1
0
mirror of https://github.com/samba-team/samba.git synced 2025-01-12 09:18:10 +03:00
Commit Graph

6883 Commits

Author SHA1 Message Date
Andrew Tridgell
a3e74d16d0 added -i option to nmbd, giving interactive mode (like winbindd)
(This used to be commit 1a30efdc2c)
2001-11-27 03:40:06 +00:00
Andrew Tridgell
6cf3434785 more memory leak fixes
(This used to be commit 5abf844203)
2001-11-27 03:34:56 +00:00
Andrew Tridgell
28c118c474 unable to open smbpasswd on initial create should only be a warning
(This used to be commit 8712ac8499)
2001-11-27 03:34:25 +00:00
Andrew Tridgell
701ecfc7a0 prevent a memory leak of cli structures
(This used to be commit 911c57403b)
2001-11-27 03:29:20 +00:00
Andrew Tridgell
097d466536 fix sense of lp_allow_trusted_domains()
fix a memory leak
(This used to be commit 1421f2fbcb)
2001-11-27 03:25:31 +00:00
Andrew Tridgell
1fb4d2f1b0 don't try to auto-change the trust password unless we are in domain
security
(This used to be commit 00e4f0c803)
2001-11-27 01:51:10 +00:00
Andrew Tridgell
3dc6fe1fe4 automatically look for /usr/kerberos to make redhat happy
(This used to be commit 0120dea7f0)
2001-11-27 01:45:08 +00:00
Andrew Tridgell
3d9f2aa388 don't die with a FPE if there are no DCs
(This used to be commit b599947348)
2001-11-26 09:28:27 +00:00
Andrew Tridgell
df81a6ec23 increment the value not the pointer
(This used to be commit e3698259af)
2001-11-26 09:28:00 +00:00
Andrew Bartlett
fc93f4f403 Fix --enable-developer shadow warning
(This used to be commit 6a919bcf3d)
2001-11-26 07:53:33 +00:00
Andrew Bartlett
f1db6a0c6c Fix debug
(This used to be commit 44224ae156)
2001-11-26 07:23:51 +00:00
Andrew Tridgell
0d3bad2822 basic ADS HOWTO
(This used to be commit 9ee13fecb1)
2001-11-26 06:52:33 +00:00
Andrew Bartlett
4499007e45 A number of things to clean up the auth subsytem a bit...
We now default encrypt passwords = yes

We now check plaintext passwords (however aquired) with the 'sam' backend
rather than unix, if encrypt passwords = yes.

(this kills off the 'local' backed.  The sam backend may be renamed in its
place)

The new 'samstrict' wrapper backend checks that the user's domain is one of
our netbios aliases - this ensures that we don't get fallback crazies with
security = domain.

Similarly, the code in the 'ntdomain' and 'smbserver' backends now checks
that the user was not local before contacting the DC.

The default ordering has changed, we now check the local stuff first - but
becouse of the changes above, we will really only ever contact one
auth source.

Andrew Bartlett
(This used to be commit e89b47f65e)
2001-11-26 06:47:04 +00:00
Andrew Tridgell
a131c2cfdc add SEC_ADS auth method
(This used to be commit b175c42080)
2001-11-26 06:21:24 +00:00
Andrew Tridgell
2eb736f2c3 updated server_role for ADS
(This used to be commit 48df0d2b5d)
2001-11-26 06:18:09 +00:00
Andrew Bartlett
1a08524ddb prevent proto from picking up this as a defintion for 'main()' becoue it conflicts with nmbd's definition.
(This used to be commit 70e9c2efaa)
2001-11-26 05:59:43 +00:00
Tim Potter
222311817f More compiler warnings fixed. Some minor reformatting.
(This used to be commit 8227f6909c)
2001-11-26 04:53:08 +00:00
Andrew Tridgell
0b2763260e we can safely give NO_SUCH_USER if the ticket decodes but the local
account doesn't exist
(This used to be commit 477b6d27fd)
2001-11-26 04:37:24 +00:00
Tim Potter
64dd6c3412 Another merge from appliance-head: in [ug]id_to_sid don't call the
winbind function if the id is obviously going to be local.  Cleanup
of winbind [ug]id parameter handling.
(This used to be commit 4ab9ca31a0)
2001-11-26 04:27:51 +00:00
Tim Potter
178f6a64b2 challange -> challenge
(This used to be commit d6318add27)
2001-11-26 04:05:28 +00:00
Tim Potter
abe6aff924 Merge from appliance-head: when creating a default security descriptor
for a printer, save it in ntprinters.tdb instead of recreating it
every time it is required.  This can save at least one winbind lookup
per secdesc creation.  Opening a port monitor and viewing the security
tab in the properties dialog required the security descriptor to be
returned 25 times!
(This used to be commit f85c976acc)
2001-11-26 03:39:16 +00:00
Tim Potter
585d0efbc6 Got medieval on another pointless extern. Removed extern struct ipzero
and replaced with two functions:

	void zero_ip(struct in_adder *ip);
	BOOL is_zero_ip(struct in_addr ip);
(This used to be commit 778f5f77a6)
2001-11-26 03:11:44 +00:00
Andrew Bartlett
8b7434b2a0 Fix up the build farm again.
This should get us 'green' for once...

