| Age | Commit message (Collapse) | Author | Files | Lines | |
|---|---|---|---|---|---|
| 2010-09-28 | s4:gensec_tstream: remove plain socket handling | Stefan Metzmacher | 1 | -124/+12 | |
| metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Tue Sep 28 04:54:24 UTC 2010 on sn-devel-104 | |||||
| 2010-09-28 | s4:lib/tls: add gnutls backend for tstream | Stefan Metzmacher | 3 | -3/+1298 | |
| metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Tue Sep 28 02:29:42 UTC 2010 on sn-devel-104 | |||||
| 2010-09-28 | s4:gensec: add gensec_create_tstream() | Stefan Metzmacher | 3 | -1/+764 | |
| Based on the initial patch from Andreas Schneider <asn@redhat.com>. metze | |||||
| 2010-09-28 | s4:wrepl_server: use SOCKET_FLAG_NOCLOSE instead of a dup() | Stefan Metzmacher | 1 | -18/+3 | |
| The key thing is that we might have to turn the incomming connection into a outgoing connection. This change makes sense anyway, because we donate the fd to tstream. metze | |||||
| 2010-09-28 | s4:rpc_server: use SOCKET_FLAG_NOCLOSE to avoid calling close() on the ↵ | Stefan Metzmacher | 1 | -0/+1 | |
| socket fd twice. metze | |||||
| 2010-09-28 | s4-ildap: two more places that need talloc_reparent() | Andrew Tridgell | 2 | -2/+2 | |
| these contexts can have references Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Tue Sep 28 00:04:03 UTC 2010 on sn-devel-104 | |||||
| 2010-09-27 | s4-kcc: don't print "Testing kcctpl_create_intersite_connections" | Andrew Tridgell | 1 | -1/+1 | |
| log level 0 is excessive for this! | |||||
| 2010-09-27 | s4-drs: make getncchanges debug less verbose | Andrew Tridgell | 1 | -1/+1 | |
| quieten make test a little | |||||
| 2010-09-27 | s4-dns: avoid search domains expansion in DNS resolver | Andrew Tridgell | 1 | -0/+8 | |
| add a '.' if the name contains a '.' already, but not at the end | |||||
| 2010-09-27 | heimdal: avoid DNS search domain expansion | Andrew Tridgell | 1 | -1/+16 | |
| When you have a domain search list in resolv.conf, and one of the DNS servers for a searched domain is uncontactable then we would timeout resolving DNS names. Avoid this by adding a '.' to the hostname if the hostname already has a '.' in it, which we assume to mean it is fully qualified. | |||||
| 2010-09-28 | s4-smbtorture: rework spoolss_EnumPrintProcDataTypes test. | Günther Deschner | 1 | -34/+79 | |
| Guenther | |||||
| 2010-09-28 | s4-smbtorture: rework test_EnumPrintProcessors to let it test more combinations. | Günther Deschner | 1 | -33/+15 | |
| Guenther | |||||
| 2010-09-27 | s4-ildap: fixed a talloc_steal with references error | Andrew Tridgell | 1 | -1/+1 | |
| We need talloc_reparent() instead Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Mon Sep 27 20:38:00 UTC 2010 on sn-devel-104 | |||||
| 2010-09-27 | s4-ldb: Added ldb_request_replace_control | Nadezhda Ivanova | 3 | -1/+35 | |
| It is the same as ldb_request_add_control, except it will replace an existing control. Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Mon Sep 27 19:00:38 UTC 2010 on sn-devel-104 | |||||
| 2010-09-27 | s4/irpc: Add security token to the binding handle when doing irp call forwarding | Anatoliy Atanasov | 1 | -0/+7 | |
| 2010-09-27 | s4/irpc: Add function to add security token to the binding handle | Anatoliy Atanasov | 2 | -0/+12 | |
| 2010-09-27 | s4:irpc: optionaly pass the security_token via IRPC requests. | Stefan Metzmacher | 2 | -0/+8 | |
| metze | |||||
| 2010-09-27 | s4:torture/ldap: close connections with an UnbindRequest | Stefan Metzmacher | 1 | -0/+29 | |
| metze Autobuild-User: Stefan Metzmacher <metze@samba.org> Autobuild-Date: Mon Sep 27 07:14:23 UTC 2010 on sn-devel-104 | |||||
| 2010-09-27 | LDAP-BASIC: test AbandonRequest | Stefan Metzmacher | 1 | -0/+41 | |
| metze | |||||
| 2010-09-27 | s4:libcli/ldap: fix sending oneway requests | Stefan Metzmacher | 1 | -18/+26 | |
| metze | |||||
| 2010-09-27 | waf: add more NDR subsystems for shared IDL files. | Günther Deschner | 1 | -2/+2 | |
| Guenther | |||||
| 2010-09-27 | s4-waf: remove NDR-SRVSVC alias. | Günther Deschner | 1 | -1/+0 | |
| Thanks tridge, this was driving me nuts... Guenther | |||||
| 2010-09-27 | s4-smbtorture: remove unneeded dcerpc_mgmt alias. | Günther Deschner | 3 | -3/+2 | |
| Guenther | |||||
| 2010-09-27 | s4-drs: fixed comment in getncchanges code | Andrew Tridgell | 1 | -1/+1 | |
| Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Mon Sep 27 04:54:43 UTC 2010 on sn-devel-104 | |||||
| 2010-09-26 | s4-gensec: fixed a valgrind error in gensec | Andrew Tridgell | 1 | -12/+2 | |
| Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> | |||||
| 2010-09-27 | s4-dns: use the generated krb5.conf in samba_dnsupdate | Andrew Tridgell | 1 | -0/+5 | |
| this gives one less thing that an admin can get wrong Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Mon Sep 27 02:35:29 UTC 2010 on sn-devel-104 | |||||
| 2010-09-27 | s4-provision: fixed the generation of the krb5.conf for vampire | Andrew Tridgell | 1 | -6/+6 | |
