sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-27 03:21:53 +03:00
Code
48,097 Commits 60 Branches 1,144 Tags 452 MiB
2ba4a79210
Commit Graph

1186 Commits

Author SHA1 Message Date
Stefan Metzmacher
fae2fce47e s4:provision: don't do the full provision in the become_dc 
metze
 2008-09-27 02:12:22 +02:00
Jelmer Vernooij
db6bd2a3d6 Fix DNs - only one more samba3sam test failing now. 2008-09-21 03:42:27 +02:00
Jelmer Vernooij
db0abee678 Merge branch 'master' of ssh://git.samba.org/data/git/samba into noejs 2008-09-19 00:06:14 +02:00
Jelmer Vernooij
6f6e42ce60 Generate with 1.3.36. 2008-09-18 23:55:50 +02:00
Jelmer Vernooij
a48f19b6c2 Remove python extension, simplify some code. 2008-09-18 21:32:30 +02:00
Jelmer Vernooij
729ffbae08 Merge branch 'master' of ssh://git.samba.org/data/git/samba into noejs 
Conflicts:
	source4/main.mk
 2008-09-18 20:29:05 +02:00
Jelmer Vernooij
3b5330e909 Fix check. 2008-09-17 17:00:36 +02:00
Jelmer Vernooij
f594044d79 Remove remaining JavaScript code. 2008-09-16 18:09:34 +02:00
Jelmer Vernooij
197870a731 Remove remaining embedded JavaScript support. 2008-09-16 18:05:53 +02:00
Jelmer Vernooij
fc23663f4b Revert "Add option for generating coverage data from python tests." 
This reverts commit 43c0fdfff0.
(This used to be commit 696f30fff2)
 2008-09-12 21:28:48 +02:00
Jelmer Vernooij
4f266dff13 Only try with -LPYTHONDIR/lib when python-config output didn't work. 
(This used to be commit 62d76356c1)
 2008-09-09 23:49:07 +02:00
Volker Lendecke
1d8973a82e Attempt to correctly find python on host sunx 
(This used to be commit 59b62280d2)
 2008-09-09 23:35:17 +02:00
Jelmer Vernooij
faf83916ee Add option for generating coverage data from python tests. 
(This used to be commit 43c0fdfff0)
 2008-09-09 15:55:10 +02:00
Andrew Bartlett
ef9169bfa6 Make it clear that the MMR password can differ from the admin passsword 
In the future, we might simply randomly generate this, or allow the
admin to specify it seperate to the admin password.  However, both are
highly sensitive, as they imply read access to the krbtgt.

Andrew Bartlett
(This used to be commit 57d19ad002)
 2008-09-08 15:09:06 +10:00
Oliver Liebel
b76f383eef Use DIGEST-MD5 authentication for OpenLDAP replication 
This avoids passing rootdn passwords or replicated data in cleartext
across the network.

Signed-of-by: Andrew Bartlett <abartlet@samba.org>
(This used to be commit 67373c143a)
 2008-09-08 14:39:54 +10:00
Andrew Tridgell
1929b2fb51 Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into v4-0-test 
(This used to be commit c273d63f94)
 2008-09-04 12:49:29 +10:00
Jelmer Vernooij
fbbe799e4e Regenerate SWIG file. 
(This used to be commit e8ba65c4db)
 2008-09-03 22:55:24 +02:00
Jelmer Vernooij
24a9181f25 Avoid using version call for version string. 
(This used to be commit 1897cef508)
 2008-09-03 22:29:53 +02:00
Andrew Tridgell
9817f3d785 Add a setexpiry operation in samdb.py 
This makes it easy to set the expiry (or no expiry) for a samdb user
(This used to be commit 25171f18a4)
 2008-08-30 07:32:44 +10:00
Andrew Bartlett
8237c0ba83 The index handling is now configured from the schema load, not by a 
template.

