summaryrefslogtreecommitdiff
path: root/source3/param
AgeCommit message (Collapse)AuthorFilesLines
2009-02-01Add two new parameters to control how we verify kerberos tickets. Removes ↵Dan Sledz1-5/+28
lp_use_kerberos_keytab parameter. The first is "kerberos method" and replaces the "use kerberos keytab" with an enum. Valid options are: secrets only - use only the secrets for ticket verification (default) system keytab - use only the system keytab for ticket verification dedicated keytab - use a dedicated keytab for ticket verification. secrets and keytab - use the secrets.tdb first, then the system keytab For existing installs: "use kerberos keytab = yes" corresponds to secrets and keytab "use kerberos keytab = no" corresponds to secrets only The major difference between "system keytab" and "dedicated keytab" is that the latter method relies on kerberos to find the correct keytab entry instead of filtering based on expected principals. The second parameter is "dedicated keytab file", which is the keytab to use when in "dedicated keytab" mode. This keytab is only used in ads_verify_ticket.
2009-01-15s3: make better use of ccache by not including version.h in every C-file.Michael Adam1-1/+1
version.h changes rather frequently. Since it is included via includes.h, this means each C file will be a cache miss. This applies to the following situations: * When building a new package with a new Samba version * building in a git branch after calling mkversion.sh after a new commit (i.e. virtually always) This patch improves the situation in the following way: * remove inlude "version.h" from includes.h * Use samba_version_string() instead of SAMBA_VERSION_STRING in files that use no other macro from version.h instead of SAMBA_VERSION_STRING. * explicitly include "version.h" in those files that use more macros from "version.h" than just SAMBA_VERSION_STRING. Michael
2009-01-12Deprecate the "share modes" parameter to address bug #6024, swat disagrees ↵Jeremy Allison1-1/+1
with smbstatus as to share mode with share modes = No set in samba. Jeremy.
2009-01-12Make STATEDIR and CACHEDIR configurable through ./configure and loadparm.cSteven Danneman1-3/+46
If they are not explicitely set in either place both will default to LOCKDIR. Signed-off-by: Michael Adam <obnox@samba.org>
2009-01-04Fix a typo found by the IBM CheckerVolker Lendecke1-1/+1
2008-12-23Fix use of "time offset" parameter, and add test to make sure I don't break ↵Jelmer Vernooij1-2/+0
it again :-)
2008-12-21s3:loadparm/docs: Set default for "ldap ssl" to "start tls".root1-1/+1
This has been discussed on samba-technical before. 3.3 and newer only! Karolin
2008-12-21s3: loadparm: Clean-up list of parameters.Karolin Seeger1-8/+1
We don't need to list several combinations of lowercase and uppercase here. Karolin
2008-12-17s3/loadparm.c: Change default value for "ldap ssl".Karolin Seeger1-1/+1
LDAP_SSL_ON is not defined at all. That's why the actual default value was "" for a long time. Set a more sensible default value without chnging the default behaviour. -----8<------------------snip--------------8<-------------- user@host:/data/git/samba/v3-0-test/source> git grep LDAP_SSL_ON | cat include/smb.h:enum ldap_ssl_types {LDAP_SSL_ON, LDAP_SSL_OFF, LDAP_SSL_START_TLS}; param/loadparm.c: Globals.ldap_ssl = LDAP_SSL_ON; ----->8------------------snap-------------->8-------------- It's the same in 3.2 and 3.3 series. Karolin
2008-12-15s3:loadparm: fix copy service error (canonicalize_servicename: NULL source name)Michael Adam1-1/+1
this was introduced by commit 3358a139d2dc77eb4c842d41722b1acc24bd2cb2. Michael
2008-12-15s3:loadparm: add service-struct based variants of the free-parameter routinesMichael Adam1-7/+46
and use the abstracted free_one_parameter_common() in old free_one_parameter_by_snum() as well as in new free_one_parameter() Michael
2008-12-15s3:loadparm: rename free_parameters() to free_parameters_by_snum()Michael Adam1-4/+5
Michael
2008-12-15s3:loadparm: rename free_parameter() to free_one_parameter_by_snum()Michael Adam1-3/+5
Michael
2008-12-15s3:loadparm: add lp_local_ptr() that operates on a service structMichael Adam1-1/+13
and use this in lp_local_ptr_by_snum(). Michael
2008-12-15s3:loadparm: rename lp_local_ptr() to lp_local_ptr_by_snum()Michael Adam1-3/+3
Michael
2008-12-15s3:loadparm: fix newly introduced leading whitespaces to tabsMichael Adam1-2/+2
Michael
2008-12-08s3: Add support for access based share enumerationTodd Stecher1-0/+13
2008-12-05Fix bug #5944 - nmbd does not boot if socket adress = "" is defined in smb.confYasuma Takeda1-1/+15
2008-11-06Make us clean under valgrind --leak-check=full by using ↵Jeremy Allison1-4/+4
talloc_autofree_context() instead of NULL. Remove the code in memcache that does a TALLOC_FREE on stored pointers. That's a disaster waiting to happen. If you're storing talloc'ed pointers, you can't know their lifecycle and they should be deleted when their parent context is deleted, so freeing them at some arbitrary point later will be a double-free. Jeremy.
