Age | Commit message (Collapse) | Author | Files | Lines |
|
<mimir@diament.ists.pwr.wroc.pl>) this patch allows samba to correctly
enumerate its trusted domains - by exaimining the keys in the secrets.tdb file.
This patch has been tested with both NT4 and rpcclient/wbinfo, and adds
some extra functionality to talloc and rpc_parse to allow it to deal with
already unicode strings.
Finally, this cleans up some const warnings that were in net_rpc.c by pushing
another dash of const into the rpc client code.
Andrew Bartlett
(This used to be commit 0bdd94cb992b40942aaf2e5e0efd2868b4686296)
|
|
the passdb) and RIDs not in the passdb, due to being NIS users etc.
The main fix here is to add become_root()/unbecome_root() at critical places.
This (finally) fixes the bug where you could not see local users's names
in a file's security properties as non-root. Tested.
The similar bug in uid_to_sid is also fixed, but is not (yet) Tested.
Andrew Bartlett
(This used to be commit 79327a305e20d78ab5ca21d01c39b5f49dc0d632)
|
|
Jeremy.
(This used to be commit 42ae2334f21402c347aee560f08fd8e730481169)
|
|
(This used to be commit d7c9b00253499da047f30f71660dede3676d40ad)
|
|
(This used to be commit 7db47c6647d764739e395948699cf115c4da4c8d)
|
|
(This used to be commit 32dc5dbbfb16cb9fd6f953dbb8148f5228b453a4)
|
|
Jeremy.
(This used to be commit 16015c07eab2e57fa3771051e3e08fde21757cfa)
|
|
(This used to be commit 49e429a97ff2b6b1889937c998f67d73d35829e1)
|
|
(This used to be commit be6f955107429f1431c49c8b45fd623406a9d641)
|
|
SID lookup. This fixes a bug where SIDs (rather than names) are displayed in windows ACL lists
(This used to be commit e60c509813a9113cd76135b6ded3018ff04d49f2)
|
|
Jeremy.
(This used to be commit b8b88e863e3964231a85b4643a197d6d4d6b8f99)
|
|
(This used to be commit 3e58e9dbabc4e4a1289ff6a43ddbb5de37b02515)
|
|
insists on re-using an lsa handle opened on a pipe then closed - this
keeps them around so long as a samr pipe is also open.
Jeremy.
(This used to be commit f029bd348c8c16a8774c3fb4f7f1d76470c7688f)
|
|
Jeremy.
(This used to be commit c6566fa5fadf37a2b133e7be1f13c0de93efab34)
|
|
Jeremy.
(This used to be commit f169f3f4df81537426f708d68da44e0fc40ad15e)
|
|
(This used to be commit 606450f3cbe028a526ec6db9cea59d65324c3314)
|
|
(This used to be commit fe099006bbd1103edb5804d70743b211bbc584fb)
|
|
(This used to be commit 619397cc90549d4602ecddc25ee50eb247c913ee)
|
|
cases for rename and unlink. Had to add desired_access into the share mode record.
Jeremy.
(This used to be commit 3b1b8ac43535fb0839c5474fa55bf7150f6cde31)
|
|
(This used to be commit e66bdf1229ba84f64c19e817e2c4081dbbf0bee8)
|
|
fails.
Andrew Bartlett
(This used to be commit 56009ffbaa00259d15f286248a7ab73c55371819)
|
|
(This used to be commit 9282aa02d44ae7a7688e8399b397aae35f73ddd1)
|
|
(This used to be commit 88d8897e21749f177952b264031aa386bbbeaaeb)
|
|
> Don't put two copies of the server name in construct_printer_info_1()
(This used to be commit 47b1003bc5a069e84cb20df507022e5ff3e93832)
|
|
we still need to free gid<->rid mapping and few other stuff
(This used to be commit aa4b6f8181f34196a28951264dd8b631a5deef7f)
|
|
Jeremy.
(This used to be commit 2e3133fbe5531b9bbc9bf46a04b27fa58e555f5a)
|
|
fixed tdbsam memory corruption (and segfault)
reducing calls to pdb_uid_to_user_rid and countrary to 0 to move to a non alghoritmic rid allocation with some passdb modules.
