summaryrefslogtreecommitdiff
path: root/source3/utils
AgeCommit message (Collapse)AuthorFilesLines
2003-05-20Fix bug #96: Use DNS decompression to properly parse cldap netlogonJim McDonough1-110/+132
packets, otherwise repeated components will not decode correctly. Thanks to aliguori@us.ibm.com for the fix, and lukeh@padl.com for pointing us to the right docs. (This used to be commit a8d5d74cf80c6cae3eac1daa3f88d56373789560)
2003-05-15Patch from "Alex Deiter" <tiamat@komi.mts.ru> to fix incorrect error check.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 43ca4b8a8425b97a6bea08b91420bac6cde807b3)
2003-05-12Fix obvious compiler warnings.Jeremy Allison2-2/+1
Jeremy. (This used to be commit 2a6d0c2481c3c34351e57c30a85004babdbf99b0)
2003-05-12And finally IDMAP in 3_0Simo Sorce2-37/+27
We really need idmap_ldap to have a good solution with ldapsam, porting it from the prvious code is beeing made, the code is really simple to do so I am confident it is not a problem to commit this code in. Not committing it would have been worst. I really would have been able to finish also the group code, maybe we can put it into a followin release after 3.0.0 even if it may be an upgrade problem. The code has been tested and seem to work right, more testing is needed for corner cases. Currently winbind pdc (working only for users and not for groups) is disabled as I was not able to make a complete group code replacement that works somewhat in a week (I have a complete patch, but there are bugs) Simo. (This used to be commit 0e58085978f984436815114a2ec347cf7899a89d)
2003-05-12Re-enable secure channel for net rpc vampire.Tim Potter1-8/+13
Jump out of sam entry processing loop if the return value from cli_netlogon_sam_sync() isn't OK or STATUS_MORE_ENTRIES. (This used to be commit 47d8ee3679292ece5d86df11bc56c9b4d71f3d11)
2003-05-12Fix up a bit of my sloppy C.Andrew Bartlett1-3/+2
(This used to be commit f67cc24acf37a9f46427c993574ecf261d7aec1a)
2003-05-12Give up on the idea of avoiding lp_load() in ntlm_auth....Andrew Bartlett1-8/+18
Also, we might be given a 0 length challenge, so don't smb_panic() for smb_xmalloc() of zero size. Andrew Bartlett (This used to be commit 4842de04cf2e1528e726dfad070dfe3a82f46fa2)
2003-05-12Make it possible to actually use --user-SID and --group-SID on a standard ↵Andrew Bartlett1-2/+2
command line. Andrew Bartlett (This used to be commit dd14da756640ba36834a05b9da4759a809c0bb37)
2003-05-11Fix compile.Andrew Bartlett1-1/+1
(This used to be commit ca2e453c7838b6d0ed2d0a45124d162073bbbf99)
2003-05-11Set the password for a newly created trustdom account. Tested againstVolker Lendecke1-3/+34
PDCs running NT4SP1, NT4SP6 and Samba 3.0. Volker (This used to be commit 2143446043b2c29027cf69554caddf41274df709)
2003-05-10Reverse previous patch from Stefan and me after comments by Andrew BartlettJelmer Vernooij15-34/+0
(This used to be commit d817eaf0ecca2d878ab1ffcf7a747a02d71c811e)
2003-05-10Patch from metze and me that adds dummy smb_register_*() functions soJelmer Vernooij15-0/+34
that is now possible to, for example, load a module which contains an auth method into a binary without the auth/ subsystem built in. (This used to be commit 74d9ecfe2dd7364643d32acb62ade957bd71cd0d)
2003-05-09Finally get NTLMv2 working on the client!Andrew Bartlett1-84/+29
With big thanks to tpot for the ethereal disector, and for the base code behind this, we now fully support NTLMv2 as a client. In particular, we support it with direct domain logons (tested with ntlm_auth --diagnostics), with 'old style' session setups, and with NTLMSSP. In fact, for NTLMSSP we recycle one of the parts of the server's reply directly... (we might need to parse for unicode issues later). In particular, a Win2k domain controller now supplies us with a session key for this password, which means that doman joins, and non-spnego SMB signing are now supported with NTLMv2! Andrew Bartlett (This used to be commit 9f6a26769d345d319ec167cd0e82a45e1207ed81)