2008-11-06Add wrapper str_list_make_v3() to replace the old S3 behavior ofJeremy Allison1-4/+4
str_list_make(). From Dan Sledz <dan.sledz@isilon.com>: In samba 3.2 passing NULL or an empty string returned NULL. In master, it now returns a list of length 1 with the first string set to NULL (an empty list). Jeremy.
2008-11-01Rename dos_errstr() to win_errstr() for consistency with Samba 4.Jelmer Vernooij1-1/+1
2008-11-01Samba3: Include util.h header file rather than having custom prototypes.Jelmer Vernooij1-41/+4
2008-10-18Use str_list_equal() rather than str_list_compare().Jelmer Vernooij1-3/+3
2008-10-18[s3]loadparm: remove param/params.c which is used no more.Michael Adam1-590/+0
Michael
2008-10-18[s3]test_lp_load: fix "no talloc stackframe around" messageMichael Adam1-1/+1
gfree_loadparm() and TALLOC_FREE(frame) were in the wron order. Michael
2008-10-18Use separate make variables for libutil and libcrypto.Jelmer Vernooij1-1/+1
2008-10-12Use common util_file code.Jelmer Vernooij2-6/+6
2008-10-12Share data_blob implementation.Jelmer Vernooij1-4/+3
2008-10-10If you have a large number of cups printers, then scanning for print info ↵Jeremy Allison1-1/+1
can cause a client to timeout (it takes longer than 30 seconds to enumerate them). Make scanning for printers async with a callback from the main loop. This fixes a bug that was irritating *me* :-). Jeremy.
2008-09-27[s3]loadparm: refactor freeing of parameter data out and reduce memleak.Michael Adam1-35/+53
Add new functions free_parameter(), free_parameters() and free_global_parameters() and use these in the appropriate places, reducing code duplication. Also, always TALLOC_FREE data of type P_LIST, thus reducing mem-leaks: This had not been done in init_globals before. Michael
2008-09-27[s3]loadparm: in lp_do_parameter() use function lp_local_ptr()Michael Adam1-3/+1
instead of hard coded calculation. Michael
2008-09-27[s3]loadparm: remove superfluous talloc context / talloc_stackframe call.Michael Adam1-5/+0
Michael
2008-09-27[s3]loadparm: refactor setting parametric options in list outMichael Adam1-52/+45
into new function set_param_opt(). This unifies and clarifies two instances of the code. Michael
2008-09-27[s3]loadparm: fix memory error - free the right param_opt->list in copy_service.Michael Adam1-1/+1
Michael
2008-09-27[s3]loadparm: refactor freeing of parametric options into free_param_opts().Michael Adam1-41/+34
This code was there in three places. Michael
2008-09-27[s3]loadparm: rename process_registry_service() to process_smbconf_service().Michael Adam1-3/+3
There is nothing registry-specific in that function. Michael
2008-09-27[s3]loadparm: add a command test_lp_load to test the lp_load function.Michael Adam1-0/+88
This is not like testparm, just a simple tool that runs lp_load_with_registry_shares the requested number of times. Michael
2008-09-24printing: Rename new parameter "cups timeout" to "cups connection timeout".Karolin Seeger1-5/+5
Karolin
2008-09-23printing: Add new parameter "cups timeout".Karolin Seeger1-0/+13
The default timeout for connections to CUPS servers is set to 5 minutes in the CUPS libraries. The smbd hangs on startup until the timeout is reached if the CUPS server is unreachable. This parameter makes the timeout configurable. The default value is set to 30 seconds. Karolin
2008-09-03Fix bug #5729. Explicitly allow "-valid".Jeremy Allison1-1/+1
