sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-14 19:24:43 +03:00
Code
11,575 Commits 60 Branches 1,145 Tags
Commit Graph

17 Commits

Author SHA1 Message Date
Andrew Bartlett
837680ca51 Merge from HEAD client-side authentication changes: 
- new kerberos code, allowing the account to change it's own password
   without special SD settings required
 - NTLMSSP client code, now seperated from cliconnect.c
 - NTLMv2 client code
 - SMB signing fixes

Andrew Bartlett
 -
Andrew Bartlett
e9d6e2ea9a Merge minor library fixes from HEAD to 3.0. 
- setenv() replacement
 - mimir's ASN1/SPNEGO typo fixes
 - (size_t)-1 fixes for push_* returns
 - function argument signed/unsigned correction
 - ASN1 error handling (ensure we don't use initiailsed data)
 - extra net ads join error checking
 - allow 'set security discriptor' to fail
 - escape ldap strings in libads.
 - getgrouplist() correctness fixes (include primary gid)

Andrew Bartlett
 -
Andrew Bartlett
fbb46da79c Merge from HEAD: 
- NTLMSSP over SPENGO (sesssion-setup-and-x) cleanup and code refactor.
  - also consequential changes to the NTLMSSP and SPNEGO parsing functions
  - and the client code that uses the same functions
 - Add ntlm_auth, a NTLMSSP authentication interface for use by applications
   like Squid and Apache.
  - also consquential changes to use common code for base64 encode/decode.
 - Winbind changes to support ntlm_auth (I don't want this program to need
   to read smb.conf, instead getting all it's details over the pipe).
 - nmbd changes for fstrcat() instead of fstrcpy().

Andrew Bartlett
 -
Gerald Carter
65e7b5273b sync'ing up for 3.0alpha20 release -
Jelmer Vernooij
3928578b52 sync 3.0 branch with head -
Andrew Tridgell
03ac082dcb updated the 3.0 branch from the head branch - ready for alpha18 -
Andrew Bartlett
ad1faf8fa4 Try not to malloc -1 bytes (apx 4GB) when the data is already in error. 
Andrew Bartlett
 -
Tim Potter
6a58c9bd06 Removed version number from file header. 
Changed "SMB/Netbios" to "SMB/CIFS" in file header.
 -
Andrew Tridgell
08bb2dfec2 simple fix for creating blank data blobs -
Andrew Tridgell
435fdf276a added internal sasl/gssapi code. This means we are no longer dependent on cyrus-sasl which makes the code much less fragile. Also added code to auto-determine the server name or realm -
Jeremy Allison
b668d7d656 Ok, I know it's a language thing and it shouldn't matter.... but a kerberos 
name is a "principal", not a principle. English majors will complain :-).
Jeremy.
 -
Andrew Tridgell
d1341d74b7 made smbclient cope better with arbitrary principle forms -
Andrew Tridgell
353c290f05 the beginnings of kerberos support in smbd. It doesn't work yet, but 
it should give something for others to hack on and possibly find what
I'm doing wrong.
 -
Andrew Tridgell
b74fda69bf added basic NTLMSSP support in smbd. This is still quite rough, and 
loses things like username mapping. I wanted to get this in then
discuss it a bit to see how we want to split up the existing
session setup code
 -
Andrew Tridgell
131010e9fb fixed NTLMSSP with XP servers (who don't send the duplicate challenge 
in the asn1 spnego structures)
 -
Andrew Tridgell
7092beef9d moved some OIDs to the ASN.1 header -
Andrew Tridgell
076aa97bee added NTLMSSP authentication to libsmb. It seems to work well so I have enabled it by default if the server supports it. Let me know if this breaks anything. Choose kerberos with the -k flag to smbclient, otherwise it will use SPNEGO/NTLMSSP/NTLM -