Age | Commit message (Collapse) | Author | Files | Lines |
|
(This used to be commit 93ee9cfe22b60a35bb7f7c45c4c71a31665dca45)
|
|
--enable-socket-wrapper to configure
(This used to be commit 9c6cdd23ead427a4cb20177dad1c87da9594a4fe)
|
|
and one IRIX
stack backtrace bug.
Jeremy.
(This used to be commit c0b99c692b7e23a2bfe12c7230fd539771020750)
|
|
rules according to POSIX.
(This used to be commit 3216125bed39cbfe20bb8ac98d7489f660f9dfa0)
|
|
(This used to be commit ce38ead0fccf434f90671201d3c50cd79b3f3ed4)
|
|
fill in tomorrow
(This used to be commit 6bbd61cfd1ca2dbe8d96d894f90f263b8f24571f)
|
|
pulling back all recent rpc changes from trunk into
3.0. I've tested a compile and so don't think I've missed
any files. But if so, just mail me and I'll clean backup
in a couple of hours.
Changes include \winreg, \eventlog, \svcctl, and
general parse_misc.c updates.
I am planning on bracketing the event code with an
#ifdef ENABLE_EVENTLOG until I finish merging Marcin's
changes (very soon).
(This used to be commit 4e0ac63c36527cd8c52ef720cae17e84f67e7221)
|
|
in one
lanuage, English, at the moment). Fixes #2261. If other languages
might are added in the future, this parameter will still not be needed.
(This used to be commit d41e790b4ba96b42ae80f51925a86a3344d3fd39)
|
|
* Implement a fixed mapping of forbidden NT characters in filenames that are
* used a lot by the CAD package Catia.
*
* Yes, this a BAD BAD UGLY INCOMPLETE hack, but it helps quite some people
* out there. Catia V4 on AIX uses characters like "<*$ a *lot*, all forbidden
* under Windows...
Volker
(This used to be commit 8c0148df81d762853ed5c85bcf7c79d691f9b8ef)
|
|
segvs
(This used to be commit 25121547caaaed0d60f4db7458570c14e7d21b2a)
|
|
(This used to be commit cb08dd5f9087ac2e965dec8ba24c9e908fd6fcd3)
|
|
(This used to be commit 0a07f2b1d91e071618e67c4e9ee8274763eaf5aa)
|
|
client.c; client.c still maintains a pointer to the first connection so the change is fairly reansparent to other smbclient functions such as -L and -M
(This used to be commit d6a05ffd664e2e304f6e481af34a4c5d640fc3f9)
|
|
cd up and down the tree and get directory listings.
Still have to figure out how to get a directory listing on a
2k dfs root. Also have to work out some issues with relative paths
that cross dfs mount points.
We're protected from the new code paths when connecting to
a non-dfs root share ( the flag from the tcon&X is stored
in the struct cli_state* )
(This used to be commit e57fd2c5f00de2b11a2b44374830e89a90bc0022)
|
|
and SMBsplclose commands (BUG 2010)
* clarify some debug messages in smbspool (also from Mike)
my changes:
* start adding msdfs client routines
* enable smbclient to maintain multiple connections
* set the CAP_DFS flag for our internal clienht routines.
I actualy have a dfs referral working in do_cd() but that code
is too ugly to live so I'm not checking it in just yet.
Further work is to merge with vl's changes in trunk to support multiple
TIDs per cli_state *.
(This used to be commit 0449756309812d854037ba0af631abad678e670e)
|
|
passdb in 3_0 (they are still in trunk).
Guenther
(This used to be commit fdf9bdbbac1d8d4f3b3e1fc7e49c1e659b9301b1)
|
|
Does automated migration from account_policy.tdb v1 and v2 and offers a
pdbedit-Migration interface. Jerry, please feel free to revert that if
you have other plans.
Guenther
(This used to be commit 75af83dfcd8ef365b4b1180453060ae5176389f5)
|
|
one small todo item is to add a 'accounts' sub option
to 'net rpc list' so enumerate all privileged SIDs
and their associated rights.
(This used to be commit bf4385c79a0ce2e4983ffa11d39367dbf1d4dcfd)
|
|
(This used to be commit 164f94e52929330bd638f19bcf3bfce50303269e)
|
|
(based on Simo's code in trunk). Rewritten with the
following changes:
* privilege set is based on a 32-bit mask instead of strings
(plans are to extend this to a 64 or 128-bit mask before
the next 3.0.11preX release).
