Age | Commit message (Collapse) | Author | Files | Lines |
|
metze
|
|
It is much easier to do decryption with wireshark when the keytab is
available for every host in the domain. Running 'net export keytab
<keytab name>' will export the current (as pointed to by the supplied
smb.conf) local Samba4 doamin.
(This uses Heimdal's 'hdb' keytab and then the existing hdb-samba4,
and so has a good chance of keeping working in the long term).
Andrew Bartlett
|
|
This reverts commit a40ce5d0d9d06f592a8885162bbaf644006b9f0f.
This breaks the build...
Andrew, please repush it, when it's fixed:-)
metze
|
|
It is much easier to do decryption with wireshark when the keytab is
available for every host in the domain. Running 'net export keytab
<keytab name>' will export the current (as pointed to by the supplied
smb.conf) local Samba4 doamin.
(This uses Heimdal's 'hdb' keytab and then the existing hdb-samba4,
and so has a good chance of keeping working in the long term).
Andrew Bartlett
|
|
list=""
list="$list event_context:tevent_context"
list="$list fd_event:tevent_fd"
list="$list timed_event:tevent_timer"
for s in $list; do
o=`echo $s | cut -d ':' -f1`
n=`echo $s | cut -d ':' -f2`
r=`git grep "struct $o" |cut -d ':' -f1 |sort -u`
files=`echo "$r" | grep -v source3 | grep -v nsswitch | grep -v packaging4`
for f in $files; do
cat $f | sed -e "s/struct $o/struct $n/g" > $f.tmp
mv $f.tmp $f
done
done
metze
|
|
This will use DRS Replication (metze's thesis work) and possibly
samsync, and will work outside the smbtorture process.
Andrew Bartlett
(This used to be commit 02a33165ca700f71cf09680ded35c87aa2e88552)
|
|
(This used to be commit 874f0ac0561e38a8c0ceda983f6c88c75ee29e9c)
|
|
(This used to be commit 459e1466a411d6f83b7372e248566e6e71c745fc)
|
|
(This used to be commit eeb2251d22b3d6e0379444a73af69d1014692b07)
|
|
rafal
(This used to be commit 05624840c79982a6125fb037dc771a3c42f3c7ac)
|
|
(This used to be commit 37425495f392a2d0122a93aa2c42758eab7dab5a)
|
|
rafal
(This used to be commit 80479eee256ab549b28cbd086a1343ce2a3c4948)
|
|
info call.
rafal
(This used to be commit 75f81f862ef06e86f9dcfcf4709221ed9c4e22ed)
|
|
return full SIDs for the user SID and primary group sid.
This should help kai with his getpwnam work in winbind.
Andrew Bartlett
(This used to be commit 078671d5015c63e4bcd96815e150dae918763b83)
|
|
Andrew Bartlett
(This used to be commit e6ccdb6cea267b992d1b586757f0b84afbc5e45f)
|
|
There are still a few tidyups of old FSF addresses to come (in both s3
and s4). More commits soon.
(This used to be commit fcf38a38ac691abd0fa51b89dc951a08e89fdafa)
|
|
This allows not requiring it as an argument in some function calls
and still enables specifying any size if it's necessary via libnet
context.
rafal
(This used to be commit 3e4b0c5b3b6d6bd155c8ce11b2342f4af08342f6)
|
|
metze
(This used to be commit f66a93ec0b5c0250dd5c49adde163b2aaaaddfbd)
|
|
metze
(This used to be commit 103ac9a96bb43f512915196eb8869f9633410618)
|
|
metze
(This used to be commit 45d5da47287a9e92b88db875d9ed447c60b57f88)
|
|
properties more consistently reflected.
2) Add domain open routine for lsa pipe - this is needed for ongoing
name resolve function.
Tests (still neglected) and comments to follow.
rafal
(This used to be commit fe5652c2b8121bbe3b9932c43164035355478611)
|
|
rafal
(This used to be commit a2229f8c80898f5f0bae6641b356a476d3265c5a)
|
|
header files instead of composite.h
rafal
(This used to be commit 8cafbe7afedc90346cbd0cbedc2571143ae3dbc6)
|
|
a bit more smart and more aware of what libnet_context can offer.
The context is a help when some of the arguments are not passed
(programmer counts on using sensible defaults) and stores some of
results so that similar subsequent calls don't need to reopen some
of policy handles, pipes, etc. again. It also helps to hide some
of details the library user don't really want to know much about.
Also, change domain open function to be part of public api, as
it is going to be used in ejsnet interface.
Note, this is work in progress. Comments are welcome.
rafal
(This used to be commit 1ed80c594c2f466e364a11194d6fdc30ac4a8f27)
|
|
(This used to be commit f4de155c94b89e586640d11992953a0d5fc0716d)
|
|
(This used to be commit 1a16a6f1dfa66499af43a6b88b3ea69a6a75f1fe)
|
|
This patch pulls the AD site name generation and site join code from
libnet/libnet_join.c and puts it into a new file, libnet/libnet_site.c.
