summaryrefslogtreecommitdiff
path: root/source3/utils
AgeCommit message (Collapse)AuthorFilesLines
2003-03-23Implement abartlet's suggestion to add attribs to ldap if theyVolker Lendecke1-6/+0
are 'SET' when adding the account. I really don't like passing flags down to inner routines and complicated if/else conditions, but this time he might be right. ;-) Volker (This used to be commit 80d2578108da14f60133df3a308b867beb27e920)
2003-03-23Convert to popt.Jelmer Vernooij1-42/+29
(This used to be commit 691c63ad6b522ae7984017ebadffb5c7c13f6992)
2003-03-23NTLM Authentication:Andrew Bartlett1-82/+82
- Add a 'privileged' mode to Winbindd. This is achieved by means of a directory under lockdir, that the admin can change the group access for. - This mode is now required to access with 'CRAP' authentication feature. - This *will* break the current SQUID helper, so I've fixed up our ntlm_auth replacement: - Update our NTLMSSP code to cope with 'datagram' mode, where we don't get a challenge. - Use this to make our ntlm_auth utility suitable for use in current Squid 2.5 servers. - Tested - works for Win2k clients, but not Win9X at present. NTLMSSP updates are needed. - Now uses fgets(), not x_fgets() to cope with Squid environment (I think somthing to do with non-blocking stdin). - Add much more robust connection code to wb_common.c - it will not connect to a server of a different protocol version, and it will automatically try and reconnect to the 'privileged' pipe if possible. - This could help with 'privileged' idmap operations etc in future. - Add a generic HEX encode routine to util_str.c, - fix a small line of dodgy C in StrnCpy_fn() - Correctly pull our 'session key' out of the info3 from th the DC. This is used in both the auth code, and in for export over the winbind pipe to ntlm_auth. - Given the user's challenge/response and access to the privileged pipe, allow external access to the 'session key'. To be used for MSCHAPv2 integration. Andrew Bartlett (This used to be commit dcdc75ebd89f504a0f6e3a3bc5b43298858d276b)
2003-03-23Use popt_common for -s, -d and -VJelmer Vernooij2-16/+8
(This used to be commit a1576694a6f23e1c70d7d81ac4feedd4f29c5400)
2003-03-23This does two things:Volker Lendecke1-1/+37
* pdbedit -i -e sets all SAM_ACCOUNT elements to CHANGED to satisfy the new pdb_ldap.c handling * pdbedit -g transfers group mappings. I made this separate from the user database, as current installations have to live with a split backend. So, if you are running 3_0 alphas with LDAP as a backend and upgrade to the next 3_0 alpha, you should call pdbedit -i tdbsam -e ldapsam -g to transfer your group mapping database to LDAP. You certainly have to have all your groups as posixGroup objects in LDAP and adapt the LDAP schema before this call. Volker (This used to be commit 6d3faeaef6c77e389d39b6d4660ffea13e7f25f2)
2003-03-23Patch from waider to update our samsync (net rpc vampire) code:Andrew Bartlett1-35/+155
- Decode all the database names, even if we don't decode their contents - Update the 'set' code to match rpc_server/srv_samr_nt.c in only recording the difference between the old and new. Andrew Bartlett (This used to be commit 6509397f91a4c218552a48a96df06e595b630898)
2003-03-23We don't need optarg when we have poptJelmer Vernooij2-4/+2
(This used to be commit b46581ef153296a0a04f773115cb2ddad4d44686)
2003-03-23Convert to popt.Jelmer Vernooij1-134/+88
(This used to be commit 5f12b246b03aef93165059f632012b6fc4706c70)
2003-03-23Fix typo in commentJelmer Vernooij1-2/+2
(This used to be commit e7ed8bfc24d94b0b6e70a03eaae927fe1daa7d56)
2003-03-23Convert to popt.Jelmer Vernooij1-54/+56
(This used to be commit 633b3eb7812dc0a58785536a1e7d28329d488b43)
2003-03-23Move -V to -C to prevent conflict with -V for versionJelmer Vernooij1-1/+2
(This used to be commit 99de90adc98b8d5354c769dcd25cc1f34d3769e9)
2003-03-22Convert to poptJelmer Vernooij1-98/+23
(This used to be commit 8f285878b30bad7388f69075538c628a7e18ac8a)
2003-03-20Fix setOtherHelp() - pointed out by metzeJelmer Vernooij1-1/+1
(This used to be commit 05b1681b03688c0d4e57e8dfb881b111f947e6c6)
