summaryrefslogtreecommitdiff
path: root/source3/smbd
AgeCommit message (Collapse)AuthorFilesLines
1999-12-08ABOUT TIME!!!!!!!!Luke Leighton1-2/+0
damn, this one is bad. started, at least two days ago, to add an authentication mechanism to the smbd<->msrpc redirector/relay, such that sufficient unix / nt information could be transferred across the unix socket to do a become_user() on the other side of the socket. it is necessary that the msrpc daemon inherit the same unix and nt credentials as the smbd process from which it was spawned, until such time as the msrpc daemon receives an authentication request of its own, whereupon the msrpc daemon is responsible for authenticating the new credentials and doing yet another become_user() etc sequence. (This used to be commit 30c7fdd6ef10ecd35594311c1b250b95ff895489)
1999-12-06the first independent msrpc daemon - lsarpcd.Luke Leighton4-503/+76
one horrible cut / paste job from smbd, plus a code split of shared components between the two. the job is not _yet_ complete, as i need to be able to do a become_user() call for security reasons. i picked lsarpcd first because you don't _need_ security on it (microsoft botched so badly on this one, it's not real. at least they fixed this in nt5 with restrictanonymous=0x2). fixing this involves sending the current smb and unix credentials down the unix pipe so that the daemon it eventually goes to can pick them up at the other end. i can't believe this all worked!!! (This used to be commit 2245b0c6d13c7c5886e81f9137b05df883598c26)
1999-12-02domain_client_validate() no longer takes serverlist, it callsLuke Leighton2-13/+11
get_any_dc_name(). (This used to be commit e21367c0ebdc5e202cdc39d50950bff089bf67f8)
1999-12-02need a domain resolving function, but get_trusted_serverlist() will do.Luke Leighton1-30/+6
this is horrible. (This used to be commit 9df973fe711f322075d86d6792d6c0b8539c1d00)
1999-12-01cli_session_setup() now takes an extra argument (host name). hey, whatLuke Leighton1-2/+4
the heck is a cli_session_setup() call doing in here??? this should use cli_establish_connection()server! (This used to be commit fa054c96c62ed0f0a0c6649a7ad7a143fe09694b)
1999-12-01sys_select added one more argument (read, write selectors).Luke Leighton3-3/+3
(This used to be commit e4d92ff9dfc51735e6932748f66a7c20b2c1cb6a)
1999-11-29attempting to resolve the issue that multiple servers often specified inLuke Leighton1-53/+11
parameters to connect to \PIPE\NETLOGON. (This used to be commit d1986ade30bdcac1f49707221a3e5a5ae597ce62)
1999-11-24WARNING! MOVED rpc_server/srv_lsa_hnd.c TO lib/util_hnd.cLuke Leighton1-1/+4
CVS UPDATE MAY ISSUE WARNING ABOUT lib/util_hnd.c MODIFICATION DATE BEING IN THE FUTURE. CVS CHECKOUT A NEW REPOSITORY MAY BE SAFER. (This used to be commit c26e8a6ac59934ae580077df937439c2c538dbdb)
1999-11-24rewrote policy handle code to be generic (it's needed for client-side too)Luke Leighton1-1/+1
attempted to fix regsetsec command (This used to be commit eaac0923e0e5e3f4c3d944272a71f3235ac2a741)
1999-11-21implement server-side generation of NTLMv2 session key. YESSS :-)Luke Leighton2-12/+27
(This used to be commit 1092b4f6fbdf3770c0dab756b982a562def1738e)
1999-11-21hmmm... have to add client-side support in domain_client_validate() toLuke Leighton2-6/+9
_use_ user session key. (This used to be commit be6a6b13939798a9c7242b38864f0ce842391a74)
1999-11-21adding user session key into network netlogon response.Luke Leighton1-12/+12
(This used to be commit c73f6b0d02fa7700319ba696f54296006167e5d1)
1999-11-20oops, #ifdef'd cli_shutdown out, as the fun has _already_ started:Luke Leighton1-2/+1
NT refuses to play nice, and establish a trust relationship. (This used to be commit 98c42764fba365d612a8ae4b3172b03367066112)
1999-11-20attempting to establish inter-domain trust relationships. modifiedLuke Leighton1-0/+2
smbpasswd so it can be used to set up inter-domain trust account. (This used to be commit 99ec0620c3bf4af96440c684f880d414659de2e9)
