1
0
mirror of https://github.com/samba-team/samba.git synced 2024-12-24 21:34:56 +03:00
Commit Graph

16479 Commits

Author SHA1 Message Date
Jeremy Allison
4938095e77 r247: Fixup a couple of debug messages.
Jeremy.
(This used to be commit c664a277b4)
2007-10-10 10:51:15 -05:00
Gerald Carter
578a7d254f r242: adding 'cups options' parameter to allow raw printing without changing /etc/cups/cupsd.conf -- documentation to follow
(This used to be commit 2f323b0991)
2007-10-10 10:51:15 -05:00
Andrew Bartlett
5b6286b26b r240: I'm pretty happy with the 'ntlm-server-1' helper protocol now, and as
there is now a public patch that uses it, make it always available.

(It was #ifdef DEVELOPER)

Andrew Bartlett
(This used to be commit aa3bc79835)
2007-10-10 10:51:15 -05:00
Volker Lendecke
35016d0201 r238: Fix memleak
(This used to be commit fe7daa3b8a)
2007-10-10 10:51:15 -05:00
Volker Lendecke
4c34b09a19 r229: Don't list domain groups from BUILTIN.
Volker
(This used to be commit b4429d9743)
2007-10-10 10:51:15 -05:00
Jeremy Allison
f480e29a68 r227: Patch from James Peach <jpeach@sgi.com> to search RIX ABI paths for libiconv.
Based on inital fix from Jason Mader.
Jeremy.
(This used to be commit 2719d0ee7c)
2007-10-10 10:51:14 -05:00
Jeremy Allison
5573a9ed66 r225: Patch from Pat.Hayward@propero.net to make the session_users list dynamic.
I restricted it to 128k max to prevent DOS attacks.
Jeremy.
(This used to be commit 70fb2a196d)
2007-10-10 10:51:14 -05:00
Volker Lendecke
81996162d6 r223: According to Thomas Mueller, thomas.mueller@christ-wasser.de, the two lines
removed (modifiersName and modifyTimestamp) lead to warnings upon startup of
the netscape directory server. I can't check this, but it sounds logical.

Thanks,

Volker
(This used to be commit 770b85c32f)
2007-10-10 10:51:14 -05:00
Jim McDonough
3c62df4780 r221: Remainder of bug 1208. We do not remove creds from _any_ FILE ccache,
because not only does it not work on Heimdal, but also since ccaches
created within samba are memory-based, so we shouldn't touch a
FILE-based one (it was probably created via kinit or similar).
(This used to be commit 5971b0980c)
2007-10-10 10:51:14 -05:00
Jim McDonough
0859a89166 r219: Obtain new tickets if current ones are expired. Next part of fix for
bug 1208. Based on a fix from Guether Deschener.

Outstanding pieces:
- Heimdal FILE-based ccaches don't actually remove creds properly, so we
  need to code a check for this
- what if ticket expires between our check and when we use it?

Guenther has coded up fixes for these parts, but I still need
to review them, as I'm not totally comfortable with the solutions.
(This used to be commit ef008b9710)
2007-10-10 10:51:14 -05:00
Stefan Metzmacher
1cd9d74016 r215: merge over svk fixes from 4_0
metze
(This used to be commit 2326c9e0a2)
2007-10-10 10:51:14 -05:00
Stefan Metzmacher
f8c418a0af r208: merge the version schema changes from 4_0
metze
(This used to be commit 4d9d8e83aa)
2007-10-10 10:51:14 -05:00
Andrew Bartlett
8e87cf8ad9 r201: Fix bugs in the --helper-protocol=ntlm-server-1 implementation.
(allow the use of base64 encoded strings, LM or NT passwords)

Andrew Bartlett
(This used to be commit 57a5563b42)
2007-10-10 10:51:13 -05:00
Gerald Carter
42bdc37e94 r197: mistaken merge from trunk
(This used to be commit 6b18012dc8)
2007-10-10 10:51:13 -05:00
Gerald Carter
8ad3d8c9b0 r196: merging struct uuid from trunk
(This used to be commit 911a28361b)
2007-10-10 10:51:13 -05:00
Gerald Carter
142f5604b5 r195: adding files to ignore list
(This used to be commit 1501d58b8e)
2007-10-10 10:51:13 -05:00
Paul Green
a60f81d1e0 r192: Fix configure.in to only use $BLDSHARED to select whether to build static or shared libraries.
(This used to be commit 35d7435cae)
2007-10-10 10:51:13 -05:00
Andrew Bartlett
f4b35be4dd r191: Only send the ntlm_auth 'ntlm-server-1' helper client a '.' after the
server had said something (such as an error).

