summaryrefslogtreecommitdiff
path: root/source3/smbd
AgeCommit message (Collapse)AuthorFilesLines
2004-01-04Commit the translation of the realm to the netbios domain name in the kerberosVolker Lendecke1-3/+41
session setup. After talking to jht and abartlet I made this unconditional, no additional parameter. Jerry: This is a change in behaviour, but I think it is necessary. Volker (This used to be commit 3ce6c9f27368cfb278007fe660a0e44a84d67f8f)
2003-12-23Fix for special files being hidden from admins by Dmitry Butskoj ↵Jeremy Allison1-1/+1
<buc@odusz.elektra.ru> Jeremy. (This used to be commit bee4b3348e5052cc927c837c2a21b4c90db980fc)
2003-12-12Fix for bug #815. Make plaintext unicode passwords work with NT4.xJeremy Allison1-5/+11
Jeremy. (This used to be commit ba0b5b8c9be9bfeba5e0b3f930ca0463d1e78c9c)
2003-12-11Patch from James Peach <jpeach@sgi.com>. Remove the MAX_CONNECTIONS limitJeremy Allison1-9/+32
by increasing bitmap size. Limited by "max connections" parameter. Bug #716. Jeremy. (This used to be commit fbbeb55b230ffc477f5563af66ab65eb6598e025)
2003-12-05fix %a variable for Windows 2003 -> Win2K3Gerald Carter1-9/+39
(This used to be commit 2f43a1c166dfc8679a9d03bd0f3cf9303aafcf74)
2003-12-03Fix for "hash" (not hash2) type mangling. Noticed by "Forrest W. Christian" ↵Jeremy Allison1-8/+10
<fwc@mt.net> Jeremy. (This used to be commit 3a8fe3b2ef30cbe0cf441d6c4ffa9c309dc71e54)
2003-12-01Ensure the server can cope with multiple secondary transJeremy Allison3-0/+24
requests when signing is turned on. Jeremy. (This used to be commit 206464a748a59b1d485d4d3d0cb4d257d60fbd00)
2003-12-01Subtract NT_STATUS from common flag, don't add it...Jeremy Allison2-7/+7
Jeremy. (This used to be commit 4e73faa7b4af7f73bdce9fcc2ee1825249dc7da7)
2003-12-01Don't automatically set nt status code flag unless client tells us it canJeremy Allison2-14/+29
cope. Jeremy. (This used to be commit 0d82ac57a59276adb403f8e023578c2d6d5136e4)
2003-11-25Patch from Jim McDonough for bug #802. Retrieve the correct ACL group bitsJeremy Allison2-0/+45
if the file has an ACL. Jeremy. (This used to be commit 7bf5ed30ce74ba658ca35059955748c1d8cbd6d2)
2003-11-24Added "passwd chat timeout" parameter. Docs to follow.Jeremy Allison1-3/+6
Jeremy. (This used to be commit 16097f2072085432f4c669d9e008023f36f7afbb)
2003-11-24more access fixes for group enumeration in LDAP; bug 281Gerald Carter1-2/+7
(This used to be commit 68283407e0f366d8315f4be6caed67eb6fe84b85)
2003-11-22Changes all over the shop, but all towards:Andrew Bartlett2-15/+40
- NTLM2 support in the server - KEY_EXCH support in the server - variable length session keys. In detail: - NTLM2 is an extension of NTLMv1, that is compatible with existing domain controllers (unlike NTLMv2, which requires a DC upgrade). * This is known as 'NTLMv2 session security' * (This is not yet implemented on the RPC pipes however, so there may well still be issues for PDC setups, particuarly around password changes. We do not fully understand the sign/seal implications of NTLM2 on RPC pipes.) This requires modifications to our authentication subsystem, as we must handle the 'challege' input into the challenge-response algorithm being changed. This also needs to be turned off for 'security=server', which does not support this. - KEY_EXCH is another 'security' mechanism, whereby the session key actually used by the server is sent by the client, rather than being the shared-secret directly or indirectly. - As both these methods change the session key, the auth subsystem needed to be changed, to 'override' session keys provided by the backend. - There has also been a major overhaul of the NTLMSSP subsystem, to merge the 'client' and 'server' functions, so they both operate on a single structure. This should help the SPNEGO implementation. - The 'names blob' in NTLMSSP is always in unicode - never in ascii. Don't make an ascii version ever. - The other big change is to allow variable length session keys. We have always assumed