summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
2007-10-10r240: I'm pretty happy with the 'ntlm-server-1' helper protocol now, and asAndrew Bartlett1-2/+0
there is now a public patch that uses it, make it always available. (It was #ifdef DEVELOPER) Andrew Bartlett (This used to be commit aa3bc79835c79652199ce5aaf2f3981f8211c9bd)
2007-10-10r238: Fix memleakVolker Lendecke1-0/+3
(This used to be commit fe7daa3b8a080a9e39ff055177b54f476fce2c32)
2007-10-10r229: Don't list domain groups from BUILTIN.Volker Lendecke1-0/+7
Volker (This used to be commit b4429d97439e511d40901f809e3923945cb52221)
2007-10-10r227: Patch from James Peach <jpeach@sgi.com> to search RIX ABI paths for ↵Jeremy Allison1-7/+18
libiconv. Based on inital fix from Jason Mader. Jeremy. (This used to be commit 2719d0ee7cb8bbaad79a4b73e10453a825de1309)
2007-10-10r225: Patch from Pat.Hayward@propero.net to make the session_users list dynamic.Jeremy Allison2-9/+29
I restricted it to 128k max to prevent DOS attacks. Jeremy. (This used to be commit 70fb2a196d83c4bde11d27608da27f956f3f19b8)
2007-10-10r221: Remainder of bug 1208. We do not remove creds from _any_ FILE ccache,Jim McDonough1-17/+40
because not only does it not work on Heimdal, but also since ccaches created within samba are memory-based, so we shouldn't touch a FILE-based one (it was probably created via kinit or similar). (This used to be commit 5971b0980ca8abae2208f22485c5af4c0dde0459)
2007-10-10r219: Obtain new tickets if current ones are expired. Next part of fix forJim McDonough1-12/+36
bug 1208. Based on a fix from Guether Deschener. Outstanding pieces: - Heimdal FILE-based ccaches don't actually remove creds properly, so we need to code a check for this - what if ticket expires between our check and when we use it? Guenther has coded up fixes for these parts, but I still need to review them, as I'm not totally comfortable with the solutions. (This used to be commit ef008b9710e682f87f0bbf526d30eb5114264233)
2007-10-10r215: merge over svk fixes from 4_0Stefan Metzmacher1-7/+15
metze (This used to be commit 2326c9e0a239de6997a40d8d28c39b9aea965feb)
2007-10-10r208: merge the version schema changes from 4_0Stefan Metzmacher3-61/+23
metze (This used to be commit 4d9d8e83aa367fe17a74b81d4417cc2cfbdf200e)
2007-10-10r201: Fix bugs in the --helper-protocol=ntlm-server-1 implementation.Andrew Bartlett1-8/+9
(allow the use of base64 encoded strings, LM or NT passwords) Andrew Bartlett (This used to be commit 57a5563b421b0684e7bb40d10c2168916c59c89d)
2007-10-10r197: mistaken merge from trunkGerald Carter1-0/+4
(This used to be commit 6b18012dc8fe92a296c46a12214622d56e1f3fd8)
2007-10-10r196: merging struct uuid from trunkGerald Carter27-229/+389
(This used to be commit 911a28361b9d8dd50597627f245ebfb57c6294fb)
2007-10-10r195: adding files to ignore listGerald Carter2-9/+5
(This used to be commit 1501d58b8e23d0c9ae51514773d0429886fa9d58)
2007-10-10r192: Fix configure.in to only use $BLDSHARED to select whether to build ↵Paul Green1-3/+3
static or shared libraries. (This used to be commit 35d7435caec55765b39508889d77583c4ec4807c)
2007-10-10r191: Only send the ntlm_auth 'ntlm-server-1' helper client a '.' after theAndrew Bartlett1-2/+1
server had said something (such as an error). Andrew Bartlett (This used to be commit c05016a2f750960c40387c1d6aba9f6841f66a3b)
2007-10-10r188: Add a new 'helper protocol' to ntlm_auth.Andrew Bartlett1-2/+202
This protocol looks rather like SMTP headers/LDAP: NT-Domain: TESTWG Username: abartlet ... Password: foo Challenge-response passwords are in hexideciaml, while any 'plain' string can be base64 encoded when like this: Password:: Zm9vCg== (the :: indicates it, just like LDAP - I hope) The protocol is not final, so it is #ifdef DEVELOPER for now (so nobody starts to rely on it until I'm happy), but we may as well get this into subversion. My intention is to use this to power the next version of my PPP/ntlm_auth plugin, and hopefully entice a FreeRadius plugin out of the woods. Andrew Bartlett (This used to be commit 8efdd957ba8310515242ba2979ff07130a0b1a3a)
