cvs2svn Import User [Fri, 16 Jan 2004 19:05:10 +0000 (19:05 +0000)]
This commit was manufactured by cvs2svn to create tag
'release-3-0-2rc1'.
Gerald Carter [Fri, 16 Jan 2004 19:05:09 +0000 (19:05 +0000)]
preparing for release of 3.0.2rc1
Gerald Carter [Fri, 16 Jan 2004 19:03:36 +0000 (19:03 +0000)]
remove unneeded man pages from packages
Gerald Carter [Fri, 16 Jan 2004 17:47:34 +0000 (17:47 +0000)]
Fedora packaging fixes from 3.0
Gerald Carter [Fri, 16 Jan 2004 16:22:05 +0000 (16:22 +0000)]
another short rounds of syncs from 3.0
Gerald Carter [Thu, 15 Jan 2004 21:35:15 +0000 (21:35 +0000)]
sync tree for 3.0.2rc1
cvs2svn Import User [Wed, 14 Jan 2004 17:56:06 +0000 (17:56 +0000)]
This commit was manufactured by cvs2svn to create branch
'SAMBA_3_0_RELEASE'.
Gerald Carter [Wed, 14 Jan 2004 17:56:05 +0000 (17:56 +0000)]
syncing abartlet's cracklib tests from 3.0
Gerald Carter [Wed, 14 Jan 2004 16:26:14 +0000 (16:26 +0000)]
* Revert to using rpc for mixed mode AD domains.
The reason for this are:
(a) the set_dc_type_and_flags() cannot tell the different
between connecting to an NT4 domain and an NT4 BDC
of a mixed mode domain.
(b) the connection management for the rpc backend only
provides on named pipe per cli_state. So it is possible
to connect to an NT4 BDC for netlogon and an AD mixed mode
DC for lsarpc. RPC is the lowest common demonimator here.
(c) Issue with the sequence number value between the
highestCommittedUSN LDAP attribute and the seq_num returned
via RPC.
We will revisit this later, but the changes need to make this
work right now are too broad and risky.
Jeremy Allison [Wed, 14 Jan 2004 06:44:15 +0000 (06:44 +0000)]
Remove duplicate extern.
Jeremy.
Jeremy Allison [Wed, 14 Jan 2004 06:41:46 +0000 (06:41 +0000)]
Remove references to 'jn' which gcc-3.4 with precompiled headers
doesn't like.
Jeremy.
Stefan Metzmacher [Wed, 14 Jan 2004 02:55:07 +0000 (02:55 +0000)]
merge:
fix XFS quotas the macro changed from HAVE_XFS_QUOTA -> HAVE_XFS_QUOTAS
metze
Gerald Carter [Tue, 13 Jan 2004 19:43:50 +0000 (19:43 +0000)]
* allow dns lookups to be disabled for DOMAIN#1c (and #1b)
names
* fix some a mispelled variable name
Gerald Carter [Tue, 13 Jan 2004 17:55:43 +0000 (17:55 +0000)]
sync HEAD with recent changes in 3.0
Jelmer Vernooij [Sun, 11 Jan 2004 13:40:48 +0000 (13:40 +0000)]
Fix --with-fhs for swatdir
Stefan Metzmacher [Sun, 11 Jan 2004 13:21:03 +0000 (13:21 +0000)]
update copyright to -2004
metze
Gerald Carter [Fri, 9 Jan 2004 15:36:07 +0000 (15:36 +0000)]
fix some warnings from the Sun compiler; also merge some of abartlet's error code changes form 3.0
Gerald Carter [Thu, 8 Jan 2004 22:21:39 +0000 (22:21 +0000)]
fix segfault when sid_ptr == 0 in DsEnumDomainTrusts() reply
Jeremy Allison [Wed, 7 Jan 2004 23:21:25 +0000 (23:21 +0000)]
Fix for bug #922. Fast path not called for strlower_m() and strupper_m().
From ab@samba.org (Alexander Bokovoy).
Jeremy.
Rafal Szczesniak [Wed, 7 Jan 2004 21:53:19 +0000 (21:53 +0000)]
This was cut-n-paste mistake, I guess... :)
rafal
Rafal Szczesniak [Wed, 7 Jan 2004 21:50:30 +0000 (21:50 +0000)]
Typo fix.
rafal
Rafal Szczesniak [Wed, 7 Jan 2004 21:47:36 +0000 (21:47 +0000)]
Fixes to doxygen comment.
