Age | Commit message (Collapse) | Author | Files | Lines |
|
Guenther
(This used to be commit 235e440ae6f31f05802e4c8d01174aac880c56cd)
|
|
Guenther
(This used to be commit c07be0f1a9856dbbb80d0dbacf7b86024eed4436)
|
|
Guenther
(This used to be commit 2c045a8c817b4ec200830c4f8b508c1cd4c4d9aa)
|
|
Guenther
(This used to be commit 54bdd22a07e885f896a8f784bc12096f65afac75)
|
|
(rpccli_lsa_open_trusted_domain,
rpccli_lsa_query_trusted_domain_info,
cli_lsa_query_domain_info_policy).
Guenther
(This used to be commit 5bfb33f1c5a16d10f77cb76962df4a949626a062)
|
|
Guenther
(This used to be commit 153e4dd162423a846dbd4a9a1be1fd747792bdbf)
|
|
least surprise for callers
(This used to be commit eb523ba77697346a365589101aac379febecd546)
|
|
In utils/ I was a bit lazy...
(This used to be commit 60e830b0f4571bd5d9039f2edd199534f2a4c341)
|
|
(This used to be commit 1fab16ffb888cd4ec18e52d9da33976a67a5d104)
|
|
(This used to be commit 5c6c8e1fe93f340005110a7833946191659d88ab)
|
|
(This used to be commit 2c77c3c58e75d6a9c08d723976c37d899a53c99a)
|
|
destination instead of source as maxlen.
Michael
(This used to be commit 76cb05deec153c1e0003776339da912a0f3d73a9)
|
|
The maxlen parameter should be set to the size of the
destination, not to the size of the soruce.
Michael
(This used to be commit 841ff0beee7ea44ee92d1f90de3edeb53edcae0a)
|
|
(This used to be commit b0132e94fc5fef936aa766fb99a306b3628e9f07)
|
|
Jeremy.
(This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
|
|
Guenther
(This used to be commit dee99e40454b00da70343047c57e0cb0f2c489bd)
|
|
Guenther
(This used to be commit e9a7512a9f630340004913f1379452eea8a9b6ae)
|
|
Jelmer, Jerry, in cmd_unixinfo.c:159 there is still the warning that "info" is
being used uninitialized which I don't really know how to fix.
Any hints?
Volker
(This used to be commit 4a5d11e194ebdfb6c21586d1cf902f8ed2478e45)
|
|
(This used to be commit 50d74ce0488a9bd0980cdc6d523a210f6238ef74)
|
|
descriptor
buffers.
Make security access masks simply a uint32 rather than a structure
with a uint32 in it.
(This used to be commit b41c52b9db5fc4a553b20a7a5a051a4afced9366)
|
|
* autogenerate lsa ndr code
* rename 'enum SID_NAME_USE' to 'enum lsa_SidType'
* merge a log more security descriptor functions from
gen_ndr/ndr_security.c in SAMBA_4_0
The most embarassing thing is the "#define strlen_m strlen"
We need a real implementation in SAMBA_3_0 which I'll work on
after this code is in.
(This used to be commit 3da9f80c28b1e75ef6d46d38fbb81ade6b9fa951)
|
|
(This used to be commit 1115745caed3093c25d6be01ffee21819fb0a675)
|
|
by converting the lookup_XX functions to correctly
return SID_NAME_TYPE enums.
Jeremy.
(This used to be commit ee2b2d96b60c668e37592c79e86c2fd851e15f69)
|
|
Guenther
(This used to be commit a80f3660573872e7a1c9e4d37262c830d68415e1)
|
|
servers. Also add a new "net rpc audit" tool. The lsa query infolevels
were taken from samb4 IDL, the lsa policy flags and categories are
partly documented on msdn. I need to cleanup the double
lsa_query_info_policy{2}{_new} calls next.