Jeremy (This used to be commit 4f2de29723bb7e588e6c9440649b57d56d10b587)
2008-08-26Increase the default positive idmap cache time to a weekVolker Lendecke1-1/+1
(This used to be commit 60af63675063ad62c0169b9f2094ecfdaa7ca16d)
2008-08-22loadparm: idmap backend is not depracated any longer.Karolin Seeger1-1/+1
Karolin (This used to be commit fcfab4703628e19902c140a7ad9531d4be0de01d)
2008-08-20Here is a re-working of the winbinddJeremy Allison1-0/+12
reconnect code to cope with rebooting a DC. This replaces the code I asked Volker to revert. The logic is pretty simple. It adds a new parameter, "winbind reconnect delay", set to 30 seconds by default, which determines how long to wait between connection attempts. To avoid overwhelming the box with DC-probe forked children, the code now keeps track of the DC probe child per winbindd_domain struct and only starts a new one if the existing one has died. I also added a little logic to make sure the dc probe child always sends a message whatever the reason for exit so we will always reschedule another connect attempt. Also added documentation. Jeremy. (This used to be commit 8027197635b988b3dcf9d3d00126a024e768fa62)
2008-08-12Fix bug 5686 - libsmbclient segfaults with more than one SMBCCTX.Jeremy Allison1-0/+1
Here is a patch to allow many subsystems to be re-initialized. The only functional change I made was to remove the null context tracking, as the memory allocated here is designed to be left for the complete lifetime of the program. Freeing this early (when all smb contexts are destroyed) could crash other users of talloc. Jeremy. (This used to be commit 8c630efd25cf17aff59448ca05c1b44a41964b16)
2008-08-12idmap rewriteVolker Lendecke1-14/+4
(This used to be commit 30a180f2fce8cf6a3e5548f6bba453272ba70b33)
2008-08-09loadparm: add two parameters "init logon delay hosts" and "init logon delay"Michael Adam1-0/+24
"init logon delays hosts" takes a list of hosts names or addresses or networks for which the initial SAMLOGON reply should be delayed (so other DCs get preferred by XP workstations if there are any). This option takes the same type of list as "hosts allow" does. "init logon delay" allows one to configure the delay for the hosts configured for delayed initial samlogon with "init logon delayed hosts". The value is interpreted as milliseconds. The default value is 100. This commit only introduces the parameters. They will be activated in a subsequent commit. Michael (This used to be commit f7c1f85438f7e0da2a96e3fc8f774f8c6936370e)
2008-07-30testparm: Display warning if invalid values are used.Michael Adam1-1/+3
This one came up while using "csc policy = disabled" instead of "disable"... ;-) (This used to be commit d01da44de77abbf724389bce924771f2975867f4)
2008-07-16Sequel to c10aad9f13: Ignore whitespaces in parametric optionsVolker Lendecke1-24/+7
It's a bit difficult to explain why idmap config backend:FOO = rid should work while idmap config backend : FOO = rid should not. And I doubt we will ever see domain names with whitespaces... (This used to be commit 0207f99d3f02bd8ff5dadc1574fe13b46c3e09a3)
2008-07-16Tiny logic simplification: Remove an indentation by using an early return;Volker Lendecke1-46/+56
(This used to be commit 37dba0c192ec7d4105465beae0d6e8598c7dbb7a)
2008-07-16Remove a silly "typedef struct _param_opt_struct param_opt_struct"Volker Lendecke1-26/+28
(This used to be commit 78801431c896f1e2007d652b611c2ce1108e1023)