summaryrefslogtreecommitdiff
path: root/source3
AgeCommit message (Collapse)AuthorFilesLines
2003-12-30Fix Bug # 924Volker Lendecke1-2/+11
Volker (This used to be commit 3663ed2b964cc306cfe6b4060b51d991405e720d)
2003-12-30Try to gain a bit more consistancy in the output of usernames from ntlm_auth:Andrew Bartlett3-11/+50
Instead of returning a name in DOMAIN\user format, we now return it in the same way that nsswtich does - following the rules of 'winbind use default domain', in the correct case and with the correct seperator. This should help sites who are using Squid or the new SASL code I'm working on, to match back to their unix usernames. Andrew Bartlett (This used to be commit 7a3a5a63612b2698a39f784859496c395505a79b)
2003-12-30Make the name of the NTLMSSP client more consistant before we lock it in stone.Andrew Bartlett1-2/+2
(This used to be commit 0fa268863b7352343eb7f211181a02f60848bd0c)
2003-12-30Remove testing hackAndrew Bartlett1-2/+0
(This used to be commit 96f3beb462a6d4a489e894c1f05c528107135b3a)
2003-12-30Move our basic password checking code from inside the authenticationAndrew Bartlett4-400/+634
subsystem into a seperate file - ntlm_check.c. This allows us to call these routines from ntlm_auth. The purpose of this exercise is to allow ntlm_auth (when operating as an NTLMSSP server) to avoid talking to winbind. This should allow for easier debugging. ntlm_auth itself has been reorgainised, so as to share more code between the SPNEGO-wrapped and 'raw' NTLMSSP modes. A new 'client' NTLMSSP mode has been added, for use with a Cyrus-SASL module I am writing (based on vl's work) Andrew Bartlett (This used to be commit 48315e8fd227978e0161be293ad4411b45e3ea5b)
2003-12-30Refactor our authentication and authentication testing code.Andrew Bartlett2-490/+400
The next move will be to remove our password checking code from the SAM authentication backend, and into a file where other parts of samba can use it. The ntlm_auth changes provide for better use of common code. Andrew Bartlett (This used to be commit 2375abfa0077a884248c84614d5109f57dfdf5b1)
2003-12-29Add the alignment required before all 2-byte quantities in NDR. Allows usAndrew Bartlett1-0/+3
to correctly parse plaintext netlogon calls with odd-length passwords Andrew Bartlett (This used to be commit de3c3cbeeb8b674ffc0dd8fe16913f15edcf9022)
2003-12-28Shutting down the connection closes outstanding sessions, so we don't needAndrew Bartlett1-1/+0
to do it twice... Amdrew Bartlett (This used to be commit 8f9a069c59cbd357cbef8814764c10f6d8b6e6e8)
2003-12-27This patch corrects some errors in the NTLMSSP implementation, thatAndrew Bartlett1-9/+18
would incorrectly return INVALID_PARAMETER, instead of allowing a login. Andrew Bartlett (This used to be commit 76c59469a340209959c420bd5c2e947d3347bdb1)
2003-12-27Preliminary fix for our signing problem with failed NTLMSSP logins. This patchVolker Lendecke2-9/+19
solves the problem for me here, I can still successfully set up signing using NTLMSSP against w2k3 and it does not show a signing error anymoe when the password was wrong. Jeremy, you might want to take a further look at it as this is not particularly elegant. Volker (This used to be commit f5afaafd61dc7bd191225ffa8eee184125dd97c3)
2003-12-26Collecting another little patch from gd@suse.deVolker Lendecke1-1/+1
As broken as it might be, smbwrapper.so should be put into the libdir and not bindir. Volker (This used to be commit d74137d227cfb7b09294f4429fa09b10d3d01229)
2003-12-26Collecting some minor patches...Volker Lendecke1-8/+10
This adds the ability to specify the new user password for 'net ads password' on the command line. As this needs the admin password on the command line, the information leak is minimally more. Patch from gd@suse.de Volker (This used to be commit e6b4b956f68bfea69b2de3608b4c829250d24a7a)
2003-12-26Check the return value of string_to_sid in a few more places. (ButAndrew Bartlett1-2/+10
