summaryrefslogtreecommitdiff
path: root/source3/passdb
AgeCommit message (Collapse)AuthorFilesLines
2000-05-13Added code to do a one-way migration of the old DOMAIN.MACHINE.macJeremy Allison1-4/+259
file into the secrets tdb. Also restored check for password timeout (this seemed to have gotten lost). Jeremy. (This used to be commit 9493e10de3d1c73b246a9841d4b5bb01838c265f)
2000-05-12fixed two uninitialised variablesAndrew Tridgell1-1/+1
(This used to be commit eefb36f130f79f2f2c6cfb58c1646aa6ce4303be)
2000-05-08Someone :-) forgot to add secrets.c to HEAD.Jeremy Allison1-0/+90
Jeremy. (This used to be commit ac40971f30e00a93fc5e138bfd1afa05cd8dea4b)
2000-05-08added secrets.tdb and changed storage of trust account password to useAndrew Tridgell1-219/+22
it (This used to be commit 88ad00b82acc4636ab57dfe710af08ea85b82ff1)
2000-05-02Added sys_fork() and sys_getpid() functions to stop the overheadJeremy Allison2-4/+4
of doing a system call every time we want to just get our pid. Jeremy. (This used to be commit 148628b616b5c29ba6340d65fc3ddbcabba6e67a)
2000-04-25moved trans2.h and nterr.h into includes.h with all our other includesAndrew Tridgell2-2/+0
(This used to be commit d7cd7c88fdabb01d9e40ae8a657737907a21ac37)
2000-04-12Roll back to using static MACHINE.SID after consultation with Andrew. ThisJeremy Allison1-57/+201
code will be removed soon and a SID auto-generated from (probably) primary hostname and never stored in a file will replace it. Jeremy. (This used to be commit fbfe94a799cda7f728bc920d4f0655d4f537e3b6)
2000-04-11The changes made here broke NT security descriptor returning to NT clients.Jeremy Allison1-0/+2
We need to talk about the MACHINE.SID/<WORKGROUP_NAME>.SID mess..... Jeremy. (This used to be commit 5bdaa043f015771cccdc9413c37232ab4a3e2e8e)
2000-03-21indent update to make t easier to see setuid mods in TNG. someLuke Leighton1-366/+459
code from these modules i had to leave out (nothing to do withj setuid) (This used to be commit 96717211edcc389daa4494907251ffb79ffa56d9)
2000-03-02Tidied up fchown code, error reporting.Jeremy Allison1-3/+9
Jeremy. (This used to be commit 8e3239440dee6c6f50d26b70f7db46bef2a87a2d)
2000-03-02Correctly full buffer smbpasswd i/o streams.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 7b222ed713d47241822323970214326b6a8e67ac)
2000-03-02Update last changed time for new password entry.Jeremy Allison1-0/+1
Jeremy. (This used to be commit a8ccf1d9532cdf623342c968f51f1d89f89d728a)
2000-03-02Fixed bugs with -x smbpasswd entry. Thanks to Bruce Tenison ↵Jeremy Allison1-20/+21
<btenison@dibbs.net>. Jeremy. (This used to be commit c7695c66774225248978ac9ca2615762a0d449aa)
2000-02-25client/client.c:Jeremy Allison5-94/+355
libsmb/clientgen.c: Fixes for Win2k smbclient browsing. Other fixes implement smbpasswd -x user to delete users. Also allows swat to do the same. Jeremy. (This used to be commit 9f6ad046761adecafba59040baa3abc9f0959e65)
2000-01-03simple mods to add msrpc pipe redirection. default behaviour: fall backLuke Leighton1-201/+56
to using internal msrpc code in smbd. (This used to be commit 8976e26d46cb991710bc77463f7f928ac00dd4d8)
1999-12-132nd phase of head branch sync with SAMBA_2_0 - this delets all the files ↵Andrew Tridgell7-2843/+0
that were in the head branch but weren't in SAMBA_2_0 (This used to be commit d7b208786590b5a28618590172b8d523627dda09)
1999-12-13first pass at updating head branch to be to be the same as the SAMBA_2_0 branchAndrew Tridgell9-1071/+3059
(This used to be commit 453a822a76780063dff23526c35408866d0c0154)
1999-12-12final part of "first" phase converting over to msrpc daemon architecture.Luke Leighton1-2/+2
done a minimal amout of clean-up in the Makefile, removing unnecessary modules from the link stage. this is not complete, yet, and will involve some changes, for example to smbd, to remove dependencies on the password database API that shouldn't be there. for example, smbd should not ever call getsmbpwXXX() it should call the Samr or Lsa API. this first implementation has minor problems with not reinstantiating the same services as the caller. the "homes" service is a good example. (This used to be commit caa50525220b0d0250fa139367593c2de2c12135)
1999-12-01fixing joining to domain plus something weird going down with nt logins...Luke Leighton1-1/+34
(This used to be commit cef258f1c931ecb7c2dda9d5c9977153e4c1dc73)
