Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2009-09-21 | s4:libnet_become_dc - bump down the level requested by abartlet | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
2009-09-20 | s4:provision Use code to store domain join in 'net join' as well | Andrew Bartlett | 2 | -284/+51 | |
This ensures we only have one codepath to store the secret, and therefore that we have a single choke point for setting the saltPrincipal, which we were previously skipping. Andrew Bartlett | |||||
2009-09-19 | s4-resolve: fixed a crash bug on timeout | Andrew Tridgell | 1 | -1/+1 | |
We were creating the name resolution context as a child of lp_ctx, which meant when we gave up on a connection the timer on name resolution kept running, and when it timed out the callback crashed as the socket was already removed. | |||||
2009-09-17 | s4:libnet_become_dc - Fix some uninitialised variables | Matthias Dieter Wallnöfer | 1 | -3/+3 | |
2009-09-17 | s4/domain behaviour flags: Fix them up in various locations | Matthias Dieter Wallnöfer | 1 | -1/+1 | |
Additional notes: - Bump the level to Windows Server 2008 R2 (we should support always the latest version - if we provision ourself) - In "descriptor.c" the check for the "domainFunctionality" level shouldn't be needed: ACL owner groups (not owner user) are supported since Windows 2000 Server (first AD edition) - I took the argument from: http://support.microsoft.com/kb/329194 | |||||
2009-09-15 | s4-repl: don't do double replication | Andrew Tridgell | 1 | -2/+4 | |
When we replicate from a remote DC, we need to note the new uSN that the local changes have resulted in, and modify the uSN that the notify task uses to determine if it should send a ReplicaSync message back to the remote DC. Otherwise we end up always triggering a ReplicaSync every time we replicate from another DC | |||||
2009-09-10 | s4/vampire: fixed i/j index mixup in vampire code | Andrew Tridgell | 1 | -3/+3 | |
2009-09-09 | s4: allow repl:RODC=true/false to set ourselves as a RODC | Andrew Tridgell | 1 | -2/+6 | |
I think this is what windows DCs use to see that we are read-only, but I am not sure. Needs more testing. | |||||
2009-09-08 | s4: fixed updaterefs options bitmap | Andrew Tridgell | 1 | -1/+1 | |
2009-09-07 | s4: fixed the secrets.ldb construction in libnet | Andrew Tridgell | 1 | -8/+8 | |
on a vampire join we were not putting the right attributes and objectclass on the secrets.ldb record | |||||
2009-09-03 | show more reasonable object counts during a vampire | Andrew Tridgell | 1 | -4/+18 | |
We now show the total number of objects we have processed, which gives the user a better idea of how much has been done. A vampire on a large domain can take an hour or more (which needs to be fixed btw, it is a problem with the lack of scalability of the ltdb index code). Watching the same msg for an hour makes you wonder if any progress is being made! | |||||
2009-09-02 | wrap the entire vampire operation in a transaction | Andrew Tridgell | 1 | -13/+24 | |
We want to grab the whole database, or none of it. This is also needed to get linked attributes right | |||||
2009-07-31 | s4:libnet: use talloc_strdup() instead of talloc_reference() | Stefan Metzmacher | 2 | -2/+2 | |
metze | |||||
2009-07-28 | Fix compile of py_net.c | Andrew Bartlett | 1 | -1/+3 | |
2009-07-28 | s4:libnet Add in a 'credentials' parameter for python libnet_Join | Andrew Bartlett | 1 | -7/+20 | |
2009-07-28 | s4:kerberos Add 'net export keytab' command for wireshark decryption | Andrew Bartlett | 4 | -2/+84 | |
It is much easier to do decryption with wireshark when the keytab is available for every host in the domain. Running 'net export keytab <keytab name>' will export the current (as pointed to by the supplied smb.conf) local Samba4 doamin. (This uses Heimdal's 'hdb' keytab and then the existing hdb-samba4, and so has a good chance of keeping working in the long term). Andrew Bartlett | |||||
2009-07-27 | Revert "s4:kerberos Add 'net export keytab' command for wireshark decryption" | Stefan Metzmacher | 4 | -85/+2 | |
This reverts commit a40ce5d0d9d06f592a8885162bbaf644006b9f0f. This breaks the build... Andrew, please repush it, when it's fixed:-) metze | |||||
2009-07-27 | s4:kerberos Add 'net export keytab' command for wireshark decryption | Andrew Bartlett | 4 | -2/+85 | |
It is much easier to do decryption with wireshark when the keytab is available for every host in the domain. Running 'net export keytab <keytab name>' will export the current (as pointed to by the supplied smb.conf) local Samba4 doamin. (This uses Heimdal's 'hdb' keytab and then the existing hdb-samba4, and so has a good chance of keeping working in the long term). Andrew Bartlett | |||||
2009-07-19 | Add missing includes. | Jelmer Vernooij | 1 | -0/+1 | |
2009-07-15 | s4:libnet: rename uint => uint32_t because uint is not portable | Stefan Metzmacher | 4 | -6/+6 | |