* Remove the privilege code from the passdb API
(replication to come later)
* Only support the minimum amount of privileges that make
sense.
* Rewrite the domain join checks to use the SeMachineAccountPrivilege
instead of the 'is a member of "Domain Admins"?' check that started
all this.
Still todo:
* Utilize the SePrintOperatorPrivilege in addition to the 'printer admin'
parameter
* Utilize the SeAddUserPrivilege for adding users and groups
* Fix some of the hard coded _lsa_*() calls
* Start work on enough of SAM replication to get privileges from one
Samba DC to another.
* Come up with some management tool for manipultaing privileges
instead of user manager since it is buggy when run on a 2k client
(haven't tried xp). Works ok on NT4.
(This used to be commit 77c10ff9aa6414a31eece6dfec00793f190a9d6c)
|
|
reload_printers() cleanup
(This used to be commit 054b64fb86328556288d097e1201a24d53d0bec9)
|
|
vfstest refers to reload_printers, only defined in smbd/server.c. Jerry, could
you take a look at that?
Thanks,
Volker
(This used to be commit a83e5c113257a8bd6a2842e5ba09006e710bfbbf)
|
|
up printcap reloads
(This used to be commit 1cad5250932b963c2eb9b775221b13db386d601b)
|
|
abartlet, I'd like to ask you to take a severe look at this!
We have solved the problem to find the global groups a user is in twice: Once
in auth_util.c and another time for the corresponding samr call. The attached
patch unifies these and sends them through the passdb backend (new function
pdb_enum_group_memberships). Thus it gives pdb_ldap.c the chance to further
optimize the corresponding call if the samba and posix accounts are unified by
issuing a specialized ldap query.
The parameter to activate this ldapsam behaviour is
ldapsam:trusted = yes
Volker
(This used to be commit b94838aff1a009f8d8c2c3efd48756a5b8f3f989)
|
|
Patch from Lars Mueller <lmuelle@suse.de>
Guenther
(This used to be commit b87abdfd0ee7ba1f8a1fb13d47c76baa538a4c6a)
|
|
Patch from Lars Müller <lmuelle@suse.de> ( Bugzilla #2013 )
Guenther
(This used to be commit af3ec11f8d6cae9bbad5dc5f3b9ae6e00bf1dd7e)
|
|
Guenther
(This used to be commit d22b29ee9c37b9d35e0d785632a10856045df0dc)
|
|
Guenther
(This used to be commit c4cb2ffa611f79ab3ba17f2afd8e4cd99b0afad3)
|
|
(This used to be commit 0bc5105f71c79e8c709d3bdfcc57cf8621e6fad5)
|
|
(This used to be commit 682b746ab6ff10bf9970e808f0032066e5f3b783)
|
|
Written by Sumit Bose <sbose@suse.de> and myself a while ago.
idmap_rid does a direct, static mapping between RIDs and UIDs/GIDs using
the idmap-range as offset. It does thus allow to have a unified mapping
over several winbindd-systems without having the need of a central
LDAP-Server (and all related dependencies and problems this solution can
bring).
Compile:
./configure --with-shared-modules=idmap_rid
Usage:
idmap backend = idmap_rid
idmp_rid does even allow you to have multiple mappings (for trusted
domains). This is a rather problemtic feature and will be turned off by
default rather soon. The problem is that ranges can quickly overlap when
not measured with caution.
idmap backend = idmap_rid:"MYDOMAIN=1000-9999 OTHER=10000-19999"
Will valgrind idmap_rid later today and fix a couple of things.
Guenther
(This used to be commit 49a238bd37105bf1a33d4a230ca594c4cf304dd3)
|
|
HPUX. This is Richard Allen's suggestion to get HPUX to use cc instead of
ld.
Also he added some missing $(DYNEXP) on link lines and removed the definition
of $(LINK) as it is no longer used in the Makefile.
(This used to be commit 9481f2a79e83b0dae9141f65ccc59e59bcf682e7)
|
|
Should be ready for the new directory code now...
Jeremy.
(This used to be commit c2eff8ef1b65570d2e590f62f026cc18f9142652)
|
|
a customer hash function for this tdb (yes it does make a difference
on benchmarks). Remove the no longer used hash.c code.
Jeremy.
