summaryrefslogtreecommitdiff
path: root/source3/smbd/chgpasswd.c
AgeCommit message (Collapse)AuthorFilesLines
2008-01-17Finally enable pidl generated SAMR & NETLOGON headers and clients.Günther Deschner1-6/+6
Guenther (This used to be commit f7100156a7df7ac3ae84e45a47153b38d9375215)
2007-12-19Remove Get_Pwnam and its associated static variableVolker Lendecke1-1/+5
All callers are replaced by Get_Pwnam_alloc (This used to be commit 735f59315497113aebadcf9ad387e3dbfffa284a)
2007-12-17Fix bug #5121 (unix passwd sync not working on a streams basedJeremy Allison1-7/+7
system). Jeremy. (This used to be commit 545cd2139cfc9484b733693814d4724d37125942)
2007-12-16Remove a static fstring.Jeremy Allison1-20/+30
Jeremy. (This used to be commit 898c56c0ead6331721de9645ce55608cbe7cf34d)
2007-12-15More work on bug #5082, use LC_ALL as this takesJeremy Allison1-2/+2
precedence. Jeremy. (This used to be commit 446ebae76d6796b30e4c71ff7190337c28637be6)
2007-12-14Fix for bug #5082 from Mathias Gug <mathiaz@ubuntu.com>, Steve Langasek ↵Jeremy Allison1-1/+9
<vorlon@debian.org>. Recent versions of Linux-PAM support localization of user prompts, so Samba must use the C locale when invoking PAM (directly or via /usr/bin/passwd) to ensure that password chat values match the prompts in a locale-invariant fashion. Jeremy. (This used to be commit bc13e939546a5bcb78925a6b117e89fde20f6451)
2007-12-07Remove next_token - all uses must now be next_token_talloc.Jeremy Allison1-13/+29
No more temptations to use static length strings. Jeremy. (This used to be commit ec003f39369910dee852b7cafb883ddaa321c2de)
2007-11-12Remove all pstrings from smbd/chgpasswd.c.Jeremy Allison1-67/+90
Jeremy. (This used to be commit eaf14c701b08e9eff5b94bf57af68cb29142d7fc)
2007-11-11Three more pstring removals.Jeremy Allison1-3/+7
Jeremy. (This used to be commit c15819b75751a1e15cfed2ef94dae10ee72d769c)
2007-11-05Remove the horror that was the global smb_rw_error.Jeremy Allison1-1/+1
Each cli struct has it's own local copy of this variable, so use that in client code. In the smbd server, add one static to smbd/proccess.c and use that inside smbd. Fix a bunch of places where smb_rw_error could be set by calling read_data() in places where we weren't reading from the SMB client socket (ie. winbindd). Jeremy. (This used to be commit 255c2adf7b6ef30932b5bb9f142ccef4a5d3d0db)
2007-10-18RIP BOOL. Convert BOOL -> bool. I found a few interestingJeremy Allison1-20/+20
bugs in various places whilst doing this (places that assumed BOOL == int). I also need to fix the Samba4 pidl generation (next checkin). Jeremy. (This used to be commit f35a266b3cbb3e5fa6a86be60f34fe340a3ca71f)
2007-10-10r23784: use the GPLv3 boilerplate as recommended by the FSF and the license textAndrew Tridgell1-2/+1
(This used to be commit b0132e94fc5fef936aa766fb99a306b3628e9f07)
2007-10-10r23779: Change from v2 or later to v3 or later.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 407e6e695b8366369b7c76af1ff76869b45347b3)
2007-10-10r23682: Old patch I forgot in one of my 3.0.25 trees.Simo Sorce1-0/+16
Make sure we honour the directive not to allow machine password changes. (This used to be commit 436555f05ceae34d8df2356d1066b6b5e0a07c41)
2007-10-10r22001: change prototype of dump_data(), so that it takes unsigned char * now,Stefan Metzmacher1-2/+2
which matches what samba4 has. also fix all the callers to prevent compiler warnings metze (This used to be commit fa322f0cc9c26a9537ba3f0a7d4e4a25941317e7)
2007-10-10r19094: Fix debug statement.Günther Deschner1-1/+1
Guenther (This used to be commit e99696c97052d4ba962e11fcb7b6ea530350913d)
2007-10-10r19058: Implement "user cannot change password", and complete "user must changeJim McDonough1-26/+19
password at next logon" code. The "password last set time" of zero now means "user must change password", because that's how windows seems to use it. The "can change" and "must change" times are now calculated based on the "last set" time and policies. We use the "can change" field now to indicate that a user cannot change a password by putting MAX_TIME_T in it (so long as "last set" time isn't zero). Based on this, we set the password-can-change bit in the faked secdesc. (This used to be commit 21abbeaee9b7f7cff1d34d048463c30cda44a2e3)
2007-10-10r16248: Fix Coverity ID 297Volker Lendecke1-0/+5
