Age | Commit message (Collapse) | Author | Files | Lines |
|
(well, under certain conditions :-)
There is no length limit on the size of the authentication response added
into the MD5 hash. (We had previously limited this to lengths like 40, 44 or
64 in attempts to make sense of what the SNIA spec tells us).
Instead, the entire authentication response is added in.
Currently, this only works on a Win2k domain members with a Samba PDC,
becouse our NTLMv2 code currently fails against an Win2k PDC.
However, this splits the problem in half - particularly as the NTLMv2 format
is known, and even has an ethereal disector! (thanks tpot).
Andrew Bartlett
(This used to be commit 7645d3d28afbb8eea502c0e063df3afb3aa812f4)
|
|
lp_workgroup(), for all other server this is global_myname().
This is the name of the domain for accounts on *this* system, and getting
this wrong caused interesting bugs with 'take ownership' on member servers
and standalone servers at Snap.
(They lookup the username that they got, then convert that to a SID - but
becouse the domain out of the smbpasswd entry was wrong, we would fail the
lookup).
Andrew Bartlett
(This used to be commit 5fc78eba20411f3f5a8ccadfcba5c4ab73180dba)
|
|
(This used to be commit 42d0414ed244b92b665cb231f6756f60391861dd)
|
|
Jeremy.
(This used to be commit f219e8309c7d17b332873e9283ab3c3796e7e799)
|
|
servers don't answer that name. However we *know* they
have the name workgroup#1b (as we just looked it up).
So do the node status request on this name instead.
Found at LBL labs.
Jeremy.
(This used to be commit 41e3abe8b80026812ea7dd7ad535e8e41e26daa4)
|
|
used to be commit 8bee59ffcea1495f03b35d38da0eb76955b93f3d)
|
|
split out privileges from rpc_lsa.h
(This used to be commit 37d7cc8162d02a664095dbe0fc8d7250d1ed51c9)
|
|
(This used to be commit fb03fafed14a2816808e98fd95850db3e655d5d9)
|
|
(This used to be commit 58d284bd06f5893a752c1f22828715f8bd130c82)
|
|
(This used to be commit 2f631769f836baeec669456f786ecb38c81d9a23)
|
|
(This used to be commit 3033a63cefb5f28d4460885f7f4e4ecaed95443c)
|
|
initialisation code in winbindd_init_common() after the fork when
running in dual daemon mode.
The only tricky bit is we have to run a tdb_reopen_all() somewhere in
the child to avoid tdb corruption.
Fixed bug #60.
(This used to be commit 25e55aca0fe315c2ccf4e34a94107b2321313714)
|
|
(This used to be commit 29d775fe68be8988e344c35106a80d6ca8236e4d)
|
|
(This used to be commit 8257f537de57a2681e6d9cc2c421435b1d751a60)
|
|
Andrew Bartlett
(This used to be commit 7342c70b4cecfc1f42c46b19360db6c077604be2)
|
|
Rafal
(This used to be commit d03124fbf182f194e48c4ef9ae6aedc4db4f13b0)
|
|
debug msg while establishing trust and listing relations of Samba PDC.
Rafal
(This used to be commit 8681cbae0d142a1f9ac537cb22e611a6f5262b54)
|
|
(This used to be commit 855fab395f97dd232fd9bb78e62ad12b16fe2a24)
|
|
run the pythoncheck.py test. At the moment this just checks every
python extension can be imported sucessfully.
(This used to be commit 38dac4ca4e657b130acf3921573380d33399a5e6)
|
|
flags in the $LIBS make variable. Separate the two so the python
extensions can build.
(This used to be commit 164ea3835724409d5b9badbad689d154307d2b59)
|
|
key, so we can test it in ntlm_auth.
I suspect the 'lm' version doesn't exist, but it's easy to change back.
Andrew Bartlett
(This used to be commit 5efd95622c411f123660b6613b86c7a68bba68e8)
|
|
Our NTLMv2 client code needs work, becouse we don't get the session key for
any of the NTLMv2 stuff...
Also test some of the more 'odd' auth cases - like putting the NT password
into the LM feild.
Clean up some static globals into static locals.