1999-11-20modified domain_client_validate to take trust account name / type. thisLuke Leighton3-11/+68
is to pass DOMAIN_NAME$ and SEC_CHAN_DOMAIN instead of WKSTA_NAME$ and SEC_CHAN_WKSTA. modified check_domain_security to determine if domain name is own domain, and to use wksta trust account if so, otherwise check "trusting domains" parameter and use inter-domain trust account if so, otherwise return False. (This used to be commit 97ec74e1fa99d773812d2df402251fafb76b181c)
1999-11-19- bug in nmbd registering DOMAIN_NAME<1c> to WINS server; recursionLuke Leighton1-0/+1
desired flag MUST be set in any NBT UDP packets sent to a WINS server, else they will go to the WINS client side of the NT NetBIOS kernel instead, and will get trashed. - added \PIPE\browser server-side code. (This used to be commit 8e406c1fa296c3f97b1cd7ddde7b5aeb9232b26e)
1999-11-18set "key does not exist" response to reg_query_val() (win32 status codeLuke Leighton1-0/+6
of 0x2). [p.s. getting REALLY bored of this nt5rc2->samba domain stuff]. (This used to be commit a8801942f72b2394a54e4a46546029fac70efeed)
1999-11-15- added DCE/RPC "fault" PDU support.Luke Leighton4-5/+51
- disabled (AGAIN) the GETDC "if (MAILSLOT\NTLOGON)" code that will get NT5rc2 to work but WILL break win95 (AGAIN). this needs _not_ to be re-enabled but to be replaced with a better mechanism. - added SMBwrite support (note: SMBwriteX already existed) as NT5rc2 is sending DCE/RPC over SMBwrite not SMBwriteX. (This used to be commit 25c70e3c984c4fed19763ed405741e83fe14f87e)
1999-11-04samuserset <username> -p password. YESSSSS :)Luke Leighton1-67/+0
you have to use "ntlmv1" at the moment (i.e set client ntlmv2 = no). (This used to be commit f52504c553becc64b89d546a57b1bd9cf1bc5b5c)
1999-11-04adding experimental set user password command to rpcclient, it returnsLuke Leighton1-0/+31
error wrong password against nt. ???? (This used to be commit b3f16e6b5aa5ba1b6afa38ad698646c8e765ec90)
1999-10-29cli_nt_setup_creds() returns uint32 NT status code not a BOOL.Luke Leighton1-3/+4
removed all comparisons to if (fn() == False), replaced with if (!fn()). (This used to be commit fdef97eb7c20a33b26104661cd010baebcb4bdcd)
1999-10-21various. debug levels changed. nmbd doesn't need libsmb/clienttrust.c.Luke Leighton1-1/+1
samr_lookup_rids() moved to a dynamic memory structure not a static one limited to 32 RIDs. cli_pipe.c reading wasn't checking ERRmoredata when DOS error codes negotiated (this terminates MSRPC code with prejudice). (This used to be commit 8976eca2db43576c32069dcda017e8777048e007)
1999-10-05David van Geyn spotted that ulong is not defined on FREEBSD, not supposedLuke Leighton1-1/+1
to use ulong use uint32 instead. (This used to be commit 16dd94db1fd2ed8ed7d240c5aac5a481b64cd26d)
1999-09-27don't leak printer handles,Jean-François Micouleau1-2/+5
don't coredump when adding forms, and a small non obvious memory leak in the rpc buffers J.F. (This used to be commit bee11f8889378b9f1cc6e2818fd0f8dd7ddcf10d)
1999-09-16reading in smb server domain name from SMBnegprot responseLuke Leighton1-3/+4
(This used to be commit 25025f450531c66c0fd9f7eed886cb288d76d025)
1999-09-15#defines for port 445 to SMB_PORT2Luke Leighton1-4/+4
(This used to be commit a8d4560e0064a67a234eae89a564b79d2426d9a9)
1999-09-12- initialising mach_passwd_file locks to zero (prev. uninit.)Luke Leighton1-1/+0
- cleanup - #defined report to sprintf as it's #defined to another function in other uses of cmd_lsarpc.c (This used to be commit 8fb2ff247a2fe0ec5ce0c232d8a3da9774f7e6ae)
1999-09-10oops, port 455 instead of 445Luke Leighton1-1/+1
(This used to be commit 4e5eac18d0d9325c8e524fb53b4e049f0893fae7)
1999-09-08bertl <bs@niggard.org> patch for making samba listen on port 445, just likeLuke Leighton2-28/+76
nt 5 does. cool! (This used to be commit 727e1421b2c0f8c72c428776593498103304082b)