Rafal Szczesniak [Wed, 7 Jan 2004 21:41:48 +0000 (21:41 +0000)]
Prototype version of trust passwords moved to SAM/pdb. This is
backend-independent part ie. interface - does build and (it seems)
doesn't break anything else.
rafal
Gerald Carter [Wed, 7 Jan 2004 19:58:14 +0000 (19:58 +0000)]
commiting jra's fix for Exchange clear test auth
Jeremy Allison [Wed, 7 Jan 2004 19:55:03 +0000 (19:55 +0000)]
Fix from Luke Howard <lukeh@PADL.COM> for incorrect early free().
Jeremy.
Volker Lendecke [Wed, 7 Jan 2004 10:02:42 +0000 (10:02 +0000)]
Merge Translation fixes
Volker
Andrew Bartlett [Wed, 7 Jan 2004 00:06:45 +0000 (00:06 +0000)]
(merge from 3.0)
Fix segfualt caused by incorrect configuration. If lp_realm() was not set,
but security=ADS, we would attempt to free the principal name that krb5
never allocated.
Also fix the dump_data() of the session key, now that we use a data_blob to
store that.
Andrew Bartlett
Gerald Carter [Tue, 6 Jan 2004 23:39:18 +0000 (23:39 +0000)]
preparing for release of 3.0.2pre1
Jeremy Allison [Tue, 6 Jan 2004 22:34:04 +0000 (22:34 +0000)]
Patch penguin. Cleaning out old mbp patch.
Jeremy.
Gerald Carter [Tue, 6 Jan 2004 21:05:56 +0000 (21:05 +0000)]
fix a few formatting issues
Gerald Carter [Tue, 6 Jan 2004 21:00:02 +0000 (21:00 +0000)]
another round of syncs; should be the last ones from 3.0
Gerald Carter [Tue, 6 Jan 2004 19:57:50 +0000 (19:57 +0000)]
remove unused seek_file(); don't hardcode '\' when printing the auth-user
Gerald Carter [Tue, 6 Jan 2004 18:55:31 +0000 (18:55 +0000)]
starting to sync files for 3.0.2pre1:
Gerald Carter [Tue, 6 Jan 2004 18:26:53 +0000 (18:26 +0000)]
isolate ldap debug messages to the common smbldap_XXX() functions
Volker Lendecke [Tue, 6 Jan 2004 15:42:48 +0000 (15:42 +0000)]
Correctly detect AFS headers on SuSE in /usr/include/afs/afs/
Volker
Gerald Carter [Tue, 6 Jan 2004 14:45:56 +0000 (14:45 +0000)]
merging from 3.0
Andrew Bartlett [Tue, 6 Jan 2004 08:25:03 +0000 (08:25 +0000)]
merge torture changes from Samba 3.0 -> HEAD
Andrew Bartlett [Tue, 6 Jan 2004 08:12:35 +0000 (08:12 +0000)]
Merge NTLMSSP fixes from 3.0 to HEAD.
Andrew Bartlett
Andrew Bartlett [Tue, 6 Jan 2004 08:11:19 +0000 (08:11 +0000)]
GUID is struct uuid in HEAD.
Andrew Bartlett
Andrew Bartlett [Tue, 6 Jan 2004 02:29:29 +0000 (02:29 +0000)]
(merge from 3.0)
Fixes bug 924
Andrew Bartlett
Andrew Bartlett [Tue, 6 Jan 2004 01:59:20 +0000 (01:59 +0000)]
Merge winbind from Samba 3.0 onto HEAD.
Changes include:
- header changes for better pre-compiled headers (tridge)
- get a list of sids for a given user (tridge)
- fix function prototype
and a few other minor things
Andrew Bartlett
Jeremy Allison [Tue, 6 Jan 2004 01:21:59 +0000 (01:21 +0000)]
Patch based on work from James Peach <jpeach@sgi.com> to convert over to
using pread/pwrite. Modified a little to ensure fsp->pos is correct.
Fix for #889.
Jeremy.
Andrew Bartlett [Tue, 6 Jan 2004 01:20:01 +0000 (01:20 +0000)]
(merge from 3.0)
I think this was tpot's originally:
Fix format types for 64 bit systems.