(This used to be commit e56e3c19e1244e2b7409d57a030ca8b7ec446932)
2007-10-10r15887: Ensure we use sys_write so we're not interrupted.Jeremy Allison1-1/+1
Jeremy. (This used to be commit c66620770d2154543a6ec99d369771b339df5463)
2007-10-10r14668: Set the FILE_STATUS_OFFLINE bit by observing the events a DMAPI-basedJames Peach1-1/+2
HSM is interested in. Tested on both IRIX and SLES9. (This used to be commit 514a767c57f8194547e5b708ad2573ab9a0719c6)
2007-10-10r14600: Refactor capability interface from being IRIX-specific to using onlyJames Peach1-1/+1
the POSIX interface. Note that this removes support for inherited capabilities. This wasn't used, and probably should not be. (This used to be commit 763f4c01488a96aec000c18bca313da37ed1df1b)
2007-10-10r13711: * Correctly handle acb_info/acct_flags as uint32 not as uint16.Günther Deschner1-3/+3
* Fix a couple of related parsing issues. * in the info3 reply in a samlogon, return the ACB-flags (instead of returning zero) Guenther (This used to be commit 5b89e8bc24f0fdc8b52d5c9e849aba723df34ea7)
2007-10-10r13590: * replace all pdb_init_sam[_talloc]() calls with samu_new()Gerald Carter1-1/+3
* replace all pdb_{init,fill}_sam_pw() calls with samu_set_unix() (This used to be commit 6f1afa4acc93a07d0ee9940822d7715acaae634f)
2007-10-10r13576: This is the beginnings of moving the SAM_ACCOUNT data structureGerald Carter1-25/+25
to make full use of the new talloc() interface. Discussed with Volker and Jeremy. * remove the internal mem_ctx and simply use the talloc() structure as the context. * replace the internal free_fn() with a talloc_destructor() function * remove the unnecessary private nested structure * rename SAM_ACCOUNT to 'struct samu' to indicate the current an upcoming changes. Groups will most likely be replaced with a 'struct samg' in the future. Note that there are now passbd API changes. And for the most part, the wrapper functions remain the same. While this code has been tested on tdb and ldap based Samba PDC's as well as Samba member servers, there are probably still some bugs. The code also needs more testing under valgrind to ensure it's not leaking memory. But it's a start...... (This used to be commit 19b7593972480540283c5bf02c02e5ecd8d2c3f0)
2007-10-10r13494: Merge the stuff I've done in head the last days.Volker Lendecke1-1/+1
Volker (This used to be commit bb40e544de68f01a6e774753f508e69373b39899)
2007-10-10r13444: Add REJECT_REASON_OTHER for samr_chgpasswd_user3Günther Deschner1-0/+10
Guenther (This used to be commit 58baf718be90d750f51cf51a25714fcdcd5679b7)
2007-10-10r13442: Implement samr_chgpasswd_user3 server-side.Günther Deschner1-3/+13
Guenther (This used to be commit f60eddc0a4dfe623e5f115533a62c03810fd5f38)
2007-10-10r13316: Let the carnage begin....Gerald Carter1-10/+3
Sync with trunk as off r13315 (This used to be commit 17e63ac4ed8325c0d44fe62b2442449f3298559f)
2007-10-10r13291: NT checks the minimum password age dynamically. That means we have ↵Volker Lendecke1-5/+21
to ignore the sambapwdmustchange field if we can access the corresponding account policy and calculate it dynamically based on the pwdlastset field. Volker (This used to be commit b02b1d3ef3bceec1957d025c642e306a65310d22)
2007-10-10r12938: Fix for #3408 (change password fails) from William Jojo ↵Jeremy Allison1-3/+7
<jojowil@hvcc.edu>. Jeremy. (This used to be commit 5fc0ef80876a666c285585f8b55e1909e8f2e0bf)
2007-10-10r12279: unix_mask_match has been broken for *ever*... (How).Jeremy Allison1-1/+1
Ensure it returns a BOOL. Jerry (and anyone else) please check this, I think all uses are now correct but could do with another set of eyes. Essential for 3.0.21 release. Jeremy. (This used to be commit 0c7b8a7637e760fcb6629092f36b610b8c71f5c9)
2007-10-10r10656: BIG merge from trunk. Features not copied overGerald Carter1-2/+2
* \PIPE\unixinfo * winbindd's {group,alias}membership new functions * winbindd's lookupsids() functionality * swat (trunk changes to be reverted as per discussion with Deryck) (This used to be commit 939c3cb5d78e3a2236209b296aa8aba8bdce32d3)
2007-10-10r9545: (Hopefully the last) fixes for DIR -> SMB_STRUCT_DIR.Jeremy Allison1-4/+4
Jeremy. (This used to be commit b242f278601e1a23c9116009482e802326d418f7)
2007-10-10r8454: Fix Bug #2502Günther Deschner1-11/+0
