summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
2003-05-14*****LDAP schema changes*****Gerald Carter4-306/+816
New objectclass named sambaSamAccount which uses attribute prefaced with the phrase 'samba' to prevent future name clashes. Change in functionality of the 'ldap filter' parameter. This always defaults to "(uid=%u)" now and is and'd with the approriate objectclass depending on whether you are using ldapsam_compat or ldapsam conversion script for migrating from sambaAccount to sambaSamAccount will come next. (This used to be commit 998586e65271daa919e47e1206c0007454cbca66)
2003-05-14Move some #ifdefs and function prototypes around to avoid a compilerTim Potter1-13/+14
warning when we have a working version of snprintf() (This used to be commit 4836c0c0fcbf4be5f52bba60cc8843e8551b59b8)
2003-05-14Fix pointer return bug in get_unix_attributes()Tim Potter1-1/+1
(This used to be commit 7aa54f0a7f3bcfb5d9560ca3bb88e1549b7ce421)
2003-05-14spellingTim Potter11-15/+15
(This used to be commit 865c11275685c85124b506c9bbd2a8bde2e760b9)
2003-05-14spellingTim Potter1-2/+2
(This used to be commit 1b4f904277b5e9331cdf4491163f856aa78d0453)
2003-05-13Restore a number of fixes that idra removed when he merged hisAndrew Bartlett4-10/+5
idmap-and-the-rest from HEAD. These are correctness fixes that were already in 3.0, and a memory leak fix. The pdb_ldap changes are held back at jerry's request (he is also playing with pdb_ldap ATM). Andrew Bartlett (This used to be commit c7d5e336bd91514a02974044742b058be387e490)
2003-05-13Fix non-constant initialiser for Sun CC.Andrew Bartlett1-1/+7
(This used to be commit c2948b9248016388f9b7c5595b0e1aba7e1ace8d)
2003-05-13Try to fix up some code in pdb_smbpasswd that assumed we still had a 'uid'.Andrew Bartlett1-12/+22
This is to get non-unix accounts going for the build farm. Andrew Bartlett (This used to be commit 3daf7cba2393af768b253c419152ea305204f3d8)
2003-05-12Fix obvious compiler warnings.Jeremy Allison8-9/+1
Jeremy. (This used to be commit 2a6d0c2481c3c34351e57c30a85004babdbf99b0)
2003-05-12And finally IDMAP in 3_0Simo Sorce47-1516/+973
We really need idmap_ldap to have a good solution with ldapsam, porting it from the prvious code is beeing made, the code is really simple to do so I am confident it is not a problem to commit this code in. Not committing it would have been worst. I really would have been able to finish also the group code, maybe we can put it into a followin release after 3.0.0 even if it may be an upgrade problem. The code has been tested and seem to work right, more testing is needed for corner cases. Currently winbind pdc (working only for users and not for groups) is disabled as I was not able to make a complete group code replacement that works somewhat in a week (I have a complete patch, but there are bugs) Simo. (This used to be commit 0e58085978f984436815114a2ec347cf7899a89d)
2003-05-12fixing typos in debug statementsGerald Carter2-2/+2
(This used to be commit f59bcb51cfe4e268ba43245d401d212aefdf2b72)
2003-05-12Eliminate NULL pointers from VFS interface. All hooks now really callable, ↵Alexander Bokovoy3-13/+17
producing either correct result or returning error if the feature isn't supported in the configuration (This used to be commit af0a17349e6986eef2e2fd07b4b9f0bcd33bbe1f)
2003-05-12GCC accepts unnamed initalization of sub-structure. Let's see how AIX behave ↵Alexander Bokovoy1-1/+1
with this. Previous fix was incorrect. (This used to be commit 13e1bbd803111361bcd9c28b5086277c912c59a6)
2003-05-12Re-enable secure channel for net rpc vampire.Tim Potter1-8/+13
Jump out of sam entry processing loop if the return value from cli_netlogon_sam_sync() isn't OK or STATUS_MORE_ENTRIES. (This used to be commit 47d8ee3679292ece5d86df11bc56c9b4d71f3d11)
2003-05-12Fix two bugs that were stopping net rpc vampire from working over secureTim Potter1-2/+10
channel: - If the domain name passed to create_rpc_bind_req() is empty, use lp_workgroup() - Correctly set the auth_padding field when the send_size is a multiple of 8 bytes I've tested with nt4sp6 and win2ksp0 and it seems to work, although there are no password hashes transferred from win2k. The empty passwords are being protected by the secure channel encryption though. (This used to be commit a8c11e855611c91e94787387c62ac629232cacfa)