that session keys are 16 bytes long - and padded to this length if shorter. However, Kerberos session keys are 8 bytes long, when the krb5 login uses DES. * This fix allows SMB signging on machines not yet running MIT KRB5 1.3.1. * - Add better DEBUG() messages to ntlm_auth, warning administrators of misconfigurations that prevent access to the privileged pipe. This should help reduce some of the 'it just doesn't work' issues. - Fix data_blob_talloc() to behave the same way data_blob() does when passed a NULL data pointer. (just allocate) REMEMBER to make clean after this commit - I have changed plenty of data structures... (This used to be commit f3bbc87b0dac63426cda6fac7a295d3aad810ecc)
2003-11-21Fix for rename across filesystems. Noticed by Rainer Link ↵Jeremy Allison1-5/+95
<link@foo.fh-furtwangen.de>. Jeremy. (This used to be commit 598d9d3e5f612133e0528a1a8907745d715b61ed)
2003-11-19Group quotas patch from "Heinreichsberger, Helmut" ↵Jeremy Allison1-19/+32
<Helmut.Heinreichsberger@wincor-nixdorf.com> Jeremy. (This used to be commit 06c9e9163010a1035f448f76c4084228dc95334f)
2003-11-18Remove unneeded second open for filename ending in '.' now we know it'sJeremy Allison1-13/+3
a mangled name. Added const. Fix inspired by Andrew Bartlett ideas. Jeremy. (This used to be commit 87eb336d659dfa5e92b495dd76a0f2e534931293)
2003-11-18Ensure we mangle names ending in '.' in hash2 mangling method.Jeremy Allison1-1/+1
Jeremy. (This used to be commit fc2af591f5a2b08caa7389150c8cc5e298bd0ed4)
2003-11-07Simple rename of get_socket_addr to get_peer_addr and get_socket_name toVolker Lendecke1-1/+1
get_peer_name. This is to get closer to the getsockname/getpeername system functions. Next step will be the %i macro for the local IP address. I still want to play %L-games in times of port 445. Volker (This used to be commit d7162122eaf5d897e5de51604e431bfbaa20e905)
2003-11-05Fix debug message warning.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 154793981a1b2aea2703ef4da4764a322bf90ca0)
2003-11-04Fix missing bracket in quota quote - my fault.Tim Potter1-1/+1
(This used to be commit fc30b6b5473124bad9c2c30b604bc21c9de258c1)
2003-11-03Fix more 64-bit printf warnings.Tim Potter5-10/+10
(This used to be commit 23443e3aa079710221557e18158d0ddb8ff48a36)
2003-11-02Printf fixes for 64-bit size_t.Tim Potter1-3/+3
(This used to be commit 8e2c543ebf65e24e73433f69b1c281e1558e9080)
2003-10-30bug 696; check for an invalid fid before dereferencing the fsp pointerGerald Carter1-0/+5
(This used to be commit f5229d5d62510f981bd08ad8139675b50421e042)
2003-10-29Fixes to check for wraps which could cause coredumps.Jeremy Allison1-4/+6
Jeremy. (This used to be commit ad06edd1bb58cc5e2c38a364b1af96a933b770af)
2003-10-29parameterise the listen backlog in smbd and make it larger by default. A ↵Andrew Tridgell1-2/+2
backlog of 5 is way too small these days. (This used to be commit bbb92d2b0ea6bc10c71bed62924bfc95c11172a5)
2003-10-28Don't log at level zero when chdir fails. Ensure correct error message is ↵Jeremy Allison1-1/+1
returned. Jeremy. (This used to be commit 26bfe37a10f7337acb8c5ac0e04fac7a8dddc769)
2003-10-28Fix for bug #667. DFS filenames can now have arbitrary case.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 74148111e16a863d5a33511e5b15632a736d7e99)
2003-10-27Missing UNIX -> DOS codepage conversion. Fix from Alexander Bokovoy ↵Jeremy Allison1-5/+5
<a.bokovoy@sam-solutions.net>. Jeremy. (This used to be commit 8b9b635bd2759642c25fe0cea5eefbbe5af44193)
2003-10-22Put strcasecmp/strncasecmp on the banned list (except for needed callsJeremy Allison2-2/+2
in iconv.c and nsswitch/). Using them means you're not thinking about multibyte at all and I really want to discourage that. Jeremy. (This used to be commit d7e35dfb9283d560d0ed2ab231f36ed92767dace)
2003-10-21Fix for bug #64, Win9x Nexus tools not working against Samba3.0. MissingJeremy Allison1-1/+9
map in errormap for ERROR_MORE_DATA -> ERRDOS, ERRmoredata. Jeremy. (This used to be commit 7eaae388b35cb3d20cdd968b00d65c88fcee5878)
