summaryrefslogtreecommitdiff
path: root/source3/include
AgeCommit message (Collapse)AuthorFilesLines
2002-07-08(this should have been part of the previous commit)Andrew Bartlett2-13/+14
Add a function to display 'sid types' as strings - makes rpcclient outptut and DEBUG() logs much eaiser to understand. Move the enum for SID types to smb.h, becouse is really isn't LSA specific any more. Andrew Bartlett (This used to be commit fc9739861104df4ddc93efab3275275307e4fbb9)
2002-07-05Remove C++ comments.Tim Potter1-5/+10
(This used to be commit 180374c4440765f3d08e5690967beb387ae3b54d)
2002-07-04More code from "Kai Krueger" <kai@kruegernetz.de>, this time starting to makeAndrew Bartlett1-1/+21
the 'user cannot change password' button work. Needs help from a future SAM backend, but at least this parses the data, and returns an error. Andrew Bartlett (This used to be commit 0c4afe075aa018ec2be10f36fd3f0a5af2a032f1)
2002-07-04Patch to add security descriptors to the SAMR pipe.Andrew Bartlett1-0/+164
This is not the final solution, I think this will probably changed with the move to the new SAM subsystem, but it allows some research and gives us somthing to start with. It should also help with getting proper NT_TOKEN passing set-up. Original patch by "Kai Krueger" <kai@kruegernetz.de>, which I have modified to pass back NTSTATUS returns in more places and to use a little more common code. Andrew Bartlett (This used to be commit 43b72493708e74e089989db42a003a3862c793e6)
2002-07-03first cut at implementing support for browsing printer and driver driverGerald Carter1-20/+25
via regedt32.exe. The regsitry.tdb is only a framework. It is not intended to store values, only key/subkey structure. The data will be retrieved from nt*tdb (for printers) creating a virtual view of the data. You can currently connect to a Samba box using regedt32.exe (haven't tried regedit.exe). Some basic keys are created in registry.tdb for use. There are two problems.... * something is getting freed in the winreg code that causes heap corruption later on. As long as you don't play with the winreg server functionality, I don't think you'll be bitten by this. * no access controls are currently implemented * I can't browse HKLM because regedt32 greys out the SYSTEM subkey. ok so that was three.... (This used to be commit 542d3c93a998083c07b2afa91a7c927c376caf54)
2002-07-03Kill off codepage related stuff, now we don't use codepages any more.Andrew Bartlett2-28/+0
Andrew Bartlett (This used to be commit d1ca2b9f23ce701eb6b6becafb1acd813fc8fc3a)
2002-07-02Merge of constant renames from APPLIANCE_HEAD.Tim Potter1-6/+4
(This used to be commit daf4c6a013ffa474d768055e73a1cb31ee941e80)
2002-07-01used findstatic.pl to make some variables static and remove some deadAndrew Tridgell1-1/+0
code (This used to be commit 91ad9041e9507d36eb3f40c23c5d4df61f139ef0)
2002-06-28STRING was being redefined...Jeremy Allison1-1/+0
Jeremy. (This used to be commit f631f7e0fc7ff655d56ad17606134784f401f171)
2002-06-28Proper merge of all the working printing stuff from APPLIANCE_HEAD.Jeremy Allison4-24/+48
Now let's keep this in sync ! Jeremy. (This used to be commit 3603cd4947df2c10df604447dc542932cb9e5d5a)
2002-06-25Update cli_full_connection() to take a 'flags' paramater, and try to get aAndrew Bartlett1-0/+4
few more places to use it. Andrew Bartlett (This used to be commit 23689b0746d5ab030d8693abf71dd2e80ec1d7c7)
2002-06-24forgot new error code from 2.2Gerald Carter1-0/+1
(This used to be commit 8b805be8e8d1a5616158d39427ad640de4210de9)
2002-06-24Merged across trans2.c from SAMBA_2_2. UNIX extensions and passthroughJeremy Allison1-1/+11
now supported in HEAD. Jeremy. (This used to be commit 082c5c084ef870709d3046f580eef597bb2aeef3)
2002-06-22Add module versioning to the passdb module systemAndrew Bartlett1-0/+14