2007-10-10r185: fix linking prob surrounding --with-fake-kaserver and -lcryptoGerald Carter1-0/+4
(This used to be commit 54912b70f2a6e26a278d6e94b830bf1f43896c3f)
2007-10-10r177: Split ntlm_auth --diagnostics into a seperate file, so as not to clutterAndrew Bartlett4-601/+665
the main ntlm_auth program. It quite possibly should belong in smbtorture, but relies on the winbind client for now. Andrew Bartlett (This used to be commit 6e1b7a8848062a184ee293cf688135b851f2bd8d)
2007-10-10r176: Improve our fallback code for password changes - this would be betterAndrew Bartlett3-43/+115
with more correct NTLMSSP support in client and server, but it will do for now. Also implement LANMAN password only in the classical session setup code, but #ifdef'ed out. In Samba4, I'll make this run-time so we can torture it. Lanman passwords over 14 dos characters long could be considered 'invalid' (they are truncated) - so SMBencrypt now returns 'False' if it generates such a password. Andrew Bartlett (This used to be commit 565305f7bb30c08120c3def5367adfd6f5dd84df)
2007-10-10r175: Move this comment to the right place...Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit e5bbb086b2aeb826121d7fef88fcfaa49d876ea4)
2007-10-10r171: Continue the 'rename nt_session_key' work. This attempts to renameAndrew Bartlett1-88/+76
this variable to 'user_session_key', where possible. The command line parameter is currently unchanged). Andrew Bartlett (This used to be commit da4177209d1058af8e121c34f9928728f491b22e)
2007-10-10r160: Fix msdfs proxy. Could others please also test this, this code is sooVolker Lendecke1-7/+9
cluttered. I've tested with w2k and xp with msdfs proxy and normal msdfs root, but I would like others to also look at the code. Thanks, Volker (This used to be commit c31feb045a3d9a6bc1dfd0377a74d93354e8034a)
2007-10-10r155: real for for BUG 761 -- allow printing parameter to set defaults on a ↵Gerald Carter2-50/+86
per share basis (This used to be commit 14d3794eecd848d3d75e2b8e71cf8b4d0792b0c9)
2007-10-10r153: Fix memleakVolker Lendecke1-0/+1
(This used to be commit fbeff419913b01bf0e814ada6ec55d56fe90f179)
2007-10-10r150: Make 3.x pass the Samba 4.x RAW-SEARCH tests - except for theJeremy Allison2-77/+177
UNIX info levels, and the short case preserve names. Tested with NT - needs more testing. Will work on this more on Monday. Jeremy. (This used to be commit 88a9bca9aade3ee0ce9713857becfe0a13bbfd07)
2007-10-10r148: Ensure we do not dereference a null pointer when we return the userAndrew Bartlett1-5/+17
session key. (This used to be commit b09d333aed00a7ea599f45105e913d3a3ea25b31)
2007-10-10r145: pdb_create_alias now returns NTSTATUS. More of this to follow.Volker Lendecke2-6/+8
Volker (This used to be commit 6e18bed17093e0b1792f68817096e64e0e841f26)
2007-10-10r144: Move first use of AC_CHECK_HEADERS so it is always executed. Tidy up ↵Paul Green1-13/+16
indendation. (This used to be commit 3d045d46e4b129057d30c78cd513ecca8da5107a)
2007-10-10r139: Apply some constVolker Lendecke1-1/+1
(This used to be commit 3eab8ed5453f29516d8e0022bab87c271468d690)
2007-10-10r116: volker's patch for local group and group nestingGerald Carter24-341/+2003
(This used to be commit b393469d9581f20e4d4c52633b952ee984cca36f)
2007-10-10r115: finally checking in tridge's winbindd_schannel patch for connectionsGerald Carter2-2/+36
(This used to be commit 1fae60ab20c5cbe396dc8af1c8c9a98d5683fdf4)
2007-10-10r104: Fix ntlm_auth by adding the new strhex_to_data_blob() call.Andrew Bartlett2-6/+11
Andrew Bartlett (This used to be commit 0693b9e79fabd58491f8aaec11dbbc71fab34f80)
2007-10-10r96: Stupid f&%'n UNIX extensions.... SETPATHINFOJeremy Allison4-63/+67
normally takes as it's param entry the filename to be acted upon.... Unless it's UNIX extensions create hardlink, or UNIX extensions create symlink. Then it's param -> newfile name data -> oldfile name. This caused me to stuff them up in 3.0.2 (and the client commands link and symlink). Fixed them, everything is now called oldname and newname - thus specifying which name should already exist (hint - the old one...) and which will be created (newname). Jeremy. (This used to be commit 21cc6ab7e8a41160a3e2970623ade7445b5214d6)
