summaryrefslogtreecommitdiff
path: root/source3/utils
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r2348: fix segmention faultsStefan Metzmacher2-8/+11
in smbcquotas and smbcacls caused by setup_logging() (-r 1425) metze (This used to be commit 39f3f76ea2097c10799f0bef8717d3ac71cacaa8)
2007-10-10r2147: Fix utility name in error message (pre-emptivly merged to trunk ;-)Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit 657bb14789bcec65668d072fec0f954d1e5322ef)
2007-10-10r2080: Remove last traces of static migration to localhost. Needed to allow aGünther Deschner4-24/+31
local netbios-alias bound to non-loopback interface as a migration target. It's now possible to migrate printers|shares|files from Server A to Server B while running the net-command on client C. Guenther (This used to be commit 0cfd2866dfe5e959ede169a77c39480790300de3)
2007-10-10r2079: Clear the publish-bit from the attributes-mask when migratingGünther Deschner1-0/+6
printer-settings. publishing-info is not handled yet. Guenther (This used to be commit 1d76adb93c98857ed3460db241847e423c021a99)
2007-10-10r2022: Add net_copy_fileattr as a separate function to copy just ACLs, attrsGünther Deschner1-101/+198
and timestamps. This makes net_copy_file less complex. Guenther (This used to be commit 43af9e67dd7c0328f214def4b591041e9b69614a)
2007-10-10r1966: further work on and cleanup of the net-migration-tool.Günther Deschner5-60/+164
It's now possible to migrate files preserving dos-attributes and correct timestamps. Also added some small docu- and syntax-fixes. Guenther (This used to be commit 0e990582a0416933a8671ca660d22e980f828402)
2007-10-10r1812: Fix from Richard Renard <rrenard@idealx.com> to be able to resetJeremy Allison1-3/+30
a users logon hours restrictions. Jeremy. (This used to be commit 887aa22dc90dd8653a6c9eedf91ce76830d93de6)
2007-10-10r1750: This patch allows net ads lookup to rely on command line arguments if ↵Jim McDonough2-2/+6
contacting an ADS server fails. This allows net ads lookup to work with clapd (very useful for testing). from aliguori@us.ibm.com (This used to be commit edb4e940b45cbb06a93004b15fc45a7a45a42498)
2007-10-10r1720: Show correct help for net groupmap commands.Günther Deschner1-3/+3
Guenther (This used to be commit 3677c6a8f67628d5bea0764f84e624730d57b423)
2007-10-10r1716: Get rid of a compiler warning. "pipe" is a symbol that is defined as ↵Volker Lendecke1-2/+2
a system call, and gcc -Wall complains about a shadowed definition. Volker (This used to be commit 9a2fd67037769b5cbb10edd024f6d98c610bf875)
2007-10-10r1698: fix build.Günther Deschner1-2/+3
guenther (This used to be commit 925e28d0cbd9667bceb0762ef1e429735250c209)
2007-10-10r1692: first commit :)Günther Deschner5-9/+2961
* add IA64 to the architecture table of printer-drivers * add new "net"-subcommands: net rpc printer migrate {drivers|printers|forms|security|settings|all} [printer] net rpc share migrate {shares|files|all} [share] this is the first part of the migration suite. this will will (once feature-complete) allow to do 1:1 server-cloning in the best possible way by making heavy use of samba's rpc_client-functions. all migration-steps are implemented as rpc/smb-client-calls; net communicates via rpc/smb with two servers at the same time (a remote, source server and a destination server that currently defaults to the local smbd). this allows e. g. printer-driver migration including driverfiles, recursive mirroring of file-shares including file-acls, etc. almost any migration step can be called with a migrate-subcommand to provide more flexibility during a migration process (at the cost of quite some