summaryrefslogtreecommitdiff
path: root/source3/Makefile.in
AgeCommit message (Collapse)AuthorFilesLines
2002-01-09Add two more memory-debug smbcontrol messages: these ones shouldMartin Pool1-1/+1
prompt dmalloc to log information about what happening, so you can see in flight why smbd is getting bloated. (This used to be commit bcb443c5c4bf97fe6b5b0993e42496c2e64f0124)
2002-01-08- fixed my breakage of CPPFLAGSAndrew Tridgell1-1/+2
- allow winbindd and wbinfo to build without shared libraries (This used to be commit d5db2518be8458f24f66eaa17434504b994ebb9a)
2002-01-07- use CFLAGS when linking shared libs (for things like -64 on irix)Andrew Tridgell1-3/+2
- don't attempt to build winbindd if we can't do shared libs (This used to be commit c98158f3f818118fb13cc7ae6f45634204343b46)
2002-01-05I've decided to move the auth code around a bit more...Andrew Bartlett1-1/+1
The auth_authsupplied_info typedef is now just a plain struct - auth_context, but it has been modified to contain the function pointers to the rest of the auth subsystem's components. (Who needs non-static functions anyway?) In working all this mess out, I fixed a number of memory leaks and moved the entire auth subsystem over to talloc(). Note that the TALLOC_CTX attached to the auth_context can be rather long-lived, it is provided for things that are intended to live as long. (The global_negprot_auth_context lasts the whole life of the smbd). I've also adjusted a few things in auth_domain.c, mainly passing the domain as a paramater to a few functions instead of looking up lp_workgroup(). I'm hopign to make this entire thing a bit more trusted domains (as PDC) freindly in the near future. Other than that, I moved a bit of the code around, hence the rather messy diff. Andrew Bartlett (This used to be commit 12f5515f556cf39fea98134fe3e2ac4540501048)
2002-01-03smbd should register to receive MSG_REQ_POOL_USAGE. Response shouldMartin Pool1-0/+1
be information about memory usage, but this is not done yet. (This used to be commit 830a126a442bdde28fc42e23e7260c344b6534b9)
2002-01-02We should be SHLD not LINK when creating shared libraries.Jeremy Allison1-7/+7
Tidyup in passdb.c Jeremy. (This used to be commit 676eea502a1bb2114a6e8055ecaf97ecab2e3a91)
2002-01-02Removed reference to rpc_client/cli_netlogon.o from dependencies forTim Potter1-1/+1
samsync. The libsmb version should do fine. (This used to be commit 001fe3481f26e27964b3d60c067524b45f085304)
2002-01-01Further rpc_client removal, this time from winbindd.Andrew Bartlett1-6/+1
Also removed the dependency on auth_util.o, which makes things nicer. Finally, this kills off the NECESSARY_BECAUSE_SAMBA_DEPENDENCIES_ARE_SO_BROKEN_OBJ makefile variable - becouse Samba dependencies are starting to be sane again! Andrew Bartlett (This used to be commit 4609edcac3b70c11025f0c5aa0ddbeed93369c84)
2002-01-01A farily large commit:Andrew Bartlett1-3/+1
- Move rpc_client/cli_trust.c to smbd/change_trust_pw.c - It hasn't been used by anything else since smbpasswd lost its -j - Add a TALLOC_CTX to the auth subsytem. These are only valid for the length of the calls to the individual modules, if you want a longer context hide it in your private data. Similarly, all returns (like the server_info) should still be malloced. - Move the 'ntdomain' module (security=domain in oldspeak) over to use the new libsmb domain logon code. Also rework much of the code to use some better helper functions for the connection - getting us much better error returns (the new code is NTSTATUS). The only remaining thing to do is to figure out if tpot's 0xdead 0xbeef for the LUID feilds is sufficient, or if we should do random LUIDs as per the old code. Similarly, I'll move winbind over to this when I get a chance. This leaves the SPOOLSS code and some cli_pipe code as the only stuff still in rpc_client, at least as far as smbd is concerned. While I've given this a basic rundown, any testing is as always appriciated. Andrew Bartlett (This used to be commit d870edce76ecca259230fbdbdacd0c86793b4837)
2001-12-30Make Samba compile on RH 6.2 again.Andrew Bartlett1-1/+2
