Age | Commit message (Collapse) | Author | Files | Lines |
|
metze
(This used to be commit 659a0b26e2fa466169078bab6dd4af1e5fffb48b)
|
|
use:
gensec:krb5=yes
gensec:ms_krb5=yes
to enable it
or -k on the client tools on the command line
metze
(This used to be commit 0ae5794cf44933d2554e0356baaca24c7a784f71)
|
|
metze
(This used to be commit 1e0483a8482574fa0f8d7ad31cc4bf4a6155ec52)
|
|
metze
(This used to be commit 57bd26f9c528687ca2ca9bbaa56f7f36efd2231f)
|
|
metze
(This used to be commit 54398aa889b5954c7c387b252dd1a9173eac36f0)
|
|
uint32 != uint8_t ...
metze
(This used to be commit a8a3b8ee341fda041383df225ea2b7f9b589fc04)
|
|
for sign extending errors in element length
(This used to be commit 07378fca6c12ffffcd3fe5e91f4d70ef838a45d5)
|
|
this caused new ldb record to be corrupt if the length was > 12b byte
thanks tridge for finding this
metze
(This used to be commit 6998c37b473d8efeb2ed5285f10f469a29ad787a)
|
|
in my compile
(This used to be commit 0928b1f5b68c858922c3ea6c27ed03b5091c6221)
|
|
generic->specific access mask mappings, and tests of the behaviour of
SID_CREATOR_OWNER and SEC_FLAG_MAXIMUM_ALLOWED
(This used to be commit f572fe6d29d5a318b24d71a2ebfa2baca2b79a10)
|
|
This removes the duplicate named SEC_RIGHTS_MAXIMUM_ALLOWED and
SEC_RIGHTS_FULL_CONTROL, which are just other names for
SEC_FLAG_MAXIMUM_ALLOWED and SEC_RIGHTS_FILE_ALL. The latter names
match the new naming conventions in security.idl
Also added names for the generic->specific mappings for files are
directories
(This used to be commit 17a4e0b3aca227b40957ed1e0c57e498debc6ddf)
|
|
easily create complex security descriptors for testing. This greatly
simplifies the smbtorture code I am writing for testing our
new access_check code.
(This used to be commit 891a8bc16af3c6ce5800e793ce4ec8b0078e444f)
|
|
(This used to be commit 1f3f9f829444cb889c6782c4fe52773fd6867b55)
|
|
metze
(This used to be commit 41b1ba53fc201b7b9f9d806dccef6258b2a1d157)
|
|
work out some way to do a decent test suite for this.
(This used to be commit 9a9a0d0e791e4b64f0a35c921729e623b977af47)
|
|
against a users security token and access_mask
(This used to be commit c4d21cd4b1ccffd5aaa70a551c57f6eab1ca9c6d)
|
|
metze
(This used to be commit 79d0eb2f677f9e985ba476a9680f68537d41be6f)
|
|
(This used to be commit 078d9ab05bffc79e4f329ea18fe3dafd144d989c)
|
|
(This used to be commit 5ffffdd79f23c461e30bc91e983b12939f063d2d)
|
|
- removed the clitar code. It is unmaintained, and a horribly badly done hack
- removed client.h as it contained mostly unused definitions
- removed the unused clidfs.c code
(This used to be commit 31a7bddbb3815b4d625e993dbce4805dae1c18f8)
|
|
(This used to be commit 44d97619623830cc24905a5f4df941d45ebd41c3)
|
|
definitions for security access masks, in security.idl
The previous definitions were inconsistently named, and contained many
duplicate and misleading entries. I kept finding myself tripping up
while using them.
(This used to be commit 01c0fa722f80ceeb3f81f01987de95f365a2ed3d)
|
|
(This used to be commit b4fd76f78eadd8648ceed508766235e80702aa8f)
|
|
w2k3 trust
metze
(This used to be commit 5101cd51a24fdcda8dd8fc4da446782948290f9b)
|
|
metze
(This used to be commit c04a77ed6945db0292434fb5461a884708a9ebf2)
|
|
metze
(This used to be commit 6a7eee1d9917e0884072354dddae568645798da5)
|
|
(thanks abartlet for telling me)
metze
(This used to be commit 2783bf393f6310f9d827538329d619dad5b02dd0)
|
|
- add idl for drsuapi_DsReplicaSync() not yet complete
- just return WERR_OK for the drsuapi_DsReplicaSync() server function
metze
(This used to be commit e896925ac0b58bd48b5b9cc2d675682409d09ae1)
|
|
metze
(This used to be commit 7264a2227d7a1881db01964d0d713c144eb77152)
|
|
metze
(This used to be commit 623411f74ee766dee2170949b118216387779929)
|
|
metze
(This used to be commit 87a92d3d5c7c2ab0bc07a9fb101022b3db1d637b)
|
|
(This used to be commit 01e89697fe837ee76fedda149e1e2b389a7d3889)
|
|
- fixed the sid_index field in lsa LookupSids and LookupNames
(This used to be commit 677f701e71609d82376b1ea2fa9ebc3521896671)
|
|
easier
(This used to be commit 54209ed05686a442156f7927c58d8656aa5e4900)
|
|
id->sid mapping
(This used to be commit e61140510905b6bbe57ad35dad8e4dd68d1f6bd8)
|
|
and unixName in samdb.
(This used to be commit 5c966821e2eced9a1b34a5274cc317eab1a44eaf)
|
|
better default NT ACL in pvfs
(This used to be commit 9ff6ecbdb6c08528193f7958d7ea7d9a8df6defd)
|
|
our local domain. Note that this linear mapping does not suffer from
the "foreign sid" problems of the linear mappings we have previously
rejected for the sid->uid problem.
the mapping allows for 1 billion automatically allocated users or
groups for the local domain.
(This used to be commit 8f573439753e2a425305936107442c85cffb9369)
|
|
talloc
relationship
(This used to be commit 5db0eb1fe3abb5150bef27bfed4b7da723e4a287)
|
|
metze
(This used to be commit 56c66f4a090b1efca011fc2fc9880c4d93da164c)
|
|
(This used to be commit 052d91c59f177851b5e0e53c8a033bdd28702f64)
|
|
subsystem. This is in preparation for adding better default ACL
generation in pvfs, which will require uid/gid -> sid mapping.
(This used to be commit b31108e49247495d98cf7c12ee303b12a9e44e92)
|
|
Guenther
(This used to be commit 5dde59be0995b9893ef476b06c259776c1115ae7)
|
|
(This used to be commit da12780bd98e566af13fe97ce5e84fe829a0fbd5)
|
|
return code to include our own domain.
editing of ACLs via the w2k3 GUI works nicely (and faster) with these changes
(This used to be commit a3f7f34b3965ddbd89b06334e03d2e1bb6aa364b)
|
|
(This used to be commit 9da455ed56ebc167f295b231c2730e3ff9c94617)
|
|
lm hash from the samdb, and thus not checking the verifier)
fixed the client side to calculate the lm verifier based on the nt
hash, not the lm hash (confirmed using w2k3)
(This used to be commit 27e7fb3bafe4649359e2e68169b6f10fd4d2cc70)
|
|
where the warmup phase continues until all clients have done some file
IO. This gives more repeatable results when under high load
(This used to be commit aca0658f6dfe8b7c90afcac87e8cc68965a4288d)
|
|
apologies for not committing this earlier
(This used to be commit 0950681091ab99f0e79048a9c1db57d057a96e66)
|
|
metze
(This used to be commit 523e6acf4fec5d4946fa7c0c89f40d7d712c9f3a)
|