| Age | Commit message (Collapse) | Author | Files | Lines | |
|---|---|---|---|---|---|
| 2012-04-03 | s3-libads: Remove ads_verify_ticket() as it is now unused | Andrew Bartlett | 2 | -788/+0 | |
| Signed-off-by: Stefan Metzmacher <metze@samba.org> | |||||
| 2012-04-03 | s3-libads: Rework kerberos_return_pac() to use GENSEC for the server-side | Andrew Bartlett | 1 | -22/+167 | |
| This removes the last user of ads_verify_ticket(), and means that we only have one code path to verify an incoming krb5 (GSSAPI) ticket. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> | |||||
| 2012-03-30 | More strlcat/strlcpy truncate checks. | Jeremy Allison | 1 | -2/+9 | |
| 2012-02-23 | s3-libads: Remove unused ads_set_machine_password() | Andrew Bartlett | 2 | -33/+0 | |
| Found by callcatcher. Andrew Bartlett | |||||
| 2012-02-23 | s3-libads: Remove unused ads_pull_sids_from_extendeddn() | Andrew Bartlett | 2 | -62/+0 | |
| Found by callcatcher. Andrew Bartlett | |||||
| 2012-02-13 | s3-libads: Move to using only the HAVE_KRB5 define | Andrew Bartlett | 2 | -13/+11 | |
| HAVE_KRB5 already implies that GSSAPI is present as well. Andrew Bartlett | |||||
| 2012-01-20 | s3:kerberos_verify: ads_dedicated_keytab_verify_ticket() only needs read access | Stefan Metzmacher | 1 | -1/+1 | |
| metze | |||||
| 2012-01-10 | krb5: Require krb5_get_host_realm and krb5_free_host_realm be available to ↵ | Andrew Bartlett | 1 | -4/+0 | |
| build with krb5 | |||||
| 2012-01-09 | s3-libads: pretty print a keytab list. | Günther Deschner | 1 | -2/+2 | |
| Guenther | |||||
| 2012-01-09 | s3-libads: fix malloc/talloc mismatch in ads_keytab_verify_ticket(). | Günther Deschner | 1 | -1/+1 | |
| Guenther | |||||
| 2012-01-06 | s3-libads Use NTLMSSP via auth_generic/gensec | Andrew Bartlett | 1 | -90/+79 | |
| This allows us to use the shared gensec_wrap() implementation already used by the smb sealing code, as well as making this code more generic. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> | |||||
| 2012-01-05 | s3-libads Factor out a new routine ↵ | Andrew Bartlett | 2 | -9/+48 | |
| kerberos_get_principal_from_service_hostname() This is now used in the GSE GSSAPI client, so that when we connect to a target server at the CIFS level, we use the same name to connect at the DCE/RPC level. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> | |||||
| 2011-12-21 | s3-dns: prevent from potentially doing wrong SRV DNS lookups. | Günther Deschner | 1 | -1/+1 | |
| With an empty sitename we asked for e.g. _ldap._tcp.._sites.dc._msdcs.AD.EXAMPLE.COM Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Wed Dec 21 17:23:25 CET 2011 on sn-devel-104 | |||||
| 2011-12-20 | s3: Fix some False/NULL hickups | Volker Lendecke | 1 | -1/+1 | |
| Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Tue Dec 20 13:13:17 CET 2011 on sn-devel-104 | |||||
| 2011-11-17 | s3-smbldap: move ldap_open_with_timeout out of smb_ldap.h to ads where it lives. | Günther Deschner | 1 | -0/+7 | |
| Guenther Autobuild-User: Günther Deschner <gd@samba.org> Autobuild-Date: Thu Nov 17 03:47:53 CET 2011 on sn-devel-104 | |||||
| 2011-10-18 | ntlmssp: Move ntlmssp code to auth/ntlmssp | Andrew Bartlett | 1 | -1/+1 | |
| This brings in the code from both libcli/auth and source4/auth/ntlmssp. Andrew Bartlett Signed-off-by: Stefan Metzmacher <metze@samba.org> | |||||
