summaryrefslogtreecommitdiff
path: root/source3/smbd
AgeCommit message (Collapse)AuthorFilesLines
2003-11-24more access fixes for group enumeration in LDAP; bug 281Gerald Carter1-2/+7
(This used to be commit c4ce92e80688fe7fd4b2fde2c31e94baf3e4dca0)
2003-11-22(merge from 3.0)Andrew Bartlett2-15/+40
Changes all over the shop, but all towards: - NTLM2 support in the server - KEY_EXCH support in the server - variable length session keys. In detail: - NTLM2 is an extension of NTLMv1, that is compatible with existing domain controllers (unlike NTLMv2, which requires a DC upgrade). * This is known as 'NTLMv2 session security' * (This is not yet implemented on the RPC pipes however, so there may well still be issues for PDC setups, particuarly around password changes. We do not fully understand the sign/seal implications of NTLM2 on RPC pipes.) This requires modifications to our authentication subsystem, as we must handle the 'challege' input into the challenge-response algorithm being changed. This also needs to be turned off for 'security=server', which does not support this. - KEY_EXCH is another 'security' mechanism, whereby the session key actually used by the server is sent by the client, rather than being the shared-secret directly or indirectly. - As both these methods change the session key, the auth subsystem needed to be changed, to 'override' session keys provided by the backend. - There has also been a major overhaul of the NTLMSSP subsystem, to merge the 'client' and 'server' functions, so they both operate on a single structure. This should help the SPNEGO implementation. - The 'names blob' in NTLMSSP is always in unicode - never in ascii. Don't make an ascii version ever. - The other big change is to allow variable length session keys. We have always assumed that session keys are 16 bytes long - and padded to this length if shorter. However, Kerberos session keys are 8 bytes long, when the krb5 login uses DES. * This fix allows SMB signging on machines not yet running MIT KRB5 1.3.1. * - Add better DEBUG() messages to ntlm_auth, warning administrators of misconfigurations that prevent access to the privileged pipe. This should help reduce some of the 'it just doesn't work' issues. - Fix data_blob_talloc() to behave the same way data_blob() does when passed a NULL data pointer. (just allocate) REMEMBER to make clean after this commit - I have changed plenty of data structures... Andrew Bartlett (This used to be commit 57a895aaabacc0c9147344d097d333793b77c947)
2003-11-21Fix for rename across filesystems. Noticed by Rainer Link ↵Jeremy Allison1-5/+95
<link@foo.fh-furtwangen.de>. Jeremy. (This used to be commit f68c2ff0f3307612ddbe62b8cc2ea12251d54ec6)
2003-11-19Group quotas patch from "Heinreichsberger, Helmut" ↵Jeremy Allison1-19/+32
<Helmut.Heinreichsberger@wincor-nixdorf.com> Jeremy. (This used to be commit 0984b35fbfd0c9579d2a8a6fa748ade604ad6a82)
2003-11-18Remove unneeded second open for filename ending in '.' now we know it'sJeremy Allison1-13/+3
a mangled name. Added const. Fix inspired by Andrew Bartlett ideas. Jeremy. (This used to be commit 8de1d4ebf72928c958d4c5be887f2babe13d3c87)
2003-11-18Ensure we mangle names ending in '.' in hash2 mangling method.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 9b50fd8cfc36c817177103b07e7b8a3952e641c7)
2003-11-07From 3_0:Volker Lendecke1-1/+1
Simple rename of get_socket_addr to get_peer_addr and get_socket_name to get_peer_name. This is to get closer to the getsockname/getpeername system functions. Next step will be the %i macro for the local IP address. I still want to play %L-games in times of port 445. Volker (This used to be commit 99311b437be050fd9ee656cd184f299993d20bfb)
2003-11-05Merge of 64-bit printf warning fixes.Tim Potter6-13/+13
(This used to be commit a6cc763333943bc6e360bb7e78cf9bfb1bc936e8)
2003-10-30bug 696; check for an invalid fid before dereferencing the fsp pointerGerald Carter1-0/+5
(This used to be commit 2cc43e760b02f2088a0222d1f5080913a96f3e5a)
2003-10-29Janitor for tridge.Jeremy Allison1-2/+2
