Age | Commit message (Collapse) | Author | Files | Lines |
|
to be changed if we decide to set our real uid. Jeremy?
Volker
(This used to be commit 1fed55aa781bcf9efdd42f361c972b69152137a4)
|
|
Jeremy.
(This used to be commit 605e257cab8041900ec9c6839c37e04d005a420e)
|
|
(This used to be commit e1fac713e25692a5790c3261ba323732930f5249)
|
|
Jeremy.
(This used to be commit 95e33b1250abbbb3a0ad5e9fa1586d545e51322b)
|
|
appear in msg strings.
(This used to be commit 53a2a389902b6ffa37dd61f0c0a496744fc2e2b3)
|
|
(This used to be commit 37db75fc95aec2510a0ead0c97f44e80b00696d9)
|
|
Wilco Baan Hofman <wilco@andoburg.nl>
(This used to be commit 2c584efae69f328581d4f863a8f8ef3ff8228423)
|
|
me to expose a type arguement to make_sec_desc(). We weren't copying
the SE_DESC_DACL_AUTO_INHERITED flag which could cause errors on
auto inherited checks.
Jeremy.
(This used to be commit 28b315a7501f42928d73efaa75f74146ba95cf2d)
|
|
(This used to be commit b00a81b543a58f46e54ce0e5362ba21bb16fc35f)
|
|
(This used to be commit bbe4ae8af2918808a1fd3547602c909f42a54634)
|
|
fields, bad_password_count and logon_count. Ensure this is stored/fetched
in the various SAMs. As it replaces the unknown_5 field this fits
exactly into the tdb SAM without any binary problems. It also is added
to the LDAP SAM as two extra attributes. It breaks compatibility with
the experimental SAMs xml and mysql. The maintainers of these SAMs must
fix them so upgrades like this can be done transparently. I will insist
on the "experimental" status until this is solved.
Jeremy.
(This used to be commit cd7bd8c2daff3293d48f3376a7c5a708a140fd94)
|
|
Jeremy.
(This used to be commit 82f98b066d345fdac40a584078a19453bda53d5b)
|
|
Jeremy.
(This used to be commit 56df89eff38e4c89defa5fd56bbb6c9d2012f82d)
|
|
an argument to configure. Closes bug 468.
(This used to be commit 6957ecd25f1d98e045c7a44caf03887e60715b6b)
|
|
Jeremy.
(This used to be commit 0aee73d45733a8eca437954e0c9fd54884bbe770)
|
|
Jeremy.
(This used to be commit 9c1bab944526270d2ad79c75894c33f58f8e3845)
|
|
Jeremy.
(This used to be commit a43ca66290ac1df9b00e3e43e32d8117b3d1b873)
|
|
Bollinger" <rabollinger@comcast.net>. Also fixed script/gaptab.awk to produce compatible tables.
(This used to be commit 6134d41ff108245f7e105d49774f24f6a11d8c45)
|
|
constants as signed chars instead of unsigned
(This used to be commit e4dda8cb222bc3a971088897e47bd8e249cd0188)
|
|
(This used to be commit 4765e56f92f0906afe3073184c4fa255e1b1a647)
|
|
(This used to be commit e3cb0cd0d60d90a76e5f74d5bda702148584ab30)
|
|
mode domains.
Jeremy.
(This used to be commit c816aacefb6621533194a374251835f186ca838f)
|
|
exists.
Jeremy.
(This used to be commit c8bfde5be9f0a3603f7333ff4266ad19c20cb9f9)
|
|
This was my bug when removing a redundant strlen.
Jerry - last showstopper I knew about.
Jeremy.
(This used to be commit 6e6769c20643f784d1b5023df3071a35d2e5bf89)
|
|
by default ! This is code that really needs to be able to be looked at
on a customer system if it's misbehaving !
Jeremy
(This used to be commit d512650340b3d28db763d018a6b05f6edf165bf0)
|
|
The RAP NetShareEnum() call has a length limit of 12 characters (not 8, as
previously tested). Took DaveCB's suggested and added a note listing some
of the client systems that might be affected.
(This used to be commit be06e52ce05e88f3872563a61ae29f62afd614fc)
|
|
-w option need the password on the command line
(This used to be commit fa7dea1710bac38f5f68be2e56a24ef5cca09ff5)
|
|
problems where ASCII was not detected and 646.so were requested through dynamic loading
(This used to be commit c248cd4784ac0f8f16813de36d293ab6bf1d259b)
|
|
(This used to be commit e2b5dd7d9b351984c40876f3c86f2a006e0eec42)
|
|
so I'm putting it back in.
