summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
2003-06-12Andrew's change to make 'security = domain' work again. Leave the user and groupVolker Lendecke1-38/+88
that has been authenticated unmapped. We need to make sure that every caller of idmap handles failure gracefully. Volker (This used to be commit 902d607b668b2e997778a0ca676ea689943c2817)
2003-06-12Fix some misleading debug messages.Volker Lendecke1-2/+2
(This used to be commit 9c003ae4ff21040b55264f8b4c34bd5956c97dc6)
2003-06-12Get rid of a const warning.Volker Lendecke1-1/+1
Volker (This used to be commit 6684f5b11f8498defa737e3ba85eb4e1f5b36202)
2003-06-12Fix typo found by VanceVolker Lendecke1-1/+1
(This used to be commit 678e68a295f899d0920e5a6ffe3f6ec3705828e2)
2003-06-12Andrew is right, this is probably the wrong approach.Volker Lendecke1-26/+5
Take away the automatic mapping of users and groups again. Volker (This used to be commit 74510369d48545e813ac07e52814840803dd6ba2)
2003-06-11Set the user's primary unix group from usrmgr.exe.Volker Lendecke1-0/+41
This part of a fix to bug#45. Volker (This used to be commit 43d306011fe0497dabdf6f43a0d120900fd96e6d)
2003-06-11Sorry idra for messing around with your stuff, but this was obviously notVolker Lendecke1-3/+3
tested. Incrementing HWW_USER while allocating a GROUPID looked somewhat wrong. Volker (This used to be commit d1eac2c75856f8f1dec8d429feb24a5f05fa6ca8)
2003-06-11avoid races in getting high watermarkSimo Sorce1-6/+32
(This used to be commit df0df941d84386a7de5c97149c6c06d01a8720d0)
2003-06-11Fix 'security = domain' without winbind. This stores the sid we gotVolker Lendecke1-32/+60
from the PDC as a mapping to the uid we got from getpwnam in the local idmap. This should not be worse than the current state, so I decided to commit it. It is different from abartlet's preliminary patch, but I believe this is the better solution. Feel free to comment and/or revert it. Volker (This used to be commit 0c16965e6f49a2c0d73b1392e9f8cfc7449e2e59)
2003-06-11several places in client.c rely in commands[i].name == NULL being aAndrew Tridgell1-2/+2
termination condition for checking for commands. Make sure the last element is indeed NULL. (This used to be commit 294f79884df1ebc4a8d955601e7547bdcadef5d6)
2003-06-11i'm getting rather sick of thisAndrew Tridgell1-4/+1
********************************************************** **** PLEASE TEST YOUR CHANGES BEFORE CHECKING THEM IN **** ********************************************************** Jelmer, your change did not fix the -b option, it just make it not segfault on debian. It did however add a warning and make it not compile on some systems. It also gave the io_bufsize the value of a pointer, not the value the user specified. (this doesn't apply just to Jelmer, I'm just seeing rather too many checkins from everyone lately where the code could never have possibly worked, so was obviously checked in without testing) (This used to be commit 21931ad7a0584c14fd0278adc74eab9cacf14a3d)
2003-06-11on AIX FD_ZERO() is defined in terms of bzero(), so we can't haveAndrew Tridgell1-5/+0
the "don't use bzero" macros. In general I think it would be better to have a separate script that checks for deprecated functions like these using grep rather than using these cpp tricks. They just get us into trouble. (This used to be commit 2a227c880db0f233fb1f6dae5851450ea6020f3b)
2003-06-10Add in rety loop for query_user_list (from APP_HEAD). Deals with a bugJeremy Allison2-5/+56
using MSRPC backend and should be safe with ldap backend. Jeremy. (This used to be commit 67535329a2df8986c2d1d85e25cd5c558ee61405)
2003-06-10Don't segfault when -b is specified (fixes debian bug #196833)Jelmer Vernooij1-1/+1
(This used to be commit 4af9074397bbb208e585f85aaa8a6e402057ebdd)
2003-06-10Ok, I've tried being Mr. Nice Guy and people (you know who you are) stillJeremy Allison2-4/+5