2003-03-20Fix compile errors - don't use pstrcpy() on a fstringJelmer Vernooij1-7/+8
(This used to be commit 3bad73ca870bb43324bdb5dfc6bb02e0fa1fb1e0)
2003-03-20Use True, not TRUE and False, not FALSEJelmer Vernooij1-4/+4
(This used to be commit 44e9bf88cc2bbb2aa34711354258c3abb319cb9b)
2003-03-20Convert smbcacls to poptJelmer Vernooij1-84/+50
(This used to be commit 45e5374e89730e7ad497edf9e344fbd1b8992589)
2003-03-16Changes to help the kerberos change password code work on systems thatAndrew Bartlett1-0/+9
have some of the labels 'duplicated' (ie, the defines double-up). Also, to an ads_connect() to try and find our KDC. (So we don't segfualt *every* time) Andrew Bartlett (This used to be commit 56dce7ddad118051c93c62507234efca3920bc9b)
2003-03-15Minor fixes.Andrew Bartlett1-1/+1
- signed/unsigned - quieten warning about assignment as truth value - whitespace Andrew Bartlett (This used to be commit a13ce0df4b4a776fa635a1fb804dd00d195f58d0)
2003-03-15Fix signed/unsigned issues - mostly 'i' counters.Andrew Bartlett1-4/+4
Fix an inconpatible poitner type that caused the IA64 not to build Andrew Bartlett (This used to be commit 37436b0aae108fceace3049d3868510e1ba592ac)
2003-03-15Fix off-by-one bug in safe_strcpy size paramater.Andrew Bartlett1-1/+1
(This used to be commit 9af30c9aae3623c4db1edca39a91973f0279acb4)
2003-03-15Truncate the machinename manually, so as not to generate level 0 debugs forAndrew Bartlett1-10/+12
an expected situation. Andrew Bartlett (This used to be commit a07fccb7ae169c0b5089e3f7d2c5d6465b2e4686)
2003-03-12Patch from Ken Cross <kcross@nssolutions.com> to take a username in the formAndrew Bartlett1-0/+11
of user@realm for kerberos logins. Andrew Bartlett (This used to be commit ce013dc13e9e77b5cb9b2d5a4b76d54f91614e6c)
2003-03-08Testparm needs the extra arg to set_local_machine_name() too.Andrew Bartlett1-1/+1
(This used to be commit 30ba31e6355b5dfb902e42d2b5edc71630db2923)
2003-03-06More safe_strcpy() off-by-one bug fixes. (mostly moves to pstrcpy()/fstrcpy())Andrew Bartlett2-3/+3
Andrew Bartlett (This used to be commit 42b5514404bc7e33306c11344c6c934a1f83d295)
2003-03-03Try the PASSWD environment variable if we don't have one from the command line.Andrew Bartlett1-0/+4
(This used to be commit 14d7d8b22993ca7f1c273a7baaccb09c8fa04ef9)
2003-02-28- added help on -P optionAndrew Tridgell1-0/+2
- added general options to 'net -h' help (This used to be commit ee8a7fdab7f5aa6f4a64f2eea90f0d44ae0f388a)
2003-02-28cleanup some compiler warningsJim McDonough1-3/+3
(This used to be commit 87cebe797f06fab4a5d0077fd78b2183ff7333a5)
2003-02-28Improve net ads lookup:Jim McDonough1-61/+142
- More info is printed - (grand)child domains handled properly Thanks to Anthony Liguori (aliguori@us.ibm.com) (This used to be commit 3dbcb4d93f7c192eb2ccea5941a3843b5de1190e)
2003-02-27- Rename 'modules = ' to 'preload modules = 'Jelmer Vernooij2-2/+7
- Add smb_probe_module() - Add init_modules() - Call these functions (This used to be commit f8f21653225792c0001d183c6efe8b7d89a0785d)
2003-02-25Fix compiler warning.Tim Potter1-1/+1
(This used to be commit 0308f24ad209a28799b36d041be2dc2be2b2dac8)
2003-02-25For some reason some attributes in ADS do not appear (and are not available)Andrew Bartlett1-1/+63
in general searches, but only if searching for the DN only. In my case, it was the tokenGroups attribute that caused me trouble, hence this patch. Andrew Bartlett (This used to be commit 8a0cc4c2beb5d6ad7e44bf47bf0f9ec4a3ffdb96)
2003-02-24Whenever we have a password, use the in-memory ccache. This fixes a bug whereAndrew Bartlett1-2/+3
we were overwriting the user's ccache with the machine password (the -P option). Andrew Bartlett (This used to be commit 231d2f84ef36b30be98baf3b56ebf4a5cd8dad11)
2003-02-22Add staticAndrew Bartlett1-7/+7
(This used to be commit d0365f20c242bcfc4f5d8286c6c5654e310a9d45)
2003-02-22With assuptions about unixsam gone, we can forget about looking upAndrew Bartlett1-4/+1
the user a second time now. Andrew Bartlett (This used to be commit a1e27a02f52315df0dd05ab8a94ae5a2bf398655)
2003-02-21Fixed another compiler warning.Tim Potter1-1/+1