All passdb modules need to include a 'magic' macro that creates simple 'return my version number' function. (from metze and jelmer) Also fix up the dir_drive autosubsitute code to correctly use lp_logon_drive(). (from metze) Andrew Bartlett (This used to be commit 4a57c445dd4354034fc41b132a484afe6ab66e16)
2002-06-21Don't use uint. It doesn't exist on some platforms and we don't define it.Jeremy Allison1-4/+4
Replaced with "unsigned int". Jeremy. (This used to be commit 5841ca54b6a8c36f3d76c12570ff8f2211ed2363)
2002-06-18more debug classess activatedSimo Sorce1-1/+1
(This used to be commit 897e64d2e0c1d04ab93441ccaffe369bf43be46e)
2002-06-17compile warngin fixes merged from 2.2Gerald Carter1-2/+6
(This used to be commit 29874f4b8fecdc7cbd84d656dafce54cca49e0b1)
2002-06-16Fix up some of the SMB signing code:Andrew Bartlett1-0/+1
The problem was that *all* packets were being signed, even packets before signing was set up. (This broke the session request). This fixes it to be an 'opt in' measure - that is, we only attempt to sign things after we have got a valid, non-guest session setup as per the CIFS spec. I've not tested this against an MS server, becouse my VMware is down, but at least it doesn't break the build farm any more. Andrew Bartlett (This used to be commit 1dc5a8765876c1ca822e454651f8fd4a551965e9)
2002-06-15Rework much of the service.c code:Andrew Bartlett1-0/+3
The aim of this execise is to give the 'security>=user' code a straight paper path. Security=share will sill call authorise_login(), but otherwise we avoid that mess. This allow *much* more accurate error code reporting, beocuse we don't start pretending that we can use the (nonexistant) password etc. Also in this patch is code to create the 'homes' share at session setup time (as we have done in the past - been broken recently) and to record this on the user's vuser struct for later reference. The changes here should also allow for much better use of %H (some more changes to come here). The service.c changes move a lot of code around, but are not as drastric as they look... (Also included is a fix to srv_srvsvc_nt.c where 'total_entries' not '*total_entries' was compared). This code is needs testing, but passes my basic tests. I expect we have lost some functionality, but the stuff I had expected to loose was already broken before I started. In particular, we don't 'fall back' to guest if the user cannot access a share (for security=user). If you want this kind of stuff then you really want security=share anyway. Andrew Bartlett (This used to be commit 4c0cbcaed95231f8cf11edb43f6adbec9a0d0b5c)
2002-06-14Fix spelling typo.Jeremy Allison1-11/+11
Jeremy. (This used to be commit 0e7e8d44627ad9645a90e96001f8550b68b67a62)
2002-06-14More of SMB signing for client - not yet finished (should be harmless).Jeremy Allison2-2/+4
Jeremy. (This used to be commit c1b20db4bb4bb1ba485466f50b9795470027327c)
2002-06-13Merge in mangle fixes from 2.2.Jeremy Allison1-2/+5
Jeremy. (This used to be commit 5e2571f424a40df4d67fe279517a9b21184b78e1)
2002-06-13Latest patch from metze <metze@metzemix.de> to move most of samba acrossAndrew Bartlett1-2/+2
to using SIDs instead of RIDs. The new funciton sid_peek_check_rid() takes an 'expected domain sid' argument. The idea here is to prevent mistakes where the SID is implict, but isn't the same one that we have in the struct. Andrew Bartlett (This used to be commit 04f9a8ff4c7982f6597c0f6748f85d66d4784901)
2002-06-12Removed eff_name field from cli_struct as it wasn't being used anywhere.Tim Potter1-1/+0
(This used to be commit aff65bf6c9f339ae1d3122d12114005c017b9b5d)
2002-06-11few fixes from Elrond(elrond@samba-tng.org) and Billy ↵Simo Sorce1-5/+6