keep putting bzero BSD'ism's into our source code. Make this an error like bcopy and others to prevent it in future. Jeremy. (This used to be commit 80d043231626192db85f08ccea062b91fcf999cc)
2003-06-10More updates on editreg.c to bring it better in line with the Samba source.Richard Sharpe1-21/+21
(This used to be commit dc69a638b9e12726f050d79b63f92f816c35fe8f)
2003-06-10removed editreg from standard build until it is portable. Right now itAndrew Tridgell1-1/+5
fails to build on a ton of platforms as it completely bypasses all of our portability code. if you want it then use 'make bin/editreg'. If some distros want to add that to their spec files then thats up to them, but we really can't have non-portable code unconditionally built in our main tree. (This used to be commit 3c66111f3200af2b868fde97ec19267ad81f9617)
2003-06-10fixed libsmb code to set correct timeout in cli_state when waiting forAndrew Tridgell1-2/+2
a blocking lock (This used to be commit 3515476fe436132d4569ac9067ea6195ab087e77)
2003-06-10fixed smbtorture LOCK1 test to know about the correct multiplier forAndrew Tridgell1-2/+3
timed blocking locks (This used to be commit 24feb1afa621c4f93135f36e635af08abe8e7c24)
2003-06-10use lp_realm() to find the default realm for 'net ads password'Andrew Tridgell1-10/+24
(This used to be commit 21d92802781ac224f569a990df3ec1070f0da434)
2003-06-10- fixed the bug that forced us not to use the winbindd cache when weAndrew Tridgell5-41/+46
have a primary ADS domain and a secondary (trusted) NT4 domain. This caused winbindd to be *really* slow for that setup. - fixed winbindd_getgrgid(), which was calling uid_to_sid instead of gid_to_sid(). When you make changes to winbind *PLEASE* test using nsstest. (This used to be commit cdd9b60a078b63e22f543d4c8d0956ff536f4d89)
2003-06-10use ZERO_STRUCT() instead of memsetAndrew Tridgell1-1/+1
(This used to be commit 082084042307f5f7d532b28debdeac11753a05f9)
2003-06-10added an auth flag that indicates if we should be allowed to fallbackAndrew Tridgell2-1/+5
to NTLMSSP for SASL if krb5 fails. This is important as otherwise the admin may think that a join has succeeeded when kerberos is actually broken. (This used to be commit 23a6ea385c4aea208adf36f039244bee14f56a33)
2003-06-10don't call a function error_message() as that conflicts with aAndrew Tridgell1-3/+3
kerberos name (This used to be commit 8fa737f2235abfdc6c78b0af707aea2c67243597)
2003-06-10when creating aliased parameters in loadparm.c you *must* place theAndrew Tridgell1-1/+1
alias directly after the main entry, otherwise it isn't treated as an alias. (This used to be commit 0f3d44858f49c3f9f191b2a3b47d58882e899421)
2003-06-10More instrumentation for winbindd.Jeremy Allison1-0/+14
Jeremy. (This used to be commit 4161a122b74b75b0ed1758e3491e69bb9f1e8390)
2003-06-10Instrument cache with debug statements so I can have a clue as to whatJeremy Allison1-56/+208
is going on in remote large sites. Jeremy. (This used to be commit 5987dad1f1049f08bf4a94929f70b5eac96c7007)
2003-06-09Add some basic DEBUG statements at level 10 so we can see what is beingJeremy Allison1-0/+54
called. This is *essential* (and should be done on all the other cli_XX rpc calls) to help debug winbindd problems remotely. Jeremy. (This used to be commit bc215612cb7c1abc7fb78eda4016ba9e64cdc785)
2003-06-09Fix for crash bug noticed by Luke Howard | PADL Software Pty Ltd | www.padl.com.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 6a07d19b6342e28a4827c16fcc379952bb1808b4)
2003-06-09applied patch from bug#140Andrew Tridgell1-1/+2
this fixes a timestamp problem with 64 bit machines (This used to be commit 0ce6eddad8e148bc6d195ddefb773326339d06e6)
2003-06-08Fix some memory leaks and extra cache startups/shutdowns from the trustedAndrew Bartlett2-4/+5
domains lookup code. Andrew Bartlett (This used to be commit 0ec1b1207041a3b6050046ba6d7b466dd4fcf341)
2003-06-08Enforce 'client plaintext auth', 'client lanman auth' and 'client ntlmv2 auth'.Andrew Bartlett2-9/+68
