Age | Commit message (Collapse) | Author | Files | Lines |
|
channel:
- If the domain name passed to create_rpc_bind_req() is empty, use
lp_workgroup()
- Correctly set the auth_padding field when the send_size is a multiple
of 8 bytes
I've tested with nt4sp6 and win2ksp0 and it seems to work, although
there are no password hashes transferred from win2k. The empty
passwords are being protected by the secure channel encryption though.
(This used to be commit a8c11e855611c91e94787387c62ac629232cacfa)
|
|
http://lists.samba.org/pipermail/samba-technical/attachments/20030512/0332258a/vfs-fix-01.obj
(This used to be commit 5d643b9d03135effa5c8fd84bf1e54a7bd075e2a)
|
|
(This used to be commit f1c4f65ae019c61f4a8178bee094dd66506dbcae)
|
|
(This used to be commit fea5d85d947965bd4789ab31607fd48d78403696)
|
|
(This used to be commit 7c2395d7cd98b23d58a024a54e5058101fc9d322)
|
|
(This used to be commit 73cf63a27f4ff53546171aec18952324d1ed983c)
|
|
(This used to be commit 73de13159c57de21a59d2e32216812f5d9d2292e)
|
|
(This used to be commit 01cff3e2e4e2724ed112fa62a775055192a2207b)
|
|
(This used to be commit f67cc24acf37a9f46427c993574ecf261d7aec1a)
|
|
(This used to be commit ee5fa840686a1d9789688e7c0f1c3ca8d0175e94)
|
|
1. Allows to change quota settings for shared mount points from Win2K and WinXP from Explorer properties tab
2. Disabled by default and when requested, will be probed and enabled only on Linux where it works
3. Was tested for approx. two weeks now on Linux by two independent QA teams, have not found any bugs so far
Documentation to follow
(This used to be commit 4bf022ce9e45be85609426762ba2644ac2031326)
|
|
Also, we might be given a 0 length challenge, so don't smb_panic() for
smb_xmalloc() of zero size.
Andrew Bartlett
(This used to be commit 4842de04cf2e1528e726dfad070dfe3a82f46fa2)
|
|
command line.
Andrew Bartlett
(This used to be commit dd14da756640ba36834a05b9da4759a809c0bb37)
|
|
(This used to be commit ca2e453c7838b6d0ed2d0a45124d162073bbbf99)
|
|
1. idmap.h is used for unid_t only, agreed by Simo
2. sysquotas.h is used to add quota support to VFS layer and is needed for future NT quota commit
3. vfs_macros.h provides convenient macros to access VFS API.
(This used to be commit 1dd578635913c8340cfc565d7e0c8c5086070084)
|
|
1. Finally work with cascaded modules with private data storage per module
2. Convert VFS API to macro calls to simplify cascading
3. Add quota support to VFS layer (prepare to NT quota support)
Patch by Stefan (metze) Metzemacher, with review of Jelmer and me
Tested in past few weeks. Documentation to new VFS API for third-party developers to follow
(This used to be commit 91984ef5caa2d13c5d52e1f535bd3bbbae1ec978)
|
|
PDCs running NT4SP1, NT4SP6 and Samba 3.0.
Volker
(This used to be commit 2143446043b2c29027cf69554caddf41274df709)
|
|
password. On NT4, NT_STATUS_NOLOGON_INTERDOMAIN_TRUST_ACCOUNT means
the password was correct. So the PDC believed that he had his trust
account correctly added. Later the auth2 naturally failed.
BTW, setting up an interdom trust account is not what I would call
well documented and easy to handle... Working on that now :-)
Volker
(This used to be commit e4e44cf3b18231ec5d7326fb42edec741caa147b)
|
|
useful in the auth verifier yet. So this patch ignores it.
Really checking this would be a lot more intrusive: in rpc_api_pipe we
would have to distinguish between binds and normal requests, or have
more state in the netsec info of cli_state, which is also somewhat
hackish.
Volker
(This used to be commit 8de04fcf680a9bc5054965577eb500e0541ffe66)
|
|
primaryGroupID (rid). This is consistant with the move from 'rid' to ntSid
for the primary user identifier.
Also cope with legacy installations where primaryGroupID might have been
stored as 0.
Andrew Bartlett
(This used to be commit 0e432817cb927b41af7b49fb0b5081ffdb46f85e)
|
|
entropy - use sys_random() instead.
Andrew Bartlett
(This used to be commit 640462a365235aa7ce6f817778f022530a25d909)
|
|
(This used to be commit 9dc8f7b4d46b3d1adf4b22cec2b62600dcb3c899)
|
|
(This used to be commit d817eaf0ecca2d878ab1ffcf7a747a02d71c811e)
|
|
that is now possible to, for example, load a module which contains
an auth method into a binary without the auth/ subsystem built in.