Andrew Bartlett
(This used to be commit b36c6a21ad)
 2008-08-21 12:59:16 +10:00
Andrew Bartlett
41493cbe68 Update OpenLDAP MMR configuration per comments by Oliver Liebel 
<oliver@itc.li>

This changes the RIDs to be <serverID><DBID>, to ease later debugging.

The need to specify the port on the MMR URLs is now included in the
help.

Andrew Bartlett
(This used to be commit a5cbe8c09c)
 2008-08-20 12:21:36 +10:00
Andrew Bartlett
b33f4541f6 Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-abartlet 
(This used to be commit fc6b4f03eb)
 2008-08-19 14:11:51 +10:00
Andrew Bartlett
7ef21658fb Fix up new OpenLDAP MMR code. 
This changes the MMR password from hard-coded value of 'linux',
adds tests and fixes the Fedora DS backend.

Currently the MMR password matches the admin password, but we can
change this to be another random value if required.

Also require the port to be specified on the command line, so we don't
hard-code a port of 9000.

Andrew Bartlett
(This used to be commit 08257c6d6c)
 2008-08-19 14:10:14 +10:00
Oliver Liebel
805dd85291 Generate Multi-Master Replication configuration for OpenLDAP 
This patches provision-backend and the related scripts to generate the
correct configuration blobs for N-way multi-master replication using
OpenLDAP.

Signed-off-by: Andrew Bartlett <abartlet@samba.org>
(This used to be commit 6ed0b3f247)
 2008-08-19 12:03:04 +10:00
Andrew Bartlett
47d80366be Fix templates.ldb reprovision handling. 
This sets the attributes in a seperate transaction, and allows a
forced delete of the whole file.

Andrew Bartlett
(This used to be commit 423db2468b)
 2008-08-19 11:43:41 +10:00
Jelmer Vernooij
47124efe42 Add helper object Hostconfig to make it easier to get to e.g. the 
SAM database.
(This used to be commit be75b2a36e)
 2008-08-01 21:12:37 +02:00
Jelmer Vernooij
1c94f3e95d Use new style python classes. 
(This used to be commit 2a39aae0ce)
 2008-08-01 21:00:09 +02:00
Jelmer Vernooij
fff006bd84 Move domain DN determination out of newuser function. 
(This used to be commit cbac27e6fa)
 2008-08-01 20:47:22 +02:00
Jelmer Vernooij
3b4ff07ded Actually fix missing substitution variables. 
(This used to be commit 783412ecb2)
 2008-08-01 20:47:03 +02:00
Jelmer Vernooij
2fbe25b39d Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into manpage 
(This used to be commit c87a8ba1fe)
 2008-08-01 20:17:56 +02:00
Jelmer Vernooij
3573420d7d Fix some forgotten substitute variables in provision, add check to prevent this sort of regression in the future. 
(This used to be commit a461118f3b)
 2008-08-01 20:17:29 +02:00
Jelmer Vernooij
ee505f36dd Be more pythonic. 
(This used to be commit 20d40e3194)
 2008-07-30 13:29:29 +02:00
Andrew Bartlett
e80115deb9 We don't use EXTENSIBLEOBJECT any more. 
(This used to be commit 4b137085c8)
 2008-07-28 20:51:02 +10:00
Andrew Bartlett
08795db6d6 Make it even clearer what to do next in the LDAP backend setup 
(This used to be commit bace931ad6)
 2008-07-28 20:26:14 +10:00
Andrew Bartlett
45d60f5bd9 Always print the slapd startup command 
(This used to be commit b1d05e7d14)
 2008-07-28 20:18:17 +10:00
Andrew Bartlett
cff30c6da6 Remove unused function and make sensitive directories private. 
(This used to be commit e23333d163)
 2008-07-28 08:04:15 +10:00
Stefan Metzmacher
934cfb9880 mamachinepw: add better error handling 
metze
(This used to be commit 7ac424137f)
 2008-07-26 20:45:47 +02:00
Volker Lendecke
998b0fef11 Add "mymachinepw" to fetch our machine password out of secrets.ldb 
(This used to be commit 4fbe16deb0)
 2008-07-26 20:45:47 +02:00
Andrew Bartlett
1f285560bc Merge branch 'v4-0-test' of ssh://git.samba.org/data/git/samba into 4-0-local 
(This used to be commit b12dd8ee54)
 2008-07-25 11:58:51 +10:00
Andrew Bartlett
11798902dc Complain if we are told to use an ldap backend, without the type 
(This used to be commit e9c3c9ad82)
 2008-07-25 08:45:16 +10:00
Andrew Bartlett
c9c296b6bb Install'named.txt' to private/ as documentation. 
This document is much more use when subbed with all the right things.

