Age | Commit message (Collapse) | Author | Files | Lines |
|
This includes the 'SIDs Rule' patch, mimir's trusted domains cacheing code,
the winbind_idmap abstraction (not idmap proper, but the stuff that held up
the winbind LDAP backend in HEAD).
Andrew Bartlett
(This used to be commit d4d5e6c2ee6383c6cceb5d449aa2ba6c83eb0666)
|
|
(This used to be commit ff3ec67e120d29db2b85ce444ce89a205ea7a067)
|
|
Andrew Bartlett
(This used to be commit 5a577f8cafa7375bd8485763f163de939ddc4a39)
|
|
Andrew Bartlett
(This used to be commit 007143e2435904d941a62934986ac54e343f4936)
|
|
Andrew Bartlett
(This used to be commit 82ba1b4d16da587c5e21739b11c5d84a575534ad)
|
|
fstype for IPC$ - assume the device type is IPC.
Andrew Bartlett
(This used to be commit 5ec78042124589d7d4e377581c187712950c93b2)
|
|
Andrew Bartlett
(This used to be commit 39fb77d8c1d9dddf00e8063198157bf77fb58a8f)
|
|
Andrew Bartlett
(This used to be commit de96c1aaca9006696d61aa3d07151c0f74516e63)
|
|
just the correct error.
This should help us avoid breaking NT4 IPC$ connections, for example.
This has required that we don't overwrite the device type for IPC$ in our
tcon&X code, but only smbwrapper even uses it, and a server that doesn't send
a correct dev type breaks other things pretty badly.
In any case, I'll 'fix' smbwrapper :-).
Andrew Bartlett
(This used to be commit a93057efcb6e639be05b7bdcb9729ed8f39f5f62)
|
|
merge last time. I hope this might fix a few failures on the build farm too.
Andrew Bartlett
(This used to be commit 0c837126923cc30fa60223a5a68d4f527971cc7b)
|
|
global_myname(), always either the name the client called us, or if they
didn't call us anything useful, our IP address.
Jerry, can you check this?
Andrew Bartlett
(This used to be commit 599e70bffbae9930b949c9b82cbc8dfc7c966d78)
|
|
Andrew Bartlett
(This used to be commit c6d416541be5349254a63e30fa29b022516b094e)
|
|
Andrew Bartlett
(This used to be commit 5b5e167bb1a760a4f9c603feea886ce1dab52e19)
|
|
Andrew Bartlett
(This used to be commit 33189b4be0ac79d5e7bc2606f40187118ee506a4)
|
|
etc, move the SAMR create_user code back to using the 'pdb_init_sam_pw' method
to fill out the attributes.
This is basicly the same code, but we really didn't need the duplication.
Also, take advantage of the fact that RIDs will always be returned back into
the SAM_ACCOUNT on ADD, so we don't need to duplicate the 'get'.
This should also help in sites with replicated LDAP - the second fetch might
occour before the first is replicated back.
Andrew Bartlett
(This used to be commit 39714c24fd9da4701d4fe69ddd3d61a25254409f)
|
|
- change update behaviour for new RIDs:
- store the new RID into the SAM_ACCOUNT, so that the caller get's it back
automaticly
- use this to make the code paths simpiler for the normal 'need_update' code.
We must always store a RID if we intend to use the sambaAccount objectClass
Andrew Bartlett
(This used to be commit 5edeee5116b9c775a1bded1d53cb2b22c7a2765f)
|
|
unix_strlower semantics.
Andrew Bartlett
(This used to be commit 93bdd1a2925edb9dea3e85d8b025a65460896c05)
|
|
right now but should be ok with tdb's
(This used to be commit fdacad185c4f78958d56bccbd69a0f2628f1b792)
|
|
1000.
Jeremy.
(This used to be commit 2e5e4c10d2377493913554e7dab79d97a4d16d87)
|
|
and Stop All deamons button.
(This used to be commit 57cfcb3108935f46cb3938b403a3eaba2888fb55)
|
|
sambaAccount requires the rid to be present, and doing this fallback is quite
dangerous, becouse it assumes that alorithmic RIDs are in use - which is quite
often not the case.
Also finish of vl's work on 'use a function pointer, not embedded logic' to
tell lower levels that they should/should not attempt to set the user's password
into LDAP with the extended operation.
Andrew Bartlett
(This used to be commit 715d0bd804b6bff4c0b365f98ca196d41ed9c5c4)
|
|
(This used to be commit 541f40a144461ca139ac53837d3f31ce6972d18c)
|
|
(This used to be commit 6735a9889f6629f4f77006c59c011570031e044f)
|
|
error on Linux.
