summaryrefslogtreecommitdiff
path: root/source3/param
AgeCommit message (Collapse)AuthorFilesLines
2010-03-22share_info.tdb could use non-canonicalized sharenames.Jeremy Allison1-6/+6
Fix this by moving canonicalization into lib/sharesec.c. Update the db version to 3. Ensures we always find share names with security descriptors attached. Jeremy.
2010-03-22s3: Add the "ctdb locktime warn threshold" parameterVolker Lendecke1-0/+12
This is mainly a debugging aid for post-mortem analysis in case a cluster file system is slow.
2010-03-22s3:param: add "async smb echo handler" optionStefan Metzmacher1-0/+11
This will enable an extra forked process that will reply to SMBecho requests, while the main process is blocked by another request. metze
2010-03-22s3: Add "log writeable files on exit" parameterVolker Lendecke1-0/+13
This boolean option controls whether at exit time the server dumps a list of files with debug level 0 that were still open for write. This is an administrative aid to find the files that were potentially corrupt if the network connection died.
2010-02-11Remove lp_safe_widelinks() -> convert to just lp_widelinks. Suggestion from ↵Jeremy Allison1-3/+18
Volker. Create widelinks_warning(int snum) to cover the message needed in make_connection. Jeremy.
2010-02-11Introduce lp_safe_widelinks()Simo Sorce1-0/+16
This way we avoid any chance that a configuration reload may turn back on wide links when unix extensions are enabled.
2010-02-10Revert "Change the default of "nmbd bind explicit broadcast" to "no""Jeremy Allison1-3/+3
This reverts commit 84fba3c1bc962804259f201d465acfdf0cd3c6a8. Now we have a "processed packet queue" in nmbd we can go back to doing this by default. Jeremy.
2010-02-10Change the default of "nmbd bind explicit broadcast" to "no"Jeremy Allison1-3/+3
until the double processing problem in bug #7118 is fixed. Jeremy.
2010-02-08Make "nmbd bind explicit broadcast" on by default.Jeremy Allison1-0/+5
Fix a comment typo. Jeremy.
2010-02-08s3:nmbd: change "nmbd:bind explicit broadcast" into "nmbd bind explicit ↵Stefan Metzmacher1-0/+11
broadcast" metze
2010-02-05Fix bug 7104 - "wide links" and "unix extensions" are incompatible.Jeremy Allison1-1/+1
Change parameter "wide links" to default to "no". Ensure "wide links = no" if "unix extensions = yes" on a share. Fix man pages to refect this. Remove "within share" checks for a UNIX symlink set - even if widelinks = no. The server will not follow that link anyway. Correct DEBUG message in check_reduced_name() to add missing "\n" so it's really clear when a path is being denied as it's outside the enclosing share path. Jeremy.
2009-12-11s3:loadparm: Change the "ldap deref" value "defualt" to "auto".Karolin Seeger1-1/+1
That's an established value. Default is a bit confusing. Karolin
2009-12-10s3: make own defines for ldap deref typesBjörn Jacke1-6/+12
there are too many naming clashes between different ldap libs and ldb libs. Let's simply make our own defines. The numbers are well standarized. This also makes the default for "ldap deref" be "default" which means we won't tell the ldap library what to do. Ѕo by default it's all up to what the server and our libs think they should to do.
2009-12-10s3: add LDAP Alias Dereferencing supportBjörn Jacke1-0/+20
Thanks to Dan Cox for initial patch for 3.0. This closes #2350.
2009-12-07s3: de-deprecate "write cache size" to prevent its removal without a proper ↵Volker Lendecke1-1/+1
alternative
2009-12-02Fix bug #6837 - "Too many open files" when trying to access large number of ↵Jeremy Allison1-0/+16
files from Windows 7. Original patch by me fixed up with the correct open files number by jmaggard10@hotmail.com. Jeremy.