| 2011-10-17 | s3: Before adding KDC's to the krb5.conf, cldap ping them | Volker Lendecke | 1 | -47/+101 | |
| Some Kerberos libraries don't do proper failover. This fixes the situation where a KDC exists in DNS but is not reachable for some reason. Ported to master by Stefan Metzmacher <metze@samba.org> Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Mon Oct 17 11:25:37 CEST 2011 on sn-devel-104 | |||||
| 2011-10-17 | Add cldap_multi_netlogon_send/recv | Volker Lendecke | 2 | -42/+314 | |
| Make ads_cldap_netlogon use it. It does not need the fancy multi stuff, but excercising that code more often is better. And because we have to ask over the network, the additional load should be neglectable. Ported to master by Stefan Metzmacher <metze@samba.org> | |||||
| 2011-10-10 | libcli/cldap: don't pass tevent_context to cldap_socket_init() | Stefan Metzmacher | 1 | -1/+1 | |
| metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Mon Oct 10 23:23:07 CEST 2011 on sn-devel-104 | |||||
| 2011-09-26 | s3: Slightly simplify print_kdc_line() | Volker Lendecke | 1 | -10/+8 | |
| No code change except for an early "return talloc_asprintf(..)" making an else branch obsolete. Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Mon Sep 26 18:24:25 CEST 2011 on sn-devel-104 | |||||
| 2011-09-26 | s3: Slightly simplify print_kdc_line() | Volker Lendecke | 1 | -20/+19 | |
| No code change except for an early "return talloc_asprintf(..)" making an else branch obsolete. | |||||
| 2011-09-26 | s3: Slightly simplify print_kdc_line() | Volker Lendecke | 1 | -49/+52 | |
| No code change except for an early "return talloc_asprintf(..)" making an else branch obsolete. | |||||
| 2011-09-18 | s3: Add some const to create_local_private_krb5_conf_for_domain | Volker Lendecke | 2 | -2/+2 | |
| Autobuild-User: Volker Lendecke <vlendec@samba.org> Autobuild-Date: Sun Sep 18 23:31:28 CEST 2011 on sn-devel-104 | |||||
| 2011-09-18 | s3: Add some const to print_kdc_line | Volker Lendecke | 1 | -1/+1 | |
| 2011-08-19 | If "ldap timeout" is non-zero, set the local search timeout to | Jeremy Allison | 1 | -19/+36 | |
| be one second longer than the remote search timeout (which is set to the "ldap timeout" value). This allows the remote search timeout to fire in preference. Allow lp_ldap_timeout() to be zero. Don't set the any local alarm if so. | |||||
| 2011-08-17 | s3: Increase a debug level in ads_find_dc | Volker Lendecke | 1 | -1/+2 | |
| This message can happen with AD trusts that winbind can not cope with. The message is not really clear and not worth spamming syslog always. | |||||
| 2011-08-03 | s3-ntlmssp Remove auth_ntlmssp_and_flags() | Andrew Bartlett | 1 | -1/+0 | |
| There is no need to mask out these flags as they simply are not set yet. The correct abstraction is to ask for NTLMSSP features. Andrew Bartlett Signed-off-by: Andrew Tridgell <tridge@samba.org> | |||||
| 2011-06-10 | source3/libads/ldap_schema.h: fix licence/copyright | Günther Deschner | 1 | -0/+25 | |
| Guenther | |||||
| 2011-06-10 | source3/libads/cldap.h: fix licence/copyright | Günther Deschner | 1 | -0/+27 | |
| Guenther | |||||
| 2011-06-10 | source3/libads/ads_status.h: fix licence/copyright | Günther Deschner | 1 | -0/+22 | |
| Guenther | |||||