(This used to be commit 9836af7cd623357feaec07bc49cfb78f0aa01fc3)
|
|
(This used to be commit ddb5753e36b8c5efb48ce5c82c16d970fb8e76b6)
|
|
(This used to be commit 1f007d3ed41c1b71a89fa6be7d173e67e927c302)
|
|
in the reverse).
* add in new printer change notify code from SAMBA_2_2
* add in se_map_standard() from 2.2 in _spoolss_open_printer_ex()
* sync up the _print_queue_struct in smb.h (why did someone change the
user/file names in fs_user/fs_file (or vice-versa) ? )
* sync up some cli_spoolss_XXX functions
(This used to be commit 5760315c1de4033fdc22684c940f18010010924f)
|
|
(This used to be commit d7efc5dd3dd712e7138b5c79eea9756125757175)
|
|
(This used to be commit dfd51bc8d0714473880bf50369f7994304c1d83f)
|
|
lookup_domain calls. We were incorrectly returning the PDCs domain
nameand SID when we are a domain member. We should only do that when
we are the DC
(This used to be commit f56d689497eaa670cbfb214486ba88d5972129db)
|
|
(This used to be commit 66eb969ade0dfde355df3e308dccbc9522087eef)
|
|
(This used to be commit 4960692e958c986ca7f71e091333300310b0e0b2)
|
|
Jeremy.
(This used to be commit d31d2dcd22e1be2c26ea315e1b0e8442822a9a0f)
|
|
Should allow the buggy spoolss code on NT to work against us.
Jeremy.
(This used to be commit 2b3609a7dd55d96f5aafe137fff1ac2da0434867)
|
|
Jeremy.
(This used to be commit 2b85d3570c2b149049482c3878c50cf8f5bfca61)
|
|
(This used to be commit a7fa0733badad66ae610eac5e01569cf264976f3)
|
|
change, just in different packets.
(This used to be commit ffa6c61f0bb0c413d4bcc46da3bc879c40a40569)
|
|
Simply add an account (smbpasswd -a -i REMOTEDOM) and join with 'user manager'
on the remote domain.
The only issue (at the auth level at least) that prevented NT4 domains from
trusting Samba was that our netlogon code was based on what appear to be
invalid assumptions.
The netlogon code appears to assume that the 'client name' specified
corrosponds to an account of the same form. This doesn't apply in trusted
domains, becouse the account is in the form domain$
Now that we use the supplied account name, and no longer make our access
control checks at the challange stage (where this info is unavailable) we
match the Win2k behaviour for invalid machine logins, and don't need to know
the names of PDCs/BDCs in trusting domains.
We also kill off the 'you logged on with a machine account, use your user
account' error message, becouse the previous NT_STATUS return was compleatly
bogus. (The ACCESS_DENIED we now return matches Win2k, and gives snane error
messages on the client).
TNG doesn't use this and has to do magic password syncs between the various
accounts for domain/pdc/bdc. This patch feels like the much more natural way
of doing things, and has been mildly tested.
Andrew Bartlett
(This used to be commit 542673fcd6654a1d0966dddadde177a4c4ce135d)
|
|
Remove a stray 'unbecome_root()' in the ntdomain an auth failure case.
Only allow trust accounts to request a challange in srv_netlogon_nt.c.
Currently any user can be the 'machine' for the domain logon. MERGE for 2.2.
Andrew Bartlett
(This used to be commit 0242d0e17827b05d8cd270f675d2595fa67fd5b9)
|
|
Jeremy.
(This used to be commit 28d4e7a3e2bd8f15ef807b821e4300a72bbc6904)
|
|
(This used to be commit c8dc59dfe877f63bea6976b7d7fd448e0c8722ba)
|
|
(This used to be commit 505119f0a7c6f10fd7e580edfe1bd0fb6ec36428)
|
|
(This used to be commit 63ab947fd9dd17a4c370402e74b389458bbd3a60)
|
|
(This used to be commit 25fb4a8d110bcdcbe7822a833cab9cfdec8a1fb2)
|
|
(This used to be commit 696d439515016e4c2bc5ad085e443abe43c95136)
|
|
(This used to be commit e18a7c26476e05f95850ac2bbeb42c2588115741)
|
|
(This used to be commit 09fc979172327d6396642e824f6d482c6f986850)
|