Andrew Bartlett
(This used to be commit 62f0acc99166e9518f59bc5d091b76c35837e65c)
|
|
(This used to be commit f4ea0cc17d6a5189ff7887f61b663eb1900c8a27)
|
|
directly - fixed problem where the last line of the link command was
'\ @LDAP_LIBS@'. If @LDAP_LIBS@ is zero then the backslash
incorrectly includes the next line of the Makefile in the current
target.
This should fix a bucketload of build farm failures.
(This used to be commit 895bef1a62f60f4e91dc6b1c244820b024c36a5c)
|
|
(This used to be commit a102734263a2cbd5b9eafbddf036e173b507a7fd)
|
|
(This used to be commit 4fccc1f16da74ac9e98bd58c7f11674c48c4dbac)
|
|
(This used to be commit 52d5ff7bdafabb421e76b6b19d95be22b380ddb4)
|
|
Also merged a little bit of abartlet's recent configure.in change of
duplicated IRIX stuff.
(This used to be commit d15406ad910bc952c741e8d4d574064dbc5e88ef)
|
|
(This used to be commit af083d2760c79ef33b7e187a5c5a6238667da24e)
|
|
(This used to be commit a4fc9c3b2dfbdbb3f75bf38415741ff66dbe1367)
|
|
user@realm, where realm might not be the realm we are joining.
Andrew Bartlett
(This used to be commit 00e08efb5cd21bf42be9125d3188efbf9d13b8b7)
|
|
This should make it clearer what magic numbers refer to the magic numbers
in the CIFS spec, and what bits and peices are being appended into the MD5
calculation where.
Andrew Bartlett
(This used to be commit 7f1c271cfb04f621e36f1acf60979652e82dc6f4)
|
|
Now the IRIX and non-irix cases for one of these switch statements is the same,
eliminate the statement...
We now use autoconf > 2.50, so we can use some of it's features.
We also need to correctly include the magic for building vfs_fake_perms.
(This used to be commit a4ec8a615195f681f315ce23e799f2e7d35f27f6)
|
|
used to be commit f1e59906577a59269f1821d9e438fc56278b9dbe)
|
|
add \n to the end of the non-dlopen case DEBUGs.
Andrew Bartlett
(This used to be commit ce4ff4cc8e5f5d461797e42b2148b2827c058380)
|
|
(This used to be commit 0dfeaf4535bb1b2345dfd51208c51ce5069ea154)
|
|
add winbindd_passdb backend
this makes it possible to have nua accounts on security = user servers to
show up in unic through nss_winbind.so
the problem is that we do not have group support, so nss group support is
not very good at this time (read: totally absent)
we NEED group support in passdb
(This used to be commit 921215cf4bfbd4d7457f81e181bb1a74a4531ca1)
|
|
(This used to be commit 28b73a39219fd717c60eba207143fb40d5ff123a)
|
|
typos
(This used to be commit 7e28ee1cf8db065f2518b4543f2e54da97cc19e2)
|
|
(This used to be commit 08d4c2fa85ceaa9d5ff16e7e615bb29e0cde3022)
|
|
fixed I would like to see this tested a bit more. Default the schannel
stuff to auto which means 'offer, but do not enforce'.
Volker
(This used to be commit 7a1b8409bed13d0e7742cbcd3b0fa79b0c671404)
|
|
make a new sam_Account contain our domain by default, windows will complain
on logon otherwise.
fix stupid typo in idmap_util.c
(This used to be commit 21701876dc6c59ebfc51be708a98226a00a764e0)
|
|
Jeremy.
(This used to be commit e954ca2ce8ec6b36794585c3bc948140cf9e7947)
|
|
Jeremy.
(This used to be commit 8dcc00899977a126d5782e44bdae74175ecc0d93)
|
|
Jeremy.
(This used to be commit aeba1fcab2fa61859fc1052af4752512a33bd801)
|
|
Jeremy.
(This used to be commit a2af45154d0e1bb76e78fbde1572d4fcd1ba0da2)
|
|
correctly handle allocated rids in tdbsam
(This used to be commit 7ae6162e1dd668897628c4f7edff508616644d21)
|
|
add group mapping mappings to idmap at startup
(This used to be commit 62365023db61d5a4fa32845af3db73bce6cb94ea)
|
|
(This used to be commit 568feee8977ee1be210344c8ab1896512894cba2)
|
|
used to be commit a1ffe2a29c0e6be54af09d6647b7f54369d75a1e)
|