Andrew Bartlett
Andrew Bartlett [Tue, 6 Jan 2004 01:15:13 +0000 (01:15 +0000)]
(merge from 3.0)
Always call the auto-init funciton - this avoids tdb segfaulting under
us if we failed to open it earlier.
Andrew Bartlett
Andrew Bartlett [Tue, 6 Jan 2004 00:41:13 +0000 (00:41 +0000)]
(merge from 3.0)
Ensure that for wbinfo --set-auth-user, we actually use the domain.
Andrew Bartlett
Andrew Bartlett [Tue, 6 Jan 2004 00:27:34 +0000 (00:27 +0000)]
(merge from 3.0)
Try to keep vl happy - shorten some of these lines.
--
Grumble... grumble... fix the build...
--
Show the sid type in name->sid translatons in a way that can be easily
understood by humans.
Andrew Bartlett
Andrew Bartlett [Tue, 6 Jan 2004 00:13:56 +0000 (00:13 +0000)]
(merge from 3.0)
Change our Domain controller lookup routines to more carefully seperate
DNS names (realms) from NetBIOS domain names.
Until now, we would experience delays as we broadcast lookups for DNS names
onto the local network segments.
Now if DNS comes back negative, we fall straight back to looking up the
short name.
Andrew Bartlett
Andrew Bartlett [Tue, 6 Jan 2004 00:08:53 +0000 (00:08 +0000)]
(merge from 3.0)
Add const.
Andrew Bartlett
Andrew Bartlett [Tue, 6 Jan 2004 00:06:49 +0000 (00:06 +0000)]
(merge from 3.0)
There is some memory corruption hidden somewhere in our winbind code. If I
could reproduce it, I would fix it, but for now just make sure we always
SAFE_FREE() and set our starting pointers to NULL.
Andrew Bartlett
Andrew Bartlett [Tue, 6 Jan 2004 00:05:31 +0000 (00:05 +0000)]
(merge from 3.0)
Change (unused) structure parameter for cli_ds_enum_domain_trusts() cleanup.
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:54:37 +0000 (23:54 +0000)]
rpc_client/cli_lsarpc.c:
rpc_parse/parse_lsa.c:
nsswitch/winbindd_rpc.c:
nsswitch/winbindd.h:
- Add const
libads/ads_ldap.c:
- Add ads_sid_to_dn utility function
nsswitch/winbindd_ads.c:
- Use new utility function ads_sid_to_dn
- Don't search for 'dn=', rather call the ads_search_retry_dn()
nsswitch/winbindd_ads.c:
include/rpc_ds.h:
rpc_client/cli_ds.c:
- Fixup braindamage in cli_ds_enum_domain_trusts():
- This function was returning a UNISTR2 up to the caller, and
was doing nasty (invalid, per valgrind) things with memcpy()
- Create a new structure that represents this informaiton in a useful way
and use talloc.
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:51:34 +0000 (23:51 +0000)]
(merge from 3.0)
Fix for bug 707, getent group for huge ads groups (>1500 members)
This introduces range retrieval of ADS attributes.
VL rewrote most of Güther's patch, partly to remove code duplication and
partly to get the retrieval of members in one rush, not interrupted by the
lookups for the DN.
I rewrote that patch, to ensure that we can keep an eye on the USN
(sequence number) of the entry - this allows us to ensure the read was
atomic.
In particular, the range retrieval is now generic, for strings. It
could easily be made generic for any attribute type, if need be.
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:48:04 +0000 (23:48 +0000)]
(merge from 3.0)
Even if the 'device type' is always an ascii string, use push_string to get
it out onto the wire. Avoids valgrind warnings because the fstrcpy() causes
part of the wire buffer to be 'marked'.
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:45:14 +0000 (23:45 +0000)]
(merge from 3.0)
Match Win2k, and return NT_STATUS_INVALID_PARAMETER
if this parameter is not an account type
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:43:07 +0000 (23:43 +0000)]
(merge from 3.0)
Having no members of a group is a perfectly valid (if unusual) situation.
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:41:50 +0000 (23:41 +0000)]
(merge from 3.0)
JHT came up with a nasty (broken) torture case in preparing examples for
his book.
This prompted me to look at the code that reads the unix group list. This
code did a lot of name -> uid -> name -> sid translations, which caused
problems. Instead, we now do just name -> sid
I also cleaned up some interfaces, and client tools.