Jeremy.
(This used to be commit 546d1a941b63a538702f2fb668019d2b89f63bdc)
|
|
(This used to be commit ce016df1ecbb8a083c9a37b7d61b4356dfbc77a7)
|
|
It can itself determine the length of the string it has to
transfer. Andrew B., could you take a look at the length calculation?
Is that safe?
Thanks,
Volker
(This used to be commit 0ef69b586a8f1fa11a41a3900180ea2090b60bfd)
|
|
(This used to be commit ca489db7d3d4713401da3627b563af3cbef82c58)
|
|
ldap_initialze function exists, not just if we are on a particular OpenLDAP.
Andrew Bartlett
(This used to be commit 8a20162db6a8b3fa7eb0e829663b9b4ced1218c0)
|
|
This might help avoid killing the ldap server when all 100 smbd processes
reconnect in pulses...
Also, reduces the maximum wait time, as SMB clients will time out after 30
seconds anyway...
Andrew Bartlett
(This used to be commit 08c5aaae6a92d6ee14f9bf8e3330191718e84edf)
|
|
which can restrict things like unix_strupper() to 512 byte strings.
Andrew Bartlett
(This used to be commit 341d6affa474262654f83c075f186d985cbcb9a0)
|
|
leak fixes. (secrets.c portion)
Andrew Bartlett
(This used to be commit 3ea8fdd0361623b38f30f0b815dc4935e2e17447)
|
|
(This used to be commit 8f8d819d5814c2a538b5b906014ff0c354625450)
|
|
NT).
(This used to be commit 76cd4a8901a8ac1c3691bc89e496bbb493e5c234)
|
|
samlogon call certainly breaks the credential chain. Do it once during
the bind response.
Volker
(This used to be commit d4262c37f13642e034d3e207bfbb563c17a8a176)
|
|
Andrew Bartlett
(This used to be commit 898ff89632a394ff32fd38f1c4e94412388fa8bd)
|
|
include a domain portion, do a gethostbyname() lookup on that name.
Use this name in our PolicyPrimaryDomainInformation reply (_lsa_query_info2)
that Win2k uses when trying to trust us as a trusted domain.
(We need to do a better mapping between our Netbios and Win2k domain names,
but this will do for now - particularly annoying is the way this possibly needs
to map with our kerberos realm).
Andrew Bartlett
(This used to be commit 3be03271030208a69da29c6e2a7b92cdbaa8c6aa)
|
|
(This used to be commit 665d21b8656bf85f9b372b44ff1f4af414551e5a)
|
|
as a BDC.
Andrew Bartlett
(This used to be commit f35674e7552dcfece342e7bece10bbfb0e81cbf8)
|
|
changed
(This used to be commit b6ccdb8f7b72eed4c4248db43fefa09b6f084852)
|
|
the credentials from secrets.tdb
(This used to be commit bb8b63b865b941abecc0d821e710702dd12866fe)
|
|
(This used to be commit 43942398af7e7589fcf8534099eccf277f6e4295)
|
|
strange oplock related issue on the PSA.
Jeremy.
(This used to be commit 1dd274bf61aaaad3c475de93f53aac176678bc7c)
|
|
Jeremy.
(This used to be commit 1e5fe87d75ef4bb9d6af787abc501dcf105c9c6c)
|
|
* add "sid=..." to 'net groupmap add'
(This used to be commit e5f6676639b5552f7dec90091c53cf14e78088ee)
|
|
(This used to be commit 4c7efe25c3f2336938050086ffe5f4cfe462e6f6)
|
|
This allows us to join as a BDC, without appearing on the network as one
until we have the database replicated, and the admin changes the configuration.
This also change the SID retreval order from secrets.tdb, so we no longer
require a 'net rpc getsid' - the sid fetch during the domain join is sufficient.
Also minor fixes to 'net'.
Andrew Bartlett
(This used to be commit 876e00fd112e4aaf7519eec27f382eb99ec7562a)
|
|
(This used to be commit 9ba88c7314168b87b72a7e9dc3c7588dcce86893)
|
|
(This used to be commit 88fdc36f9373c63706907e48be317007aeba06d6)
|
|
(This used to be commit 2e4b45cd2efe46477c2849faffe0e8401132ef88)
|
|
(This used to be commit c6c4f69b8ddc500890a65829e1b9fb7a3e9839e9)
|