Andrew Bartlett
(This used to be commit c05016a2f7)
2007-10-10 10:51:12 -05:00
Andrew Bartlett
4dad078256 r188: Add a new 'helper protocol' to ntlm_auth.
This protocol looks rather like SMTP headers/LDAP:

NT-Domain: TESTWG
Username: abartlet
...

Password: foo

Challenge-response passwords are in hexideciaml, while any 'plain'
string can be base64 encoded when like this:

Password:: Zm9vCg==

(the :: indicates it, just like LDAP - I hope)

The protocol is not final, so it is #ifdef DEVELOPER for now (so
nobody starts to rely on it until I'm happy), but we may as well get
this into subversion.

My intention is to use this to power the next version of my
PPP/ntlm_auth plugin, and hopefully entice a FreeRadius plugin out of
the woods.

Andrew Bartlett
(This used to be commit 8efdd957ba)
2007-10-10 10:51:12 -05:00
Gerald Carter
298ef0676c r185: fix linking prob surrounding --with-fake-kaserver and -lcrypto
(This used to be commit 54912b70f2)
2007-10-10 10:51:12 -05:00
Andrew Bartlett
78b5dfadca r177: Split ntlm_auth --diagnostics into a seperate file, so as not to clutter
the main ntlm_auth program.

It quite possibly should belong in smbtorture, but relies on the
winbind client for now.

Andrew Bartlett
(This used to be commit 6e1b7a8848)
2007-10-10 10:51:12 -05:00
Andrew Bartlett
85a307bb3e r176: Improve our fallback code for password changes - this would be better
with more correct NTLMSSP support in client and server, but it will do
for now.

Also implement LANMAN password only in the classical session setup code, but
#ifdef'ed out.  In Samba4, I'll make this run-time so we can torture it.

Lanman passwords over 14 dos characters long could be considered
'invalid' (they are truncated) - so SMBencrypt now returns 'False' if
it generates such a password.

Andrew Bartlett
(This used to be commit 565305f7bb)
2007-10-10 10:51:12 -05:00
Andrew Bartlett
1560755556 r175: Move this comment to the right place...
Andrew Bartlett
(This used to be commit e5bbb086b2)
2007-10-10 10:51:12 -05:00
Andrew Bartlett
1c97474a59 r171: Continue the 'rename nt_session_key' work. This attempts to rename
this variable to 'user_session_key', where possible.  The command line
parameter is currently unchanged).

Andrew Bartlett
(This used to be commit da4177209d)
2007-10-10 10:51:11 -05:00
Volker Lendecke
88b841befe r160: Fix msdfs proxy. Could others please also test this, this code is soo
cluttered. I've tested with w2k and xp with msdfs proxy and normal msdfs root,
but I would like others to also look at the code.