metze | |||||
2009-07-13 | libds: share UF_ flags between samba3 and 4. | Günther Deschner | 2 | -2/+2 | |
Guenther | |||||
2009-07-02 | the settings structure needs to be initialised | Andrew Tridgell | 1 | -0/+1 | |
2009-07-01 | use a talloc_reparent in a very ugly way | Andrew Tridgell | 1 | -2/+11 | |
this works around some terrible use of talloc in the libnet code | |||||
2009-07-01 | use the new talloc_reparent in two places | Andrew Tridgell | 1 | -1/+1 | |
2009-06-18 | s4:libnet Allow 'net password change' to work on expired passwords | Andrew Bartlett | 8 | -7/+35 | |
We need to pass down flags to the DCE/RPC layer to allow fallback to anonymous connections, as we can't log in with an expired password. The anonymous connection can then change the password with SAMR. Andrew Bartlett | |||||
2009-05-25 | fixed the client side password change code | Andrew Tridgell | 1 | -61/+25 | |
The client side code was not falling back to older routines correctly as it didn't check for the operation range error appropriately. It also used the old rpc semantics. | |||||
2009-05-14 | s4:libnet Use str_list_make_single() in resolv code | Andrew Bartlett | 1 | -1/+1 | |
2009-04-14 | Rework Samba4 to use the new common libcli/auth code | Andrew Bartlett | 6 | -15/+9 | |
In particular, this is the rename from creds_ to netlogon_creds_, as well as other links to use the new common crypto. Andrew Bartlett | |||||
2009-04-14 | Use common samsync delta decryption functions in libnet_samsync.c | Andrew Bartlett | 1 | -134/+2 | |
Andrew Bartlett | |||||
2009-04-02 | major upgrade to the ldb attribute handling | Andrew Tridgell | 1 | -1/+1 | |
This is all working towards supporting the full WSPP schema without a major performance penalty. We now use binary searches when looking up classes and attributes. We also avoid the loop loading the attributes into ldb, by adding a hook to override the ldb attribute search function in a module. The attributes can thus be loaded once, and then saved as part of the global schema. Also added support for a few more key attribute syntaxes, as needed for the full schema. | |||||
2009-03-19 | s4:cldap: rewrite the cldap library based on tsocket | Stefan Metzmacher | 3 | -24/+34 | |
metze | |||||
2009-03-01 | s4: Use same function signature for convert_* as s3. | Jelmer Vernooij | 1 | -2/+2 | |
2009-03-01 | Add allow_badcharcnv argument to all conversion function, for | Jelmer Vernooij | 1 | -1/+1 | |
consistency with Samba 3. | |||||
2009-02-02 | s4:libnet: s/new/n | Stefan Metzmacher | 1 | -9/+9 | |
metze | |||||
2009-02-02 | s4:cldap: s/private/private_data | Stefan Metzmacher | 2 | -4/+4 | |
metze | |||||
2009-02-02 | s4:libnet/: s/private/private_data | Stefan Metzmacher | 4 | -12/+12 | |
metze | |||||
2008-12-29 | s4:lib/tevent: rename structs | Stefan Metzmacher | 5 | -7/+7 | |
list="" list="$list event_context:tevent_context" list="$list fd_event:tevent_fd" list="$list timed_event:tevent_timer" for s in $list; do o=`echo $s | cut -d ':' -f1` n=`echo $s | cut -d ':' -f2` r=`git grep "struct $o" |cut -d ':' -f1 |sort -u` files=`echo "$r" | grep -v source3 | grep -v nsswitch | grep -v packaging4` for f in $files; do cat $f | sed -e "s/struct $o/struct $n/g" > $f.tmp mv $f.tmp $f done done metze | |||||
2008-12-29 | s4 libnet: Add support for groupinfo by sid lookup | Kai Blin | 2 | -24/+82 | |
2008-12-29 | s4 libnet: Add group_name member to struct libnet_GroupInfo's out struct. | Kai Blin | 2 | -3/+6 | |
2008-12-29 | s4:libnet_samdump_keytab: pass down event_context explicit | Stefan Metzmacher | 1 | -1/+3 | |
metze | |||||
2008-12-23 | Fix compiler warnings in libnet. | Jelmer Vernooij | 6 | -18/+9 | |
2008-12-05 | s4-samr: fix samr callers after SAMR_FIELD_PASSWORD change. | Günther Deschner | 1 | -2/+2 | |
Guenther | |||||
2008-11-28 | s4-samr: fix samr passwdord_expired callers. | Günther Deschner | 1 | -3/+2 | |
Guenther | |||||
2008-11-10 | s4-samr: merge samr_QueryUserInfo{2} from s3 idl. (fixme: python) | Günther Deschner | 3 | -5/+12 | |
Guenther | |||||
2008-11-10 | s4-samr: merge samr_QueryGroupInfo from s3 idl. (fixme python) | Günther Deschner | 1 | -1/+3 | |
Guenther | |||||
2008-11-10 | s4-samr: merge samr_EnumDomainGroups from s3 idl. (fixme: python) | Günther Deschner | 1 | -4/+12 | |
Guenther | |||||
2008-11-10 | s4-samr: merge samr_EnumDomainUsers from s3 idl. (fixme: python) | Günther Deschner | 1 | -4/+12 | |
Guenther | |||||
2008-11-10 | s4-samr: merge samr_EnumDomains from s3 idl. (fixme: python) | Günther Deschner | 1 | -5/+9 | |
Guenther | |||||
2008-11-10 | s4-samr: merge samr_LookupDomain from s3 idl. (fixme: python) | Günther Deschner | 3 | -4/+11 | |
Guenther | |||||
2008-11-10 | s4-samr: merge samr_LookupNames from s3 idl. (fixme: python) | Günther Deschner | 6 | -28/+54 | |
Guenther |