summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
2002-06-21Don't use uint. It doesn't exist on some platforms and we don't define it.Jeremy Allison8-14/+22
Replaced with "unsigned int". Jeremy. (This used to be commit 5841ca54b6a8c36f3d76c12570ff8f2211ed2363)
2002-06-21Fixed incorrect debug.Tim Potter1-1/+1
(This used to be commit a905b5f49db6a12c9a562e1d5e3981dc3525fd27)
2002-06-21Format tidyup before I start working on scalability fixes (one file perJeremy Allison1-74/+134
print queue). Jeremy. (This used to be commit 6544a500d0696c9fe1f1abc067a8b963a0e2b8da)
2002-06-21Changed level of "bind succeded on port %d" debug to 10.Tim Potter1-1/+1
(This used to be commit de00428ef12b597e5c29896bf961cfd7a1e122dd)
2002-06-20Fix from Andrew Esh for not checking return code.Jeremy Allison1-0/+3
Jeremy. (This used to be commit 629cea2ff4f640cd60d9ecfa72acf2707b3f1ff4)
2002-06-20Remove "inline" - shouldn't be in portable code.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 4a5aa918d9eecc130a5126a255f8a6b5cde8044f)
2002-06-20Got rid of unused flags field in lanman api_commands[].Tim Potter1-36/+49
Added an auth_user field which denotes whether the api call can be made anonymously. In combination with lp_restrict_anonymous() this can decrease the amount of information that can be retrieved anonymously. So far NetShareEnum, NetSessionEnum, NetGroupEnum, NetGroupGetUsers, NetUserEnum, PrintQEnum, NetFileEnum cannot be called anonymously. SamOEMChangePassword and NetServerEnum can be called anonymously. All other functions can be called anonymously until it can be proven that they can't to avoid breaking anything. (This used to be commit ead6ab9602640aca5d1d8ac336f3a129f9466159)
2002-06-20Renamed policy handle field in object containers to avoid cut&paste bugs.Tim Potter1-6/+6
(This used to be commit 93309c0ad4cd66680f94d7a46028b4d392d1cc06)
2002-06-20Added samr_open_domain() call.Tim Potter1-19/+77
(This used to be commit 97f70f2cfff72d6040c72d34a569f5c889cbff2e)
2002-06-20Compile fix for new arguments to cli_full_connection()Tim Potter1-9/+2
(This used to be commit 0d05c8ce54c3fa859abb8bd2ac13cacaed63e95c)
2002-06-20Fixed compiler warning.Tim Potter1-1/+1
(This used to be commit c29cef7f3408714d4e6e18906760d74016c6748f)
2002-06-19Fixed typo in debug.Tim Potter1-1/+1
(This used to be commit 80e7f8f2f59136f53c236a37b5f16f6ffa0d391a)
2002-06-19when nmbd starts up it is possible that dhcp hasn't started the localAndrew Tridgell1-4/+9
interfaces yet. Instead of giving up, nmbd will now wait for some interfaces to appear (This used to be commit 612ae5313250aec80c94782d55cbf755dd4a9a4f)
2002-06-18more debug classess activatedSimo Sorce56-2/+163
(This used to be commit 897e64d2e0c1d04ab93441ccaffe369bf43be46e)
2002-06-17compile warngin fixes merged from 2.2Gerald Carter8-25/+29
(This used to be commit 29874f4b8fecdc7cbd84d656dafce54cca49e0b1)
2002-06-17Fixed typo in debug.Tim Potter1-1/+1
(This used to be commit 41f036ab37274ce7cdd782ead764dd1a36ecba1d)
2002-06-16Cope with the requirement for constant initialisers on some unix C compilers.Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit 11b6d283d3c1408c89b03918f3a0c034411f5966)
2002-06-16Further updates to the service.c code. authorise_login() is now a bit simpilerAndrew Bartlett2-6/+6
and we seem to have eliminated the segfault. Unfortunetly I'm still at a bit of a loss as to why it did segfault, but the patch is correct in any case. Andrew Bartlett (This used to be commit 70c16188c7a267f9f3f8de0b6830f66c9e68a2c7)
2002-06-16Two things: Check how many paramaters that the LDAP libs take for theAndrew Bartlett4-94/+199
rebind proc (some give an extra paramter to pass a void* paramater) and some small changes for the SMB signing code to reset things when the signing starts, and to 'turn off' signing if the session setup failed. Andrew Bartlett (This used to be commit a8805a34e5d96eeb5ffe15681b241d5a449a6144)
2002-06-16Fix up some of the SMB signing code:Andrew Bartlett5-19/+47