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:38:49 +0000 (23:38 +0000)]
(merge from 3.0)
Changes to our PAM code to cope with the fact that we can't handle some
domains (in particular, the domain of the current machine, if it is not a PDC)
By changing the error codes, we now return values that PAM can correctly
use for better stacking of PAM modules - in particular of the password change
module.
This allows pam_winbind to co-exist with other pam modules for password changes.
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:37:07 +0000 (23:37 +0000)]
(merge from 3.0)
auth/auth_util.c:
- Fill in the 'backup' idea of a domain, if the DC didn't supply one. This
doesn't seem to occour in reality, hence why we missed the typo.
lib/charcnv.c:
lib/smbldap.c:
libads/ldap.c:
libsmb/libsmbclient.c:
printing/nt_printing.c:
- all the callers to pull_utf8_allocate() pass a char ** as the first
parammeter, so don't make them all cast it to a void **
nsswitch/winbind_util.c:
- Allow for a more 'correct' view of when usernames should be qualified
in winbindd. If we are a PDC, or have 'winbind trusted domains only',
then for the authentication returns stip the domain portion.
- Fix valgrind warning about use of free()ed name when looking up our
local domain. lp_workgroup() is maniplated inside a procedure that
uses it's former value. Instead, use the fact that our local domain is
always the first in the list.
--
Jerry rightly complained that we can't assume that the first domain is
our primary domain - new domains are added to the front of the list. :-(
Use a much more reliable 'flag test' instead. (note: changes winbind
structures, make clean).
--
Forgot to commit this for the 'get our primary domain' change.
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:28:50 +0000 (23:28 +0000)]
(merge from 3.0)
Try to gain a bit more consistancy in the output of usernames from ntlm_auth:
Instead of returning a name in DOMAIN\user format, we now return it in the
same way that nsswtich does - following the rules of 'winbind use default
domain', in the correct case and with the correct seperator.
This should help sites who are using Squid or the new SASL code I'm working
on, to match back to their unix usernames.
--
Get the DOMAIN\username around the right way (I had username\domain...)
Push the unix username into utf8 for it's trip across the socket.
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:25:56 +0000 (23:25 +0000)]
(merge from 3.0)
Remove testing hack
Make the name of the NTLMSSP client more consistant before we lock it in stone.
Andrew Bartlett
cvs2svn Import User [Mon, 5 Jan 2004 23:24:00 +0000 (23:24 +0000)]
This commit was manufactured by cvs2svn to create branch
'SAMBA_3_0_RELEASE'.
Andrew Bartlett [Mon, 5 Jan 2004 23:23:59 +0000 (23:23 +0000)]
(merge from 3.0)
Move our basic password checking code from inside the authentication
subsystem into a seperate file - ntlm_check.c.
This allows us to call these routines from ntlm_auth. The purpose of this
exercise is to allow ntlm_auth (when operating as an NTLMSSP server) to
avoid talking to winbind. This should allow for easier debugging.
ntlm_auth itself has been reorgainised, so as to share more code between
the SPNEGO-wrapped and 'raw' NTLMSSP modes. A new 'client' NTLMSSP mode
has been added, for use with a Cyrus-SASL module I am writing (based on vl's
work)
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:22:00 +0000 (23:22 +0000)]
(merge from 3.0)
Refactor our authentication and authentication testing code.
The next move will be to remove our password checking code from the SAM
authentication backend, and into a file where other parts of samba can use
it.
The ntlm_auth changes provide for better use of common code.
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:20:59 +0000 (23:20 +0000)]
(merge from 3.0)
Add the alignment required before all 2-byte quantities in NDR. Allows us
to correctly parse plaintext netlogon calls with odd-length passwords
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:19:49 +0000 (23:19 +0000)]
(merge from 3.0)
Shutting down the connection closes outstanding sessions, so we don't need
to do it twice...
Amdrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:18:06 +0000 (23:18 +0000)]
(merge from 3.0)
Check the return value of string_to_sid in a few more places. (But
string_to_sid also needs to be less permissive on what it thinks are
valid sids...)
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:16:47 +0000 (23:16 +0000)]
(merge from 3.0)
Show the error message for failure to set the ldap password.
(For 'ldap password sync = yes')
Andrew Bartlett
Andrew Bartlett [Mon, 5 Jan 2004 23:15:33 +0000 (23:15 +0000)]
(merge from 3.0)
Based on patch by Petri Asikainen <paca@sci.fi> fix bug #387 and #330.