This way, a common means for site name, configuration dn and server dn
generation exists so it doesn't need to be rewritten in new code (such
as the future libnet_leave for example).
I've made a couple of changes, but nothing dramatic. Nice work Brad!
Andrew Bartlett
(This used to be commit 45f67b3f6d506cc8cb9922184a8c0c9b59a8f702)
|
|
(This used to be commit 63917616016133c623fc6ff59454bc313ee7dd8f)
|
|
(This used to be commit 0aca5fd5130d980d07398f3291d294202aefe3c2)
|
|
utilities to set the context field.
rafal
(This used to be commit 5da8b457c34236b21f6e88e3a7a12338d0390a4f)
|
|
application use methods of their own choice and makes it less dependent on
smb.conf parameters.
Use libnet_context in libnet_Lookup functions which is the way to pass
default name resolution methods if caller doesn't want to bother with
specifying them.
rafal
(This used to be commit d0ea136356bcb9c6c01120d8683b71e8689d5e5b)
|
|
rafal
(This used to be commit 15e2a67fe08daa722c55cd3afd46e838eb653e22)
|
|
event_context for the socket_connect() call, so that when things that
use dcerpc are running alongside anything else it doesn't block the
whole process during a connect.
Then of course I needed to change any code that created a dcerpc
connection (such as the auth code) to also take an event context, and
anything that called that and so on .... thus the size of the patch.
There were 3 places where I punted:
- abartlet wanted me to add a gensec_set_event_context() call
instead of adding it to the gensec init calls. Andrew, my
apologies for not doing this. I didn't do it as adding a new
parameter allowed me to catch all the callers with the
compiler. Now that its done, we could go back and use
gensec_set_event_context()
- the ejs code calls auth initialisation, which means it should pass
in the event context from the web server. I punted on that. Needs fixing.
- I used a NULL event context in dcom_get_pipe(). This is equivalent
to what we did already, but should be fixed to use a callers event
context. Jelmer, can you think of a clean way to do that?
I also cleaned up a couple of things:
- libnet_context_destroy() makes no sense. I removed it.
- removed some unused vars in various places
(This used to be commit 3a3025485bdb8f600ab528c0b4b4eef0c65e3fc9)
|
|
rafal
(This used to be commit 53ad20d46ba0db6a0a5dad78f996db8c0385d4f2)
|
|
rafal
(This used to be commit aea6d8c6946fcd5e0fd4f3b496f19cf1af728531)
|
|
libnet context.
rafal
(This used to be commit 702a4dd2dcb776e18acb294c87b8f460516d1383)
|
|
Original patch provided by Gregory Leocadie <gleocadie@idealx.com>
rafal
(This used to be commit eb83a8210a939a0512f505a283148898ba6eceb1)
|
|
This brings in a compatability layer for Samba3 in Samba4 - where we
will start to define file formats and similar details.
The 'net samdump' command uses 'password server = ' for now, and
performs a similar task to Samba3's 'net rpc samsync'.
Andrew Bartlett
(This used to be commit 550f17f9924fe783917318753de7d1a388423908)
|
|
(This used to be commit e5bc6f4f1716568ae7022d61b5b35ee047b58414)
|
|
rafal
(This used to be commit c5fdc38b176acc70bfc163fbf1e6cf4ef67197f5)
|
|
Andrew Bartlett
(This used to be commit a9b960609142e15ba5950eb1b22944eb6df18d9c)
|
|
metze
(This used to be commit 72e3b351d0169366aa88c5445ffa555da6efd1d0)
|
|
- add LIB_RPC_CONNECT_STANDARD level which takes a server name
and the PIPE NAME,UUID and VERSION
metze
(This used to be commit 6aeaa6aca39c8c2a9edf8d4b3e538bebb68070d7)
|
|
because we may have other rpc levels in future
add more comments about what's going on
check the rsult of samr_OpenUser
metze
(This used to be commit 741f95909b42eb55a251e5de991e5b3185714e3e)
|
|
and fallback to a workstation name
metze
(This used to be commit 2012d90f268f69a3a4e5890a0f3615237853bd0b)
|
|
but we need to find the real pdc for the users domain
and fallback to other levels
metze
(This used to be commit f1b9c1f3dd0fb927c065541da900ae43e0018a62)
|
|
doing a
password change
- add start of libnet_SetPassword
- use KRB5 and LDAP instead of ADS as ADS isn't a protocol
- add start of lib_rpc_connect()
metze
(This used to be commit 05c40dca8ad1ab020aa75282da046f1dbce2a52a)
|
|
metze
(This used to be commit dcb3ea32da6d7cf93e6bdda9b839faf604ba3b6a)
|