(This used to be commit ec49fc8ab73b26f86da155475df90843650f0e63)
|
|
(This used to be commit 299eb0abd36072af51cbcb761fa9fb6a77584585)
|
|
ensure the desired access is read from the incoming RPC request.
Jeremy.
(This used to be commit fdc5dda44f0190af4e4b0782cb2c5c7de3506d12)
|
|
functions to
display verbose debugs. Increase the probe debugs to level 3.
(This used to be commit d71a7470d721be05ecde44010cf278e8de08d9d3)
|
|
Jeremy.
(This used to be commit 8a57f1a72c88cde233b126d468183c52c2598420)
|
|
(rant off :-). Inspired by work from Benjamin Riefenstahl <Benjamin.Riefenstahl@epost.de>.
Also add MacOSX/Darwin configure fixes.
Jerry - can we put this in 3.0 release ? :-).
Jeremy.
(This used to be commit f23acb4ca5feac8ad2acfa1baf7df31283aba3ea)
|
|
condition meant fast-path in strchr_m was not being used. Doh !
Jeremy.
(This used to be commit f23c9d36b0cd4083722012e4a94df8295f29d04c)
|
|
with filenames > 100 chars.
Jeremy.
(This used to be commit aa40a86cbe797cba4e281cb8dc09b2ae67e93dc2)
|
|
(This used to be commit 8382cd6796992e55bf10f381089cb740052a0bca)
|
|
This means that %u & %g will no longer expand, but %U
and %G still do. The payback is that winbindd local
accounts for users work with 'wbinfo -u' when winbind
is running on a PDC.
(This used to be commit eb02fcf3c212eee1dc267959f23da5a26c1eac4f)
|
|
entry. Bug #431.
(This used to be commit bc8a181477866d0d97324bf45431bcdff895ad18)
|
|
Jeremy.
(This used to be commit b5d953bc26de5c4e0e1a15f70ae56ea2dd2843f2)
|
|
values.
Jeremy.
(This used to be commit 41e4479aa9f186d68300086984d6f4c8f9fd2a27)
|
|
to/from utf8 for some calls. The libads code gets this right. Wonder why
the passdb code doesn't use it ?
Jeremy.
(This used to be commit 910d21d3164c2c64773031fddaad35ea88e72a04)
|
|
Someone only half changed the code to use dc_name
instead of remote machine... Found via back trace from Dariush Forouher
<dariush@forouher.de>.
Jeremy.
(This used to be commit 963b24ac1a721a8b0d348b578f25b1d8cb7e2124)
|
|
<ungermann@elzet80.de>
Jeremy.
(This used to be commit c5ed59b37be1bf779e0d0e61c31227b520430afd)
|
|
(This used to be commit 424b13823b666c122f43d63098cec3e54b4fa353)
|
|
to build on systems with fixed getgrouplist() in GNU libc < 2.3.2.
Unfortunately, we can't detect correctness of getgrouplist() functioning in
portable way so this is left up to developer/packager.
This patch adds --with-good-getgrouplist[=no] switch to configure which packagers
on Linux platforms could use to specify in their own builds if they now that glibc
on their platform is fixed w.r.t CAN-2003-0689. By default we still think that glibc
is vulnerable and perform our version check.
** This patch does not change default behaviour in Samba 3.0 -- by default we are not
vulnerable on glibc as we are not using getgrouplist()
See http://www.securityfocus.com/bid/8477 for vulnerability description.
Right now there are following Linux vendors released glibc updates for CAN-2003-0689:
RedHat -- https://rhn.redhat.com/errata/RHSA-2003-249.html
ALTLinux -- http://www.altlinux.com/index.php?module=sisyphus&package=glibc
(This used to be commit e53622c114e0368515c50b357567fcdd0b95979e)
|
|
Display an error if we can't create a posix account for the user
(e.g no add user/machine script was specified; bug #323).
(This used to be commit 0c35ba2cd65ff64c5db2b20d5528a0d486cba51e)
|
|
we can override the value in smb.conf with the -w option.
Migrating accounts from another domain can now be done like:
# bin/net join bdc -w nt4dom -Uadministrator%password
# bin/net rpc vampire -w nt4dom -U administrator%password
(This used to be commit d7bd3c1efbd02a7ca01ad9a4b242ea4cc4a63c1f)
|
|
(This used to be commit c030d1401950b6efcbdf30ad899c25a61efb1814)
|