The problem was that *all* packets were being signed, even packets before signing was set up. (This broke the session request). This fixes it to be an 'opt in' measure - that is, we only attempt to sign things after we have got a valid, non-guest session setup as per the CIFS spec. I've not tested this against an MS server, becouse my VMware is down, but at least it doesn't break the build farm any more. Andrew Bartlett (This used to be commit 1dc5a8765876c1ca822e454651f8fd4a551965e9)
2002-06-15When adding popt to an application, you need to ensure it builds on non-poptAndrew Bartlett1-1/+1
platforms :-) (This used to be commit bda8f12ff551f24a6f2a8e8f7a120b2e0e45a269)
2002-06-15Simplify this code further. Just substitute %H, and let the normal codeAndrew Bartlett2-40/+3
paths handle the rest later. Andrew Bartlett (This used to be commit 09754ec797c4232d2016c7eff2e74044f28ebb7c)
2002-06-15Unsused function since last commitAndrew Bartlett1-34/+0
(This used to be commit 957c865cee7f799145f9f1d30dfd0d0a25d826cf)
2002-06-15Rework much of the service.c code:Andrew Bartlett7-209/+273
The aim of this execise is to give the 'security>=user' code a straight paper path. Security=share will sill call authorise_login(), but otherwise we avoid that mess. This allow *much* more accurate error code reporting, beocuse we don't start pretending that we can use the (nonexistant) password etc. Also in this patch is code to create the 'homes' share at session setup time (as we have done in the past - been broken recently) and to record this on the user's vuser struct for later reference. The changes here should also allow for much better use of %H (some more changes to come here). The service.c changes move a lot of code around, but are not as drastric as they look... (Also included is a fix to srv_srvsvc_nt.c where 'total_entries' not '*total_entries' was compared). This code is needs testing, but passes my basic tests. I expect we have lost some functionality, but the stuff I had expected to loose was already broken before I started. In particular, we don't 'fall back' to guest if the user cannot access a share (for security=user). If you want this kind of stuff then you really want security=share anyway. Andrew Bartlett (This used to be commit 4c0cbcaed95231f8cf11edb43f6adbec9a0d0b5c)
2002-06-15Update the netlogon code to better cope with trusted domains, where thingsAndrew Bartlett1-10/+29
like the domain name and SID come from the remote domain, not the local one. These are filled out by the code from the previous commit (auth_util.c, the make_server_info_info3() fn) and read back here. Andrew Bartlett (This used to be commit 6872de2e5b27fd2de61ed14c85475a0eacd637ca)
2002-06-15Add the missing makefile from previous commitAndrew Bartlett1-1/+1
(This used to be commit a07f2c08ff145f414618165739fe7f2d203931e8)
2002-06-15This patch does 2 things:Andrew Bartlett4-96/+282
It extends the 'server mutex' to conver security=server, becouse the connection race condition exists here too, and while people *should* use security=domain, some sites don't.... (This probably should be done in 2.2 as well). Also, start to actually extract and use the information that the remote server returns in the info3 struct. The server mutex code is now in a new file. Andrew Bartlett (This used to be commit 9b0dabdf4ec3bb45879caae76e03b57ccdad8b4b)
2002-06-15Add another 'trivial' built in authentication module - this one is aAndrew Bartlett1-0/+50
deveopers hack to always send a fixed challange, for the benifit of tutorials and packet sniffing etc. Enabling this module removes all security, so its a --enable-developer option. Andrew Bartlett (This used to be commit 622e6b64dfb0a2c53d2c9dbd7b8ff438492eaf02)
2002-06-15It appears that to match NT we should not use the 'samstrict' behaviour,Andrew Bartlett1-3/+5
and that local accounts are perfectly fine. (This used to be commit 9fe8da6dd1b7fecfee0a2778fec0b7dd0fd40bfb)
2002-06-15Add back sys_getpwnam() and freinds to the system.c interface, but don'tAndrew Bartlett4-5/+29
use the silly cache any more. Also add group functions and fix a few callers. Andrew Bartlett (This used to be commit 41d4b94077c118ecde2bf8792b9bb7ab71c6403e)
2002-06-14Fix spelling typo.Jeremy Allison2-13/+13
Jeremy. (This used to be commit 0e7e8d44627ad9645a90e96001f8550b68b67a62)
2002-06-14Ok, now I can try my first client test...Jeremy Allison2-8/+33