1999-11-16attempting to get nt5 wksta to join domain.Luke Leighton1-15/+38
1) had to fix samr "create user" and "set user info" (level 23). 2) had to fix netlogon enum trust domains 3) registry key needed \\ in it not \. (This used to be commit 70b2c1ecbb4fbbb86fea676c80754485aae5ab13)
1999-09-24Whoops ! Being over-paranoid is not good.Jean-François Micouleau1-8/+0
J.F. (This used to be commit 706acb17cffd8d6a84209dadb97916f0346cd174)
1999-09-23use gecos field to fill the full_nameJean-François Micouleau2-7/+36
don't overwrite backend values with defaults values. J.F. (This used to be commit a204a9adb84c41658def08cb75670995aec02baa)
1999-09-22Fixed an annoying bug in the LDAP code. Attributes not present in theMatthew Chapman1-22/+3
LDAP database were being initialised using unix_to_nt_time on -1, rather than -1 as an NTTIME (which is very different). Problems solved (hopefully): * "Access Denied" when accessing an NT share in a Samba controlled domain. * "Your password has expired" sometimes when logging in. (This used to be commit 740d8388cb6dfebb26681a45fd1b293383d08a6d)
1999-09-12- initialising mach_passwd_file locks to zero (prev. uninit.)Luke Leighton1-2/+2
- cleanup - #defined report to sprintf as it's #defined to another function in other uses of cmd_lsarpc.c (This used to be commit 8fb2ff247a2fe0ec5ce0c232d8a3da9774f7e6ae)
1999-07-21BDC support.Luke Leighton1-0/+2
(This used to be commit 2331aa32ab36c3ee5fd8cfbe972e57299939e33d)
1999-07-14code from bertl to allow remap of default built-in names to anything.Luke Leighton2-0/+12
parameter is "builtin rid file". Copyright 1999 Bertl <bp@vpnet.at> (This used to be commit 80d36778432d42eb265ed9428f27a27250ba5e08)
1999-07-13renamed getfilepwent() and endfilepwent() to getfileent() and endfileent()Luke Leighton2-4/+4
as they are generic "file line-by-line" reading routines. lines with "#" at the front are ignored (as comments). this code started out as the password file reading code. (This used to be commit ef6df590fdf65a6d94b343998bac3a4d48ae07e0)
1999-07-11NULL pwdb_xxx_map_names() parameter can be passed here (which is a bugLuke Leighton2-10/+12
anyway!) (This used to be commit 91d5bda9ad22c922a918f0942dcbff04202b9991)
1999-07-08issues with pwdb_sam_map_names() and pwdb_smb_map_names() returning NULL.Luke Leighton2-3/+20
found by Bertl <bs@vpnet.at> (This used to be commit 389c17a225884b39d097dc0851a794d3669fdc31)
1999-07-07added debug reporting to pwdb_sam_map_names() and pwdb_smb_map_names()Luke Leighton2-2/+8
(This used to be commit baab30815238a803badeafa1ed8f029d7782242f)
1999-06-29improving authentication code (tidyup).Luke Leighton1-1/+0
(This used to be commit ab1a6aa42db5217f025941fb5107436556bc23b7)
1999-06-13Moved code that changes the pw_passwd entry (i.e shadow password andTim Potter2-64/+2
weird unixware stuff) into _Get_Pwnam() to fix a memory allocation bug. Note that the Get_Pwnam() function now returns a const struct passwd * as a hint to other developers not to change entries in the struct passwd. (This used to be commit 36d7cb4ccc42268e8e6a7b783c945d1853624958)
1999-05-06Jani Jaakkola's "getpwuid() / getpwnam()" hash-cache-hackLuke Leighton1-1/+1
(This used to be commit 899fc053c50448db65092d9f25fea99433cfb29f)
1999-03-25"User Manager" - create user + change password now work.Luke Leighton1-0/+42
next problem: user group adding not supported so an "access denied" message is reported instead of "ok" when a new user is created. (This used to be commit f5f61bd477b4910cb90675c926381342c30a5b16)
1999-03-25fixed issues with "Welcome to SAMBA Domain" for when admin user/pass isLuke Leighton2-1/+148
used to add workstation to domain. unix account db not modified: only SAM password db is used. (This used to be commit 129a9a4d4b74897ed753a697a3aed9b194c25568)
1999-03-25SAM database "set user info".Luke Leighton4-5/+19
---------------------------- - removed DOM_RID4 - removed SAMR_UNKNOWN_32 - added SAMR_SET_USERINFO (opcode 0x32) - added level 0x1 to SAMR_QUERY_DOM_INFO (needed for create user) - fixed pwdb_gethexpwd() it was failing on XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX - added mod_sam21pwd_entry() - preparing to call mod_sam21pwd_entry() - added "user session key" to user_struct.dc. this is md4(nt#) and is needed to decode user's clear-text passwords in SAMR_SET_USERINFO. - split code out in chgpasswd.c to decode 516 byte password buffers. (This used to be commit 2e58ed742435befe419aa366c4052019fede8c23)
