| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
Volker
(This used to be commit cb816e65a95802d5172c410d1acda2da070b871d)
|
|
(This used to be commit 85e61ff69c92143f54860dfce02f95a1e6070bc3)
|
|
* \PIPE\unixinfo
* winbindd's {group,alias}membership new functions
* winbindd's lookupsids() functionality
* swat (trunk changes to be reverted as per discussion with Deryck)
(This used to be commit 939c3cb5d78e3a2236209b296aa8aba8bdce32d3)
|
|
(This used to be commit 5396944fc3799a9746d00167a6f0e8465df4dcea)
|
|
UNIX vendor
not understanding abstract data types :-(.
Jeremy.
(This used to be commit be5b4e2fa3ed30b0ff01b47d2354e5f782a12e25)
|
|
Several incarnations of gcc bork with
Compiling dynconfig.c
/tmp/ccXd94O5.s: Assembler messages:
/tmp/ccXd94O5.s:1202: Error: suffix or operands invalid for `mov'
/tmp/ccXd94O5.s:1289: Error: suffix or operands invalid for `mov'`
Thanks to Bent Vangli for the the leg work and suggestions.
(This used to be commit 318fe7ba0093c4a94e9f4f5c8ce7a2f5d1078e26)
|
|
Jeremy.
(This used to be commit 095c5dbc188ca4b093c774c8f04d79f7d342a8a6)
|
|
Jeremy.
(This used to be commit 22a796fe012e212f7744f0d63a8512e6942a5324)
|
|
safe for using our headers and linking with C++ modules. Stops us
from using C++ reserved keywords in our code.
Jeremy
(This used to be commit 9506b8e145982b1160a2f0aee5c9b7a54980940a)
|
|
(This used to be commit a0ac9a8ffd4af31a0ebc423b4acbb2f043d865b8)
|
|
a file
that is only included if _SAMBA_BUILD_ is defined...
Let's see how far this gets us.
Volker
(This used to be commit 563275b35f76107e3d2a8b0b6e14394b20ecd81b)
|
|
Volker
(This used to be commit f3836831da317660a3a1bb356d238f50320e1512)
|
|
--enable-socket-wrapper to configure
(This used to be commit 9c6cdd23ead427a4cb20177dad1c87da9594a4fe)
|
|
(This used to be commit ce38ead0fccf434f90671201d3c50cd79b3f3ed4)
|
|
Jeremy.
(This used to be commit 695d45bcadbcc1528900255534be47f135160529)
|
|
1. using smbc_getxattr() et al, one may now request all access control
entities in the ACL without getting all other NT attributes.
2. added the ability to exclude specified attributes from the result set
provided by smbc_getxattr() et al, when requesting all attributes,
all NT attributes, or all DOS attributes.
3. eliminated all compiler warnings, including when --enable-developer
compiler flags are in use. removed -Wcast-qual flag from list, as that
is specifically to force warnings in the case of casting away qualifiers.
Note: In the process of eliminating compiler warnings, a few nasties were
discovered. In the file libads/sasl.c, PRIVATE kerberos interfaces
are being used; and in libsmb/clikrb5.c, both PRIAVE and DEPRECATED
kerberos interfaces are being used. Someone who knows kerberos
should look at these and determine if there is an alternate method
of accomplishing the task.
(This used to be commit 994694f7f26da5099f071e1381271a70407f33bb)
|
|
I was going to use this for tracking dfs mounts in smbclient
but found another way. Still the cleanup is valid so commiting it.
should be minimally disruptive since it is not widely used.
(This used to be commit 00738dca3b07083c91545910486a1f30f2b17281)
|
|
(based on Simo's code in trunk). Rewritten with the
following changes:
* privilege set is based on a 32-bit mask instead of strings
(plans are to extend this to a 64 or 128-bit mask before
the next 3.0.11preX release).
