Age | Commit message (Collapse) | Author | Files | Lines |
|
add static
smbd/uid.c:
remove unused function
Andrew Bartlett
(This used to be commit ab25af0e18d883757775a85f005775a79a86dcc8)
|
|
Andrew Bartlett
(This used to be commit 25a09004e8a51eb3192adbb580239427bfee0ec9)
|
|
in lib/smbpasswd.c that were exact duplicates of functions in passdb/passdb.c
(These should perhaps be pulled back out to smbpasswd.c, but that can occour
later).
Andrew Bartlett
(This used to be commit fcdc5efb1e245c8fa95cd031f67ec56093b9056e)
|
|
auth subsystem.
Andrew Bartlett
(This used to be commit 5693730594b1a861c7916cac7d156cf6a9d913cd)
|
|
(This used to be commit b60f6ec30d05e4e5bba9934a416ddc8bc089824f)
|
|
* don't set the unix_ERR_XX code in mkdir_internal, let the error mapping
handle it.
(This used to be commit 87343fc15a385153c2205bd8bfe876504d38d9a1)
|
|
(This used to be commit 11093ecfb7bab1ecb16d19ac00b3e7e38dff43e2)
|
|
Jeremy.
(This used to be commit 1a7714ea32300ba0e48f275addcf2e1f272a96ed)
|
|
exists by the same name
(This used to be commit 6b89a76aa7efaa0ad7a0139aeb3e4ebf5c01cdcb)
|
|
different feilds that different clients send. (For example, not all clients
send both password types).
This also cleans up the code to make it clearer what is really going on,
and to make better use of common functions.
Andrew Bartlett
(This used to be commit 934e9f3bd0e8a938263978ffcd1fef51e42fa5e4)
|
|
initialise the session key. Fixes segfaults with security=server, and
encrypt passwords = no.
Andrew Bartlett
(This used to be commit 493ac5ce98fa3fcddb596139240dd762e70d4ac3)
|
|
register_vuid correctly. We ended up with the local netbios name in
substitutions for %D later.
Volker
P.S: Tridge, I can *really* see why you want to get rid of global variables
:-)
(This used to be commit 3d9931fe291559a907c3e172a66fbce1155497a3)
|
|
XFS_GROUP_QUOTA -> GRPQUOTA
* Fix disk_free calculation with group quotas.
* Add debug class 'quota' and a lot of DEBUG()'s
to the quota code.
metze
(This used to be commit e9e5e2036f13ff847aa3ef52e8be657bef7d5774)
|
|
(This used to be commit 6202e0fa727a4307f51bf42f5ced401a7c7b8214)
|
|
(the actual call to crack was already in this #ifdef)
Andrew Bartlett
(This used to be commit 4a01f3dbb4a2e744b48bdb86c4d91ee4692d38e5)
|
|
This adds a configure test, that tries to find out if we have a working
cracklib installation, and tries to pick up the debian hints on where
the dictionary might be found. Default is per my Fedora Core 1 system -
I'm not sure how much it changes.
Andrew Bartlett
(This used to be commit bc770edb788f0b6f719011cda683f045b76b7ba5)
|
|
metze
(This used to be commit 12d6bc3bd0684646e990c2fc6485fe1a92ac98fb)
|
|
Jeremy.
(This used to be commit 8e20c06ed31d9ec10ff0155b1624eee3d60cd006)
|
|
Jeremy.
(This used to be commit d75db0bf1eee9c4341a3ec14c05f82b364a202b3)
|
|
(This used to be commit fac5e05ca1b56cb6e3ab6537d0848fa373c00831)
|
|
using pread/pwrite. Modified a little to ensure fsp->pos is correct.
Fix for #889.
Jeremy.
(This used to be commit 019aaaf0df091c3f67048f591e70d4353a02bb9b)
|
|
2.2.x quota methods.
:-).
"here's a patch which ports the samba 2.2 samba_linux_quota.h stuff to 3_0.
This is needed because of so many broken quota files outthere.
Please, test this with old, new kernels
(strucr dqblk, struct mem_dqblk, and struct if_dqblk)
, quota.user, aquota.user formats
what is when a user is over soft quota and over hard quotas..."
Jeremy.
(This used to be commit 4350aa6ce6cfdaf71cdcfd2aebcdc9560fa7efcf)
|
|
session setup. After talking to jht and abartlet I made this unconditional, no
additional parameter.
Jerry: This is a change in behaviour, but I think it is necessary.
Volker
(This used to be commit 3ce6c9f27368cfb278007fe660a0e44a84d67f8f)
|
|
<buc@odusz.elektra.ru>
Jeremy.
(This used to be commit bee4b3348e5052cc927c837c2a21b4c90db980fc)
|
|
Jeremy.
(This used to be commit ba0b5b8c9be9bfeba5e0b3f930ca0463d1e78c9c)
|
|
by increasing bitmap size. Limited by "max connections" parameter.
Bug #716.
Jeremy.