2009-11-30s3: Fix crash in free_file_list().Bo Yang1-3/+4
Signed-off-by: Bo Yang <boyang@samba.org>
2009-11-29s3: Restore "fake directory create times" as a share parameterVolker Lendecke1-4/+5
2009-11-29s3: "load_usershare_shares" only looks at the mode and uidVolker Lendecke1-2/+1
2009-11-29s3: "load_usershare_service" only looks at the mode and uidVolker Lendecke1-2/+1
2009-11-29s3: "usershare_exists" only looks at the mode and mtimeVolker Lendecke1-1/+1
2009-11-29s3: "process_usershare_file" only looks at the dev, ino, mode and sizeVolker Lendecke1-1/+1
2009-11-29s3: "process_usershare_file" only looks at the mode and sizeVolker Lendecke1-1/+1
2009-11-29s3: "parse_usershare_file" only looks at the mode and uidVolker Lendecke1-2/+1
2009-11-29s3: Pass the "fake dir create times" parameter to sys_*statVolker Lendecke1-6/+9
Step 0 to restore it as a per-share paramter
2009-11-23Revert "s3: Make the implicit reference to get_Protocol in lp_use_sendfile() ↵Volker Lendecke1-3/+2
explicit" This reverts commit 6a149022976fe6a5579ec9afc7a4d2dcb44dc8af.
2009-11-21s3: Make alloc_sub_basic() staticVolker Lendecke1-16/+17
2009-11-21s3: Make the implicit reference to get_Protocol in lp_use_sendfile() explicitVolker Lendecke1-2/+3
2009-11-21s3: Fix some nonempty blank linesVolker Lendecke1-34/+33
2009-11-17Remove "store create time" code, cause create time to be storedJeremy Allison1-12/+0
in the "user.DOSATTRIB" EA. From the docs: In Samba 3.5.0 and above the "user.DOSATTRIB" extended attribute has been extended to store the create time for a file as well as the DOS attributes. This is done in a backwards compatible way so files created by Samba 3.5.0 and above can still have the DOS attribute read from this extended attribute by earlier versions of Samba, but they will not be able to read the create time stored there. Storing the create time separately from the normal filesystem meta-data allows Samba to faithfully reproduce NTFS semantics on top of a POSIX filesystem. Passes make test but will need more testing. Jeremy.
2009-11-11Second part of bugfix for 6865 - acl_xattr module: Has dependency that ↵Jeremy Allison1-10/+0
inherit acls = yes or xattrs are removed. We also need dos filemode = true set as well. Jeremy.
2009-11-09s3-param: fix set_inherit_acls().Günther Deschner1-0/+2
Jeremy, please check. Guenther
2009-11-06Fix bug 6865 - acl_xattr module: Has dependency that inherit acls = yes or ↵Jeremy Allison1-0/+8
xattrs are removed. Jeremy.
2009-11-05s3: Add parameter "ctdb timeout"Volker Lendecke1-0/+12
When something in the cluster blocks, it can happen that we wait indefinitely long for ctdb, just adding to the blocking condition. In theory, nothing should block, but as someone said "In practice the difference between theory and practice is larger than in theory". This adds a timeout parameter in seconds, after which we stop waiting for ctdb and panic.
2009-11-04Remove "Protocol" as an extern, and add accessor functions.Jeremy Allison1-2/+1
Jeremy.
2009-11-02s3: Make "debug hires timestamp" default to trueVolker Lendecke1-1/+1
It does not cost much and can help a lot when debugging
2009-10-26s3: Rename new parameter "ldap ref follow" to "ldap follow referral".Karolin Seeger1-5/+5
This parameter will be introduced with Samba 3.5.0. Karolin
2009-10-13s3/loadparm: Fix severe HPUX compiler issue.Olaf Flebbe1-0/+5
Members of struct should be initialized explictly. Fixes bug #6804.
2009-10-12s3/smbldap: add option to disable following LDAP refsJan Engelhardt1-0/+11
Fix bug #6717.