| 2011-06-10 | source3/libads/ads_ldap_protos.h: fix licence/copyright | Günther Deschner | 1 | -0/+28 | |
| Guenther | |||||
| 2011-06-09 | s3-param Remove special case for global_myname(), rename to lp_netbios_name() | Andrew Bartlett | 7 | -22/+22 | |
| There is no reason this can't be a normal constant string in the loadparm system, now that we have lp_set_cmdline() to handle overrides correctly. Andrew Bartlett | |||||
| 2011-06-09 | s3-talloc Change TALLOC_MEMDUP() to talloc_memdup() | Andrew Bartlett | 1 | -1/+1 | |
| Using the standard macro makes it easier to move code into common, as TALLOC_MEMDUP isn't standard talloc. | |||||
| 2011-06-09 | s3-talloc Change TALLOC_ZERO_ARRAY() to talloc_zero_array() | Andrew Bartlett | 2 | -6/+6 | |
| Using the standard macro makes it easier to move code into common, as TALLOC_ZERO_ARRAY isn't standard talloc. | |||||
| 2011-06-09 | s3-talloc Change TALLOC_ZERO_P() to talloc_zero() | Andrew Bartlett | 1 | -2/+2 | |
| Using the standard macro makes it easier to move code into common, as TALLOC_ZERO_P isn't standard talloc. | |||||
| 2011-06-09 | s3-talloc Change TALLOC_P() to talloc() | Andrew Bartlett | 1 | -1/+1 | |
| Using the standard macro makes it easier to move code into common, as TALLOC_P isn't standard talloc. | |||||
| 2011-06-09 | s3-talloc Change TALLOC_ARRAY() to talloc_array() | Andrew Bartlett | 6 | -10/+10 | |
| Using the standard macro makes it easier to move code into common, as TALLOC_ARRAY isn't standard talloc. | |||||
| 2011-06-09 | s3-talloc Change TALLOC_REALLOC_ARRAY() to talloc_realloc() | Andrew Bartlett | 2 | -3/+3 | |
| Using the standard macro makes it easier to move code into common, as TALLOC_REALLOC_ARRAY isn't standard talloc. Andrew Bartlett | |||||
| 2011-06-02 | Remove another PATH_MAX. | Jeremy Allison | 1 | -12/+27 | |
| Autobuild-User: Jeremy Allison <jra@samba.org> Autobuild-Date: Thu Jun 2 02:51:06 CEST 2011 on sn-devel-104 | |||||
| 2011-06-01 | s3-param prepare for some lp_ functions to return const | Andrew Bartlett | 1 | -1/+1 | |
| 2011-05-31 | s3:libads/ndr: include ../librpc/ndr/libndr.h instead of librpc/ndr/util.h | Michael Adam | 1 | -1/+1 | |
| 2011-05-31 | s3:libads/kerberos_proto.h: add _LIBADS_KERBEROS_PROTO_H_ guard | Michael Adam | 1 | -0/+5 | |
| 2011-05-31 | s3:libads/kerberos_proto.h: add GPL/Copyright header | Michael Adam | 1 | -0/+29 | |
| 2011-05-31 | s3:libads/ads_proto.h: add _LIBADS_ADS_PROTO_H_ guard | Michael Adam | 1 | -0/+5 | |
| 2011-05-31 | s3:libads/ads_proto.h: add GPL/Copyright header | Michael Adam | 1 | -0/+31 | |
| 2011-05-18 | s3-lib Replace StrCaseCmp() with strcasecmp_m() | Andrew Bartlett | 2 | -2/+2 | |
| strcasecmp_m() never needs to call to talloc, and via next_codepoint() still has an ASCII fast-path bypassing iconv() calls. Andrew Bartlett | |||||
| 2011-05-06 | s3-includes: no need to globally include libads/ads_status.h. | Günther Deschner | 3 | -0/+7 | |
| Guenther | |||||
| 2011-05-05 | More simple const fixups. | Jeremy Allison | 2 | -8/+8 | |
| 2011-05-05 | More const fixes for compiler warnings from the waf build. | Jeremy Allison | 1 | -2/+2 | |
| 2011-05-05 | s3-libads: run minimal_includes.pl. | Günther Deschner | 1 | -2/+0 | |
| Guenther | |||||
 |
index : samba | |
| Unnamed repository; edit this file 'description' to name the repository. | ben |
| summaryrefslogtreecommitdiff |