1999-08-13spelling mistake.Luke Leighton1-1/+1
(This used to be commit b8ac96cd9c8efaf0e07651657f878a2dea127290)
1999-08-13pnum should be a uint16.Luke Leighton1-2/+2
(This used to be commit 41cb8b0ba071ef73bf00130ec863b592c16d359a)
1999-07-22Copy service name into vfs_connection_struct.Tim Potter1-0/+2
(This used to be commit 19242cd44e059d90e91f1c27bfb45899ce5de26a)
1999-07-22Pass VFS options defined in smb.conf to vfs_init() function.Tim Potter1-4/+7
(This used to be commit 8cde172a77a1582c0af2e685097c53ba5f302a4e)
1999-07-21comments requested by jeremy as to why NT/95 NULL-password distinction hackLuke Leighton1-1/+6
was modified. (This used to be commit 50f7bd8a9c47d073bbde66ae26e9f71f030afc4c)
1999-07-16NTLMv2 check being actioned when NT password response was only 24 chars.Luke Leighton1-1/+1
added check to ensure response is more than 24 chars before bothering to do an NTLMv2 check. (This used to be commit 7a58895ff26fcad09ee45de99086739bf5761fd9)
1999-07-16copy of password struct needed to be made prior to calling copy_passwd_structLuke Leighton1-6/+8
found by Bertl <bs@vpnet.at>. (This used to be commit 93298bca1c573532c5250c84bac39cf9214ba3b5)
1999-07-15work-around for win95 NULL session bug: NULL password actually beingLuke Leighton1-3/+13
placed in data stream before username / domain, whereas NT doesn't do this... (This used to be commit 44e6d4c1b0b6ae54e76e96471b40bb784c8b3c8c)
1999-07-15more dfs stuff. this looks like it's going to be more appropriate to useLuke Leighton5-84/+231
the vfs tables. at the moment, i replaced all calls to unix_convert() with unix_dfs_convert(). this does the job, but it's not very nice. (This used to be commit 00d4aebce9f268a737ef9df9bdbe59f8fe831979)
1999-07-15dfs issuesLuke Leighton2-8/+15
(This used to be commit d9ada8b55d539e555d25298e0a308ea952e2807e)
1999-07-15added %d %d to error message, try to track down the uid / smb_uid mismatchLuke Leighton1-2/+2
(This used to be commit ec918ba144e7c1bd1689007143ca2b8bee604768)
1999-07-14removed strncpy()Luke Leighton1-23/+25
(This used to be commit 4bdff2748956a61f12a92e19a9af98c7b9668e8f)
1999-07-13dfs parsed string length was being set explicitly to value "6", overwritingLuke Leighton1-22/+21
the correct length. (This used to be commit 5d1fad53c2bdfef63930e0b9d5cc460c9740066e)
1999-07-12Jean-Francois Micouleau's rewrite of Nigel William's DFS supportLuke Leighton1-0/+215
(This used to be commit e6116c40d4d0473a7412e82791afd9f44e4905a4)
1999-07-12lengths of NT passwords when "encrypt passwords = no" can be completelyLuke Leighton1-1/+1
random. values seen can be as high as 18255. this fails the check of <= 24 which sets NT password length to 0, effectively ignoring it. the <= 24 was removed in reply_sesssetup_X. (This used to be commit 98d43b20dc4df72ddbfaeb34581222adc53d15dd)
1999-07-12Jean-Francois Micouleau's rewritten DFS patch, originally written byLuke Leighton6-67/+354
Nigel Williams. despite the data format being *exactly* the same as NT's, this still doesn't work yet. more work needed. (This used to be commit 270981960bb5aab52d2f8e494827101ece6729c4)
1999-07-07oops, refused lm when ntlmv2 was true not false/auto. oops!Luke Leighton1-1/+1
(This used to be commit 6b4b24d2208b1b076dfc2f7202917ca0acaeb398)
1999-07-06reporting failure to accept ntlmv2 (only) with down-level protocols (LANMAN1Luke Leighton1-3/+13
and below). (This used to be commit be7b978249ddb5e2e94aa160a360fecbf51f016e)
1999-07-06smb_password_ok() checking incorrectly whether lm password exists.Luke Leighton1-13/+16
when lmcompatibilitylevel=0x2 on nt sp4+ clients, lm# is not sent. (This used to be commit e655e68474dd0234b49c23a07d9cb8bdd8f6016a)
1999-06-29improving authentication code (tidyup).Luke Leighton3-50/+109
(This used to be commit ab1a6aa42db5217f025941fb5107436556bc23b7)
1999-06-24debugging of NBT messages added.Luke Leighton1-0/+3
(This used to be commit ceb20adb3c924818201fa8992e19e82f45b40710)