This patch will change order how attributes are modified
from: add, delete
to: delete, add
This is needed to update single valued attributes in Novell NDS and
should not harm anyone else.
Jeremy Allison [Mon, 5 Jan 2004 21:01:06 +0000 (21:01 +0000)]
Fix from James Flemer <jflemer@uvm.edu> to make HAVE_ATTR_LIST linked to
HAVE_SYS_ATTRIBUTES_H to fix AIX compile.
Jeremy.
Gerald Carter [Mon, 5 Jan 2004 20:24:21 +0000 (20:24 +0000)]
fix inverted check using krb5_kt_resolve() and HAVE_MEMORY_KEYTAB; bug 912
Jelmer Vernooij [Mon, 5 Jan 2004 00:57:53 +0000 (00:57 +0000)]
Merge commit to 3_0: add pdb_pgsql
Volker Lendecke [Sun, 4 Jan 2004 11:59:11 +0000 (11:59 +0000)]
Commit the translation of the realm to the netbios domain name in the kerberos
session setup. After talking to jht and abartlet I made this unconditional, no
additional parameter.
Jerry: This is a change in behaviour, but I think it is necessary.
Volker
Volker Lendecke [Sat, 3 Jan 2004 20:21:37 +0000 (20:21 +0000)]
And yet another const
Volker
Volker Lendecke [Thu, 1 Jan 2004 21:11:33 +0000 (21:11 +0000)]
After talking with abartlet remove the fix for bug 707 again.
Volker
Volker Lendecke [Thu, 1 Jan 2004 20:33:45 +0000 (20:33 +0000)]
Fix for bug 707, getent group for huge ads groups (>1500 members)
This introduces range retrieval of ADS attributes.
I've rewritten most of Günther's patch, partly to remove code duplication and
partly to get the retrieval of members in one rush, not interrupted by the
lookups for the DN.
Andrew, you told me that you would like to see a check whether the AD sequence
number is the same before and after the retrieval to achieve atomicity. This
would be trivial to add, but I'm not sure that we want this, as this adds two
roundtrips to every membership query. We can not know before the first query
whether we get additional range values, and at that point it's too late to ask
for the USN.
Tested with a group of 4000 members along with lots of small groups.
Volker
Gerald Carter [Tue, 30 Dec 2003 22:18:40 +0000 (22:18 +0000)]
Move to short lived TALLOC_CTX* for allocating printer
objects from the print handle cache. Fixes bug that
caused smbd to consume large amounts of RAM when
(a) a printer handle was kept open over an extended
period of time, and
(b) the client issued frequent requests that resulted
in a call to get_a_printer()
Volker Lendecke [Tue, 30 Dec 2003 21:12:57 +0000 (21:12 +0000)]
Another little one: Make pdb_test.c at least compile, although its way out of
date.
Volker
Volker Lendecke [Tue, 30 Dec 2003 16:01:24 +0000 (16:01 +0000)]
The AFS pts command always generates completely lower-case user names. As case
is not significant in windows user names we should not lose information by
lower-casing the name before handing it to AFS.
Volker
Volker Lendecke [Tue, 30 Dec 2003 15:20:07 +0000 (15:20 +0000)]
Fix Bug # 924
Volker
Volker Lendecke [Sat, 27 Dec 2003 10:13:20 +0000 (10:13 +0000)]
Preliminary fix for our signing problem with failed NTLMSSP logins. This patch
solves the problem for me here, I can still successfully set up signing using
NTLMSSP against w2k3 and it does not show a signing error anymoe when the
password was wrong.
Jeremy, you might want to take a further look at it as this is not
particularly elegant.
Volker
Volker Lendecke [Fri, 26 Dec 2003 21:35:39 +0000 (21:35 +0000)]
Collecting another little patch from gd@suse.de
As broken as it might be, smbwrapper.so should be put into the
libdir and not bindir.
Volker
Volker Lendecke [Fri, 26 Dec 2003 19:39:50 +0000 (19:39 +0000)]
Collecting some minor patches...
This adds the ability to specify the new user password for 'net ads password'
on the command line. As this needs the admin password on the command line, the
information leak is minimally more.