* Remove the privilege code from the passdb API
(replication to come later)
* Only support the minimum amount of privileges that make
sense.
* Rewrite the domain join checks to use the SeMachineAccountPrivilege
instead of the 'is a member of "Domain Admins"?' check that started
all this.
Still todo:
* Utilize the SePrintOperatorPrivilege in addition to the 'printer admin'
parameter
* Utilize the SeAddUserPrivilege for adding users and groups
* Fix some of the hard coded _lsa_*() calls
* Start work on enough of SAM replication to get privileges from one
Samba DC to another.
* Come up with some management tool for manipultaing privileges
instead of user manager since it is buggy when run on a 2k client
(haven't tried xp). Works ok on NT4.
(This used to be commit 77c10ff9aa6414a31eece6dfec00793f190a9d6c)
|
|
(This used to be commit f00ae4ab0c36a623257861fb65373b39cf075921)
|
|
build when using gcc 3.0
(This used to be commit 1bc79a28080f2ff783b49e5cf3adfdfc4a4940ee)
|
|
Jeremy.
(This used to be commit 34275bae787762646f02ea1dec19d7b3a9a733a3)
|
|
Guenther
(This used to be commit c7eab285d967345510a15e83bce508edb8e06e99)
|
|
Guenther
(This used to be commit 43c8a9e25961f65677a55e701f54c0227329a756)
|
|
'..' from all #include preprocessor commands. This fixes bugzilla #1880
where OpenVMS gets confused about the '.' characters.
(This used to be commit 7f161702fa4916979602cc0295919b541912acd6)
|
|
Bugzilla #1778.
(This used to be commit 0f1ffe0f304d367fa5db1cfd92a8f5e365233c1f)
|
|
(This used to be commit 53bfb76608efa347d5fe154c5583a5e8e3d53740)
|
|
- Fix linker options so that stuff actually builds (oops - part of this
commit was accidentally made in -r2245)
- Add some preprocessor magic to avoid warnings being printed for every
single C file being compiled. This was due to a bug in the HPUX system
header files.
This should make the HPUX build farm machine build again.
(This used to be commit 46b9d6dcb5bdd47ea82f904d8fac4efe8dc94c9f)
|
|
* BUG 1627: fix for NIS compiles on HPUX 11.00, AIX 4.3 and 5.1
patch from Olaf Flebbe <o.flebbe@science-computing.de>.
Will need to watch this one in the build farm.
* Fix bug found by rwf@loonybin.net where the PRINT_ATTRIBUTE_PUBLISHED
was getting reset by attempts to sanitize the defined attributes
(PRINTER_ATTRIBUTE_SAMBA)
* Resolve name conflict on DEC OSF-5.1 (inspired by patch from
Adharsh Praveen <rprav@india.hp.com>)
* Work around parsing error in the print change notify code
(not that the alignment bug is still there but reording the
entries in the array works around it).
* remove duplicate declaration of getprintprocdir from rpcclient.
(This used to be commit 7474c6a446037f3ca2546cb6984d800bfc524029)
|
|
a customer hash function for this tdb (yes it does make a difference
on benchmarks). Remove the no longer used hash.c code.
Jeremy.
(This used to be commit 3fbadac85b8cad89b93d295968e99c38c8677575)
|
|
Guenther
(This used to be commit 153c813464eb54a06bf01146a0eb3d2c908f76bc)
|
|
compiler errors on IRIX
(This used to be commit b47971174da9ef882e7941e53033e23c679db9a2)
|
|
Jeremy.
(This used to be commit 7067e274dc208a4ba6677dc19bd224cf03213ed8)
|
|
Jeremy.
