summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
1997-10-02change the semantics of hosts allow/hosts deny so that a globalAndrew Tridgell3-4/+26
setting applies to all shares regardless of any settings on other shares. This allows us to immediately drop a connection if it does not come from a allowed host, without even parsing the first SMB packet. The next time we get a nasty security hole we can offer people the option of just setting their hosts allow line. If we drop a connection in this way we generate a "Not listening for calling name" response and then exit. add a per share "oplocks" option in smb.conf. I think its important to be able to disable oplocks on a per-share basis as there are occasions then they are definately not wanted, for example when sharing data between a windows box and a unix application. This also allows us to tell people "try disabling oplocks" when diagnosing problems. fix a bug in process_smb(). It was taking the length of the packet from outbuf, not inbuf (this bug was introduced with the oplocks code). Jeremy, I assume this wasn't deliberate? (This used to be commit 44bc9f239aa0b3cdf6cf9ad8d3911e397eba7335)
1997-10-02Modified some debug messages, moved from 5 -> 8.Jeremy Allison2-15/+15
Jeremy (jallison@whistle.com) (This used to be commit cb83c74a6ccfc44721af65b75625a949782c758a)
1997-10-02Fixed problem with oplock_type being set with no port.Jeremy Allison1-2/+10
Jeremy (jallison@whistle.com) (This used to be commit 90484db0bfe25a096def627f94be24f3fa243375)
1997-10-01OPLOCK CHECK-IN - oplocks are now *OPERATIONAL* !!!!Jeremy Allison7-53/+516
Yipeee. At least as far as I can check in a short time :-). local.h: Changed OPLOCK_BREAK_TIMEOUT to 30 seconds. locking.c: Big changes to delete oplocks on a share mode entry. proto.h: updated. reply.c: Added oplock break code in lockingX reply & readbraw reply. server.c: Add batch oplock code. Force server shutdown if client fails to respond to oplock break. smb.h: Fix silly slow share mode oplock define bug. status.c: Add oplock status info. Jeremy (jallison@whistle.com) (This used to be commit 4c83d37239f15f855fc10f01d7b4bf4217fb9eda)
1997-09-30dir.c: more pstrcpys.Jeremy Allison8-145/+637
local.h: Add OPLOCK_BREAK_TIMEOUT. password.c: Fix for paranoia password server security bug. proto.h: Updated. reply.c: Oplock changes. server.c: Massive oplock changes - nearly there.... smb.h: oplock definitions. util.c: Add local message processing queues for oplocks. Jeremy (jallison@whistle.com) (This used to be commit 92f1553db2cdf6f32881eb984a87050cf3e4760b)
1997-09-26Fixed you're -> your text that some pedant complained about :-).Jeremy Allison1-1/+1
Jeremy (jallison@whistle.com). (This used to be commit b11833f1bdecf1c3c3e5bc7494741605cba92a1e)
1997-09-26Syncing up current oplock work in progress. #ifdef'ed outJeremy Allison8-167/+291
so should have no effect on other work. Jeremy (jallison@whistle.com) (This used to be commit 7e3d4c8b21f63a06d32605d230129e36883ad08c)
1997-09-26Correctly rolled back interface.c (I was working on an olderJeremy Allison1-210/+186
revision). This will now be the current revision. Jeremy (jallison@whistle.com) (This used to be commit eb55ddd5bff1c6f95292215a8c53acb6bfdadeb2)
1997-09-26Adding Andrews buffer overflow fixes into the main branch.Jeremy Allison29-239/+340
Jeremy (jallison@whistle.com) (This used to be commit e7eb1f044d3101679dc7a118820ea5efe0cd837c)
1997-09-26add error string reporting to clitarAndrew Tridgell1-3/+4
(This used to be commit 2c5587a6fe425b1cc57cf28e92e77ba84f08ce33)
1997-09-25Added missing slow share mode offset defines. SomehowJeremy Allison1-0/+34
they got lost. Jeremy (jallison@whistle.com). (This used to be commit ce9cdc2f6175e4a6195f8875360cd945ae60052c)
1997-09-25Makefile: Removed earlier errors.Jeremy Allison5-188/+230
includes.h: Added INADDR_LOOPBACK define. locking.c: More code to support oplocks. proto.h: Updated. server.c: More code to support oplocks. Moved processing of an SMB out of process() into a separate function so it is easier to call from an oplock break. smb.h: Added oplock fields. Jeremy (jallison@whistle.com) (This used to be commit f46dbaf08eb8e06a7545d2c19dce9e2dda9dcc78)
1997-09-23Checkin to sync up oplock development code so that NTJeremy Allison6-1189/+313