O'Connor(billy@oconnoronline.net) (This used to be commit 88718883e031a3249152861300432dfc895ac587)
2002-06-10Merge of Jerry's fix from 2.2.Jeremy Allison1-3/+10
Jeremy. (This used to be commit 64af68924b8fc36caac3f978dc0f9deccc41e059)
2002-06-10Remove "sids.h" as it really wasn't being used anywhere, and was exportingAndrew Bartlett2-40/+0
the (now static) global_sam_sid. The only place it was being used was to return global_sid_NULL to some uid->sid functions - and I'm not convinced this is correct in any case. Andrew Bartlett (This used to be commit e2a76a7fc94dd59c09bba3cda91446fad9f8c0e0)
2002-06-07Globally replace 'global_sam_sid' with get_global_sam_sid(), a selfAndrew Bartlett1-1/+1
initialising function. This patch thanks to the work of "Stefan (metze) Metzmacher" <metze@metzemix.de> This is partly to enable the transition to SIDs in the the passdb. Andrew Bartlett (This used to be commit 96afea638e15d4cbadc57023a511094a770c6adc)
2002-06-07Add flags2 for security signituresAndrew Bartlett1-0/+1
(This used to be commit 39c3f245f5e5d5e7532f9097683e6af3190dc872)
2002-06-06Fix compile error - doh!Tim Potter1-0/+4
(This used to be commit e80e6637064a39635faba5311f774a90b1d5ab43)
2002-06-06Moved some notify related constants into srv_spoolss_nt.c sinceTim Potter1-4/+3
they're only used there. Added a PRINTER_NOTIFY_VERSION constant. (This used to be commit 9d3933a59219388c209d8be4ae6decfa337d229f)
2002-06-03Add user name to netsessenum RPC to stop 1783 messagesJim McDonough1-0/+3
(This used to be commit 18854bcd2df88ab49c263c86d111a50d83411885)
2002-06-03put the ifdef for HAVE_VA_COPY in one place rather than in lots ofAndrew Tridgell1-0/+8
functions (This used to be commit 1cf3228fdc20f0314d1f8e71ad710a5e548b3f72)
2002-06-01Add rpc for file close, expand file enum to take usernameJim McDonough1-0/+16
(This used to be commit 4b18a94590a25882f06f88c3c7dd1a08bf990044)
2002-05-31Removed some unused variables - tidy up some formating, add struct toJeremy Allison2-1/+16
client state to implement smb signing - this is a test at present. Jeremy. (This used to be commit a234e303558a25c4ea26b7f6788006e4fee651bf)
2002-05-31Add error index to netshareadd rpc.Jim McDonough1-0/+4
(This used to be commit ea55d470e485a0448428c60a12fbb4a42c6b2019)
2002-05-31Update netfileenum on both client and server sides to do an arbitrary numberJim McDonough1-18/+12
of files. This was done to better enable net rpc file. Perhaps we can start giving back real info this way, too. (This used to be commit b3fea72ee9abd2441a49c35442c54819e4ba16ba)
2002-05-31netfileenum was missing the username filter.Jim McDonough1-0/+3
(This used to be commit 8fc3dba8bd99c55bef9ac137976dd35134a49342)
2002-05-30Added some comments for NTLMSSP negotiation flags.Tim Potter1-4/+4
(This used to be commit 742413b2846af44ac43830f488c15c5c11c1cb27)
2002-05-29Cleaned up srvsvc constants a bit.Tim Potter1-17/+17
(This used to be commit ca61f68d5ca8791bea34732bd358cfb63273fc5c)
2002-05-26change: pdb_getsampwrid() ->pdb_getsampwsid()Simo Sorce1-2/+2
passdb interface change, now the passdb modules will be asked for SID not for rid, the modules have been updated with a passthrough function that calls the old getsampwrid() functions. srv_samr_nt.c functions that made use of the pdb_getsampwrid funcion has been updated to use the SID one. (This used to be commit f5c6496c33fa7f5c2826540ffb4a49d8a5790fb3)
2002-05-26Add support for NTLMv2 (tested!) with NTLMSSP.Andrew Bartlett1-3/+10
The problem was the NTLMv2 uses extra data in order to make reply/lookup more difficult. That extra data includes the hostname, and the domain. This matches Win2k (sort of) by sending this information. Win2k connects with LMCompatibilityLevel=5 without a problem. We can change the negotiation bits if we want, this should allow us to make NTLMv2 the default for other clients as well. Some of the extra #defines were found in the squid source. Andrew Bartlett (This used to be commit 17a5f67b3d1935baf6197ae967624eb847b66ac8)