(This used to be commit d15b7425d408f17505c4f3a91ec68bcfc4472c16)
2003-02-20Added Volkers "print server role" patch.Jeremy Allison1-0/+22
Jeremy. (This used to be commit e81d72ac221023ded9e0932be7dd303ad5280665)
2003-02-18Add -V option (to print out version) to utilities where possibleJelmer Vernooij3-0/+3
(pdbedit already has a -V option..) (This used to be commit 5de622968d95c1436dbd34edc8d0a9bbff68916b)
2003-02-16Add the 'session key' output of the NTLMSSP exchange to the cli struct, soAndrew Bartlett1-7/+1
it can be used for 'net rpc join'. Also fix a bug in our server-side NTLMSSP code - a client without any domain trust links to us may calculate the NTLMv2 response with "" as the domain. Andrew Bartlett (This used to be commit ddaa42423bc952e59b95362f5f5aa7cca10d1ad4)
2003-02-16Recover much of my changes to editreg.c. Add some const and start codingRichard Sharpe1-8/+203
the regedit file parser etc. (This used to be commit 5040b498675b91cd18bc7fe4456c94df0a8fa41d)
2003-02-15Antti Andreimann <Antti.Andreimann@mail.ee> has done some changes to enableAndrew Bartlett1-2/+14
users w/o full administrative access on computer accounts to join a computer into AD domain. The patch and detailed changelog is available at: http://www.itcollege.ee/~aandreim/samba This is a list of changes in general: 1. When creating machine account do not fail if SD cannot be changed. setting SD is not mandatory and join will work perfectly without it. 2. Implement KPASSWD CHANGEPW protocol for changing trust password so machine account does not need to have reset password right for itself. 3. Command line utilities no longer interfere with user's existing kerberos ticket cache. 4. Command line utilities can do kerberos authentication even if username is specified (-U). Initial TGT will be requested in this case. I've modified the patch to share the kinit code, rather than copying it, and updated it to current CVS. The other change included in the original patch (local realms) has been left out for now. Andrew Bartlett (This used to be commit ce52f1c2ed4d3ddafe8ae6258c90b90fa434fe43)
2003-02-07Revert Flag testing upon abartlet's request ;-)Volker Lendecke1-3/+5
Volker (This used to be commit e8f751fe84cbd20934116d5213f9bb1850aa9dfa)
2003-02-06Make account flags editable with pdbedit.Volker Lendecke1-4/+22
Volker (This used to be commit 597c50550955c5bdc0c646d5b751d377b40f3485)
2003-02-03Grrr. Kill all BSD-isms... Spotted by Paul Green <paulg@sw.stratus.com>.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 77737b498d0c1c3efb23891465623f44c03d1801)
2003-02-01Always escape ldap filter strings. Escaping code was from pam_ldap, but I'm toAndrew Bartlett1-1/+7
blame for the realloc() stuff. Plus a couple of minor updates to libads. Andrew Bartlett (This used to be commit 34b2e558a4b3cfd753339bb228a9799e27ed8170)
2003-01-30Add 3 second timeout when terminating server and sending print notifyJeremy Allison1-1/+1
messages. Stops build-up of large numbers of smbd's waiting to terminate on large print throughput. Jeremy. (This used to be commit 4ae130bfa82be60de6a6f357f65207fcb24f45fb)
2003-01-30The REQ_DEBUGLEVEL message returns a string not a list of integers.Tim Potter1-4/+1
(This used to be commit 08050a93d9c5b2276c4eaf933974607cf11a1876)
2003-01-29Make the vampire code use just pdb calls - allowing better operation on systemsAndrew Bartlett1-22/+15
that are not configured with an add user script, and have an _nua backend for storage. We really need to get the PDB backends out of the IDMAP game... Andrew Bartlett (This used to be commit dceb7820d71ce624de60ce8f729d5d3711b64152)
2003-01-29Use new interface for cli_samr_query_dispinfo().Tim Potter1-2/+9
(This used to be commit d3962da61a5717dda7e99996bbeb4735d4373041)
2003-01-21Properly display popt errors. Also fix debug to be -d for consistency with ↵Jim McDonough1-2/+3
other progs. (This used to be commit 97133f7168852dc185dbf4492afcaf4b68180f65)
2003-01-21Deleted arguments to help output - they didn't work.Tim Potter1-1/+1
(This used to be commit 8b167a45a6ae041cd35dbf2a25d7a300f86440a2)