2003-05-09Fix bug #4 for net rap. Allow more than 50 chars for long form listings of ↵Jim McDonough1-2/+2
users and groups. (This used to be commit dcc6d9e76c737400aaffdd4f261fd0f191aaeea8)
2003-05-09Sync up to head ...Richard Sharpe1-34/+100
(This used to be commit 045210e129e6e0aef8f847e7ed8714d0d9974e7f)
2003-05-09Sync to the changes in head ...Richard Sharpe1-1/+1
(This used to be commit 7f76eac5a0f93107d990b0fde651838c38970092)
2003-05-09Added some more diagnostic tests to check out a theory that having either hashTim Potter1-12/+174
- auth with ntlmv2 and lmv2 but deliberately break the ntlmv2 hash - auth with ntlmv2 and lmv2 but deliberately break the lmv2 hash - auth with ntlm and lm but deliberately break the ntlm hash - auth with ntlm and lm but deliberately break the lm hash My theory is that the NTLM or NTLMv2 field must be correct and if it is, it doesn't matter what the value of the LM or LMv2 field is. Fixed cosmetic test name display bug. (This used to be commit 5dcde9451bd0d6a7462b77cf5ed137bfd691adaa)
2003-05-09Fix up a bunch of problems in editreg.cRichard Sharpe1-16/+16
Now the build farm will no doubt find more. (This used to be commit e91e648c9b0841fbffbc8f39e71abade0996a1e7)
2003-05-08This puts real netlogon connection caching to winbind. This becomesVolker Lendecke1-1/+7
important once we start doing schannel, as there would be a lot more roundtrips for the second PIPE open and bind. With this patch logging in to a member server is a matter of two (three if you count the ack...) packets between us and the DC. Volker (This used to be commit 5b3cb7725a974629d0bd8b707bc2940c36b8745e)
2003-05-07Fix the spinning bug for 'net rpc user' as well - there are more errors inAndrew Bartlett1-4/+4
this world than 'status more entires'... Also move all the cases to 'NT_STATUS_EQUAL()' to test it. Andrew Bartlett (This used to be commit b4645bf0661dadcd077b21bb6f6452ed8b2eb726)
2003-05-05Fix up some of the warnings that the build farm is finding ...Richard Sharpe1-3/+2
(This used to be commit 29d775fe68be8988e344c35106a80d6ca8236e4d)
2003-05-05Syncronize head editreg.c with 3.0.0 ...Richard Sharpe1-93/+1200
(This used to be commit 8257f537de57a2681e6d9cc2c421435b1d751a60)
2003-05-05We also get back the LM session key on pure 'NTLM' logins.Andrew Bartlett1-1/+16
Andrew Bartlett (This used to be commit 7342c70b4cecfc1f42c46b19360db6c077604be2)
2003-05-05Turn off using lsa_qos in OpenPolicy call. This way we avoid annoyingRafal Szczesniak1-2/+2
debug msg while establishing trust and listing relations of Samba PDC. Rafal (This used to be commit 8681cbae0d142a1f9ac537cb22e611a6f5262b54)
2003-05-05Add some comments.Andrew Bartlett1-0/+34
(This used to be commit 855fab395f97dd232fd9bb78e62ad12b16fe2a24)
2003-05-05Add some more tests to the ntlm_auth diagnositics package.Andrew Bartlett1-9/+373
Our NTLMv2 client code needs work, becouse we don't get the session key for any of the NTLMv2 stuff... Also test some of the more 'odd' auth cases - like putting the NT password into the LM feild. Clean up some static globals into static locals. Andrew Bartlett (This used to be commit 62f0acc99166e9518f59bc5d091b76c35837e65c)
2003-05-05Fix some compiler warnings.Tim Potter1-4/+1
(This used to be commit 52d5ff7bdafabb421e76b6b19d95be22b380ddb4)
2003-05-04Patch from Ken Cross to allow an ADS domain join with a username of the formAndrew Bartlett1-2/+18
user@realm, where realm might not be the realm we are joining. Andrew Bartlett (This used to be commit 00e08efb5cd21bf42be9125d3188efbf9d13b8b7)
2003-05-01Turn down some DEBUG()s and remove some duplicate code spotted by dfenwick.Andrew Bartlett1-39/+17
Andrew Bartlett (This used to be commit 542a8b1817d3930e03e08e16e9711cacceb6df61)