2002-05-24Move the authenticaion subsystem over to the same 'module:options' syntaxAndrew Bartlett1-4/+5
that the passdb code now uses. Similarly, move the 'pluggable' stuff over from passdb as well, allowing runtime loading of new authenticaion modules. (NOTE: The interfaces here can *and do* change - module writers are not assured source-level compatibilty, and certainly not binary compatibility). (This used to be commit 3897cf5e048f50be91ae434f636affc6d539d0d1)
2002-05-24Don't duplicat this here, use the existing function prototype.Andrew Bartlett1-4/+2
(This used to be commit 18c6db6a0014fd23383361485ec03eb871a85faa)
2002-05-22Commit the header file for the LDAP/secrets changesAndrew Bartlett1-0/+2
(This used to be commit 5512618d3493a04c84a43beaa752c307bce146fc)
2002-05-21uhh, forgot to commit the DBGC_WINBIND definition :-)Simo Sorce1-11/+11
(This used to be commit efb119fb88a511e026239773422242fff636ae13)
2002-05-18so here it is the code to introduce seriously debugggging classes.Simo Sorce1-11/+13
this is a first step only passdb stuff has beein "classized". - so what can you do? set debug level to: 1 poasdb:10 that will make all the code run at debug level 1 except the code in passdb/* files that will run at level 10 TODO: fix the man page - also smbcontrol has this nice feature so smbcontrol smbd debug 3 passdb:5 will set every smbd to have a default log level of 3 while passdb stuff will be at level 5 and so no.. minor cosmetic fix to pdbedit is there too (This used to be commit be5c3b3f5781ddc002ffcc98df04ab024dcef4ca)
2002-05-18Oops, I missed commiting this earlier.Andrew Bartlett1-3/+3
The idea is that pdb_add_sam_account() should have a non-const SAM_ACCOUNT, and update some of the the properties generated during the add. Andrew Bartlett (This used to be commit b014d9ae4bc38d83d474888b73d350a62704341f)
2002-05-18Include the extra #define for the last set of smbpasswd mods.Andrew Bartlett1-0/+1
(This used to be commit bf82ac14c826a765b33d368e4cb62c7fb3cd3c4f)
2002-05-18A few things in this commit:Andrew Bartlett1-2/+7
cleanup some of the code in net_rpc_join re const warnings and fstrings. Passdb: Make the %u and %U substituions in passdb work. This is done by declaring these paramters to be 'const' and doing the substitution manually. I'm told this is us going full circle, but I can't really see a better way. Finally these things actually seem to work properly... Make the lanman code use the pdb's recorded values for homedir etc rather than the values from lp_*() Add code to set the plaintext password in the passdb, where it can decide how to store/set it. For use with a future 'ldap password change' option, or somthing like that... Add pdb_unix, so as to remove the 'not in passdb' special cases from the local_lookup_*() code. Quite small, as it uses the new 'struct passwd -> SAM_ACCOUNT' code that is now in just one place. (also used by pdb_smbpasswd) Other: Fix up the adding of [homes] at session setup time to actually pass the right string, that is the unix homedir, not the UNC path. Fix up [homes] so that for winbind users is picks the correct name. (bad interactions with the default domain code previously) Change the rpc_server/srv_lsa_nt.c code to match NT when for the SATUS_NONE_MAPPED reply: This was only being triggered on no queries, now it is on the 'no mappings' (ie all mappings failed). Checked against Win2k. Policy Question: Should SID -> unix_user.234/unix_group.364 be considered a mapping or not? Currently it isn't. Andrew Bartlett (This used to be commit c28668068b5a3b3cf3c4317e5fb32ec9957f3e34)