2003-05-12A small patch from metze to fix builds on some platforms ...Richard Sharpe1-1/+1
http://lists.samba.org/pipermail/samba-technical/attachments/20030512/0332258a/vfs-fix-01.obj (This used to be commit 5d643b9d03135effa5c8fd84bf1e54a7bd075e2a)
2003-05-12Fix a wrong define check.Alexander Bokovoy1-3/+4
(This used to be commit f1c4f65ae019c61f4a8178bee094dd66506dbcae)
2003-05-12Wrap into WITH_QUOTAS yet another place in trans2Alexander Bokovoy1-1/+7
(This used to be commit fea5d85d947965bd4789ab31607fd48d78403696)
2003-05-12Forgot to actually change default for quotas to -no- in configure.inAlexander Bokovoy1-4/+4
(This used to be commit 7c2395d7cd98b23d58a024a54e5058101fc9d322)
2003-05-12Forgot to actually change default for quotas to -no- in configure.inAlexander Bokovoy1-1/+1
(This used to be commit 73cf63a27f4ff53546171aec18952324d1ed983c)
2003-05-12Better isolate quota stuffAlexander Bokovoy2-0/+12
(This used to be commit 73de13159c57de21a59d2e32216812f5d9d2292e)
2003-05-12Small fix for HAVE_SYS_QUOTAS usage, spotted by build farmAlexander Bokovoy1-6/+7
(This used to be commit 01cff3e2e4e2724ed112fa62a775055192a2207b)
2003-05-12Fix up a bit of my sloppy C.Andrew Bartlett1-3/+2
(This used to be commit f67cc24acf37a9f46427c993574ecf261d7aec1a)
2003-05-12Small fix for HAVE_SYS_QUOTAS usage, spotted by build farmAlexander Bokovoy1-1/+6
(This used to be commit ee5fa840686a1d9789688e7c0f1c3ca8d0175e94)
2003-05-12Add NT quota support. Patch from Stefan (metze) MetzemacherAlexander Bokovoy21-106/+2783
1. Allows to change quota settings for shared mount points from Win2K and WinXP from Explorer properties tab 2. Disabled by default and when requested, will be probed and enabled only on Linux where it works 3. Was tested for approx. two weeks now on Linux by two independent QA teams, have not found any bugs so far Documentation to follow (This used to be commit 4bf022ce9e45be85609426762ba2644ac2031326)
2003-05-12Give up on the idea of avoiding lp_load() in ntlm_auth....Andrew Bartlett1-8/+18
Also, we might be given a 0 length challenge, so don't smb_panic() for smb_xmalloc() of zero size. Andrew Bartlett (This used to be commit 4842de04cf2e1528e726dfad070dfe3a82f46fa2)
2003-05-12Make it possible to actually use --user-SID and --group-SID on a standard ↵Andrew Bartlett1-2/+2
command line. Andrew Bartlett (This used to be commit dd14da756640ba36834a05b9da4759a809c0bb37)
2003-05-11Fix compile.Andrew Bartlett1-1/+1
(This used to be commit ca2e453c7838b6d0ed2d0a45124d162073bbbf99)
2003-05-11Add new files needed for VFS fixes.Alexander Bokovoy3-3/+318
1. idmap.h is used for unid_t only, agreed by Simo 2. sysquotas.h is used to add quota support to VFS layer and is needed for future NT quota commit 3. vfs_macros.h provides convenient macros to access VFS API. (This used to be commit 1dd578635913c8340cfc565d7e0c8c5086070084)
2003-05-11Fix VFS layer:Alexander Bokovoy34-1797/+1362
1. Finally work with cascaded modules with private data storage per module 2. Convert VFS API to macro calls to simplify cascading 3. Add quota support to VFS layer (prepare to NT quota support) Patch by Stefan (metze) Metzemacher, with review of Jelmer and me Tested in past few weeks. Documentation to new VFS API for third-party developers to follow (This used to be commit 91984ef5caa2d13c5d52e1f535bd3bbbae1ec978)
2003-05-11Set the password for a newly created trustdom account. Tested againstVolker Lendecke1-3/+34
PDCs running NT4SP1, NT4SP6 and Samba 3.0. Volker (This used to be commit 2143446043b2c29027cf69554caddf41274df709)
2003-05-11When we have a NT4SP0 PDC trust us, we first have to check theVolker Lendecke1-2/+2
password. On NT4, NT_STATUS_NOLOGON_INTERDOMAIN_TRUST_ACCOUNT means the password was correct. So the PDC believed that he had his trust account correctly added. Later the auth2 naturally failed. BTW, setting up an interdom trust account is not what I would call well documented and easy to handle... Working on that now :-) Volker (This used to be commit e4e44cf3b18231ec5d7326fb42edec741caa147b)
2003-05-11Ok, this is a hack. On a netsec bind reply I did not see anythingVolker Lendecke1-0/+20
useful in the auth verifier yet. So this patch ignores it. Really checking this would be a lot more intrusive: in rpc_api_pipe we would have to distinguish between binds and normal requests, or have more state in the netsec info of cli_state, which is also somewhat hackish. Volker (This used to be commit 8de04fcf680a9bc5054965577eb500e0541ffe66)