(This used to be commit 3fbadac85b8cad89b93d295968e99c38c8677575)
|
|
Jelmer, we need to find another way to solve this bug. This way,
rpcclient is linked to libxml2, libmysqlclient and libpg (with according
dependencies in samba-client.rpm's) if one just wants to build the more
experimental pdb-modules as well.
Guenther
(This used to be commit 67bffc5034121cc0069007a7b79ce189ab0d10be)
|
|
(This used to be commit d5c757d89b76bfe5cbd23e4a241971aaa32e4949)
|
|
* add IA64 to the architecture table of printer-drivers
* add new "net"-subcommands:
net rpc printer migrate {drivers|printers|forms|security|settings|all}
[printer]
net rpc share migrate {shares|files|all} [share]
this is the first part of the migration suite. this will will (once
feature-complete) allow to do 1:1 server-cloning in the best possible way by
making heavy use of samba's rpc_client-functions. all migration-steps
are implemented as rpc/smb-client-calls; net communicates via rpc/smb
with two servers at the same time (a remote, source server and a
destination server that currently defaults to the local smbd). this
allows e. g. printer-driver migration including driverfiles, recursive
mirroring of file-shares including file-acls, etc. almost any migration
step can be called with a migrate-subcommand to provide more flexibility
during a migration process (at the cost of quite some redundancy :) ).
"net rpc printer migrate settings" is still in a bad condition (many
open questions that hopefully can be adressed soon).
"net rpc share migrate security" as an isolated call to just migrate
share-ACLs will be added later.
Before playing with it, make sure to use a test-server. Migration is a
serious business and this tool-set can perfectly overwrite your
existing file/print-shares.
* along with the migration functions had to make I the following
changes:
- implement setprinter level 3 client-side
- implement net_add_share level 502 client-side
- allow security descriptor to be set in setprinterdata level 2
serverside
guenther
(This used to be commit 8f1716a29b7e85baf738bc14df7dabf03762f723)
|
|
corruption problem, and smbd_log_tdb happily destoyed the evidence ....
Volker
(This used to be commit 359b9dcffeb66146c5405f8022d5d4e4a833aa51)
|
|
${prefix}/lib. This
helps amd64 systems with /lib and /lib64 and an explicit configure --libdir
setting.
Thanks to Bjoern Jacke <bj@sernet.de>
Volker
(This used to be commit cc1881c143b16fa8f0abd80190877d0018bc282e)
|
|
(This used to be commit 0ca894d5cf8f292e7f560120a28b15b28ba5812c)
|
|
(This used to be commit d08ce198b56b42baef5a0aceae706c006244372c)
|
|
haven't broken krb5 ticket verification in the mainline code path,
also need to check with valgrind. Everything now compiles (MIT, need
to also check Heimdal) and the "net keytab" utility code will follow.
Jeremy.
(This used to be commit f0f2e28958cb9abfed216c71f291f19ea346d630)
|
|
(This used to be commit 1f4db0b847de582387c0244397d1769b35bbcdbb)
|
|
already included in PROTO_OBJ by LIBMSRPC_OBJ
(This used to be commit a9113df6e9d357d334cd9a8dd937df6b3eec322e)
|
|
definitions to be consistent.
(This used to be commit 86e78bf745b4bb10fe60a77c069a9a062aa26637)
|
|
Split off the non-crypto related parts of lib/afs.c into
lib/afs_settoken.c. This makes wbinfo link without -lcrypto.
Commit vfs_afsacl.c, display & set AFS acls via the NT security editor.
Volker
(This used to be commit 43870a3fc1073cf7d60f1becae5c2ff98ab49439)
|
|
Move msdfs.c into the source/smbd directory and remove source/msdfs.
metze
(This used to be commit 88e6e6d29ca14e0cddbc1df611051a96568dc0c9)
|
|
Implement vfs_full_audit.c that can log every vfs.h operation. So if you
change vfs.h, from now on you also have to change full_audit :-)
Volker
(This used to be commit 9cb9c5f7c97fe8f76735a77b321c9500d28b55b2)
|
|
I'll add documentation to the Samba-Howto-Collection
metze
(This used to be commit 2bef5d2741807fe3f38a95710533520700e253a4)
|
|
the main ntlm_auth program.
It quite possibly should belong in smbtorture, but relies on the
winbind client for now.
Andrew Bartlett
(This used to be commit 6e1b7a8848062a184ee293cf688135b851f2bd8d)
|