(This used to be commit af5a08f5ad895cb33c9134771da19ba5e709e742)
|
|
when linking against an app that does have vsnprintf() (bug #478)
(This used to be commit 9f1c978088321b09dea96c54026ebdfaaf770641)
|
|
(This used to be commit 9ea0560b0b62dbefaedd640cf9f4f58a0d337abe)
|
|
(This used to be commit fafb243278cd33d696487e477d4685bb79e2e357)
|
|
(This used to be commit 810bc1e2a02c6ab11ef00bf67b49929c596bee33)
|
|
(This used to be commit d58139d64f37fe9fec34492d7857257d9ad4a808)
|
|
(This used to be commit 66be4492aade625417a6cd727bbe8c6bfb224368)
|
|
SuSE 8.2
(This used to be commit 34e6c5f8f3829e9ff6dd3f1377170fb150bfcec1)
|
|
(This used to be commit 798dd7299e3ba5cd7e829f48bb42eb9cbfc71dd4)
|
|
Andrew Bartlett
(This used to be commit 109627145463fc4c00b8f6664e3f2e48e0305d56)
|
|
- NTLM2 support in the server
- KEY_EXCH support in the server
- variable length session keys.
In detail:
- NTLM2 is an extension of NTLMv1, that is compatible with existing
domain controllers (unlike NTLMv2, which requires a DC upgrade).
* This is known as 'NTLMv2 session security' *
(This is not yet implemented on the RPC pipes however, so there may
well still be issues for PDC setups, particuarly around password
changes. We do not fully understand the sign/seal implications of
NTLM2 on RPC pipes.)
This requires modifications to our authentication subsystem, as we
must handle the 'challege' input into the challenge-response algorithm
being changed. This also needs to be turned off for
'security=server', which does not support this.
- KEY_EXCH is another 'security' mechanism, whereby the session key
actually used by the server is sent by the client, rather than being
the shared-secret directly or indirectly.
- As both these methods change the session key, the auth subsystem
needed to be changed, to 'override' session keys provided by the
backend.
- There has also been a major overhaul of the NTLMSSP subsystem, to merge the 'client' and 'server' functions, so they both operate on a single structure. This should help the SPNEGO implementation.
- The 'names blob' in NTLMSSP is always in unicode - never in ascii.
Don't make an ascii version ever.
- The other big change is to allow variable length session keys. We
have always assumed that session keys are 16 bytes long - and padded
to this length if shorter. However, Kerberos session keys are 8 bytes
long, when the krb5 login uses DES.
* This fix allows SMB signging on machines not yet running MIT KRB5 1.3.1. *
- Add better DEBUG() messages to ntlm_auth, warning administrators of
misconfigurations that prevent access to the privileged pipe. This
should help reduce some of the 'it just doesn't work' issues.
- Fix data_blob_talloc() to behave the same way data_blob() does when
passed a NULL data pointer. (just allocate)
REMEMBER to make clean after this commit - I have changed plenty of data structures...
(This used to be commit f3bbc87b0dac63426cda6fac7a295d3aad810ecc)
|
|
files; will watch the build farm on this to make sure things don't blow up
(This used to be commit e92583cecd79adea25caedd1599ac8f36733a923)
|
|
(This used to be commit fb69597629bad305f227b5bab62e0f170d3c164c)
|
|
undefining the HAVE_MMAP symbol.
(This used to be commit c420195231457d3202157490f4bec335a788d8b4)
|
|
different (but by implicit conversion hopefully compatible... ;-)
prototype. Fix the build for that.
(This used to be commit 497b190edc42cec40fc80e9d9eb6aa4e1a466ac5)
|
|
(This used to be commit 589e94f4ffa325acfd6562a84906639e19fd5d33)
|
|
Jeremy.
(This used to be commit 455ed2d51d86f39ce0fa6e6abca31a5425d2ea17)
|
|
from Jim McDonough. It is to enable cyrus sasl to provide the
gss-spnego support. For a preliminary patch to cyrus sasl see
http://samba.sernet.de/cyrus-gss-spnego.diff
Volker
(This used to be commit 45cef8f66e46abe4a25fd2b803a7d1051c1c6602)
|
