summaryrefslogtreecommitdiff
path: root/source4
AgeCommit message (Expand)AuthorFilesLines
2012-01-31s4-s3-upgrade: Check if there are duplicate sids for users and groupsAmitay Isaacs1-0/+4
2012-01-31s4-s3-upgrade: Use lowercase hostname as hostname for provisionAmitay Isaacs1-1/+1
2012-01-30s3: check that a user in a bogus domain name is mapped to the localnetbios na...Matthieu Patou1-0/+1
2012-01-30gensec: inline gensec_generate_session_info() into only callerAndrew Bartlett2-9/+27
2012-01-30s4-auth: Return NT_STATUS_NOT_IMPLEMENTED if the challenge cannot be obtainedAndrew Bartlett1-1/+1
2012-01-30auth: Make check_password and generate_session_info hook genericAndrew Bartlett3-21/+51
2012-01-30samdb: use compat wrappers for tdb_fetch().Rusty Russell1-6/+6
2012-01-29auth: provide private pointer and do not return original PAC signaturesAndrew Bartlett1-34/+40
2012-01-26s4-rpc_server: Fix search for existing trust to actually look for the dns nameAndrew Bartlett1-1/+1
2012-01-25s3:build: require gss_krb5_export_lucid_sec_context() for ads supportStefan Metzmacher1-0/+1
2012-01-25s4-torture: For authenticated users, add AUTHENTICATED USERS sidAmitay Isaacs1-0/+4
2012-01-25dlz_bind9: for authenticated user, set the AUTHENTICATED USERS sid in tokenAmitay Isaacs1-0/+5
2012-01-24dsdb: Allow DSDB_CONTROL_PASSWORD_BYPASS_LAST_SET_OID to be specified as a flagAndrew Bartlett2-0/+8
2012-01-24python: Change except: statement to except Exception:Amitay Isaacs9-15/+15
2012-01-23WERROR type variable being incorrectly checked with a NT_STATUS_IS_XDavid Disseldorp1-1/+1
2012-01-21Log short_princ instead of uninitialised filter.Michael Wood1-5/+6
2012-01-20s4:auth/gensec: make sure GSS_C_CONF_FLAG implies GSS_C_INTEG_FLAGStefan Metzmacher1-0/+1
2012-01-20torture: add spoolss overlapping driver deletion testsDavid Disseldorp1-1/+118
2012-01-20torture: confirm printer driver file removalDavid Disseldorp1-1/+81
2012-01-20torture: add spoolss del printer driver testDavid Disseldorp1-0/+63
2012-01-16s4:dsdb/password_hash: require a "Primary:Kerberos" blob in supplementalCrede...Stefan Metzmacher1-0/+16
2012-01-14KCC importldif/exportldif and intersite topologyDave Craft2-376/+2429
2012-01-14Intersite KCC flags for pythonDave Craft1-0/+5
2012-01-13s4-smbtorture: tweak spoolss_OpenPrinterEx devmodeDavid Disseldorp1-2/+2
2012-01-13auth/gensec: move spnego.c to the toplevelStefan Metzmacher2-1411/+0
2012-01-13auth/gensec: common helper functions should be in gensec_util.cStefan Metzmacher1-107/+0
2012-01-13s4:auth/gensec: inline packet_full_request_u32()Stefan Metzmacher1-1/+9
2012-01-13s4:auth/gensec: fix compiler warnings in spnego.cStefan Metzmacher1-3/+0
2012-01-12s4:repl_cleartext_pwd.py: add optional 'clear_utf16_name' parameterStefan Metzmacher1-7/+17
2012-01-12s4:repl_cleartext_pwd.py: add 'attmode' parameter to convert the attname to utf8Stefan Metzmacher1-5/+22
2012-01-12s4:repl_cleartext_pwd.py: correctly compare attids as uint32_t valuesStefan Metzmacher1-5/+10
2012-01-12s4:pygensec/tests: add test for gensec_set_max_update_size()Stefan Metzmacher1-0/+54
2012-01-12s4:auth/gensec/spnego: add support for fragmented spnego messagesStefan Metzmacher1-3/+205
2012-01-12s4:pygensec: add set_max_update_size() and max_update_size() functionsStefan Metzmacher1-0/+25
2012-01-12Revert "make paranoia check less paranoid" - check that key types strictly matchAndrew Bartlett1-1/+1
2012-01-12make hmac-md5 the keyed checksum type for arcfour-hmac-md5Andrew Bartlett1-1/+1
2012-01-12use ETYPE_DES3_CBC_SHA1 for the verify step in verify_mic_des3Andrew Bartlett1-0/+8
2012-01-12heimdal: remove checking of KDC PAC signature, delegate to wdc pluginAndrew Bartlett1-12/+2
2012-01-12auth/kerberos: Remove unused TALLOC_CTX argument to check_pac_checksumAndrew Bartlett1-1/+1
2012-01-12s4-kdc Do the KDC PAC checksum validation in the Samba pluginAndrew Bartlett6-44/+152
2012-01-12s4-kdc: use IDL constant NETLOGON_GENERIC_KRB5_PAC_VALIDATEAndrew Bartlett1-1/+1
2012-01-12samba-tool:dns: DNS names are case insensitiveAmitay Isaacs1-3/+3
2012-01-12s4-rpc:dnsserver: DNS names are case insensitiveAmitay Isaacs3-17/+17
2012-01-11s4:auth: Make sure to check the optional auth_context hooks before using themAndrew Bartlett1-18/+26
2012-01-11gensec: Rename want_flags and got_flags in gensec_gssapiAndrew Bartlett1-26/+26
2012-01-11gensec: make gensec_gssapi.h commonAndrew Bartlett1-67/+0
2012-01-11gensec: move gensec_util.c to the top levelAndrew Bartlett3-104/+1
2012-01-11auth: make auth4_context common to provide access to generate_session_info_pac()Andrew Bartlett1-52/+0
2012-01-10krb5: Require krb5_set_real_time is available to build with krb5Andrew Bartlett1-4/+0
2012-01-10krb5: Require krb5_get_renewed_creds be available to build with krb5Andrew Bartlett1-1/+0