We now include the libber.h file if required, but currently we just don't use ldap. (I'll chase this up). In the meantime, I've moved the ads_status code about, its now in its own file, and has a couple of #ifdefs to allow smbd to link - becouse the lack of LDAP caused HAVE_ADS to be undefined. (I hope its not too ugly). Andrew Bartlett (This used to be commit 14407c87e2dcccae1784290e3eb7a2d611516aff)
2001-12-21merge from 2.2Gerald Carter1-8/+0
(This used to be commit 6697e46183719c894ec115c0fd8a18ad4191b347)
2001-12-21remove duplicate linesHerb Lewis1-3/+0
(This used to be commit b60d6f11972892a17bf6df5e7ee3dd2e498bc4c0)
2001-12-20added net lookup commandAndrew Tridgell1-1/+1
(This used to be commit 51268c512dbae94aba308668df9facaf15a2ce9e)
2001-12-20net ads password and net ads chostpass commands from Remus KoosAndrew Tridgell1-1/+1
(This used to be commit 412e79c448bf02e3097b5c14a36fe0172d8d2895)
2001-12-19Added AC_CHECK_FUNCS(syslog vsyslog).Jeremy Allison1-3/+3
nsswitch code uses vsyslog without checking for it. Provide replacement for vsyslog in lib/snprintf if not found by configure. Jeremy. (This used to be commit ab2e55cdb376d6699c9a09fac243fba7d3840447)
2001-12-19Add a very trivial talloc torture program, bin/talloctort. Not builtMartin Pool1-0/+7
by default. (This used to be commit e3390669958f01672f5638ebf975e8bd4fd67665)
2001-12-15Allow HPUX to link with new ACL code.Jeremy Allison1-2/+2
Jeremy. (This used to be commit ad9a5a26e088f3fedce9562f688c518d610dbef2)
2001-12-14Added the group enum code from 2.2Jeremy Allison1-4/+3
Jeremy. (This used to be commit 59e01a22c5cb1046758c8cd6b09333c19d6cd26e)
2001-12-13-Insswitch/ breaks the build by preventing include of <nss.h> from workingAndrew Tridgell1-1/+1
(This used to be commit 1ef98625404a2df0fb0b70b40041e3b8cdbc5f5d)
2001-12-12allow IRIX to build nsswitch/libnss_wins.soHerb Lewis1-5/+5
(This used to be commit 564bfd77287b3006c7246065990ca9b91f79826a)
2001-12-12added a -V[erbose] option to samsync. Decode a lot of informationJean-François Micouleau1-1/+1
I'm looking at chaining the credentials J.F. (This used to be commit d49c8e4d3d64b48e243d0f517b9e7f037103af13)
2001-12-11add PATH_FLAGS to .po32 objects so dynconfig builds with smbwrapperHerb Lewis1-1/+1
(This used to be commit 5bf6f9193774bcb6abb955efb346d2eb966a03d0)
2001-12-11added a net time command. Allow display or set of system time based onAndrew Tridgell1-2/+3
a SMB server particularly useful for ADS is: net time set -S DOMAIN#1B this makes kerberos clock skew problems go away :) (This used to be commit b3ba2293d0e4eac3b6408c3abc3dcacfa3f67fe4)
2001-12-11Modify winbindd to use authenticated user info from secrets.tdb when makingTim Potter1-3/+5
IPC$ connections to domain controllers. (This used to be commit 1217ef28a6c18c085fcb2eac3bf04866c166d959)
2001-12-11Doing some research into ACLs on the LSA and SAM policy objects.Tim Potter1-1/+2
- added lsaquerysecobj to rpcclient - renamed querysecobj to samquerysecobj - removed duplicated display_sec_acl() code from cmd_spoolss.c and cmd_samr.c and moved it into display_sec.c (This used to be commit 59b2e3f408a5ff22f2d81a927d010a7df5f19f7f)
2001-12-10Also show LDFLAGS/LDSHFLAGS when starting compilation, because they'reMartin Pool1-2/+4
not visible later on. (This used to be commit 8edd29e09959a14a2b87c65930df7df2c2d88b03)
2001-12-08added internal sasl/gssapi code. This means we are no longer dependent on ↵Andrew Tridgell1-1/+1
cyrus-sasl which makes the code much less fragile. Also added code to auto-determine the server name or realm (This used to be commit 435fdf276a79c2a517adcd7726933aeef3fa924b)
2001-12-07include/build_env.h wasn't getting built by default with new rules unlessHerb Lewis1-1/+1
you did make headers - fixed (This used to be commit ce84993e8e66a151fcb7d5709763b0bf2d513a7c)
2001-12-07OK I think this does what everyone wants with the .headers.stampHerb Lewis1-3/+3
it gets removed on a make clean it gets created on a make headers (if it doesn't already exist) This makes it so I only rebuild everthing once after a make clean and also so nothing gets rebuilt after jfm does a make headers (proto) (This used to be commit bc918bce104954b39bd54cab3149a0f4573feb5f)
2001-12-06remove .headers.stamp from the delheaders definitionJean-François Micouleau1-2/+2