parameterise the listen backlog in smbd and make it larger by default. A backlog of 5 is way too small these days. Jeremy. (This used to be commit 58b8f673945ad114d056dd79f509c93ab42b96d1)
2003-10-29Fixes to check for wraps which could cause coredumps.Jeremy Allison1-4/+6
Jeremy. (This used to be commit 124a8ddae63adff4f601242a8e6d05abcaf4d9bf)
2003-10-28Don't log at level zero when chdir fails. Ensure correct error message is ↵Jeremy Allison1-1/+1
returned. Jeremy. (This used to be commit a7561336e770405572c13a4607b0e808225e8916)
2003-10-28Fix for bug #667. DFS filenames can now have arbitrary case.Jeremy Allison1-1/+1
Jeremy. (This used to be commit cbefb5c4f983ca49fcc563111d8704d3770daf81)
2003-10-27Missing UNIX -> DOS codepage conversion. Fix from Alexander Bokovoy ↵Jeremy Allison1-5/+5
<a.bokovoy@sam-solutions.net>. Jeremy. (This used to be commit f714998b44c6a1082943a399ce3b0ce316efc3a0)
2003-10-22Put strcasecmp/strncasecmp on the banned list (except for needed callsJeremy Allison2-2/+2
in iconv.c and nsswitch/). Using them means you're not thinking about multibyte at all and I really want to discourage that. Jeremy. (This used to be commit 5c050a735f86927c7ef2a98b6f3a56abe39e4674)
2003-10-21Fix for bug #64, Win9x Nexus tools not working against Samba3.0. MissingJeremy Allison1-1/+9
map in errormap for ERROR_MORE_DATA -> ERRDOS, ERRmoredata. Jeremy. (This used to be commit 8458f4c52f32ef192287ddb8371638f42a370c6f)
2003-10-21Patch from Stefan Metzmacher <metze@metzemix.de> to fix signing problemsJeremy Allison1-1/+1
when reverse connecting back to a client for printer notify. Jeremy. (This used to be commit 7fde193efeb856ec325d5d563f1e710c45dc65d7)
2003-10-21Add server side support for epmapper pipe. Currently only does a fixedJim McDonough1-0/+1
mapping, but this is the base for changes to come. (This used to be commit 73882e970a3aea1c3c9f34779b4220bbf28f6dad)
2003-10-21Fix signing miss-sequence noticed by Stefan Metzmacher <metze@metzemix.de>Jeremy Allison3-3/+3
Jeremy. (This used to be commit 419834edee09567c8523ad3afba674a12504282d)
2003-10-20more 2.2.x compatibility fixes - allow user looksup in the kerb5Gerald Carter1-13/+10
sesssetup to fall back to 'user' instaed of failing is REA.LM\user doesn't exist. also fix include line in smb_acls.h as requested by metze (This used to be commit 5ccf6baad7ffb1f992aaf24b41ef5c83362cf613)
2003-10-17Typo broke win9x logins.Jeremy Allison1-1/+1
Jeremy. (This used to be commit a7afbce99830bffb8795e7dc2c80baeeba7dcd0a)
2003-10-16Tidyup wrap checking.Jeremy Allison3-14/+38
Jeremy. (This used to be commit 707554bcce91f33d0931f9d99050aab50765f5ff)
2003-10-16Fix buggy data_len calculation in echo. Add paranoia debug message.Jeremy Allison1-1/+5
Jeremy. (This used to be commit 8fb05cfa3afd9777c161271c4c3cec0d6d5150f2)
2003-10-16Ensure error code path doesn't free unmalloced memory. Bug #628.Jeremy Allison1-0/+4
Jeremy. (This used to be commit ef183bf00f5bad9f9c898067b48ebe052beddc82)
2003-10-14Enclose usage of st_blksize and st_blocks struct stat members inTim Potter1-0/+2
#ifdef HAVE_STAT_ST_BLKSIZE and #ifdef HAVE_STAT_ST_BLOCKS, respectively. Fixes bug 550 reported by Joachim Schmitz <schmitz@hp.com>. (This used to be commit 3d777f5389ed6b4ab8c42eb110d41f7df309bead)
2003-10-10Ensure cancelling a blocking lock returns the correct error message.Jeremy Allison1-1/+1
Testing with Samba4 RAW-MUX code. Jeremy. (This used to be commit 5e6080597fcf225ac9526a4ca973d962a13dd4a8)
2003-10-10Make us pass Samba4 lock tester (with one different error message).Jeremy Allison1-0/+3
Jeremy. (This used to be commit 1c19739aeada047eeb6bc7dbec161b5d783a3576)
2003-10-09Match W2K insanty w.r.t. writelock and writeclose. Samba4 torture tester.Jeremy Allison1-9/+20
Jeremy. (This used to be commit 1c1c4ee8be9473d9d0ea676f7da2a1d359aaa7ee)
2003-10-09At least give a message if we're returning a short read for W2K compatibility.Jeremy Allison1-2/+12
Jeremy. (This used to be commit 9216948062123da1c064b9167743a0a9f12d8c98)
2003-10-09Changes to allow Samba3 to pass the Samba4 RAW-READ tests.Jeremy Allison2-14/+47