Patch from gd@suse.de
Volker
Andrew Bartlett [Thu, 25 Dec 2003 23:35:27 +0000 (23:35 +0000)]
(merge from 3.0)
ldap rebind sleep -> ldap replication sleep
While writing documentation for metze's patch, it became clear that this is a
better name.
Andrew Bartlett
Volker Lendecke [Thu, 25 Dec 2003 22:45:15 +0000 (22:45 +0000)]
This is metze's LDAP rebind sleep patch:
When smb.conf tells us to write to a read-only LDAP replica and we are
redirected by the LDAP server, the replication might take some seconds,
especially over slow links. This patch delays the next read after a rebind for
'ldap rebind sleep' milliseconds.
Metze, thanks for your patience.
Volker
Volker Lendecke [Thu, 25 Dec 2003 22:31:30 +0000 (22:31 +0000)]
Fix our parsing of the LDAP url. We get around it as all decent systems seem
to have ldap_initialize.
Thanks to abartlet for the fix (and the bug in the first place ;-))
Volker
Volker Lendecke [Thu, 25 Dec 2003 10:10:49 +0000 (10:10 +0000)]
abartlet pointed me at the fact that the order and flags in loadparm.c are
actually used.... 'afs username map' should not show up in the swat basic
view. :-)
Maybe I should use swat from time to time....
Volker
Andrew Bartlett [Thu, 25 Dec 2003 09:57:39 +0000 (09:57 +0000)]
(merge from 3.0)
Fix bug 916 - do not perform a + -> space substitution for squid URL encoded
strings, only form input in SWAT.
Andrew Bartlett
Andrew Bartlett [Wed, 24 Dec 2003 10:02:57 +0000 (10:02 +0000)]
(merge from 3.0)
Thanks to Serassio Guido for noticing issues in our Squid NTLMSSP
implementation. We were not resetting the NTLMSSP state for new
negotiate packets.
Andrew Bartlett
Jeremy Allison [Tue, 23 Dec 2003 07:33:38 +0000 (07:33 +0000)]
Fix for special files being hidden from admins by Dmitry Butskoj <buc@odusz.elektra.ru>
Jeremy.
Gerald Carter [Mon, 22 Dec 2003 21:26:29 +0000 (21:26 +0000)]
correct typo in delete user script; bug 887
Gerald Carter [Mon, 22 Dec 2003 21:24:40 +0000 (21:24 +0000)]
add well known rid for pre win2k compatible access group; bug 897
Jeremy Allison [Mon, 22 Dec 2003 11:12:12 +0000 (11:12 +0000)]
Patch from Jianliang Lu j.lu@tiesse.com to manage Power Users
group.
Jeremy.
Gerald Carter [Fri, 19 Dec 2003 00:33:27 +0000 (00:33 +0000)]
* add a few useful debug lines
* fix bug involving Win9x clients. Make sure we
save the right case for the located username
in fill_sam_account()
Jeremy Allison [Wed, 17 Dec 2003 21:57:29 +0000 (21:57 +0000)]
Add in comments explaining NTLMv2 selection. Use lm session key if that's
all there is.
Jeremy.
Jeremy Allison [Wed, 17 Dec 2003 20:11:35 +0000 (20:11 +0000)]
Tidyup debug message in ntlmssp code. Add brackets around dodgy if statement.
Jeremy
Gerald Carter [Wed, 17 Dec 2003 06:18:41 +0000 (06:18 +0000)]
Make sure we correctly generate the lm session key.
This fixes a problem joining a Samba domain from a
vanilla win2k client that doesn't set the
NTLMSSP_NEGOTIATE_NTLM2 flag.
Reported on samba ml as "decode_pw: incorrect password length"
when handling a samr_set_userinfo(23 or 24) RPC.
Gerald Carter [Tue, 16 Dec 2003 18:36:05 +0000 (18:36 +0000)]
make sure we delete the group mapping before calling the delete group script; patch from Jianliang Lu <j.lu@tiesse.com>
Gerald Carter [Mon, 15 Dec 2003 14:54:55 +0000 (14:54 +0000)]
decided to accept the specfile changes and recut the tarball
Gerald Carter [Mon, 15 Dec 2003 04:12:17 +0000 (04:12 +0000)]
preparing for release of 3.0.1
Gerald Carter [Mon, 15 Dec 2003 03:26:22 +0000 (03:26 +0000)]
final changes for 3.0.1