redundancy :) ). "net rpc printer migrate settings" is still in a bad condition (many open questions that hopefully can be adressed soon). "net rpc share migrate security" as an isolated call to just migrate share-ACLs will be added later. Before playing with it, make sure to use a test-server. Migration is a serious business and this tool-set can perfectly overwrite your existing file/print-shares. * along with the migration functions had to make I the following changes: - implement setprinter level 3 client-side - implement net_add_share level 502 client-side - allow security descriptor to be set in setprinterdata level 2 serverside guenther (This used to be commit 8f1716a29b7e85baf738bc14df7dabf03762f723)
2007-10-10r1582: On failure, print the length of the right variable.Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit 5bd6abb54e12aee2031d48bc5b240bb4f127bf5a)
2007-10-10r1537: Fix to stop printing accounts from resetting the bas passwordJeremy Allison1-15/+10
and account lockout flags. This is set when an account is updated only from smbd or pdbedit. Bug found by "Dunn, Drew A." <Drew.Dunn@jhuapl.edu>. Jeremy. (This used to be commit bb3a0fa61f5fb74b8fe421260473c07847baeb2b)
2007-10-10r1504: Remove insane use of "user password" on the COMMAND LINE !Jeremy Allison1-25/+6
in smbpasswd. Use -s if you want to script this. Jeremy. (This used to be commit a3589a18b6898e2b51570112c5acb2826ef6ba4a)
2007-10-10r1492: Rework our random number generation system.Andrew Bartlett1-1/+1
On systems with /dev/urandom, this avoids a change to secrets.tdb for every fork(). For other systems, we now only re-seed after a fork, and on startup. No need to do it per-operation. This removes the 'need_reseed' parameter from generate_random_buffer(). Andrew Bartlett (This used to be commit 36741d3cf53a7bd17d361251f2bb50851cdb035f)
2007-10-10r1478: Useful patch from Tom Alsberg <alsbergt@cs.huji.ac.il>, to export a ↵Simo Sorce1-8/+24
single user from a backend. (This used to be commit 083740e74e0790f863c065a20e28f553fdc7d5bd)
2007-10-10r1412: Fix password history list in tdbsam. Fix some memory leaks. AddJeremy Allison1-0/+5
my (C) to a header file that was at least 50% mine :-). Jeremy. (This used to be commit 8ee6060977ec8e65082f3ad09e1e1ccf5b4672ed)
2007-10-10r1399: applying heimdal krb5 fixes from Guenther and fixing compile warnings ↵Gerald Carter1-5/+5
in libadskerberos_keyatb.c (This used to be commit 837f56ec8bc171497fb84d332002776313c26305)
2007-10-10r1240: Ensure we don't shadow Heimdal globals.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 464d2e90480c676688a851a141aabddf992e0b0e)
2007-10-10r1222: Valgrind memory leak fixes. Still tracking down a strange one...Jeremy Allison1-41/+123
Can't fix the krb5 memory leaks inside that library :-(. Jeremy. (This used to be commit ad440213aaae58fb5bff6e8a6fcf811c5ba83669)
2007-10-10r1221: Added the last of the system keytab patch from "Dan Perry" ↵Jeremy Allison1-93/+194
<dperry@pppl.gov>, fixed valgrind detected mem corruption in libads/kerberos_keytab.c. Jeremy. (This used to be commit 286f4c809cb1532b3f8ae7ddf92349c68cc8ce31)
2007-10-10r1128: The end-of-file is not the end of the world, so don't make a load ↵Andrew Bartlett1-3/+7
DEBUG() about it. Andrew Bartlett (This used to be commit 4da976dbd07e70726055cc4251fd1c26f63b3b2c)
2007-10-10r1126: Allow more flexible GSS-SPENGO client and server operation. TheAndrew Bartlett1-16/+18
client now falls back to NTLMSSP, and the server allows the client to start, without first asking for a mech list. Andrew Bartlett (This used to be commit feccc3daca7b2e9091b81fbbb93dc7284baedb99)