Jeremy. (This used to be commit e4df46732021be4eeb5693ebe7ec0df77f4bb5df)
2003-10-08Fixup error code returns from Samba4 tester. Ensure invalid paths areJeremy Allison2-39/+169
validated the same way. Jeremy. (This used to be commit 960e2b4a5f09d3ef80a926894ee7a28549b8de45)
2003-10-07Version of patch from nick@isilon.com (Nicholas Kirsch) for bug #564.Jeremy Allison1-6/+23
Canonicalise SMB_INFO_ALLOCATION in the same was as SMB_FS_FULL_SIZE_INFORMATION. Jeremy. (This used to be commit 76fe5ffb4d757922651e41c3fa7e8bc411214cc7)
2003-10-06Fix for bug #562 (incorrect mode sum) by h-yamasaki@pd.jp.nec.com.Jeremy Allison1-3/+3
Jeremy. (This used to be commit e2f4c3d113fb77b68858c67deff6b92deb311e16)
2003-10-03cleaning out patch list; patch from Steve L. to change the cwd before the ↵Gerald Carter1-3/+3
postexec script (This used to be commit bbc403ec6ee119f1bbb636deb40563dfdf258a74)
2003-10-02Correct fix for excel read-only bug. Add panic for logic error in developer ↵Jeremy Allison2-6/+7
mode. Jeremy. (This used to be commit 0857932c1c1960fd68a10f3d1f8c300b7a28b6d7)
2003-10-02Fix for not opening Excel 2000 files that are read-only. Needs tidyingJeremy Allison1-3/+4
up but works for now. Jeremy. (This used to be commit d9b9113a0815aeeddb8fdcccb64e7692fe02a9c2)
2003-09-29Take care of condition where DOS and NT error codes must differ. Found byJeremy Allison1-1/+1
DOS program test by Amir Hardon <hardon@actcom.co.il>. Jeremy. (This used to be commit 294f376aa908a9c56b73b9bfe48d56012a8f557b)
2003-09-29Merge from 3.0:Tim Potter1-6/+13
>Ensure %S gets expanded in read/write lists. >Jeremy. (This used to be commit 424acd6ee92c46c565886c3305c3492737538d3d)
2003-09-29Merge from 3.0:Tim Potter1-3/+7
>Fix for valid users = %S in homes share. >Jeremy. (This used to be commit 799da7092c5b56914512f843789adbedec5ac8f5)
2003-09-24* sync more files from 3.0Gerald Carter1-1/+3
* set version string to "CVS 3.1.0alpha1" (This used to be commit c6a61ffcbd0c95afd94bd33fd832b24bc8209de5)
2003-09-17Fix coredump from Samba4 torture suite.Jeremy Allison2-0/+5
Jeremy. (This used to be commit 640bc276ba3d1ab83cd8994bddd64fd745f75101)
2003-09-16Merge from 3.0:Tim Potter1-1/+1
>Fix OOPS when dealing with mangled names reported by several users. >This was my bug when removing a redundant strlen. >Jerry - last showstopper I knew about. >Jeremy. (This used to be commit 3266777acb911f84e70f42f17cd9f6bbd3ba35d0)
2003-09-15Ensure HEAD is also up to date.Jeremy Allison1-2/+2
Fix OOPS when dealing with mangled names reported by several users. This was my bug when removing a redundant strlen. Jeremy. (This used to be commit 3b3e19f66f783016ca3bc2d9e76328732ed4a84b)
2003-09-11Merge from samba-3.0:Tim Potter1-10/+7
>Fix for bug #273 - smbd crash on machine account change. >Someone only half changed the code to use dc_name >instead of remote machine... Found via back trace from Dariush Forouher ><dariush@forouher.de>. >Jeremy. (This used to be commit 1956478ddece5899ebdf627969136603e1c21637)
2003-09-09sync 3.0 into HEAD for the last timeGerald Carter25-825/+914
(This used to be commit c17a7dc9a190156a069da3e861c18fd3f81224ad)
2003-08-02port latest changes from SAMBA_3_0 treeSimo Sorce21-736/+897
(This used to be commit 3101c236b8241dc0183995ffceed551876427de4)
2003-07-17fix the build. Ifdef out some codeGerald Carter1-532/+0
(This used to be commit e66541d0e1befec5d589890994454dd639ea0665)
2003-07-16ading new files from 3.0Gerald Carter2-0/+425
(This used to be commit 99feae7b5b1c229a925367b87c0c0f636d9a2d75)
2003-07-16trying to get HEAD building again. If you want the codeGerald Carter32-1344/+2952
prior to this merge, checkout HEAD_PRE_3_0_0_BETA_3_MERGE (This used to be commit adb98e7b7cd0f025b52c570e4034eebf4047b1ad)
2003-05-28Fix bug brought up by Ken Cross that empty ACE's cause existing ACE's toJeremy Allison1-51/+14
be applied to new ACE set calls. This is incorrect. Don't think this has a bugzilla id. Jeremy. (This used to be commit 6a4502b03b95703dead4775874ff9ac08ed1a489)
generated by cgit (git 2.34.1) at 2024-12-21 14:20:17 +0000