Thanks,

Volker
(This used to be commit c31feb045a)
2007-10-10 10:51:11 -05:00
Gerald Carter
3287bd9364 r155: real for for BUG 761 -- allow printing parameter to set defaults on a per share basis
(This used to be commit 14d3794eec)
2007-10-10 10:51:11 -05:00
Volker Lendecke
4e71cb7c48 r153: Fix memleak
(This used to be commit fbeff41991)
2007-10-10 10:51:11 -05:00
Jeremy Allison
cd9b973b17 r150: Make 3.x pass the Samba 4.x RAW-SEARCH tests - except for the
UNIX info levels, and the short case preserve names. Tested
with NT - needs more testing. Will work on this more on Monday.
Jeremy.
(This used to be commit 88a9bca9aa)
2007-10-10 10:51:11 -05:00
Andrew Bartlett
b81b4711f7 r148: Ensure we do not dereference a null pointer when we return the user
session key.
(This used to be commit b09d333aed)
2007-10-10 10:51:11 -05:00
Volker Lendecke
69a91df4ed r145: pdb_create_alias now returns NTSTATUS. More of this to follow.
Volker
(This used to be commit 6e18bed170)
2007-10-10 10:51:11 -05:00
Paul Green
d29e174608 r144: Move first use of AC_CHECK_HEADERS so it is always executed. Tidy up indendation.
(This used to be commit 3d045d46e4)
2007-10-10 10:51:10 -05:00
Volker Lendecke
63cb534a9d r139: Apply some const
(This used to be commit 3eab8ed545)
2007-10-10 10:51:10 -05:00
Gerald Carter
60670f27ab r119: missed a file in volker patch
(This used to be commit bccee79653)
2007-10-10 10:51:10 -05:00
Gerald Carter
c3900ebc69 r118: adding some recent checkins to commit list
(This used to be commit e2e1c0048c)
2007-10-10 10:51:10 -05:00
Gerald Carter
7af3777ab3 r116: volker's patch for local group and group nesting
(This used to be commit b393469d95)
2007-10-10 10:51:10 -05:00
Gerald Carter
f79e40072a r115: finally checking in tridge's winbindd_schannel patch for connections
(This used to be commit 1fae60ab20)
2007-10-10 10:51:09 -05:00
Andrew Bartlett
82285f2e0e r104: Fix ntlm_auth by adding the new strhex_to_data_blob() call.
Andrew Bartlett
(This used to be commit 0693b9e79f)
2007-10-10 10:51:09 -05:00
Jeremy Allison
1db9257c95 r96: Stupid f&%'n UNIX extensions.... SETPATHINFO
normally takes as it's param entry the filename to
be acted upon.... Unless it's UNIX extensions create
hardlink, or UNIX extensions create symlink. Then it's
param -> newfile name
data -> oldfile name.
This caused me to stuff them up in 3.0.2 (and the
client commands link and symlink). Fixed them, everything
is now called oldname and newname - thus specifying which
name should already exist (hint - the old one...) and which
will be created (newname).
Jeremy.
(This used to be commit 21cc6ab7e8)
2007-10-10 10:51:08 -05:00
Paul Green
9d458e45c8 r93: Update VOS _POSIX_C_SOURCE macro to 200112L.
(This used to be commit 4d1be258a1)
2007-10-10 10:51:08 -05:00
Jim McDonough
ddc0716fa8 r91: Fix lsalookupnames. Previously we'd fail if we didn't find the name, but
we never checked if it was a domain user and didn't find a local one.
(This used to be commit 68022f5ebc)
2007-10-10 10:51:08 -05:00
Steve French
d2b58ab66f r88: Add missing guest mount option for mount.cifs
(This used to be commit e688c08d33)
2007-10-10 10:51:08 -05:00
Jeremy Allison
0bfc5729a5 r87: Fix the build that Andrew Bartlett broke. Andrew - don't check *ANYTHING* in
unless you have done a make clean; make.
Jeremy.
(This used to be commit 09d82a0bef)
2007-10-10 10:51:08 -05:00
Andrew Bartlett
50ac33f582 r86: This function was moved to lib/nterr.h
Andrew Bartlett
(This used to be commit 1c6d0399d6)
2007-10-10 10:51:08 -05:00
Andrew Bartlett
e0da679d7c r85: Update the winbind interface version, as I just extended the struct.
Andrew Bartlett
(This used to be commit 039883043d)
2007-10-10 10:51:08 -05:00
Andrew Bartlett
869348dfcb r84: Implement --required-membership-of=, an ntlm_auth option that restricts
all authentication to members of this particular group.

Also implement an option to allow ntlm_auth to get 'squashed' error codes,
which are safer to communicate to remote network clients.

Andrew Bartlett
(This used to be commit eb1c1b5eb0)
2007-10-10 10:51:07 -05:00
Jeremy Allison
bd04072585 r81: Make EA's case independent - fix smbtorture to test for this.
Jeremy.
(This used to be commit 0661357484)
2007-10-10 10:51:07 -05:00
Steve French
f01b3a1576 r77: Fix path canonicalization of the mount target path and help text display in the cifs mount helper
(This used to be commit 69861f168c)
2007-10-10 10:51:07 -05:00
Alexander Bokovoy
c4255df992 r76: Fix smbfs problem with Tree Disconnect issued before smbfs starts its work.
We use cli_state.smb_rw_error to pass this specific case into cli_close_connection()
from smbmount as smb_rw_error can have only selected number of states and
it is ignored in cli_close_connection().

Compiled and tested by Lars Mueller from SuSE on x86, x86_64, ppc, ppc64, s390 and
s390x.
(This used to be commit 738666ce0a)
2007-10-10 10:51:07 -05:00
Gerald Carter
d4f815731d r75: patch from Cal Heldenbrand <calzplace@yahoo.com> for 'pam_smbpass migrate'
(This used to be commit 673c3f8bc0)
2007-10-10 10:51:07 -05:00
Gerald Carter
13d636c0ff r73: bumping version to 3.0.3pre3
(This used to be commit 70fd78025b)
2007-10-10 10:51:07 -05:00