2007-10-10r1124: ntlm_auth memory leak fixes by James Wilkinson - ↵Andrew Bartlett1-0/+4
jwilk@alumni.cse.ucsc.edu Andrew Bartlett (This used to be commit 94c0827ce20d8d1084703f6f5e4ad3b3c33151f8)
2007-10-10r1103: need to leave empty dacl so we can remove last ACEHerb Lewis1-5/+0
(This used to be commit d8a545368c8111fddcfdd423c4d6fcbab65e96d6)
2007-10-10r977: Implement 'net rpc group rename' -- rename domain groups.Volker Lendecke1-0/+78
Volker (This used to be commit 9ceff803278bdbc09cb5ab678a108cea24ab49a9)
2007-10-10r964: The max_size field in cli_samr_enum_als_groups is more like an ↵Volker Lendecke1-1/+7
account_control field with indiviual bits what to retrieve. Set this to 0xffff as NT4 usrmgr.exe does to get everything. I'm too lazy (sorry) to get this through to rpc_parse/ etc. Volker (This used to be commit d7239c2611a62873cc9eff296c84e91198a5c552)
2007-10-10r780: Fix segfault in ntlm_auth --diagnosticsAndrew Bartlett1-1/+2
Andrew Bartlett (This used to be commit 5cdc7f0cd6888740d3de3535cd70c9681fa57600)
2007-10-10r517: Remove wrong commit I did by mistakeAlexander Bokovoy1-6/+0
(This used to be commit 72d30ea06612461bdf19916fa40ca459f0c37acc)
2007-10-10r516: On GNU/Linux distributions which allow to use both 2.4 and 2.6 kernelsAlexander Bokovoy1-0/+6
there is SYS_utimes syscall defined at compile time in glibc-kernheaders but it is available on 2.6 kernels only. Therefore, we can't rely on syscall at compile time but have to check that behaviour during program execution. An easy workaround is to have replacement for utimes() implemented within our wrapper and do not rely on syscall at all. Thus, if REPLACE_UTIME is defined already (by packager), skip these syscall shortcuts. (This used to be commit e278e2e6e095b1c01eab307d55edf2cde48dcba2)
2007-10-10r416: add a newline to the debuglevel message returned stringHerb Lewis1-1/+9
and have smbcontrol print the PID with it (This used to be commit d3edf71885bfb5d342e62d46542db8ca814f3303)
2007-10-10r269: Patch from Krischan Jodies <kj@sernet.de>: Implement 'net rpc group ↵Volker Lendecke3-4/+199
delete'. Volker (This used to be commit ec321674961cc62c048b149ee19b6e36325c8eb3)
2007-10-10r248: Add support for printing out the MAC address on nmblookup.Richard Sharpe1-1/+5
(This used to be commit bf9f02be5fc1d09c8c08c78c3f2df23b2099ba4f)
2007-10-10r240: I'm pretty happy with the 'ntlm-server-1' helper protocol now, and asAndrew Bartlett1-2/+0
there is now a public patch that uses it, make it always available. (It was #ifdef DEVELOPER) Andrew Bartlett (This used to be commit aa3bc79835c79652199ce5aaf2f3981f8211c9bd)
2007-10-10r201: Fix bugs in the --helper-protocol=ntlm-server-1 implementation.Andrew Bartlett1-8/+9
(allow the use of base64 encoded strings, LM or NT passwords) Andrew Bartlett (This used to be commit 57a5563b421b0684e7bb40d10c2168916c59c89d)
2007-10-10r195: adding files to ignore listGerald Carter1-5/+5
(This used to be commit 1501d58b8e23d0c9ae51514773d0429886fa9d58)
2007-10-10r191: Only send the ntlm_auth 'ntlm-server-1' helper client a '.' after theAndrew Bartlett1-2/+1
server had said something (such as an error). Andrew Bartlett (This used to be commit c05016a2f750960c40387c1d6aba9f6841f66a3b)
2007-10-10r188: Add a new 'helper protocol' to ntlm_auth.Andrew Bartlett1-2/+202
This protocol looks rather like SMTP headers/LDAP: NT-Domain: TESTWG Username: abartlet ... Password: foo Challenge-response passwords are in hexideciaml, while any 'plain' string can be base64 encoded when like this: Password:: Zm9vCg== (the :: indicates it, just like LDAP - I hope) The protocol is not final, so it is #ifdef DEVELOPER for now (so nobody starts to rely on it until I'm happy), but we may as well get this into subversion. My intention is to use this to power the next version of my PPP/ntlm_auth plugin, and hopefully entice a FreeRadius plugin out of the woods. Andrew Bartlett (This used to be commit 8efdd957ba8310515242ba2979ff07130a0b1a3a)