Andrew Bartlett
(This used to be commit 042b9e3a63)
2001-11-26 02:10:59 +00:00
Tim Potter
5c7016d5cb dyn_CONFIGFILE fixups.
(This used to be commit 7d10fa2082)
2001-11-26 02:01:00 +00:00
Tim Potter
9aa4342bae Fixed compiler warnings and dyn_CONFIGFILE related breakage.
(This used to be commit bf491d2aa2)
2001-11-26 01:59:33 +00:00
Andrew Bartlett
f6e94b64b4 And delete domain_client_validate.c...
Andrew Bartlett
(This used to be commit 6caca4301b)
2001-11-26 01:37:44 +00:00
Andrew Bartlett
e75ad578d2 This compleats the of the authenticaion subystem into the new 'auth'
subdirectory.

(The insertion of these files was done with some CVS backend magic, hence the
lack of a commit message).

This also moves libsmb/domain_client_validate.c back into auth_domain.c,
becouse we no longer share it with winbind.

Andrew Bartlett
(This used to be commit 782835470c)
2001-11-26 01:37:01 +00:00
Tim Potter
19b9f9fbae Removed bogus SAFE_FREE() call of talloced return data from
winbindd_lookup_usergroups()
(This used to be commit dd2048c418)
2001-11-26 01:20:57 +00:00
Tim Potter
4348dfe7af Ignore *.po files.
(This used to be commit 091f01f34a)
2001-11-26 01:17:03 +00:00
Tim Potter
26ef1afa2e Fixed some indentation.
(This used to be commit 1dd462844a)
2001-11-26 00:58:43 +00:00
Andrew Tridgell
26f1e3f83c use DEBUG() not d_printf() in libraries
(This used to be commit 5100ae4ae0)
2001-11-26 00:45:51 +00:00
Andrew Tridgell
03439e1836 fixed spnego, non-kerberos negprot
(This used to be commit 2e916222a9)
2001-11-26 00:43:37 +00:00
Tim Potter
f45c2e52b7 Allow lookup of users with spaces in their name.
(This used to be commit 751ea8cfb9)
2001-11-26 00:19:23 +00:00
Tim Potter
4e512ab75d Fixed compiler warning.
Why do people keep adding stuff to includes.h (OK I am guilty of this too)?
It's getting really huge and full of random junk.  )-:

I've noticed TNG have started to split stuff up in to individual header
files included as needed.
(This used to be commit 36630f3984)
2001-11-25 23:33:15 +00:00
Andrew Tridgell
481c644b7b added 'security=ADS'
(This used to be commit 5a735a88e4)
2001-11-25 23:05:13 +00:00
Volker Lendecke
2e686c98d1 Minor typos
(This used to be commit 1c9d951f86)
2001-11-25 18:54:04 +00:00
Volker Lendecke
64bfd85d95 Don't close tdb twice.
(This used to be commit 6dda341bc8)
2001-11-25 18:49:20 +00:00
Andrew Tridgell
660fa6632e portability fixes
(This used to be commit 09127d85dc)
2001-11-25 13:36:02 +00:00
Andrew Tridgell
2ff1b666c1 fixed typo
(This used to be commit b14ae49502)
2001-11-25 13:32:28 +00:00
Andrew Tridgell
af56b0f02a add popt build dependency
(This used to be commit 0c1f90402b)
2001-11-25 12:56:04 +00:00
Andrew Tridgell
69aaccde3b move popt out of proto objs
(This used to be commit db0bee1c68)
2001-11-25 12:46:14 +00:00
Andrew Tridgell
0b5f228d30 added HAVE_LDAP_H check
(This used to be commit a1304be045)
2001-11-25 12:40:23 +00:00
Andrew Tridgell
e9595e5517 check for liblber separately
(This used to be commit d7216424d9)
2001-11-25 12:26:40 +00:00
Jeremy Allison
391a72a95f #ifdefed DMF fix so not compiled by default. We need to look at this...
Jeremy.
(This used to be commit 97dca242a9)
2001-11-25 08:26:37 +00:00
Jeremy Allison
86dee43f39 Use "password server" for searching for BDC's also as Tim suggested.
Jeremy.
(This used to be commit 4aca67761f)
2001-11-25 06:38:17 +00:00
Andrew Bartlett
1b1b8e39b2 Add the PDC end of the smbtorture test for creating an NT_STATUS -> DOS error
map.

This little authentication module is #ifdef DEVELOPER, becouse it really is of
no use execept as a development tool

invoke by setting:

auth methods = guest sam name_to_ntstatus

in the smb.conf file (the SAM and guest elements are required for the member
server to authenticate itself).

Andrew Bartlett
(This used to be commit 9807e66f34)
2001-11-25 03:01:14 +00:00
Andrew Bartlett
e92823610a oops, I forgot to include the header file
(This used to be commit c28956d860)
2001-11-25 02:58:15 +00:00
Andrew Bartlett
a71f3f66a1 Add a new torture test to extract a NT->DOS error map from an NT member of a
samba domain.

The PDC must be running a special authenticaion module that spits out NT errors
based on username.

Andrew Bartlett
(This used to be commit adc7a6048c)
2001-11-25 02:35:37 +00:00
Andrew Bartlett
97346ea795 Unless the error is exactly NT_STATUS_OK, we might not have a server info, so
we need to bail here.
(This used to be commit ea0331354e)
2001-11-25 02:30:30 +00:00
Jeremy Allison
a8982ca90c I think this is a fix for the "out of space" errors with oplocks=no.
Jeremy.
(This used to be commit 84b62d3c8e)
2001-11-25 02:23:22 +00:00