Guenther
(This used to be commit 0fed66926f4b72444abfc8ffb8c46cca8d0600aa)
|
|
Guenther
(This used to be commit 18ee669c604b344910308fef81c2544e208ef62c)
|
|
Sync with trunk as off r13315
(This used to be commit 17e63ac4ed8325c0d44fe62b2442449f3298559f)
|
|
Guenther
(This used to be commit 4a506dbc3c63b965044aa16374f46531375cc920)
|
|
Guenther
(This used to be commit 8e63da03665651ab0315d76d27a4ea4375b2acd0)
|
|
Guenther
(This used to be commit 02f13dee6d0bbca71a991682bfe214ed8363e818)
|
|
Guenther
(This used to be commit 6508cb1c805dee291c87a57998f0f1f53b9a6013)
|
|
(This used to be commit f4c310d55624ab726e3cdc49dcc69f9162c797aa)
|
|
* \PIPE\unixinfo
* winbindd's {group,alias}membership new functions
* winbindd's lookupsids() functionality
* swat (trunk changes to be reverted as per discussion with Deryck)
(This used to be commit 939c3cb5d78e3a2236209b296aa8aba8bdce32d3)
|
|
Guenther
(This used to be commit f3bdc20ba3de77ceacfd328ff85322666bd81ca8)
|
|
rpcclient-tester for some info-levels.
Jerry, I tried to adopt to prs_pointer() where possible and to not
interfere with your work for usrmgr.
- Add "net rpc trustdom vampire"-tool.
This allows to retrieve Interdomain Trust(ed)-Relationships from
NT4-Servers including cleartext-passwords (still stored in the local
secrets.tdb).
The net-hook was done in cooperation with Lars Mueller
<lmuelle@suse.de>.
To vampire trusted domains simply call:
net rpc trustdom vampire -S nt4dc -Uadmin%pass
Guenther
(This used to be commit 512585293963a1737f831af697ea1dc092d63cb0)
|
|
(This used to be commit 277203b5356af58ce62eb4eec0db2eccadeeffd6)
|
|
changes.
(This used to be commit a5fe34ca7d57c18f510b9cc68e75c4db370fe052)
|
|
samr_remove_sid_from_foreign_domain.
(This used to be commit 8360695fc02dfb09aff92a434bf9d411e65c478c)
|
|
Volker
(This used to be commit 9ca6cfcf1e4a905d47429a6dc18e2bd7ad5fe1e3)
|
|
one small todo item is to add a 'accounts' sub option
to 'net rpc list' so enumerate all privileged SIDs
and their associated rights.
(This used to be commit bf4385c79a0ce2e4983ffa11d39367dbf1d4dcfd)
|
|
parsing bugs related to that code
(This used to be commit 7bf1312287cc1ec6b97917ba25fc60d6db09f26c)
|
|
(This used to be commit 4b351f2fcc365a7b7f8c22b5139c299aa54c9458)
|
|
allocation
functions so we can funnel through some well known functions. Should help greatly with
malloc checking.
HEAD patch to follow.
Jeremy.
(This used to be commit 620f2e608f70ba92f032720c031283d295c5c06a)
|
|
(This used to be commit 911a28361b9d8dd50597627f245ebfb57c6294fb)
|
|
domains, this patch ensures that we always use the ADS backend when
security=ADS, and the remote server is capable.
The routines used for this behaviour have been upgraded to modern Samba
codeing standards.
This is a change in behaviour for mixed mode domains, and if the trusted
domain cannot be reached with our current krb5.conf file, we will show
that domain as disconnected.
This is in line with existing behaviour for native mode domains, and for
our primary domain.
As a consequence of testing this patch, I found that our kerberos error
handling was well below par - we would often throw away useful error
values. These changes move more routines to ADS_STATUS to return
kerberos errors.
Also found when valgrinding the setup, fix a few memory leaks.
While sniffing the resultant connections, I noticed we would query our
list of trusted domains twice - so I have reworked some of the code to
avoid that.
Andrew Bartlett
(This used to be commit 7c34de8096b86d2869e7177420fe129bd0c7541d)
|
|
(This used to be commit fb91bfa7a28f548dcc549f7e09805e4485c83538)
|
|
(This used to be commit a20aba09996e470425a151271237f2d48a8302af)
|
|
(This used to be commit 5d09aea6f78aa247dbd77617c93c2a1dd2e2702f)
|
|
Jeremy
(This used to be commit 49739be1e2f047fa2cc2fd42eadb190a82114485)
|
|
Jeremy.
(This used to be commit 30a33920b4d834edc877cc0080291fbda983083a)
|