2007-10-10r177: Split ntlm_auth --diagnostics into a seperate file, so as not to clutterAndrew Bartlett3-599/+657
the main ntlm_auth program. It quite possibly should belong in smbtorture, but relies on the winbind client for now. Andrew Bartlett (This used to be commit 6e1b7a8848062a184ee293cf688135b851f2bd8d)
2007-10-10r171: Continue the 'rename nt_session_key' work. This attempts to renameAndrew Bartlett1-88/+76
this variable to 'user_session_key', where possible. The command line parameter is currently unchanged). Andrew Bartlett (This used to be commit da4177209d1058af8e121c34f9928728f491b22e)
2007-10-10r116: volker's patch for local group and group nestingGerald Carter1-0/+108
(This used to be commit b393469d9581f20e4d4c52633b952ee984cca36f)
2007-10-10r104: Fix ntlm_auth by adding the new strhex_to_data_blob() call.Andrew Bartlett1-6/+0
Andrew Bartlett (This used to be commit 0693b9e79fabd58491f8aaec11dbbc71fab34f80)
2007-10-10r87: Fix the build that Andrew Bartlett broke. Andrew - don't check ↵Jeremy Allison1-0/+6
*ANYTHING* in unless you have done a make clean; make. Jeremy. (This used to be commit 09d82a0bef2dd5759e5430c4faea413b5a64ac11)
2007-10-10r84: Implement --required-membership-of=, an ntlm_auth option that restrictsAndrew Bartlett1-38/+113
all authentication to members of this particular group. Also implement an option to allow ntlm_auth to get 'squashed' error codes, which are safer to communicate to remote network clients. Andrew Bartlett (This used to be commit eb1c1b5eb086f49a230142ad2de45dc0e9691df3)
2007-10-10r69: Global rename of 'nt_session_key' -> 'user_session_key'. The session ↵Andrew Bartlett1-22/+22
key could be anything, and may not be based on anything 'NT'. This is also what microsoft calls it. (This used to be commit 724e8d3f33719543146280062435c69a835c491e)
2007-10-10r39: * importing .cvsignore filesGerald Carter1-1/+0
* updateing WHATSNEW with vl's change (This used to be commit a7e2730ec4389e0c249886a8bfe1ee14c5abac41)
2007-10-10r21: Ensure 'net' follows the behaviour of all other samba client tools,Andrew Bartlett1-5/+3
and honours the 'netbios name' in the smb.conf. (This used to be commit 591047c20a06cd94540b3781459c0f1b6f5baa9f)
2004-04-03Fix most of bug #169.Andrew Bartlett1-0/+1
For a (very) long time, we have had a bug in Samba were an NTLMv2-only PDC would fail, because it converted the password into NTLM format for checking. This patch performs the direct comparison required for interactive logons to function in this situation. It also removes the 'auth flags', which simply where not ever used. Natrually, this plays with the size of structures, so rebuild, rebuild rebuild... Andrew Bartlett (This used to be commit 9598593bcf2d877b1d08cd6a7323ee0bc160d4ba)
2004-03-24Fix bugzilla # 1208Jim McDonough1-1/+2
Winbind tickets expired. We now check the expiration time, and acquire new tickets. We couln't rely on renewing them, because if we didn't get a request before they expired, we wouldn't have renewed them. Also, there is a one-week limit in MS on renewal life, so new tickets would have been needed after a week anyway. Default is 10 hours, so we should only be acquiring them that often, unless the configuration on the DC is changed (and the minimum is 1 hour). (This used to be commit c2436c433afaab4006554a86307f76b6689d6929)