(This used to be commit fbbeb55b230ffc477f5563af66ab65eb6598e025)
|
|
(This used to be commit 2f43a1c166dfc8679a9d03bd0f3cf9303aafcf74)
|
|
<fwc@mt.net>
Jeremy.
(This used to be commit 3a8fe3b2ef30cbe0cf441d6c4ffa9c309dc71e54)
|
|
requests when signing is turned on.
Jeremy.
(This used to be commit 206464a748a59b1d485d4d3d0cb4d257d60fbd00)
|
|
Jeremy.
(This used to be commit 4e73faa7b4af7f73bdce9fcc2ee1825249dc7da7)
|
|
cope.
Jeremy.
(This used to be commit 0d82ac57a59276adb403f8e023578c2d6d5136e4)
|
|
if the file has an ACL.
Jeremy.
(This used to be commit 7bf5ed30ce74ba658ca35059955748c1d8cbd6d2)
|
|
Jeremy.
(This used to be commit 16097f2072085432f4c669d9e008023f36f7afbb)
|
|
(This used to be commit 68283407e0f366d8315f4be6caed67eb6fe84b85)
|
|
- NTLM2 support in the server
- KEY_EXCH support in the server
- variable length session keys.
In detail:
- NTLM2 is an extension of NTLMv1, that is compatible with existing
domain controllers (unlike NTLMv2, which requires a DC upgrade).
* This is known as 'NTLMv2 session security' *
(This is not yet implemented on the RPC pipes however, so there may
well still be issues for PDC setups, particuarly around password
changes. We do not fully understand the sign/seal implications of
NTLM2 on RPC pipes.)
This requires modifications to our authentication subsystem, as we
must handle the 'challege' input into the challenge-response algorithm
being changed. This also needs to be turned off for
'security=server', which does not support this.
- KEY_EXCH is another 'security' mechanism, whereby the session key
actually used by the server is sent by the client, rather than being
the shared-secret directly or indirectly.
- As both these methods change the session key, the auth subsystem
needed to be changed, to 'override' session keys provided by the
backend.
- There has also been a major overhaul of the NTLMSSP subsystem, to merge the 'client' and 'server' functions, so they both operate on a single structure. This should help the SPNEGO implementation.
- The 'names blob' in NTLMSSP is always in unicode - never in ascii.
Don't make an ascii version ever.
- The other big change is to allow variable length session keys. We
have always assumed that session keys are 16 bytes long - and padded
to this length if shorter. However, Kerberos session keys are 8 bytes
long, when the krb5 login uses DES.
* This fix allows SMB signging on machines not yet running MIT KRB5 1.3.1. *
- Add better DEBUG() messages to ntlm_auth, warning administrators of
misconfigurations that prevent access to the privileged pipe. This
should help reduce some of the 'it just doesn't work' issues.
- Fix data_blob_talloc() to behave the same way data_blob() does when
passed a NULL data pointer. (just allocate)
REMEMBER to make clean after this commit - I have changed plenty of data structures...
(This used to be commit f3bbc87b0dac63426cda6fac7a295d3aad810ecc)
|
|
<link@foo.fh-furtwangen.de>.
Jeremy.
(This used to be commit 598d9d3e5f612133e0528a1a8907745d715b61ed)
|
|
<Helmut.Heinreichsberger@wincor-nixdorf.com>
Jeremy.
(This used to be commit 06c9e9163010a1035f448f76c4084228dc95334f)
|
|
a mangled name. Added const. Fix inspired by Andrew Bartlett ideas.
Jeremy.
(This used to be commit 87eb336d659dfa5e92b495dd76a0f2e534931293)
|
|
Jeremy.
(This used to be commit fc2af591f5a2b08caa7389150c8cc5e298bd0ed4)
|
|
get_peer_name. This is to get closer to the getsockname/getpeername system
functions.
Next step will be the %i macro for the local IP address. I still want to play
%L-games in times of port 445.
Volker
(This used to be commit d7162122eaf5d897e5de51604e431bfbaa20e905)
|
|
Jeremy.
(This used to be commit 154793981a1b2aea2703ef4da4764a322bf90ca0)
|
|
(This used to be commit fc30b6b5473124bad9c2c30b604bc21c9de258c1)
|
|
(This used to be commit 23443e3aa079710221557e18158d0ddb8ff48a36)
|
|
(This used to be commit 8e2c543ebf65e24e73433f69b1c281e1558e9080)
|
|
(This used to be commit f5229d5d62510f981bd08ad8139675b50421e042)
|
|
Jeremy.
(This used to be commit ad06edd1bb58cc5e2c38a364b1af96a933b770af)
|
|
backlog of 5 is way too small these days.
(This used to be commit bbb92d2b0ea6bc10c71bed62924bfc95c11172a5)
|
|
returned.
Jeremy.
(This used to be commit 26bfe37a10f7337acb8c5ac0e04fac7a8dddc769)
|
|
Jeremy.
(This used to be commit 74148111e16a863d5a33511e5b15632a736d7e99)
|
|
<a.bokovoy@sam-solutions.net>.
Jeremy.
(This used to be commit 8b9b635bd2759642c25fe0cea5eefbbe5af44193)
|