2009-10-01Fix for CVE-2009-2813.Jeremy Allison1-1/+6
=========================================================== == Subject: Misconfigured /etc/passwd file may share folders unexpectedly == == CVE ID#: CVE-2009-2813 == == Versions: All versions of Samba later than 3.0.11 == == Summary: If a user in /etc/passwd is misconfigured to have == an empty home directory then connecting to the home == share of this user will use the root of the filesystem == as the home directory. ===========================================================
2009-09-15s3: BSD needs sys/sysctl.h included to build properlyBjörn Jacke1-0/+4
FreeBSD (and other BSDs, too) need sys/sysctl.h inclueded to use sysctlbyname(). Thanks to Timur Bakeyev for that.
2009-08-26Add a parameter to disable the automatic creation of krb5.conf filesVolker Lendecke1-0/+12
This is necessary because MIT 1.5 can't deal with certain types (Tree Root) of transitive AD trusts. The workaround is to add a [capaths] directive to /etc/krb5.conf, which we don't automatically put into the krb5.conf winbind creates. The alternative would have been something like a "krb5 conf include", but I think if someone has to mess with /etc/krb5.conf at this level, it should be easy to add the site-local KDCs as well. Next alternative is to correctly figure out the [capaths] parameter for all trusted domains, but for that I don't have the time right now. Sorry :-)
2009-08-12Add "store create time" parameter (docs to follow)Jeremy Allison1-0/+12
that stores the create time in the user.DosTimestamps EA. Jeremy.
2009-07-14Attempt to fix the buildVolker Lendecke1-22/+0
2009-07-14Revert this commit :Jeremy Allison1-0/+11
s3: Make smbd aware of permission change of usershare. Since usershare are relatively volatile and non-previledge users must disconnect from smbd and reconnect to it to make share permission in effect. For now. This is a feature request and I think we need to design it a little differently so as not to touch core change_to_user() code. Jeremy.
2009-07-15S3: Small fix to get rid of annoying log message.Bo Yang1-0/+3
Signed-off-by: Bo Yang <boyang@samba.org>
2009-07-15s3: Make smbd aware of permission change of usershare. Since usershare are ↵Bo Yang1-0/+11
relatively volatile and non-previledge users must disconnect from smbd and reconnect to it to make share permission in effect.
2009-05-29Consolidate create/delete account paths in pdbeditSimo Sorce1-0/+5
Use common paths like for smbpasswd, so that all utilities behave the same way. As for smbpasswd this changes the behavior of pdbedit to create/delete unix users is the add/delete user scripts are provided, or ldapsam:editposix is configured. Signed-off-by: Günther Deschner <gd@samba.org>
2009-05-27s3: make passdb backend defaults to tdbsamBjörn Jacke1-1/+1
2009-05-26Introduce "struct stat_ex" as a replacement for SMB_STRUCT_STATVolker Lendecke1-31/+33
This patch introduces struct stat_ex { dev_t st_ex_dev; ino_t st_ex_ino; mode_t st_ex_mode; nlink_t st_ex_nlink; uid_t st_ex_uid; gid_t st_ex_gid; dev_t st_ex_rdev; off_t st_ex_size; struct timespec st_ex_atime; struct timespec st_ex_mtime; struct timespec st_ex_ctime; struct timespec st_ex_btime; /* birthtime */ blksize_t st_ex_blksize; blkcnt_t st_ex_blocks; }; typedef struct stat_ex SMB_STRUCT_STAT; It is really large because due to the friendly libc headers playing macro tricks with fields like st_ino, so I renamed them to st_ex_xxx. Why this change? To support birthtime, we already have quite a few #ifdef's at places where it does not really belong. With a stat struct that we control, we can consolidate the nanosecond timestamps and the birthtime deep in the VFS stat calls. At this moment it is triggered by a request to support the birthtime field for GPFS. GPFS does not extend the system level struct stat, but instead has a separate call that gets us the additional information beyond posix. Without being able to do that within the VFS stat calls, that support would have to be scattered around the main smbd code. It will very likely break all the onefs modules, but I think the changes will be reasonably easy to do.