domain development code won't diverge. Makefile: Fixed make proto (again). Added GLIBC2 fixes for Linux. includes.h: Added GLIBC2 fixes for Linux. proto.h: Much tidier. quotas.c: OSF/1 quota fix. reply.c: Fix from Ray Frush <frush@engr.colostate.edu> for zero NT timestamps. server.c util.c: First oplock checkin - nowhere near finished so bracketed with #ifdef USE_OPLOCKS. Done to make sync with NT domain code easier. Jeremy (jallison@whistle.com) (This used to be commit 7dce7d84473beb5663b14a8ab32781970819c19d)
1997-09-23added code from Philip A Prindeville <philipp@enteka.com> which expandsLuke Leighton2-186/+213
the interfaces option to this: "interfaces = le0 le1" or "interfaces = all". it uses SIOCGIFxxxx ioctl calls. (This used to be commit 39071415ba6f8a00e2909e443261d0059fe27e82)
1997-09-19Makefile: Changed proto: target to not include c files not used currently.Jeremy Allison6-56/+1198
Caused proto.h to be from a sorted list of C files. arcfour.h: Added prototypes. client.c: Added username%password in environment patch from John Blair <jdblair@frodo.tucc.uab.edu> loadparm.c: Added username manipulation code from Peter McCool [SMTP:peter@qimr.edu.au] username.c: Added username manipulation code from Peter McCool [SMTP:peter@qimr.edu.au] mkproto.awk: Added arc4_key type. proto.h: Updated & sorted. Jeremy (jallison@whistle.com) (This used to be commit 97ed4fea67095dfb83227e7b5fffc236ff277e02)
1997-09-18Added arcfour code needed for SMB password changing.Jeremy Allison2-0/+126
Jeremy (jallison@whistle.com) (This used to be commit 8bc3d13b3d66fc533d5bc6abf3fc9d5c67d0f286)
1997-09-18added timestamp to "Denied connection" message.Luke Leighton1-2/+2
(This used to be commit f28b14a86c22c3bad187ca57f03e13da795d4136)
1997-09-18added some debug stuffAndrew Tridgell1-51/+64
(This used to be commit 95184fd1ecdf5eea9c42d748db848210b7e863d3)
1997-09-18John asked the other day about using the tar feature in smbclient toAndrew Tridgell1-6/+22
handle file paths longer than 100 characters (the limit of the normal tar format). This patch adds support for producing GNU tar files (which have no real limit on the path length) in smbclient. Note that I have only added support for producing GNU tar files, I haven't added support for accepting them when restoring. I thought I'd leave that up to John :-) (This used to be commit d5daf85162e844c9e953cc4dfbb3f1d800747130)
1997-09-17JHT ===> Changed behaviour of logon script processing so that all macrosJohn Terpstra1-1/+9
can be used in the logon script parameter definition in the smb.conf Globals section. This fixes a problem reported by Jacco de Leeuw where OS/2 does not see the %u variable. Jacco suggested using %U but we really do want the user for the netlogon share session. If this does not do the trick - well we eat our hat! Yeh! (This used to be commit a7716b2e70606e447094509116455ea53fe8bf64)
1997-09-17Added 'delete veto files' paremeter. Ugly - but the onlyJeremy Allison3-4/+71
way to allow Samba client users to delete directories containing Mac metafile information (.AppleDouble directories). Needed for clean integration with netatalk. Jeremy (jallison@whistle.com) (This used to be commit 29c6c037dc62e44784e9d127d1e7ef3dd1506733)
1997-09-16Fixing assumtions that malloced memory is zero filled - makingJeremy Allison3-1/+7
sure it is. Jeremy (jallison@whistle.com) (This used to be commit 59ee0d0c7ea166a3bf58ceb4c939217d6ff74498)
1997-09-16add a castAndrew Tridgell1-1/+1
(This used to be commit e712c6ed61abeae5ec2acf99f109ad81e7a19978)
1997-09-16- change generate_challenge() to use md4 instead of desAndrew Tridgell4-45/+65
- move routines about a bit between smbencrypt.c and smbdes.c. Ensure that there is no entry point for normal DES operation - add the following comment: This code is NOT a complete DES implementation. It implements only the minimum necessary for SMB authentication, as used by all SMB products (including every copy of Microsoft Windows95 ever sold) In particular, it can only do a unchained forward DES pass. This means it is not possible to use this code for encryption/decryption of data, instead it is only useful as a "hash" algorithm. There is no entry point into this code that allows normal DES operation. I believe this means that this code does not come under ITAR regulations but this is NOT a legal opinion. If you are concerned about the applicability of ITAR regulations to this code then you should confirm it for yourself (and maybe let me know if you come up with a different answer to the one above) (This used to be commit 35b92e725f351c9a9f2846a6b55f71c234f187c7)