string_to_sid also needs to be less permissive on what it thinks are valid sids...) Andrew Bartlett (This used to be commit 9080c30de8aa96ed3b9b121ca111f1632572754e)
2003-12-26Show the error message for failure to set the ldap password.Andrew Bartlett1-2/+8
(For 'ldap password sync = yes') Andrew Bartlett (This used to be commit 5b682aef678cc9ee135852d7ee6b8c159902fab7)
2003-12-26Based on patch by Petri Asikainen <paca@sci.fi> fix bug #387 and #330.Andrew Bartlett1-14/+15
This patch will change order how attributes are modified from: add, delete to: delete, add This is needed to update single valued attributes in Novell NDS and should not harm anyone else. (This used to be commit fabf80169079483a1378aa0177d8d8335bd98bb3)
2003-12-25ldap rebind sleep -> ldap replication sleepAndrew Bartlett2-5/+5
While writing documentation for metze's patch, it became clear that this is a better name. Andrew Bartlett (This used to be commit 6f828ff3d3622c56ee732b976e7ab90b7897a8d3)
2003-12-25This is metze's LDAP rebind sleep patch:Volker Lendecke3-0/+34
When smb.conf tells us to write to a read-only LDAP replica and we are redirected by the LDAP server, the replication might take some seconds, especially over slow links. This patch delays the next read after a rebind for 'ldap rebind sleep' milliseconds. Metze, thanks for your patience. Volker (This used to be commit 63ffa770b67d700f138d19b4982da152f57674fc)
2003-12-25Fix our parsing of the LDAP url. We get around it as all decent systems seemVolker Lendecke1-1/+1
to have ldap_initialize. Thanks to abartlet for the fix (and the bug in the first place ;-)) Volker (This used to be commit 17473a65eb119ca2240b40a8c029d9a499cde177)
2003-12-25abartlet pointed me at the fact that the order and flags in loadparm.c areVolker Lendecke1-1/+1
actually used.... 'afs username map' should not show up in the swat basic view. :-) Maybe I should use swat from time to time.... Volker (This used to be commit d4e071d14b8ae622c1edbb33bb5677713df1f961)
2003-12-25Fix bug 916 - do not perform a + -> space substitution for squid URL encodedAndrew Bartlett2-5/+18
strings, only form input in SWAT. Andrew Bartlett (This used to be commit 8d54f5fe0c5689660f37788916b37014754ce23e)
2003-12-24Thanks to Serassio Guido for noticing issues in our Squid NTLMSSPAndrew Bartlett1-4/+9
implementation. We were not resetting the NTLMSSP state for new negotiate packets. Andrew Bartlett (This used to be commit e0a026c9b561893e5534923b18ca748e6177090e)
2003-12-23Fix typo.John Terpstra1-1/+1
(This used to be commit 46b2fb4db5c7e273a9b43c59340a0a47ade5bd5e)
2003-12-23Fix for special files being hidden from admins by Dmitry Butskoj ↵Jeremy Allison1-1/+1
<buc@odusz.elektra.ru> Jeremy. (This used to be commit bee4b3348e5052cc927c837c2a21b4c90db980fc)
2003-12-22add well known rid for pre win2k compatible access group; bug 897Gerald Carter2-0/+2
(This used to be commit 33a1a374ebb44c839d995d11e1229767fc679678)
2003-12-22Patch from Jianliang Lu j.lu@tiesse.com to manage Power UsersJeremy Allison1-0/+1
group. Jeremy. (This used to be commit 72252fb0b207205d41a2ec50f6d364bf0bb21747)
2003-12-19A small fix to torture.c to cleanup the error handling and prevent crashes.Richard Sharpe1-6/+6
I really should clean up the comment as well. (This used to be commit 34351e457a0d9c494653179429fb71453d1d838e)
2003-12-19* add a few useful debug linesGerald Carter2-9/+30
* fix bug involving Win9x clients. Make sure we save the right case for the located username in fill_sam_account() (This used to be commit 850e4be29e185ebe890f094372aa8c2cc86de76a)
2003-12-17Add in comments explaining NTLMv2 selection. Use lm session key if that'sJeremy Allison1-1/+13
all there is. Jeremy. (This used to be commit b611f8d170743f1f4d71b1def83bb757d9f467af)
2003-12-17Tidyup debug message in ntlmssp code. Add brackets around dodgy if statement.Jeremy Allison1-5/+17
Jeremy (This used to be commit 5aab4b976c0aced68d71c1e71e85287072a6f3c7)
2003-12-17Make sure we correctly generate the lm session key.Gerald Carter2-2/+26