(this now causes things like the LANMAN protocol and contacting servers with 'encrypt passwords = no' set to fail, if configured) 'client ntlmv2 auth' (a BOOL) forces both plaintext and lanman off, and is the most secure setting for compatible hosts. Perhaps we should change this to 'client minimum auth'? Andrew Bartlett (This used to be commit e1fb681e4c921456fde154b87687722a18ed4aac)
2003-06-08Make sure that we use schannel (if configured) when checking for a validAndrew Bartlett1-12/+13
join to the DC. Andrew Bartlett (This used to be commit af526fa9b39ab1f8483d5cee66321bc12f78ac05)
2003-06-08Rework our smb signing code again, this factors out some of the commonAndrew Bartlett1-54/+109
MAC calcuation code, and now supports multiple outstanding packets. Fixes bug #40 Andrew Bartlett (This used to be commit dd33212f1ec08f46223d6de8e5ff3140ce367a9a)
2003-06-07bumping cvs version number to distinguish between SAMBA_3_0 cvs treeGerald Carter1-1/+1
and 3.0.0beta1 release (This used to be commit 2619cc5d44f0162d829f5e18163df1b23b4ef5f5)
2003-06-07add back the winbind uid/gid parameter but mark them as deprecatedGerald Carter1-0/+2
(This used to be commit 61215c68493c200c22ea64edb299d69f46c6ab0a)
2003-06-07Try to fix memory leaks found by valgrind in pdb_ldap code.Andrew Bartlett1-3/+3
Andrew Bartlett (This used to be commit decadfcc8205ed5611d74141e301569ef8b1d9f4)
2003-06-07Don't assume that the SAM knows the unix home directory - look it up byAndrew Bartlett1-6/+14
getpwnam() if need be. Fixes bug #130 Andrew Bartlett (This used to be commit a4bc789a3993be4b25955c729b533b86dba666f4)
2003-06-06get rid of IRIX o32 builds - some libraries (kerberos and ldap) are onlyHerb Lewis2-18/+2
n32 so smbwrapper fails to link. (This used to be commit 392f207a353c3c154ea04a284c4e54864a927e95)
2003-06-06remove o32 targets for IRIX. kerberos and ldap libraries are n32 only soHerb Lewis1-13/+2
linking smbwrappers will fail. (This used to be commit f95f306729d95c5205ed541289673e579abc0769)
2003-06-06applying David Lee's climessage patch to make sending messages more extendableGerald Carter1-6/+32
(This used to be commit a5240adc4944342529702542e080c378d3883a09)
2003-06-06support LDAP_EXOP_MODIFY_PASSWORD (not experiemental in OpenLDAP 2.1)Gerald Carter2-15/+25
(This used to be commit 50fdc938222112b5470d05d8cd15386bd0a112df)
2003-06-06* add in David Lee's utmp patch (defaults to on if available)Gerald Carter4-27/+51
* one more try at fixing builds when --with-ldap=no (This used to be commit b516ab7bdef6b6b2b7f0df8966dbd4c329f46a92)
2003-06-06get rid of warning about malformed if in MakefileHerb Lewis1-2/+2
(This used to be commit 1e1e56efd86e7a1ed6415145ebd22d91612104de)
2003-06-06fix build on systems w/o LDAP libsGerald Carter2-1/+15
(This used to be commit f33aeaa039d49b4eef884b27dc81d3418a051f1a)
2003-06-06delete extra PASSDBLIB at beginningHerb Lewis1-1/+1
(This used to be commit 1c82a3aa91804eb80c59c0e6e6abddbabd8857f9)
2003-06-06pdbedit needs PASSDBLIBSHerb Lewis1-1/+1
(This used to be commit 0e91aca22c72f15ed62f9c9f8318b5ffada36956)
2003-06-06compile errorGerald Carter1-1/+1
(This used to be commit 8804b059a4f453b29c8b0da975f5d6d8501f4b11)
2003-06-06merge from APP_HEAD. Push negative connection cacheGerald Carter2-324/+152
into rpc_find_dc(). Should probably be extended some more in 3.0 but this is what we have for the moment. (This used to be commit 0e23abf95cf7ba2d0a314a34bddb4d46de2a3cd1)
2003-06-06* break out more common code used between pdb_ldap and idmap_ldapGerald Carter11-326/+382
* remove 'winbind uid' and 'winbind gid' parameters (replaced by current idmap parameter) * create the sambaUnixIdPool entries automatically in the 'ldap idmap suffix' * add new 'ldap idmap suffix' and 'ldap group suffix' parametrer * "idmap backend = ldap" now accepts 'ldap:ldap://server/' format (parameters are passed to idmap init() function (This used to be commit 1665926281ed2be3c5affca551c9d458d013fc7f)