1997-09-16bug fix in the new des code.Andrew Tridgell1-21/+13
I had one of the sbox[] constants wrong, which interestingly gave a 20% chance of the whole algorithm failing. (This used to be commit 9a42f88a0963d006e8bf091775a3f55f6c6b4f77)
1997-09-15unbecome_domain_master and unbecome_logon_master were announcingLuke Leighton1-3/+0
as "dead". removed this. (This used to be commit d1f298cd529188c0cddb18e3a1bf8abb093b3c3b)
1997-09-15- if the user already exists then ignore the -add commandAndrew Tridgell1-10/+19
- change the way the smbpasswd file is auto-created if it doesn't exist. It didn't work under IRIX for some unknown reason The smbpasswd.c code is really a bit of a mess. We should probably rewrite it sometime. (This used to be commit 6e3697ad1218264c85c6c1f4b1521960e21e2a67)
1997-09-15- change a lot of occurances of errno to use strerror(errno). We can'tAndrew Tridgell3-25/+29
assume all our users are programmers :-) - automatically create the smbpasswd file if it doesn't exist when running smbpasswd. (This used to be commit 1d2361bd2dec35bce029699f54c6a61fa739fa4b)
1997-09-15rewrote md4.c from scratch. This implementation should be portable andAndrew Tridgell3-298/+166
doesn't have any worries about RSA copyright. (This used to be commit a1569971663f01c245c145b18290d9dba965dc36)
1997-09-15no longer neededAndrew Tridgell1-58/+0
(This used to be commit b04bc7f75e90a8150f7372d15f4f17fb0bb50ab9)
1997-09-14This commit does 3 main things:Andrew Tridgell20-235/+96
1) put the encryption code in by default, with no #ifdef. It is still disabled by default so you need to add "encrypt passwords = yes" in smb.conf but at least all binaries will have it. 2) cleanup the kanji code so it compiles with no warnings 3) get rid of lots of uses of ugly non-portable C code. The main offender being things like "register" but also remove uses of the "const" keyword as there are compilers out there that don't support it and even those that do often complain about its usage. Users don't like warnings :-( There is still some work to do. We need to replace the md4 code with our own implementation. The current code (from rfc1186) is PD but is not very portable. The new RFC (rfc1320) is more portable but adds copyright restrictions. I'll do a from-scratch MD4 soon. We also need to test that what I've implemented is portable. It should be, but I'm too tired right now to test it on anything other than intel linux. (This used to be commit db917c62c14315afe6f0745a8097c1bca25cbf07)
1997-09-14This is a written from scratch DES implementation. I couldn't find aAndrew Tridgell1-0/+290
GPLd implementation so I decided to write one. This version only does DES ecb encryption and isn't very general, so it may in fact be exempt from ITAR regulations. ITAR regulations do not prohibit the distribution of code that can be used for authentication purposes only. This code has no decrypt function so it would be useless for a normal encryption application and thus may be ITAR exempt. It is also very slow, but we don't need it to be fast. It is a literal implementation from the standard and treats each bit as one byte to make the code easy to write. (This used to be commit c2bc073a878179dd56db97c66dc957d42fe0b81b)
1997-09-12Added fix that means if connecting user sends guest accountJeremy Allison1-1/+8
with no password they are seen as guest. Previous patch broke this. Jeremy (jallison@whistle.com) (This used to be commit 9a55c49626f65627b26417795891260bb2afcc27)
1997-09-11charcnv.c client.c clitar.c kanji.c kanji.h loadparm.cJeremy Allison13-389/+486
mangle.c smb.h util.c: Big merge to allow KANJI support to be in the main binary without explicitly compiling with it. locking.c: Fix for smbstatus not being able to read files. namepacket.c: Removed unneccesary debug statement. trans2.c: Added Luke's proposed fix (ifdefed out until further testing). nmblookup.c: Fixed bug where query fails and status is done on bogus IP. Jeremy (jallison@whistle.com) (This used to be commit 9196255022ae8c51b527412747b324819bea2c13)
1997-09-11fix a couple of "declaration shadows previous local" warnings.Andrew Tridgell2-5/+3
(This used to be commit c30f6a74d0e6c256b1d46b28c1f31f1c1f3dd856)
1997-09-11prototype updates for new functionsAndrew Tridgell1-1/+21
(This used to be commit dbf662436031759b205f0140223da6a1d08c16df)