2003-10-21Patch from Stefan Metzmacher <metze@metzemix.de> to fix signing problemsJeremy Allison1-1/+1
when reverse connecting back to a client for printer notify. Jeremy. (This used to be commit 06aa434c3fdb139e3f3143d19413556945cbcd4f)
2003-10-21Fix signing miss-sequence noticed by Stefan Metzmacher <metze@metzemix.de>Jeremy Allison3-3/+3
Jeremy. (This used to be commit 63f331564396e7a4f16dce95bb98d3b6c4b75351)
2003-10-20more 2.2.x compatibility fixes - allow user looksup in the kerb5Gerald Carter1-13/+10
sesssetup to fall back to 'user' instaed of failing is REA.LM\user doesn't exist. also fix include line in smb_acls.h as requested by metze (This used to be commit 62ed2598b3441b3c198872df8eb55e594332807b)
2003-10-17Typo broke win9x logins.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 4e00cad645635af66b62c6a5568264a09cf340f3)
2003-10-16Tidyup wrap checking.Jeremy Allison3-14/+38
Jeremy. (This used to be commit 41d1870a51c259f0cf17caf59928a3b38b21ea11)
2003-10-16Fix buggy data_len calculation in echo. Add paranoia debug message.Jeremy Allison1-1/+5
Jeremy. (This used to be commit 5332af1124077f49e84836f5cedfbde98336b142)
2003-10-16Ensure error code path doesn't free unmalloced memory. Bug #628.Jeremy Allison1-0/+4
Jeremy. (This used to be commit d817716519e1b2a619a46563ca44812a020a769a)
2003-10-14Enclose usage of st_blksize and st_blocks struct stat members inTim Potter1-0/+2
#ifdef HAVE_STAT_ST_BLKSIZE and #ifdef HAVE_STAT_ST_BLOCKS, respectively. Fixes bug 550 reported by Joachim Schmitz <schmitz@hp.com>. (This used to be commit 18adfdbe0c6ed79ba8ac07956b1e7abc226556c3)
2003-10-10Ensure cancelling a blocking lock returns the correct error message.Jeremy Allison1-1/+1
Testing with Samba4 RAW-MUX code. Jeremy. (This used to be commit 533847c95d475921b0421ae113f52c44979939d2)
2003-10-10Make us pass Samba4 lock tester (with one different error message).Jeremy Allison1-0/+3
Jeremy. (This used to be commit 7622a9dbbded8d07f976ec965adca5e92de3d2b0)
2003-10-09Match W2K insanty w.r.t. writelock and writeclose. Samba4 torture tester.Jeremy Allison1-9/+20
Jeremy. (This used to be commit c682fae16a2fa18f951c69ba29b1a576f4e27d6b)
2003-10-09At least give a message if we're returning a short read for W2K compatibility.Jeremy Allison1-2/+12
Jeremy. (This used to be commit 84c993d9cd0bc57a8b8b9aa716af1336620e2c87)
2003-10-09Changes to allow Samba3 to pass the Samba4 RAW-READ tests.Jeremy Allison2-14/+47
Jeremy. (This used to be commit e7565dbba696adbb0fd8cca6b86a1a7e5a655f2e)
2003-10-08Fixup error code returns from Samba4 tester. Ensure invalid paths areJeremy Allison2-39/+169
validated the same way. Jeremy. (This used to be commit 6ad2f0ba27566ab3928ccbbbb3c3a64b09ca139c)
2003-10-07Version of patch from nick@isilon.com (Nicholas Kirsch) for bug #564.Jeremy Allison1-6/+23
Canonicalise SMB_INFO_ALLOCATION in the same was as SMB_FS_FULL_SIZE_INFORMATION. Jeremy. (This used to be commit 166efa30d2d680d8c19529c46ace3db115b43532)
2003-10-06Fix for bug #562 (incorrect mode sum) by h-yamasaki@pd.jp.nec.com.Jeremy Allison1-3/+3
Jeremy. (This used to be commit 7fb8a1bd3880b093a884749fc496cd702480752c)
2003-10-03cleaning out patch list; patch from Steve L. to change the cwd before the ↵Gerald Carter1-3/+3
postexec script (This used to be commit 497e14ba19f4f637e1203d73981ea1c401a19542)
2003-10-02Correct fix for excel read-only bug. Add panic for logic error in developer ↵Jeremy Allison2-6/+7
mode. Jeremy. (This used to be commit f00af98f379463829b1ef62d78dda0365c1d7997)
2003-10-02Fix for not opening Excel 2000 files that are read-only. Needs tidyingJeremy Allison1-3/+4
up but works for now. Jeremy. (This used to be commit 9ad9e0dfafed4558e5ab215991d9912cd44f1127)
2003-09-29Take care of condition where DOS and NT error codes must differ. Found byJeremy Allison1-1/+1
DOS program test by Amir Hardon <hardon@actcom.co.il>. Jeremy. (This used to be commit c11a7e5846002b16d0cb2991b5a7df0636b070d5)