It forced a complete build to occur each time the proto are rebuild ! J.F. (This used to be commit 9866c18193226ec4dc69ccc459f4f9b36610b945)
2001-12-05merge from 2.2Herb Lewis1-7/+7
don't set WINBIND variables unless configure was run --with-winbind (This used to be commit 83ec4c0f4dbfa43c893f18af1c6bb58c55043c9b)
2001-12-05dont add -I./popt to CFLAGS it really belongs in FLAGS1 with other includeHerb Lewis1-3/+4
paths. This make it hard to use a script that overrides CFLAGS options. (This used to be commit 646b5ae752f7cd00e057d0d7cc6001161125fd3f)
2001-12-05OK. Smbpasswd -j is DEAD.Andrew Bartlett1-12/+17
This moves the rest of the functionality into the 'net rpc join' code. Futhermore, this moves that entire area over to the libsmb codebase, rather than the crufty old rpc_client stuff. I have also fixed up the smbpasswd -a -m bug in the process. We also have a new 'net rpc changetrustpw' that can be called from a cron-job to regularly change the trust account password, for sites that run winbind but not smbd. With a little more work, we can kill rpc_client from smbd entirly! (It is mostly the domain auth stuff - which I can rework - and the spoolss stuff that sombody else will need to look over). Andrew Bartlett (This used to be commit 575897e879fc175ba702adf245384033342c903d)
2001-12-04move proto.h and build_env.h from $(srcdir)/include to $(builddir)/includeJean-François Micouleau1-2/+3
tridge, martin, if you think it's wrong , you can revert it. J.F. (This used to be commit f057d62aae620b042903dae61a19628cb57aba39)
2001-12-04Add 'net rpc join' to match the ADS equiv.Andrew Bartlett1-1/+4
This kills off the offending code in smbpasswd -j -Uab%c In the process we have changed from unsing compelatly random passwords to random, 15 char ascii strings. While this does produce a decrese in entropy, it is still vastly greater than we need, considering the application. In the meantime this allows us to actually *type* the machine account password duruign debugging. This code also adds a 'check' step to the join, confirming that the stored password does indeed do somthing of value :-) Andrew Bartlett (This used to be commit c0b7ee6ee547dc7ff798eaf8cb63fbe344073029)
2001-12-03added a tdb to store the account policy informations.Jean-François Micouleau1-1/+1
You can change them with either usermanager->policies->account or from a command prompt on NT/W2K: net accounts /domain we can add a rpc accounts to the net command. As the net_rpc.c is still empty, I did not start. How should I add command to it ? Should I take the rpcclient/cmd_xxx functions and call them from there ? alse changed the SAM_UNK_INFO_3 parser, it's an NTTIME. This one is more for jeremy ;-) J.F. (This used to be commit bc28a8eebd9245ce3004ae4b1a359db51f77bf21)
2001-12-03make proto should build winbindd_proto.h as wellAndrew Tridgell1-1/+1
(This used to be commit c8339ce5c88a371728a329d0e80266fe41c00fee)
2001-12-03added a basic ADS backend to winbind. More work needed, but atAndrew Tridgell1-1/+2
least basic operations work (This used to be commit 88241cab983b2c7db7d477c6c4654694a7a56cd3)
2001-12-03This is another major rework of the 'net' command.Andrew Bartlett1-1/+1
This time, all the existing functionality has been moved into 'net rap', ready for new commands in the 'net ads' and 'net rpc' categories. In particular, we hope to have the abilty to autoselect the appropriate backend to use based on smb.conf or other paramaters. This will allow 'net user' to work no matter what the remote server. The new 'net rpc' command will soon gain a 'net rpc join' and a 'net rpc user' based on the existing samba code. Also in this commit, the connection establishment code has been almost entirly reworked, and now has some minor sense of sainity to it. In particular, we can now connect to hosts *other* than localhost! We also have the ability to state on a per-command basis whether the 'localhost' is a sane default value. (A net join, for example, would not be sane against localhost). Unfortunetly we have had to make the basic paramaters global variables, but the 'cli' is not opened and closed on a per-command basis. Andrew Bartlett (This used to be commit 8739d426caabe3794a018dd28ab139b08f88b603)