| we need a correct krb5.conf for nsupdate from bind9 | |||||
| 2010-09-26 | s4-ldbmodules: Added new module aclread to handle access checks on LDAP search | Nadezhda Ivanova | 4 | -0/+327 | |
| It is currently enabled only if the request comes from the LDAP server, and is disabled by default. Use acl:search=true in smb.conf to enable it. It filters out all objects the user is not allowed to see, and all attributes the user does not have RP on. Extended access not supported yet. | |||||
| 2010-09-26 | s4-tests: Added tests for search checks on attributes | Nadezhda Ivanova | 2 | -5/+102 | |
| The ACL reach tests are in the knowfail because aclread module is not enabled by default | |||||
| 2010-09-26 | s4-tests: Removed search tests with anonymous credentials as they fail ↵ | Nadezhda Ivanova | 2 | -4/+4 | |
| againts Windows These tests will fail in make test as well if the acl_read module is enabled. | |||||
| 2010-09-26 | s4-dsdb: Added a function to check access on a particular object by its guid | Nadezhda Ivanova | 1 | -0/+37 | |
| Similar to dsdb_check_access_on_dn, only it searches by guid. | |||||
| 2010-09-26 | s4-dsdb: A helper to determine if an attribute is part of the search filter | Nadezhda Ivanova | 1 | -0/+46 | |
| 2010-09-26 | s4-dsdb: Moved some helper functions to a separate file | Nadezhda Ivanova | 5 | -222/+260 | |
| We need these to be accessible to the aclread module as well. | |||||
| 2010-09-26 | s4-ldap: Added a control to apply the access checks on read via LDAP | Nadezhda Ivanova | 3 | -0/+6 | |
| 2010-09-26 | s4:schannel: handle move flag combinations in the server | Stefan Metzmacher | 1 | -13/+23 | |
| This fixes some testsuites in the CIFS plugfest. metze | |||||
| 2010-09-26 | s4-auth: fixed the SID list for DCs in the PAC | Andrew Tridgell | 4 | -29/+16 | |
| the S-1-5-9 SID is added in the PAC by the KDC, not on the server that receives the PAC Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> Pair-Programmed-With: Stefan Metzmacher <metze@samba.org> Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Sun Sep 26 07:09:08 UTC 2010 on sn-devel-104 | |||||
| 2010-09-26 | s4-drs: use the system sam_ctx for updaterefs | Andrew Tridgell | 1 | -8/+9 | |
| this is needed for RODC clients calling updaterefs | |||||
| 2010-09-26 | s4-spn: don't try to do SPN updates as a RODC | Andrew Tridgell | 1 | -0/+4 | |
| we don't have the permissions to do it | |||||
| 2010-09-26 | s4-kerberos Don't segfault if the password isn't specified in keytab generation | Andrew Bartlett | 1 | -0/+7 | |
| Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Sun Sep 26 03:29:34 UTC 2010 on sn-devel-104 | |||||
| 2010-09-26 | upgradeprovision: fix a typo | Matthieu Patou | 1 | -1/+1 | |
| 2010-09-26 | upgradeprovision: Fix a bug with renamed entries | Matthieu Patou | 1 | -2/+13 | |
| The SD was not refetched for renamed entries, resulting with a try to add an additional SD when there was already one. | |||||
| 2010-09-26 | upgradeprovision: fix a bug with not updated links | Matthieu Patou | 1 | -0/+1 | |
| 2010-09-26 | s4 provision: start with gpo of version 0 and be consistent between ↵ | Matthieu Patou | 2 | -3/+3 | |
| different policies | |||||
| 2010-09-26 | s4 upgradeprovision: fix a bug with empty reference objects | Matthieu Patou | 1 | -1/+9 | |
| Thanks to lukas@eecs.qmul.ac.uk for poiting it to me | |||||
| 2010-09-26 | s4 upgradeprovision: Copy versionNumber if not present it helps to make gpo ↵ | Matthieu Patou | 1 | -3/+3 | |
| valid | |||||
| 2010-09-26 | s4 provision: Make GPO folder group writable | Matthieu Patou | 1 | -3/+3 | |
| The group of this folder is domain administrator and it seems sensible that all domain administrators have the right to modify the gpo (they have it at the NT ACLs level ...) | |||||
| 2010-09-26 | upgradeprovision: use the same case for hostname in reference provision as ↵ | Matthieu Patou | 1 | -1/+1 | |
| in the current provision Autobuild-User: Andrew Tridgell <tridge@samba.org> Autobuild-Date: Sun Sep 26 01:21:52 UTC 2010 on sn-devel-104 | |||||
| 2010-09-26 | s4-dns: the DNS/${HOSTNAME} SPN should be on the DNS account only | Andrew Tridgell | 1 | -1/+0 | |
| 2010-09-26 | s4-provision: switch to dns-HOSTNAME instead of dns | Andrew Tridgell | 4 | -25/+33 | |
| We now use a host specific account name for the DNS account, which is the account used for dynamic DNS updates. We also setup the servicePrincipalName for automatic update, and add both DNS/${DNSDOMAIN} and DNS/${DNSNAME} for compatibility with both the old and new SPNs Pair-Programmed-With: Andrew Bartlett <abartlet@samba.org> | |||||
| 2010-09-26 | s4-possibleinferiors.py: Fix usage of 'paged_search' module for remote LDB ↵ | Kamen Mazdrashki | 1 | -1/+7 | |
| connections | |||||
 |
index : samba | |
| Unnamed repository; edit this file 'description' to name the repository. | ben |
| summaryrefslogtreecommitdiff |