2003-05-11As discussed on samba-technical - move to 'primaryGroupSid' insted ofAndrew Bartlett1-17/+45
primaryGroupID (rid). This is consistant with the move from 'rid' to ntSid for the primary user identifier. Also cope with legacy installations where primaryGroupID might have been stored as 0. Andrew Bartlett (This used to be commit 0e432817cb927b41af7b49fb0b5081ffdb46f85e)
2003-05-11Using /dev/urandom for determining an ldap server backoff is a waste of systemAndrew Bartlett1-2/+6
entropy - use sys_random() instead. Andrew Bartlett (This used to be commit 640462a365235aa7ce6f817778f022530a25d909)
2003-05-10Reverse latest module_dummy patch from metze and me.Jelmer Vernooij1-53/+0
(This used to be commit 9dc8f7b4d46b3d1adf4b22cec2b62600dcb3c899)
2003-05-10Reverse previous patch from Stefan and me after comments by Andrew BartlettJelmer Vernooij34-84/+2
(This used to be commit d817eaf0ecca2d878ab1ffcf7a747a02d71c811e)
2003-05-10Patch from metze and me that adds dummy smb_register_*() functions soJelmer Vernooij35-2/+137
that is now possible to, for example, load a module which contains an auth method into a binary without the auth/ subsystem built in. (This used to be commit 74d9ecfe2dd7364643d32acb62ade957bd71cd0d)
2003-05-10Fix from Tom.Lackemann@falconstor.com to correctly set the flags basedJeremy Allison1-1/+9
on the security entries sent. Jeremy. (This used to be commit 45953d59f707b58e66b980512afc7f929d360ad5)
2003-05-10Optimisation. We don't need to do 2 strlen's when we're setting the statJeremy Allison1-9/+0
struct in the correct place. Jeremy. (This used to be commit 4cd8b276715f7e019fcee8fc3ebb2855610c4751)
2003-05-10Fix for possible segfault in readline handler. Found by vitalyb@mail333.com.Jeremy Allison1-1/+2
Jeremy. (This used to be commit 151b7d0d88e14dd17c28e522a3e1e8f64a4a2a87)
2003-05-10Fix typo.John Terpstra1-1/+1
(This used to be commit 7bec28f23c5bef8516e798a0808585ed1a30517e)
2003-05-09removing total print jobs since it is not used anymoreGerald Carter1-2/+0
(This used to be commit b87be0dddfcace95527b9a05f8f81cd6d2e86d39)
2003-05-09Makefile changes to allow new NTLMv2 patch to work.Andrew Bartlett1-10/+7
(This used to be commit 0c1946e51c7cd18907eb65c93042758196fe74c9)
2003-05-09Cleanups. My NTLMv2 changes also changed the preference from using an implicitAndrew Bartlett1-42/+42
structure-memcpy for DATA_BLOB parameters to using a pointer to that DATA_BLOB. auth_sam calls some of these functions, so I've cleaned it all up to use this format now. Also clean up some debug statements to make them easier to read. Andrew Bartlett (This used to be commit 0c355c274a6ac084e4bf15a15613dfc007d6c5fc)
2003-05-09Finally get NTLMv2 working on the client!Andrew Bartlett4-119/+131
With big thanks to tpot for the ethereal disector, and for the base code behind this, we now fully support NTLMv2 as a client. In particular, we support it with direct domain logons (tested with ntlm_auth --diagnostics), with 'old style' session setups, and with NTLMSSP. In fact, for NTLMSSP we recycle one of the parts of the server's reply directly... (we might need to parse for unicode issues later). In particular, a Win2k domain controller now supplies us with a session key for this password, which means that doman joins, and non-spnego SMB signing are now supported with NTLMv2! Andrew Bartlett (This used to be commit 9f6a26769d345d319ec167cd0e82a45e1207ed81)
2003-05-09Fix bug #4 for net rap. Allow more than 50 chars for long form listings of ↵Jim McDonough1-2/+2
users and groups. (This used to be commit dcc6d9e76c737400aaffdd4f261fd0f191aaeea8)
2003-05-09Fix comment - we now have 5 types of error...Andrew Bartlett1-1/+1
(This used to be commit 372a574a73b86855cf6efc18349e5ba24067d690)
2003-05-09Make sure we always have some client data, not just the hash. An NTLMv2 orAndrew Bartlett1-2/+3
LMv2 response less than 24 bytes is just silly. Andrew Bartlett (This used to be commit b4ecdb2e582376d2713f81e8e32a668014905d70)
2003-05-09Elsewhere, we use a #define for this environment variable name, so do theAndrew Bartlett1-2/+2
same here. Andrew Bartlett (This used to be commit a4556786d28724309321a02afbf5005158440258)