1997-09-11add the stdout parameter to lp_dump()Andrew Tridgell1-1/+1
(This used to be commit 77f5bc87058dfb5c1b14e7cd8c6097a6bcb2c0cc)
1997-09-11some minor modifications to loadparm.c to support the necessaryAndrew Tridgell1-56/+193
functions for wsmbconf. In particular added some more support routines (like lp_rename_service()) and make the dump routines take a FILE pointer rather than assuming stdout (This used to be commit 6d165016068f6c4e9eed8fae83a9f7ca0b34f85a)
1997-09-11cgi.c is a simple set of CGI manipulation routinesAndrew Tridgell4-0/+664
wsmbconf.c is a rudimentary web based smb.conf editor. Its really there just to demonstrate how such an editor can hook into loadparm.c, I don't expect anyone to actually use it as is. wsmbstatus.c is a simple web based smbstatus. Its probably broken. (This used to be commit ced5205f72ba58d677f3cfa480fddc58ec9faa27)
1997-09-07samba servers forcing local elections if they are not a local master.Luke Leighton1-1/+1
added check for "preferred master" to ensure not forcing an election. (This used to be commit f8afd4c4c131a75ce685016e84205082aadbdb78)
1997-09-05JHT ===> Just setting version to 1.9.18alpha1John Terpstra1-1/+1
(This used to be commit e462cf2f1b498ba9eb00d3d2f9c299e7624a62fd)
1997-09-05client.c: Made sure myhostname was initialised before substitutions.Jeremy Allison4-6/+14
status.c: Made sure myhostname was initialised before substitutions. server.c trans2.c: Moved OS/2 WPS fix. Jeremy (jallison@whistle.com) (This used to be commit 8a12b6a4f0feec712f5c4e02e21198c455b060ae)
1997-09-05added debug reporting to file listing / mod_time() checking routine.Luke Leighton1-2/+17
lp_file_list_changed(). (This used to be commit 727fcfae1b62bb509f0a9f5304dad363ef38345a)
1997-09-04Fix from Frank Varnavas <varnavas@ny.ubs.com>.Jeremy Allison1-3/+17
We cannot use the same name as the client to the NT password server, as NT will drop client connections if the same client name connects twice. Instead, synthesize a name from our pid. and the remote machine name. Jeremy (jallison@whistle.com) (This used to be commit ebf9487a9a68c4d786449490627ee919622e6dbf)
1997-09-04Fixed up determination of client type for PROTOCOL_NT1. Uses clientJeremy Allison6-13/+70
capabilities bits in session_setup_and_X to decide. Made remote_arch an enum as well as a string, for easier use. Jeremy (jallison@whistle.com) (This used to be commit 99080705a2d0adcb25e1eecbe517a2fac2779baa)
1997-09-03nameannounce.cJeremy Allison6-32/+42
nameresp.c nameserv.c nameservreply.c proto.h : Removed broadcast and recurse parameters in the queue_netbios_pkt_wins() call - they are not needed as they should always be 'false' and 'true' respectively. Also fixed a bug with secure name registration (WINS server code). server.c: Finally fixed problem with error 267 being returned to Win95. It is needed by NT. This is a horrid fix and I would appreciate a better one :-). Jeremy (jallison@whistle.com) (This used to be commit fa1305d1894a28331ba80d9de038ebf31ba902d6)
1997-09-02reply.c: Removed unused variables. Caught by gcc -Wall -WerrorJeremy Allison3-7/+33
server.c: Fix for old DOS clients not understanding ERRbaddirectory - map to ERRbadpath. util.c: Fix for systems with no LOG_DAEMON facility. Jeremy (jallison@whistle.com) (This used to be commit dadb1ffb4ca5222c0b62d785cd714d65cae328e8)
1997-09-01use of recursion_available and recursion_desired flag in netbios responses.Luke Leighton3-29/+53
(This used to be commit 8235db6b4fbeced750c4c30edc84a61a35b39278)
1997-08-31added word count 3 support into reply_tcon_and_X (see cifs6.txt). theLuke Leighton1-3/+23
only thing i couldn't do was get the chaining word count to point to the end of the smb reply, for the next and_X (not that there is one). (This used to be commit 54f11999d2113f2e88144ed63e23dd82b32e14a6)
1997-08-31fixed a bug in the printjob encoding/decoding. We weren't doing it forAndrew Tridgell3-17/+34
the print_ functions in reply.c, with the effect that you couldn't cancel print jobs from smbclient or from older dos clients. we now use a couple of utility functions printjob_encode() and printjob_decode() rather than sticking the bitops inline in each place. also fixed a bunch of places that used foo%0xFF rather than foo&0xFF Note that this isn't really me doing the commit, it can't be as I'm working on my thesis ... (This used to be commit 3556763be3acbf01c967ee9717943dd44163fb9f)