1-2/+2
(This used to be commit 70cc747fdfe1f52b957a2b72a12b199f5daeeb5b)
2004-02-12merge from old APP_HEADGerald Carter1-47/+51
* remove corrupt tdb and shutdown (only for printing tdbs, connections, sessionid & locking) * decrement smbd counter in connections.tdb in smb_panic() * various Makefile hack to get things to link 'max smbd processes' looks like it might be broken. The counter KEY is not being set. Will look into that tomorrow. (This used to be commit 6e22c5da929b6d9a4e32dc704c83112b2ad8fcfd)
2004-02-08When we set a domain sid, force get_global_sam_sid() to do it's work again.Andrew Bartlett1-2/+2
This should ensure that the value it returns is always consistant. Andrew Bartlett (This used to be commit a4392ede33019b7584bf6a2d8445adb5191e640f)
2004-02-08Make more functions static, and remove duplication in the use of functionsAndrew Bartlett1-1/+1
in lib/smbpasswd.c that were exact duplicates of functions in passdb/passdb.c (These should perhaps be pulled back out to smbpasswd.c, but that can occour later). Andrew Bartlett (This used to be commit fcdc5efb1e245c8fa95cd031f67ec56093b9056e)
2004-02-06Replace .po with .@PICSUFFIX@Tim Potter1-4/+4
(This used to be commit b21b36d9270866181891c5c7c5365bae6b40815b)
2004-02-04This should be the correct fix for the lack of a prototype forAndrew Bartlett1-1/+1
remote_password_change(). Sorry for the original bug. Andrew Bartlett (This used to be commit 955436a6f6d7c2f580b2c4e1edbb7ee2fe5df858)