1999-03-23#if defined(HAVE_MYSQL_H) || defined(WITH_MYSQLSAM)Matthew Chapman1-1/+1
should instead have &&. (This used to be commit 1143fd4297b946d4ffd3c6ca104188cdcb48fac8)
1999-03-12new "domtrust" test command. r&d into inter-domain trust accounts.Luke Leighton1-6/+6
(This used to be commit 65b0abe8b7594ff6c662da86dc2e35bd83a2d13d)
1999-03-10static password space needed.Luke Leighton1-3/+3
(This used to be commit 5b1d0789007bfcb09326643eb271746cee386846)
1999-03-09mods to allow inter-domain trust accounts to be added to SAM databaseLuke Leighton2-54/+77
using smbpasswd command. (This used to be commit 62d499f83256c6e8b3308dc4bd8e9f5df873b14b)
1999-03-08pass_check.c could receive encrypted password: printing it out as a %sLuke Leighton1-1/+2
results in garbage. with no password length argument doing dump_data( 100, password, strlen(password)) is the next best alternative. (This used to be commit 073c8652c13408b883fc73203e5558b1a9a64d62)
1999-03-05spelling mistake, #ifdef'd out for non-developers (oops!)Luke Leighton1-0/+5
(This used to be commit 167b0b20e33bef4af5deaff961937dd5fadf481d)
1999-03-05Benjamin Kuit's mods.Luke Leighton2-3/+5
(This used to be commit eb63fbdb68f1189593e68272e05d7ebf76652c4c)
1999-03-03Benjamin Kuit's latest mysql mods. issue with "make proto" needs to beLuke Leighton4-84/+87
resolved. (This used to be commit d59a2e669aed7ee33fdca8b8ec126b1c0a984981)
1999-03-01Benjamin Kuit's MYSQL SAM Database implementation.Luke Leighton4-0/+937
Copyright (C) Benjamin Kuit <bj@mcs.uts.edu.au> 1999. (This used to be commit fdf61e1dabc2c977ee5cf1e9d60e3380f19840da)
1999-02-09pwdb_smb_to_sam was not returning NULL for nt name so thatLuke Leighton1-8/+20
pwdb_sam_map_names() was using a "blank" static string instead of a NULL pointer for nt names. NULL means over-ride, so the nt name got left as "blank". this causes nt clients to terminate with extreme prejudice. (This used to be commit ddd350198202d6a1d2c715b3dce7db3a5d76a63a)
1999-02-08iteration of sam passwd entries was an order n-cubed algorithm dueLuke Leighton2-21/+91
to resolution of unix name to nt name being unnecessarily _inside_ another loop. (This used to be commit d455c9d2c9f60289d78d0331228f5922152070bf)
1999-02-01Fixed a domain functionality problem where NT clients would startMatthew Chapman1-30/+11
endlessly repeating a network SAMLOGON (hoping it to change, hmmm...). ( Guess what I found in pwdb_init_sam... unix_to_nt_time(&user->logon_time, (time_t)-1); unix_to_nt_time(&user->logoff_time, (time_t)-1); unix_to_nt_time(&user->kickoff_time, (time_t)-1); ... ) (This used to be commit e9c79c85e6d1352693ab13e907b07d4706975891)
1999-01-15Finally committing my LDAP changes.Matthew Chapman3-50/+135
* Added new APIs for modifying groups. * RIDs are allocated similarly to NT, starting from 1000 and incrementing by 1 for each new user/group. * RIDs are now consistently in hex * Fixed bugs reported by Allan Bjorklund <allan@umich.edu>: - ldap_close_connection is exported by OpenLDAP - changed to ldap_disconnect - Missing ldap_connect() in getusergroups functions - ldap_next_entry was being called too early while retrieving a sam_struct - LDAP globals should be extern in sampassldap.c * Fixed bugs reported by Martin Hofbauer <mh@bacher.at> - Newly added workstation trust accounts had attributes DU rather than W. - User dn's were forced to start with "uid=XX" rather than using the existing dn. (This used to be commit 91c77f5432169553572bb4d85ad5f09d17524f20)
1999-01-13Fixed the "You password will expire in 0 days. Would you like toGerald Carter2-1/+30
change it now?" message when you login to a Samba Controlled domain. The fix is a hard coded 42 days from right now until you need to change you pasword again time (see passdb/sampassdb.c:pwdb_smb_to_sam()) Also fixed getsmbfilepwent() so that it will read in the last password change time correctly. * Related to this lib/util_pwdb.c:StrnCaseCmp() returns 0 if the strings match. Chouldn't this be the pther way? Oh well. I didn't change the return code as it was used in several other cases (see lib/util_pwdb.c:pwdb_get_last_set_time()) (This used to be commit 175e598dccd042c0f8b045db45fbe3ae928a7387)