2007-10-10r93: Update VOS _POSIX_C_SOURCE macro to 200112L.Paul Green1-2/+2
(This used to be commit 4d1be258a1e0798267eef792ca59cc15695f8057)
2007-10-10r91: Fix lsalookupnames. Previously we'd fail if we didn't find the name, butJim McDonough2-0/+13
we never checked if it was a domain user and didn't find a local one. (This used to be commit 68022f5ebc55d1f3403dee5198d364cff300baf5)
2007-10-10r88: Add missing guest mount option for mount.cifsSteve French1-9/+10
(This used to be commit e688c08d330836640af91c734d2c6f451c2f4337)
2007-10-10r87: Fix the build that Andrew Bartlett broke. Andrew - don't check ↵Jeremy Allison1-0/+6
*ANYTHING* in unless you have done a make clean; make. Jeremy. (This used to be commit 09d82a0bef2dd5759e5430c4faea413b5a64ac11)
2007-10-10r86: This function was moved to lib/nterr.hAndrew Bartlett1-28/+0
Andrew Bartlett (This used to be commit 1c6d0399d67c9206baf7d4173cc00540146fa897)
2007-10-10r85: Update the winbind interface version, as I just extended the struct.Andrew Bartlett1-1/+1
Andrew Bartlett (This used to be commit 039883043d15902096f6d5e80737f4a502ed0bf8)
2007-10-10r84: Implement --required-membership-of=, an ntlm_auth option that restrictsAndrew Bartlett4-43/+258
all authentication to members of this particular group. Also implement an option to allow ntlm_auth to get 'squashed' error codes, which are safer to communicate to remote network clients. Andrew Bartlett (This used to be commit eb1c1b5eb086f49a230142ad2de45dc0e9691df3)
2007-10-10r81: Make EA's case independent - fix smbtorture to test for this.Jeremy Allison2-3/+26
Jeremy. (This used to be commit 0661357484a33329c75457527416667feaf57ef9)
2007-10-10r77: Fix path canonicalization of the mount target path and help text ↵Steve French1-5/+25
display in the cifs mount helper (This used to be commit 69861f168c6be90b4e7f47e29006b2d60d442ffd)
2007-10-10r76: Fix smbfs problem with Tree Disconnect issued before smbfs starts its work.Alexander Bokovoy3-1/+7
We use cli_state.smb_rw_error to pass this specific case into cli_close_connection() from smbmount as smb_rw_error can have only selected number of states and it is ignored in cli_close_connection(). Compiled and tested by Lars Mueller from SuSE on x86, x86_64, ppc, ppc64, s390 and s390x. (This used to be commit 738666ce0a310fae14476020fd6dac027b0e3ec5)
2007-10-10r75: patch from Cal Heldenbrand <calzplace@yahoo.com> for 'pam_smbpass migrate'Gerald Carter1-3/+3
(This used to be commit 673c3f8bc0343cce293bacbf0773212b53182d1d)
2007-10-10r73: bumping version to 3.0.3pre3Gerald Carter1-1/+1
(This used to be commit 70fd78025b04062104fec36691efcd1b01252d03)
2007-10-10r69: Global rename of 'nt_session_key' -> 'user_session_key'. The session ↵Andrew Bartlett12-64/+64
key could be anything, and may not be based on anything 'NT'. This is also what microsoft calls it. (This used to be commit 724e8d3f33719543146280062435c69a835c491e)
2007-10-10r63: Remove -lcrypto from wbinfo. Sorry.Volker Lendecke1-1/+1
Volker (This used to be commit b69e8e64d4d89d48f9cb5d07b32110d6ecfc3401)
2007-10-10r59: revert session key problemAndrew Tridgell1-2/+2
(This used to be commit 40b5794ae0919c6c6f1b8a451871dcc95bbab5cc)
2007-10-10r53: Remove modifyTimestamp from list of our attributes. We just check it forJim McDonough3-7/+4
cache entry time comparisons in password lockout. Fixes problems where pdb_ldap tries to delete the operational attribute modifyTimestamp when deleting a user account. (This used to be commit 5ebcb9081e435d54c39d4d3a1ef1d7b651ccb53f)
2007-10-10r50: Fix bug 1139 as per fix suggested by jdev@panix.com,Jeremy Allison1-3/+3
swap lookups for user and group - group will do an algorithmic lookup if it fails, user won't. Jeremy. (This used to be commit a205c56a75c93c82796fd68687e8c0db26459073)