Removing deprecated lp_min_password_length (the same functionality is provided by the account policy). Note that we now allow to set passwords less then 5 chars (if the admins decides to do so by setting the account policy). Thanks to Daniel Beschorner <db@unit-netz.de> Guenther (This used to be commit fd91378925f7e3541df4f31bd461dabc1da523a9)
2007-10-10r7882: Looks like a large patch - but what it actually does is make SambaJeremy Allison1-2/+2
safe for using our headers and linking with C++ modules. Stops us from using C++ reserved keywords in our code. Jeremy (This used to be commit 9506b8e145982b1160a2f0aee5c9b7a54980940a)
2007-10-10r5961: final round of compiler warning fixes based on feedback from Jason MaderGerald Carter1-2/+2
(This used to be commit 9e77da9320c900b3e437d534e31fa5ff81e9acfd)
2007-10-10r5905: Fix two warnings found by AIX. They might actually be bugs on 64-bitVolker Lendecke1-1/+2
platforms. Volker (This used to be commit f7218d1c66ae91fa79f5a40e0ba618beba038bbc)
2007-10-10r5349: After talking with Jerry, reverted the addition of account policies toGünther Deschner1-2/+2
passdb in 3_0 (they are still in trunk). Guenther (This used to be commit fdf9bdbbac1d8d4f3b3e1fc7e49c1e659b9301b1)
2007-10-10r4925: Migrate Account Policies to passdb (esp. replicating ldapsam).Günther Deschner1-2/+2
Does automated migration from account_policy.tdb v1 and v2 and offers a pdbedit-Migration interface. Jerry, please feel free to revert that if you have other plans. Guenther (This used to be commit 75af83dfcd8ef365b4b1180453060ae5176389f5)
2007-10-10r4337: Produce a slightly different error message is lanman authentication isAndrew Bartlett1-3/+8
disabled, rather than simply unavailable. Andrew Bartlett (This used to be commit 1c70583a19c9f741a41d08c0b994fccb66eeb0bf)
2007-10-10r3954: bring Samba3 into line with the Samba4 password change codeAndrew Tridgell1-18/+11
(This used to be commit 04a6573f894800b9d939d9b4be48790437352804)
2007-10-10r2899: Change some #if DEBUG_PASSWORD's to #ifdef DEBUG_PASSWORD.Tim Potter1-1/+1
Bugzilla #1903. (This used to be commit 1327d83d902b6a39096d387d734e73d85ed53f85)
2007-10-10r2772: Check correct string length when verifying password-policies. Do notGünther Deschner1-2/+3
allow e.g. two umlauts and one ascii char to comply with account-policy "min password length" of 5. Thanks to Uwe Morgenroth from CC Compunet and Volker. TODO: we do check the length against AP_MIN_PASSWORD_LEN *and* lp_min_passwd_length() - both can have differing values. (This used to be commit d03683772942e8c32507be210b8fd35bfba2c048)
2007-10-10r2333: check the script is not a 0 lenght stringSimo Sorce1-1/+1
(This used to be commit 05a80c37375b3186b02b8430033796ab7a7d68bb)
2007-10-10r2331: check password script code and example from trunkSimo Sorce1-0/+13
(This used to be commit f836be323a233f3a28cbaa04c532e83ea98ead89)
2007-10-10r2013: BUG 1658: little bit of const (patch from : Helmut ↵Gerald Carter1-1/+1
Heinreichsberger <helmut.heinreichsberger@chello.at>) (This used to be commit 22cde8f665f7ed52785699a1d58db3271125ab89)
2007-10-10r1661: Changed the password history format so that each history entryJeremy Allison1-7/+13
consists of a 16 byte salt, followed by the 16 byte MD5 hash of the concatination of the salt plus the NThash of the historical password. Allows these to be exposed in LDAP without security issues. Jeremy. (This used to be commit 82e4036aaa2d283534a5bd8149857320fcf0d0dc)
2007-10-10r1388: Adding password history code for ldap backend, based on a patch fromJeremy Allison1-10/+75
"Jianliang Lu" <j.lu@tiesse.com>. Multi-string attribute changed to linearised pstring due to ordering issues. A few other changes to fix race conditions. I will add the tdb backend code next. This code compiles but has not yet been tested with password history policy set to greater than zero. Targeted for 3.0.6. Jeremy. (This used to be commit dd54b2a3c45e202e504ad69d170eb798da4e6fc9)
2007-10-10r283: removing --with-cracklib after discussion with abartklet @ sambaXPGerald Carter1-47/+0
(This used to be commit df94b0471eb0628aa27f534134d60b62ed123688)
2004-03-09Added strstr_m() function. Use in all places where we might run into mbJeremy Allison1-1/+1
(should fix the mb service name problem, can't remember the bugid). Jeremy. (This used to be commit 94a272b9a881ec0004c5da2a7242b0a818da5630)