2003-04-30Merge from HEAD - the usual popt-needs-static for Sun CC.Andrew Bartlett1-1/+1
(This used to be commit 2fabc356769477cc8bdbb23ecd8fee1e7d9fdb7d)
2003-04-30Fix for AIX - you can't qualify a return type as const, when it's not aAndrew Bartlett1-1/+1
pointer. (merge from HEAD). Andrew Bartlett (This used to be commit 9e3d0cd9dea1234d6e6a26d03995b5edfaed5186)
2003-04-30Sun CC requires constant initialisers, so use a static here.Andrew Bartlett1-1/+1
(a common bug with popt stuff, becouse it's fine with GCC). (This used to be commit edbab685d181887f8cb055cc9dc175b2772bd0ff)
2003-04-29smbgroupedit has been replaced by 'net groupmap'Gerald Carter1-405/+0
remove related file. Left in EHAD for reference (for now) (This used to be commit 2e7537d8e29171bfddac984911c55cf567886956)
2003-04-29Like net rpc user -l, let net ads user -l allow more than 50 characters inJim McDonough1-1/+1
comments. (This used to be commit b5b1732b1144c9bcf5c3b08f6f9da9ad8875f5f7)
2003-04-29Allow net rpc user -l to list longer than 50 characters in a user comment.Jim McDonough1-1/+1
Net.exe on windows won't allow more than 50 characters to be entered, but through AD you can have much more than this. (This used to be commit ca2886c9385361ea401e3e0b47c26cb39adcadbc)
2003-04-29adding ifdef'd code to add alias membership for vampireGerald Carter1-0/+138
(This used to be commit 2557b94519fbb3110948a3c6a3f412622757d2b0)
2003-04-29Use a common function to create the SAM_ACCOUNT being used to add accountsAndrew Bartlett1-12/+4
to the system. This means that we always run Get_Pwnam(), and can never add FOO when foo exists on the system (the idea is to instead add foo into the passdb, using it's full name, RID etc). Andrew Bartlett (This used to be commit bb79b127e02cefae13c822fd0fd165f1f214b740)
2003-04-28Fix compiler warning.Tim Potter1-1/+1
(This used to be commit f127f964250c86986996afab905b40cff420bfd5)
2003-04-28Merge of const fixes from HEAD.Tim Potter3-3/+3
(This used to be commit a847ebd82732cc2b430c58c3b287a46db0e35ba1)
2003-04-26back port from HEADSimo Sorce1-5/+74
(This used to be commit f7cfdf20b7b3b7743c0c3af4ff62fdde00e45fdc)
2003-04-25Merge of missed another while condition when enumerating aliases.Tim Potter1-1/+1
(This used to be commit ee78196bcfe52dfdda0b7fd44a6701e2cf5f7d5a)
2003-04-25fix and if () that should be an 'else if()'Gerald Carter1-1/+1
(This used to be commit 82f024723c5312fe2b6a57915de8e78c96f80ef0)
2003-04-25Merge:Tim Potter1-2/+2
>When calling cli_samr_enum_{dom,als}_groups in a while loop, the >terminating condition should be result != STATUS_MORE_ENTRIES, not >result == NT_STATUS_OK otherwise we get stuck in an infinite loop >when there's any sign of trouble. (This used to be commit 4998a72cf8e3a2b254dc409a36b9bbd118bdc4fd)
2003-04-24groupmap delet should take a name or a SIDGerald Carter1-2/+13
(This used to be commit d9277bd06401cb040390739ae730c8991736c886)
2003-04-23More fun with Sun CC needing constant initializersAndrew Bartlett1-1/+1
(This used to be commit ce3dd8fd69231798185e3e3bb988775e5671e070)
2003-04-23Fix up non-constant initialisers for Sun's CC.Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit 82ba1b4d16da587c5e21739b11c5d84a575534ad)
2003-04-23This const isn't quite vaild C.Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit de96c1aaca9006696d61aa3d07151c0f74516e63)
2003-04-23allow the unix group in a mapping to be changed; doesn't work with LDAP ↵Gerald Carter1-1/+21
right now but should be ok with tdb's (This used to be commit fdacad185c4f78958d56bccbd69a0f2628f1b792)
2003-04-22don't reset the group type unless specifiedGerald Carter1-14/+8
(This used to be commit 541f40a144461ca139ac53837d3f31ce6972d18c)
2003-04-22default new groups to domain groupsGerald Carter1-3/+3
(This used to be commit 665d21b8656bf85f9b372b44ff1f4af414551e5a)