This fixes a problem joining a Samba domain from a vanilla win2k client that doesn't set the NTLMSSP_NEGOTIATE_NTLM2 flag. Reported on samba ml as "decode_pw: incorrect password length" when handling a samr_set_userinfo(23 or 24) RPC. (This used to be commit ef4ab8d7c497e4229d0c1deeb20d05c95bd8feb9)
2003-12-16make sure we delete the group mapping before calling the delete group ↵Gerald Carter1-2/+4
script; patch from Jianliang Lu <j.lu@tiesse.com> (This used to be commit 19a8dd523a4ee50ba9066efd60a29cf3ba9ae419)
2003-12-13Fix from ndb@theghet.to to allow an existing LDAP machine account to beJeremy Allison1-12/+29
re-used, rather than created from scratch. Jeremy. (This used to be commit 6d46e66ac2048352ca60f92fc384f60406024d4b)
2003-12-12Fix for bug #815. Make plaintext unicode passwords work with NT4.xJeremy Allison1-5/+11
Jeremy. (This used to be commit ba0b5b8c9be9bfeba5e0b3f930ca0463d1e78c9c)
2003-12-12Fix detection of elements in in-memory keytab code.Jeremy Allison1-1/+1
Jeremy. (This used to be commit 05afc340862c3c7caeb9ede74ea1e9a57ee937ae)
2003-12-11fix bug that prevent --mandir from overriding the defaults given in the ↵Gerald Carter1-19/+0
--with-fhs macro (This used to be commit 58b97b91da409a299bf7dd97bc375479f65dba18)
2003-12-11Correctly detect in-memory krb5 keytab support. Fix for bug #863 fromJeremy Allison1-2/+2
gschafer@zip.com.au (Greg Schafer). Jeremy. (This used to be commit 583b96e867d2c2cafbfa9d03f33402d6d9d44191)
2003-12-11Patch from James Peach <jpeach@sgi.com>. Remove the MAX_CONNECTIONS limitJeremy Allison2-9/+46
by increasing bitmap size. Limited by "max connections" parameter. Bug #716. Jeremy. (This used to be commit fbbeb55b230ffc477f5563af66ab65eb6598e025)
2003-12-11mount.cifs failed to mount to directory owned by user when run setuidSteve French1-2/+2
(This used to be commit 18c0315c3cb1a28fd870f8dd5d92f2e9117a29fc)
2003-12-11fixed bad formal parameter type in get_static(); patch Andy PolyakovGerald Carter1-1/+1
(This used to be commit 9c70e4b44e0dda8f2af4172b928437bd9d3e8b7c)
2003-12-11Fix uninitialized variable in passdb code. Reported by Andy Polyakov ↵Alexander Bokovoy1-1/+1
<appro@fy.chalmers.se> (This used to be commit ac7a60abf2c465b518a3eb7502fa8eee767c8b22)
2003-12-10Fix UNISTR2 length bug in LsaQueryInfo(3) that cause SID resolution to fail ↵Gerald Carter3-3/+3
on local files on on domain members; bug 875 (This used to be commit c6594e35573186966a4d57404f1c06b98670db06)
2003-12-10more group lookup access fixes on the neverending bug 281Gerald Carter4-22/+49
(This used to be commit 9359a6ea80d1228e87ea825a100a2d289c37162d)
2003-12-10Fix #558 -- support ISO-8859-1 internally. Makes Solaris users a bit happierAlexander Bokovoy1-0/+28
(This used to be commit ba95fe56d2db8243191d5dd6b75c6b65e0f5fbe9)
2003-12-10setting version to 3.0.2pre1Gerald Carter1-3/+3
(This used to be commit f0ac8ea48533357733c85f0ce4db3f8bc9ef362b)
2003-12-10patch from TAKEDA yasuma to bypass any missing language filesGerald Carter1-0/+9
(This used to be commit a3b0cc9f5b230cc4b9a017c9566b2ef83fb54030)
2003-12-09IRIX spinlock patch from James Peach <jpeach@sgi.com>.Jeremy Allison2-0/+53
Jeremy. (This used to be commit 1ae1987a002716e8aa0d4bc0dd68f580ad762e47)
2003-12-09working on packaging; also fixed some path issues in configure.in & Makefile.inGerald Carter2-9/+32
(This used to be commit 8f6cd36fa03edf75e8e3a806ab178d8563dea081)
2003-12-09Final part of fix for #445. Don't add user for machine accounts.Jeremy Allison1-0/+4
Jeremy. (This used to be commit 3684cffbd269389d14b37edd5959e29912c13a60)
2003-12-09fix bug in get_peer_name() caused by --enable-developer and using the same ↵Gerald Carter1-3/+11
src & dest strings to alpha_strcpy(); reported by Michael Young (This used to be commit b7df6849c9368aa2e5960de54a03be269ab89fef)
2003-12-09Make intent to return only one address clear.Jeremy Allison1-2/+2
Jeremy. (This used to be commit d3d0353baeba580d8a7a4688f847463b1b2e750c)