Jeremy. (This used to be commit 9d461933766f26ce772f6d5ea849ef9218c4d534)
2002-06-14More of SMB signing for client - not yet finished (should be harmless).Jeremy Allison4-11/+45
Jeremy. (This used to be commit c1b20db4bb4bb1ba485466f50b9795470027327c)
2002-06-14Merge of csc termination fix.Jeremy Allison1-1/+2
Jeremy. (This used to be commit 1f46dc9cbf7f2da2865ae2e10146d5976ed801ea)
2002-06-14moved lp_list_* functions away from param/loadparm.c, put int lib/util_str.cSimo Sorce10-223/+225
and renamed to str_list_* as it is a better name. Elrond should be satisfied now :) (This used to be commit 4ae260adb9505384fcccfb4c9929cb60a45f2e84)
2002-06-14Add a touch of const to this - helps with some yet-to-be-commited changesAndrew Bartlett1-3/+3
(This used to be commit a2c791c0bbce1d505e5ef2150384ad5d54ae7117)
2002-06-14Allow non unix accounts to be added to an ldap directory without NUA accountsAndrew Bartlett1-0/+4
already. Andrew Bartlett (This used to be commit a5d5b4cf2555b9bbded31b556d4fc74c00c6c490)
2002-06-14Patch from ctrlsoft to use the pdb_sethexpwd function in smbpasswd - insteadAndrew Bartlett1-48/+7
of implementing it twice inline. This code is complex - but occasionally I get the feeling that people made it more complext than it really needed to be... Andrew Bartlett (This used to be commit 273d518e52a83eca466c134531dd12825fe3cbdb)
2002-06-14It looks like we never tested the 'cleanup' code, so when I triggered itAndrew Bartlett2-12/+20
(invalid passdb backends smb.conf entry) we picked up a few things :-). Andrew Bartlett (This used to be commit dfa98ae0ac195956490ca2f4140a8eff1566095e)
2002-06-14Some updates from ctrlsoft <jelmer@nl.linux.org> to return failure if *any* ofAndrew Bartlett1-19/+20
the passdb backends fail to load (is this the right way? - I think so). Also, I've added some more comments, cleaned up some style etc. (This used to be commit c8c490bcb84df43be38bdcb48067fec12331e358)
2002-06-14Debug fixes from ctrlsoftAndrew Bartlett1-2/+2
(This used to be commit 27e34d4e63adc6d6ad63857d2a17595b7cff52db)
2002-06-14Kill useless castAndrew Bartlett1-2/+2
(This used to be commit e2f9dd8b65063a276569d9c33aaf06606003b85c)
2002-06-14Convenience function to allow a SID to be specified as a string.Andrew Bartlett1-3/+46
(for use in passdb modules like pdb_xml or a new pdb_ldap that stores sids etc.) Andrew Bartlett (This used to be commit c70b2c4fb72f251a14e0fc88b6520d69a0889bc2)
2002-06-14Patch from ctrlsoft to make the pluggable passdb subsystem use an lp_listAndrew Bartlett6-46/+61
rather than a string when configuring mulitple backends. Also adjust some of the users of get_global_sam_sid() to cope with the fact that it just might not exist (uninitialised, can't access secrets.tdb). More places need conversion. Add some const and remove silly casts. Andrew Bartlett (This used to be commit c264bf2ec93037d2a9927c00295fa60c88b7219d)
2002-06-14Patch (from ctrlsoft <jelmer@nl.linux.org>) to poptify testparm, and theAndrew Bartlett3-154/+139
modifications required to suppress the const warnings. Andrew Bartlett (This used to be commit ec4f1e9e2f6c162a475b424d63b9802387ad905e)
2002-06-14Add const, kill of useless casts and therefore eliminate warnings.Andrew Bartlett3-6/+6
Andrew Bartlett (This used to be commit 29490f214750acd44cee6c4ab1354722d82d853a)
2002-06-13Ensure we save any older SIGALRM signal handler.Jeremy Allison3-7/+11
Jeremy. (This used to be commit aa0a6f5532a2689409426eef9a4b66a28fb97635)
2002-06-13Veto files fix.Jeremy Allison1-275/+273
Jeremy. (This used to be commit 1712a7b34a73ad89965961c0db4dd198d6b257c6)
2002-06-13Merge in mangle fixes from 2.2.Jeremy Allison7-371/+376
Jeremy. (This used to be commit 5e2571f424a40df4d67fe279517a9b21184b78e1)
2002-06-13Latest patch from metze <metze@metzemix.de> to move most of samba acrossAndrew Bartlett14-113/+183
to using SIDs instead of RIDs. The new funciton sid_peek_check_rid() takes an 'expected domain sid' argument. The idea here is to prevent mistakes where the SID is implict, but isn't the same one that we have in the struct. Andrew Bartlett (This used to be commit 04f9a8ff4c7982f6597c0f6748f85d66d4784901)