Age | Commit message (Collapse) | Author | Files | Lines |
|
The samr connects will fail. This is not independent of the CONTACT_TRUSTDOM
flag neede by krb5 logins.
(This used to be commit 4de4949e3bfcfb2169c329f19cb76936d9043d50)
|
|
Winbind can't be allowed to connect to the local smbd.
(This used to be commit 0d617f639a3c9c52e4327aed4bd02d9e8e7312a2)
|
|
Guenther
(This used to be commit fa64c76ac8e54f385f277b5b39be70075b2eeee0)
|
|
Guenther
(This used to be commit 2586dc34e0f72204749f5bf10c8135cd3a753a42)
|
|
When we get a NT_STATUS_WRONG_PASSWORD for example, my_info3 is not initialized
at all. So first check that we have NT_STATUS_IS_OK(status) before we
dereference my_info3.
(This used to be commit 559cd9e5a7fac3ce3769d457132cdcb28569b93d)
|
|
(This used to be commit 38683a73013865695e1b04f5f6a974bd0c5c1cac)
|
|
NetSamLogonEx has the advantage that it does not use the credential chain
(This used to be commit cfceb063f559f8549b8f24ce347be213c89303b0)
|
|
(This used to be commit 32fc759d942abb36d7dd351eff82925b6788dd28)
|
|
Another preparation to convert secrets.c to dbwrap: The dbwrap API does not
provide a sane tdb_lock_with_timeout abstraction. In the clustered case the DC
mutex is needed per-node anyway, so it is perfectly fine to use a local mutex
only.
(This used to be commit f94a63cd8f94490780ad9331da229c0bcb2ca5d6)
|
|
To not conflict with WBFLAG_PAM_INFO3_TEXT.
This should fix pam_winbind.
metze
(This used to be commit 1b8ed6c0ffb2548442bb7e9d848117ce9b1c65c0)
|
|
Guenther
(This used to be commit b1a4b21f8c35dc23e5c986ebe44d3806055eb39b)
|
|
Guenther
(This used to be commit d078a8757182d84dfd3307a2e1b751cf173aaa97)
|
|
Guenther
(This used to be commit d9502eb75395131d5a8130ff2c4ebace106cb974)
|
|
Guenther
(This used to be commit f22ba8aee2ff90e9e34db066d506fec24c52379f)
|
|
metze
(This used to be commit c5e6dd1ca9611e2830ff773875998c01bf779a64)
|
|
Guenther
(This used to be commit 33a97b447c1875bf1cd5a703871a84a7fb359fec)
|
|
Guenther
(This used to be commit 8890bc481f60cd42d96b240b2ed8e34bc3d81f13)
|
|
Guenther
(This used to be commit 34c2566f026dbde4da10e2fc10c6960260eb6044)
|
|
metze
(This used to be commit 5f623f54a919cc687d0ff16c16038c05a501008d)
|
|
Guenther
(This used to be commit c62c89c8f0d1ff8e384b88b3b192aa96f0b2183e)
|
|
Guenther
(This used to be commit a25e7ffbca9c2c97dd36b0596e7cb38a72aaf9d9)
|
|
Guenther
(This used to be commit a9ff6760901a489ff8877717bdd5a2218154498f)
|
|
Guenther
(This used to be commit 4f3e97cbae3df8e12db37b8a8a0eaee947fa723a)
|
|
Guenther
(This used to be commit e196e527ae47a75f6cac09b9f89aa5619047d4d2)
|
|
Guenther
(This used to be commit ce22abcea3446e4ad42e8e04654b9855b173c5a1)
|
|
Guenther
(This used to be commit ccf79cfa88c7f3a10d191f8f0eedb9d421c65f6c)
|
|
Guenther
(This used to be commit 66b79add353bf7a09f304eac5274cb89b23d7b06)
|
|
Guenther
(This used to be commit d1c669920e88e7fecd13101c4ddfe45354c5ecdb)
|
|
Guenther
(This used to be commit 8abeea9922ac09e7307730ee7695453718356873)
|
|
Guenther
(This used to be commit ffbfd19ad7065caf05688c5748178d30115d47f4)
|
|
Guenther
(This used to be commit dd9fa33e968d4e641460fe1c6beb05dfe12fa918)
|
|
Jeremy.
(This used to be commit 654484b9a2d8d2be20f02d228d53a23936d1703b)
|
|
Guenther
(This used to be commit 1793ed10df7f403b85a4e52c67cbfb277b23b30b)
|
|
Guenther
(This used to be commit 5c167162856fd1e13a3e04423cfc0cc936ae26b0)
|
|
Guenther
(This used to be commit bdf8d562621e1a09bf83e2009dec24966e7fdf22)
|
|
Michael
(This used to be commit 3865a7e6a19630f8a90140accf4a6e93d4f70e6c)
|
|
(This used to be commit af40b71023f8c4a2133d996ea698c72b97624043)
|
|
(This used to be commit 7dbfc7bdc65314466a83e8121b35c9bcb24b2631)
|
|
This patch make sure we do not try to contact smbd in the main dameon
to avoid deadlocks.
All the operations that require connecting to smbd are performed in
the domain child anyway.
(This used to be commit 9347d34b502bef70cdae8f3e8acd9796dba49581)
|
|
Guenther
(This used to be commit da90eb7653554d242da83ed98adae35ced3a2938)
|
|
Guenther
(This used to be commit d019fc69a986937880121c2587d3fe37f995edae)
|
|
Guenther
(This used to be commit e4e9d72724d547e1405b2ed4cec509d50ec88c8d)
|
|
Guenther
(This used to be commit 64f0889401855ab76953bfae5db4fe4df19ad8a5)
|
|
Jerry, please have a look if you're fine with that.
Guenther
(This used to be commit beae25c808a3a03d645f247e9befcd05e3ecca2c)
|
|
Guenther
(This used to be commit f6397fbeae6668c6d0470f968cb1506b3ce34e4a)
|
|
Guenther
(This used to be commit 3a3c1aed9bfc681457aa06f706fc6fe2d9b2e903)
|
|
Guenther
(This used to be commit fd490d236b1fb73a75c457b75128c9b98719418f)
|
|
Use the flags stored in the tdb when determining if a domain can
be contacted. The tdb should be considered authoratative anyways unless
you know the flags in the winbindd_domain are correct (such as when
first enumerating trusts).
Original suggestion and patch from Steven Danneman <steven.danneman@isilon.com>.
Manually rewritten by me for 3.2.
(This used to be commit f53658a20de07a29abbe2e90917b328d00fc0024)
|
|
On a DC, we always use the domain name given. On a domain member,
we use lp_workgroup(). This fixes a bug supporting trusted domains.
(This used to be commit 8b063a414149bdf401a8f854d55ed7dc6f94cb60)
|
|
The check for inbound trusts is invalid when samba is a DC
and has a trust with an active directory domain.
This effectively prevented tusts with an AD domain on a
samba DC from working (unless using "winbindd rpc only"),
because an ads_connect() was never performed. Only the
rpc-based winbindd methods were working properly.
Jerry: Please check!
Michael
(This used to be commit dcd42a1e0642c69348adfaeecef7f7f2f074ac30)
|