sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-27 14:04:05 +03:00
Code
samba-mirror/source/rpcclient/cmd_eventlog.c

93 lines
2.5 KiB
C
Raw Normal View History

Added a new command to rpcclient: eventlog <log> where <log> is System, Security or Application. That's a crude equivalent to the eventviewer. Jean Francois
-
/*
Unix SMB/Netbios implementation.
Version 2.1.
Copyright (C) Luke Kenneth Casson Leighton 1996-1999,
Copyright (C) Andrew Tridgell 1994-1999,
Copyright (C) Jean Francois Micouleau 1998-1999.
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
*/
#ifdef SYSLOG
#undef SYSLOG
#endif
#include "includes.h"
#include "nterr.h"
extern int DEBUGLEVEL;
#define DEBUG_TESTING
extern FILE* out_hnd;
/****************************************************************************
****************************************************************************/
okay :) all cmd_() functions now take int argc, char **argv :) that means that some commands need more work, as they still use next_token(), the use of which i wish to avoid. plus, i was getting fed up of the poor command-line processing in some of these commands. i'm starting to need getopt() in them, especially in samsetuser. WARNING: only cmd_samr has been modded to use getopt() so far! reg commands won't work, esp.
-
void cmd_eventlog(struct client_info *info, int argc, char *argv[])
Added a new command to rpcclient: eventlog <log> where <log> is System, Security or Application. That's a crude equivalent to the eventviewer. Jean Francois
-
{
this one's a handle-based one (missed in the first round).
-
BOOL res1 = True;
BOOL res = True;
Added a new command to rpcclient: eventlog <log> where <log> is System, Security or Application. That's a crude equivalent to the eventviewer. Jean Francois
-
POLICY_HND hnd;
event log update
-
uint32 number = 0;
Added a new command to rpcclient: eventlog <log> where <log> is System, Security or Application. That's a crude equivalent to the eventviewer. Jean Francois
-
uint32 flags;
uint32 offset;
uint32 num_of_bytes;
EVENTLOGRECORD ev;
another four next_token() removals (using getopt instead)
-
char *journal = NULL;
Added a new command to rpcclient: eventlog <log> where <log> is System, Security or Application. That's a crude equivalent to the eventviewer. Jean Francois
-
this one's a handle-based one (missed in the first round).
-
fstring srv_name;
fstrcpy(srv_name, "\\\\");
fstrcat(srv_name, info->dest_host);
strupper(srv_name);
flags = EVENTLOG_READ_SEQUENTIAL|EVENTLOG_READ_BACKWARD;
Added a new command to rpcclient: eventlog <log> where <log> is System, Security or Application. That's a crude equivalent to the eventviewer. Jean Francois
-
another four next_token() removals (using getopt instead)
-
if (argc > 1)
Added a new command to rpcclient: eventlog <log> where <log> is System, Security or Application. That's a crude equivalent to the eventviewer. Jean Francois
-
{
another four next_token() removals (using getopt instead)
-
journal = argv[1];
Added a new command to rpcclient: eventlog <log> where <log> is System, Security or Application. That's a crude equivalent to the eventviewer. Jean Francois
-
}
this one's a handle-based one (missed in the first round).
-
res = res ? event_open(srv_name, journal, &hnd) : False;
res1 = res ? event_numofeventlogrec(&hnd, &number) : False;
Added a new command to rpcclient: eventlog <log> where <log> is System, Security or Application. That's a crude equivalent to the eventviewer. Jean Francois
-
fprintf(out_hnd, "Number of events: %d\n", number);
display_eventlog_eventrecord(out_hnd, ACTION_HEADER, &ev);
this one's a handle-based one (missed in the first round).
-
for (offset = 0; offset < number && res1; offset++)
Added a new command to rpcclient: eventlog <log> where <log> is System, Security or Application. That's a crude equivalent to the eventviewer. Jean Francois
-
{
num_of_bytes=0;
/* try once with a empty buffer */
this one's a handle-based one (missed in the first round).
-
res1 = res1 ? event_readeventlog(&hnd, number,
flags, offset,
&num_of_bytes, &ev) : False;
Added a new command to rpcclient: eventlog <log> where <log> is System, Security or Application. That's a crude equivalent to the eventviewer. Jean Francois
-
/* and try again with the correct size */
this one's a handle-based one (missed in the first round).
-
res1 = res1 ? event_readeventlog(&hnd, number,
flags, offset,
&num_of_bytes, &ev) : False;
Added a new command to rpcclient: eventlog <log> where <log> is System, Security or Application. That's a crude equivalent to the eventviewer. Jean Francois
-
display_eventlog_eventrecord(out_hnd, ACTION_ENUMERATE, &ev);
}
display_eventlog_eventrecord(out_hnd, ACTION_FOOTER, &ev);
this one's a handle-based one (missed in the first round).
-
res = res ? event_close(&hnd): False;
Added a new command to rpcclient: eventlog <log> where <log> is System, Security or Application. That's a crude equivalent to the eventviewer. Jean Francois
-
}
Copy Permalink