Age | Commit message (Collapse) | Author | Files | Lines |
|
here.
(This used to be commit 88455313f6551a75eff4df2f0ba91430948c1c78)
|
|
attributes rather than calling getpwnam() on the user.
This should help fix some of metze's performance issues - particularly on
enumerations.
There is a consequential change to the operation of 'non unix account's in LDAP
- they are no longer restricted to being 'within' the NUA range, but will
always be added to that range.
Finally, there is the doco for this and the previous LDAP SSL changes.
(This used to be commit 18abaeffda300074a507561d8372d5bfddc8fe50)
|
|
(This used to be commit 82f6b264037a2f1b882dc75bc43c6c8b41477270)
|
|
(This used to be commit f91c363bc05d1c82ad8a99a5c0d59b46cf820aac)
|
|
- Default is now for start-tls, on the ldap (not ldaps) port
- We check for 'I am currently root' in the right place now, and don't
accidentily use a cached connection.
- We don't loop on failure to be root, or some other errors.
- A bit cleaner error reporting for add/modify.
- Both the OpenLDAP and manual URI parsing tested.
Andrew Bartlett
(This used to be commit cfa1e459d727764feddcfdd8c9c0404282e2d0e8)
|
|
empty username/password is passed on the command line. Previously we were
leaving the domain name set and the password set to a NULL character.
Added a --get-auth-user command to display the restrict anonymous username
information. Can only be run successfully by root.
(This used to be commit 0bb9bc196207fb35c9de6accbe101937a687762f)
|
|
- move winbindd client handling into accessor functions in
winbindd_util.c
- move some winbindd socket routines into accessor functions in
winbindd_utils.c
(The deadlock situation mentioned in the appliance branch is probably
not applicable since we don't clear the connection cache on SIGHUP.
Perhaps we should?)
(This used to be commit 846b5494942c73e68616e7eae0d2fd5ae4b2bc05)
|
|
(This used to be commit a15434314fd8cd88eab40e7cbc8f06a7d0d0169e)
|
|
anonymous support) is blank.
(This used to be commit 7badccda46a0837dd9da802b44c2fbcb4f38845a)
|
|
(This used to be commit 62ab0f8cbe7c517084383bdc9a8c97404ad27147)
|
|
(This used to be commit 9ea7440ac4a3dbb98e34ccb8ee78e0bd782fa704)
|
|
You must make two passes over NTUSER.DAT, one for the OWNER SID and one for
GROUP SID.
I have not tested this yet ... that is, I have not tried to use this on
a Win2K etc server.
(This used to be commit 7eb89ba467a66190775943834683a42b693d2e3b)
|
|
SecDescs in the NTUSER.DAT ...
(This used to be commit dbc608ba7e591175cd02f4adfdcfecd1350526a5)
|
|
(This used to be commit 26857be78cda1e6d6cae9bc87d34cdad12492748)
|
|
(This used to be commit 095af10ff2e549b82c646df5ed20cf05352a3994)
|
|
(This used to be commit 59735a5aac88b076320874f06056d50947396fb3)
|
|
(This used to be commit daefe52a56a7b977b8e561f8f668c42183de413b)
|
|
generates some errors we haven't seen before which are inappropriately
logged at level 0.
(This used to be commit bd64de3716ffa9c3ebec282aa5cc0f773d3d8096)
|
|
Jeremy.
(This used to be commit d05b147fb3f32031a202cf61703dc2fd969f4617)
|
|
(This used to be commit 6ec5dce69834e72e458a8acff7d1790cbdd46d67)
|
|
Jeremy.
(This used to be commit 9e47aa32ed96faff4a68a8e360c1353fc011adf1)
|
|
(This used to be commit a82dbb3c22e6cb2096efb87c12a6006642806aac)
|
|
Volker
(This used to be commit 54115fd16ff10d1958153268dfd0f22f3c400bb5)
|
|
This is an early, messy version of the code, but it illustrates what can
be done. It currently only prints the Owner SID, Group SID, and Perms and
SID from each ACE.