(This used to be commit 74d9ecfe2dd7364643d32acb62ade957bd71cd0d)
|
|
on the security entries sent.
Jeremy.
(This used to be commit 45953d59f707b58e66b980512afc7f929d360ad5)
|
|
struct in the correct place.
Jeremy.
(This used to be commit 4cd8b276715f7e019fcee8fc3ebb2855610c4751)
|
|
Jeremy.
(This used to be commit 151b7d0d88e14dd17c28e522a3e1e8f64a4a2a87)
|
|
(This used to be commit 7bec28f23c5bef8516e798a0808585ed1a30517e)
|
|
(This used to be commit b87be0dddfcace95527b9a05f8f81cd6d2e86d39)
|
|
(This used to be commit 0c1946e51c7cd18907eb65c93042758196fe74c9)
|
|
structure-memcpy for DATA_BLOB parameters to using a pointer to that DATA_BLOB.
auth_sam calls some of these functions, so I've cleaned it all up to use this
format now.
Also clean up some debug statements to make them easier to read.
Andrew Bartlett
(This used to be commit 0c355c274a6ac084e4bf15a15613dfc007d6c5fc)
|
|
With big thanks to tpot for the ethereal disector, and for the base code
behind this, we now fully support NTLMv2 as a client.
In particular, we support it with direct domain logons (tested with ntlm_auth
--diagnostics), with 'old style' session setups, and with NTLMSSP.
In fact, for NTLMSSP we recycle one of the parts of the server's reply directly...
(we might need to parse for unicode issues later).
In particular, a Win2k domain controller now supplies us with a session key
for this password, which means that doman joins, and non-spnego SMB signing
are now supported with NTLMv2!
Andrew Bartlett
(This used to be commit 9f6a26769d345d319ec167cd0e82a45e1207ed81)
|
|
users and groups.
(This used to be commit dcc6d9e76c737400aaffdd4f261fd0f191aaeea8)
|
|
(This used to be commit 372a574a73b86855cf6efc18349e5ba24067d690)
|
|
LMv2 response less than 24 bytes is just silly.
Andrew Bartlett
(This used to be commit b4ecdb2e582376d2713f81e8e32a668014905d70)
|
|
same here.
Andrew Bartlett
(This used to be commit a4556786d28724309321a02afbf5005158440258)
|
|
one element longer than the domain sid.
Andrew Bartlett
(This used to be commit c61e5e38776d2de53d120b592a6685158e79ebb8)
|
|
(This used to be commit 045210e129e6e0aef8f847e7ed8714d0d9974e7f)
|
|
(This used to be commit 7f76eac5a0f93107d990b0fde651838c38970092)
|
|
- auth with ntlmv2 and lmv2 but deliberately break the ntlmv2 hash
- auth with ntlmv2 and lmv2 but deliberately break the lmv2 hash
- auth with ntlm and lm but deliberately break the ntlm hash
- auth with ntlm and lm but deliberately break the lm hash
My theory is that the NTLM or NTLMv2 field must be correct and if it is,
it doesn't matter what the value of the LM or LMv2 field is.
Fixed cosmetic test name display bug.
(This used to be commit 5dcde9451bd0d6a7462b77cf5ed137bfd691adaa)
|
|
Now the build farm will no doubt find more.
(This used to be commit e91e648c9b0841fbffbc8f39e71abade0996a1e7)
|
|
then we weren't always correctly detecting that it had a valid stat struct
and so might now return a 'file existed'. Finally realized this when installing
the W2K resource kit as a test case.
Jeremy.
(This used to be commit d48069ccd8351e4bff097a7f7500c738870a413d)
|
|
(This used to be commit 016f6b4e19c2b8e4f5e1d010cc428ca194650140)
|
|
(This used to be commit 83bb84f13121267992e78f2d005257932c711f23)
|
|
to link during configure checks.
(This used to be commit 7af282e7ff9c2cccfab97130dc66515a4852c25f)
|
|
Volker
(This used to be commit 6cde3d4d655bbe1d81e68ec2ec7a23669ac82120)
|
|
important once we start doing schannel, as there would be a lot more
roundtrips for the second PIPE open and bind. With this patch logging
in to a member server is a matter of two (three if you count the
ack...) packets between us and the DC.
Volker
(This used to be commit 5b3cb7725a974629d0bd8b707bc2940c36b8745e)
|
|
the other infrastructure with name owners etc in place. If anybody is
really going to tackle winsrepld, it will probably not be hard to put
the additional info back.
Volker
(This used to be commit eb82daa84a5339f28ebf431ee1044b7e1e4a4300)
|
|
(This used to be commit 05a684b3be1525aad3589ded9e59c3f012b5ef20)
|
|
Andrew Bartlett
(This used to be commit 97bc047434284527f25e130a72981da704ed1212)
|