2001-12-03added nsstest targetAndrew Tridgell1-1/+7
fixed winbindd_rpc.o typo (This used to be commit 2ce7f38fe96c6f5faf45d3c71a3c8d3386ea5107)
2001-12-03split winbindd_enum_dom_groups into the new backend structureAndrew Tridgell1-1/+2
also created winbindd_rpc.c which contains the functions that have been converted to the new structure. There will soon be a winbindd_ads.c for the ldap backend (This used to be commit e4ccc602ba65838646f2632120069f3274619dd9)
2001-12-01added smbgroupedit to compile by defaultJean-François Micouleau1-1/+1
J.F. (This used to be commit 540a6122dc58a216a94a11a36baa209521dd1981)
2001-12-01added $(LDFLAGS) to link smbmount/smbmnt/smbumount to make Red Hat LinuxMotonobu Takahashi1-3/+3
happy (This used to be commit 7dfde592aa47f735c08718844db083500b020a60)
2001-11-29Make better use of the ads_init() function to get the kerberos relam etc.Andrew Bartlett1-1/+2
This allows us to use automagically obtained values in future, and the value from krb5.conf now. Also fix mem leaks etc. Andrew Bartlett (This used to be commit 8f9ce717819235d98a1463f20ac659cb4b4ebbd2)
2001-11-26This compleats the of the authenticaion subystem into the new 'auth'Andrew Bartlett1-6/+5
subdirectory. (The insertion of these files was done with some CVS backend magic, hence the lack of a commit message). This also moves libsmb/domain_client_validate.c back into auth_domain.c, becouse we no longer share it with winbind. Andrew Bartlett (This used to be commit 782835470cb68da2188a57007d6f55c17b094d08)
2001-11-25add popt build dependencyAndrew Tridgell1-1/+1
(This used to be commit 0c1f90402bf6aa403719cef59afd127ae42b0865)
2001-11-25move popt out of proto objsAndrew Tridgell1-2/+2
(This used to be commit db0bee1c68d8d9af3febb841c86cd3d4ade87c7b)
2001-11-25made a "net ads" command, currently with "net ads join" and "net ads leave"Andrew Tridgell1-1/+1
(This used to be commit 2f8fa175b189c2d11676245b01d3201c0a4f0826)
2001-11-24added "net join" commandAndrew Tridgell1-5/+5
this completes the first stage of the smbd ADS support (This used to be commit 058a5aee901e6609969ef7e1d482a720a84a4a12)
2001-11-24This is another rather major change to the samba authenticaionAndrew Bartlett1-1/+2
subystem. The particular aim is to modularized the interface - so that we can have arbitrary password back-ends. This code adds one such back-end, a 'winbind' module to authenticate against the winbind_auth_crap functionality. While fully-functional this code is mainly useful as a demonstration, because we don't get back the info3 as we would for direct ntdomain authentication. This commit introduced the new 'auth methods' parameter, in the spirit of the 'auth order' discussed on the lists. It is renamed because not all the methods may be consulted, even if previous methods fail - they may not have a suitable challenge for example. Also, we have a 'local' authentication method, for old-style 'unix if plaintext, sam if encrypted' authentication and a 'guest' module to handle guest logins in a single place. While this current design is not ideal, I feel that it does provide a better infrastructure than the current design, and can be built upon. The following parameters have changed: - use rhosts = This has been replaced by the 'rhosts' authentication method, and can be specified like 'auth methods = guest rhosts' - hosts equiv = This needs both this parameter and an 'auth methods' entry to be effective. (auth methods = guest hostsequiv ....) - plaintext to smbpasswd = This is replaced by specifying 'sam' rather than 'local' in the auth methods. The security = parameter is unchanged, and now provides defaults for the 'auth methods' parameter. The available auth methods are: guest rhosts hostsequiv sam (passdb direct hash access) unix (PAM, crypt() etc) local (the combination of the above, based on encryption) smbserver (old security=server) ntdomain (old security=domain) winbind (use winbind to cache DC connections) Assistance in testing, or the production of new and interesting authentication modules is always appreciated. Andrew Bartlett (This used to be commit 8d31eae52a9757739711dbb82035a4dfe6b40c99)