Andrew Bartlett
(This used to be commit 136a855998)
 2008-07-22 11:09:18 +10:00
Matthias Dieter Wallnöfer
fb3e663678 Improve DNS and Group poicy configurations. 
- fixes bug #4813 (simplify DNS setup)
  - This reworks the named.conf to be a fully fledged include
  - This also moves the documentation into named.txt
 - improves bug #4900 (Group policy support in Samba)
   - by creating an empty GPT.INI
 - fixes bug #5582 (DNS: Enhanced zone file)
   - This is now closer to the zone file AD creates

committed by Andrew Bartlett
(This used to be commit 74d684f6b3)
 2008-07-22 11:06:47 +10:00
Andrew Bartlett
3408a2d18f Make a seperate template for the refint configuration too 
(This used to be commit d2a527acc5)
 2008-07-18 18:58:56 +10:00
Andrew Bartlett
cfc2063f23 Put the memberof template into a seperate setup/ file. 
Set a memberof-dn in a fruitless attempt to fix the ACL problem I'm
having with OpenLDAP

Andrew Bartlett
(This used to be commit 6d6e03834a)
 2008-07-18 18:44:07 +10:00
Andrew Bartlett
fe9fa62a05 Reorder whitespace in generated slapd.conf 
This helps us see the real groupings in the generated memberOf
handling.

Andrew Bartlett
(This used to be commit ec70ebb831)
 2008-07-16 14:04:24 +10:00
Andrew Bartlett
e400b3ec4e Fix asking for credentials for non-LDAP provisions. 
(This used to be commit 78416f4840)
 2008-07-15 18:44:58 +10:00
Andrew Bartlett
0f1eea2672 Rework provision to handle both simple and SASL binds. 
Fedora DS is still setup for simple binds only, at this point.
(it also fails on other issues).

Andrew Bartlett
(This used to be commit b24c572d5a)
 2008-07-15 15:46:32 +10:00
Andrew Bartlett
a6b842f963 Connect to the LDAP backend with SASL credentials. 
This reworks our LDAP backend code to move from anonymous access to a
shared-secret SASL-protected connection.  (SASL selects NTLM or
DIGEST-MD5 on my system).

To get this working, we must pre-populate the LDAP backend with a DN
to store ths SASL secret on, and we use back-ldif for this.

This gives us a reasonable basis to deploy a replicated OpenLDAP
backend solution.

Andrew Bartlett
(This used to be commit cd0745253c)
 2008-07-15 15:15:12 +10:00
Andrew Bartlett
44ea6a26fd rename sambaPassword -> userPassword. 
This attribute is used in a very similar way (virtual attribute
updating the password) in AD on Win2003, so eliminate the difference.

This should not cause a problem for on-disk passwords, as by default
we do not store the plaintext at all.

Andrew Bartlett
(This used to be commit 1cf0d75149)
 2008-07-12 15:26:42 +10:00
Andrew Bartlett
9ea25cacf1 Add a blackbox test for the provision-backend script. 
This test (as most tests do :-) found a few bugs, also fixed in this
commit.

Andrew Bartlett
(This used to be commit d96a6482da)
 2008-06-19 11:05:20 +10:00