Once more work is done, it could actually walk the SEC DESCs and ACEs and
change the SIDS ...
(This used to be commit 322151509c255aa288627ae239661154ab0c83d5)
|
|
(This used to be commit ce5a7084540feff7354d2005e25cef581ad500db)
|
|
(This used to be commit ff10786c9d4662af355c12cc7363092dc5187e99)
|
|
Jeremy, it wasn't me!!!!!!
(This used to be commit 00d4e5c67b8a3b8eafa56fd46fbaf4922030dd81)
|
|
(This used to be commit 86eb0a25b1df8ca25872f9846a74d0f13a4ad045)
|
|
(This used to be commit 6945e89e2d10743635f01420c83d405a2d4cb356)
|
|
- make smb_load_module() return the return value of init_module()
(This used to be commit a8d2dd8d009797486105188f8fdb898a65bb25b0)
|
|
(This used to be commit 732bc4519f1119100607cc84400e8f84e0c0ba9d)
|
|
(This used to be commit 4d1206be5275a8af7dfb612f1747fba484a7d017)
|
|
(This used to be commit b5d05d3ec6808465d27e15db2a9ff48804e2e78e)
|
|
(This used to be commit d134d66f989026821b29b24c8c15a112213b61d6)
|
|
(This used to be commit 94647051adc223e17997cd6688da0c71b7ea870a)
|
|
Andrew Bartlett
(This used to be commit 5c4967c70dfab78733ef21e3a5eaf252a5958613)
|
|
(This used to be commit 3a7f8a568e9d1608c2a065e0b98488e2d068911c)
|
|
Jeremy.
(This used to be commit 78df2c916ae3940f0124912f99b1e0ca3914fff5)
|
|
set 'algorithmic rid base' correctly after a 'net rpc vampire'.
Volker
(This used to be commit 5c0869be321852919dba1566c6bcab02e4657541)
|
|
(This used to be commit 8c15db105addbafd822d96d29ff1692566b92267)
|
|
This patch, from "Stefan (metze) Metzmacher" <metze@metzemix.de> implements an
LDAP connection cache. This removes the quite silly situation where every
single passdb operation involved a new LDAP connection.
The hope is that this will give us a decent performance boost in some usrmgr
related activities, and in the sid->name/sid->uid code.
The remaining things I think are 'todo' for pdb_ldap (in the near term) are:
- intergrate volker's next_rid patch for NUA accounts,
- add a 'trust ldap ids' option (remove Get_Pwnam() hit on enumerations).
- put the group mapping actually into ldap
- Schema fixes and do utf8 conversion
- server failover (try a second server for the rebind on fail)
- ensure we block between an 'add' and the ldap master replicating to our
local slave (mezte found this issue, kills domain joins)
Andrew Bartlett
(This used to be commit 3418da16456511490beb0d1045fff24576b48273)
|
|
(A stuck 'unix passowrd sync' was gettting reported as 'success', causing
all sorts of fun)
Andrew Bartlett
(This used to be commit b0d5745bb53b16e92160a6bdd2b984afb0e982ee)
|
|
work a bit better for password changing.
Andrew Bartlett
(This used to be commit 425782ba32554b90d592493a1928a926e492bb2a)
|
|
Jeremy.
(This used to be commit 997c234e15a5f8d742320359a53e15a27661d456)
|
|
(This used to be commit 8af12875b0608b83187e4156843e37097de4cd13)
|
|
(This used to be commit 06362586cb754bd6bc89b50b966737958286ca2e)
|
|
aka vorlon)
(This used to be commit 9efa98b4a65a38df922ce3b83f5fde631cb70844)
|
|
place.
Jeremy.
(This used to be commit e46e38beabe8ae5b1ba1941dcffecbc89165ce2a)
|
|
choose the server that has the most bits in common in its IP with one
of our interfaces.
(This used to be commit 31774dce67844b67cb405e65f307a20354f2cedb)
|
|
Jeremy.
(This used to be commit 4d9b205362997f897be4739efd52ee2cfde4c6cb)
|