FreeBSD Bugzilla – Attachment 46764 Details for
Bug 71704
Security update for net/samba3
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Help
|
New Account
|
Log In
Remember
[x]
|
Forgot Password
Login:
[x]
[patch]
file.diff
file.diff (text/plain), 25.20 KB, created by
Timur I. Bakeyev
on 2004-09-13 15:50:23 UTC
(
hide
)
Description:
file.diff
Filename:
MIME Type:
Creator:
Timur I. Bakeyev
Created:
2004-09-13 15:50:23 UTC
Size:
25.20 KB
patch
obsolete
>Index: Makefile >=================================================================== >RCS file: /home/ncvs/ports/net/samba3/Makefile,v >retrieving revision 1.127 >diff -u -r1.127 Makefile >--- Makefile 1 Sep 2004 16:23:29 -0000 1.127 >+++ Makefile 12 Sep 2004 13:48:35 -0000 >@@ -6,7 +6,7 @@ > # > > PORTNAME= samba >-PORTVERSION= 3.0.6 >+PORTVERSION= 3.0.7 > PORTREVISION?= 0 > PORTEPOCH?= 1 > CATEGORIES?= net >@@ -70,8 +70,7 @@ > SAM_PGSQL "With PostgreSQL smbpasswd backend" off \ > SAM_OLD_LDAP "With Samba2.x LDAP smbpasswd backend" off \ > PAM_SMBPASS "With SMB PAM module" off \ >- POPT "With installed POPT library" on \ >- I18N "With i18n patch" off >+ POPT "With installed POPT library" on > .endif > > .include <bsd.port.pre.mk> >@@ -248,18 +247,6 @@ > WINBIND_FILTER= ${GREP} -v '^%%WINBIND%%' > .endif > >-.if defined(WITH_I18N) >-IGNORE= "I18N patch not ported yet!" >-# Based on patch from miraclelinux.com. >-# http://www.miraclelinux.com/english/technet/samba30/index.html >-PATCH_SITES= http://dist.bsdlab.org/ >-PATCHFILES= samba-3.0.4-i18n-20040521.bz2 >-PATCH_DIST_STRIP= -p1 >-PLIST_SUB+= I18N="" >-.else >-PLIST_SUB+= I18N="@comment " >-.endif >- > PLIST_SUB+= RC_DIR=${RC_DIR} \ > SAMBA_LOGDIR=${SAMBA_LOGDIR} \ > SAMBA_LOCKDIR=${SAMBA_LOCKDIR} >@@ -282,7 +269,6 @@ > post-patch: > @${FIND} ${WRKSRC} -name CVS -o -name .cvsignore | ${XARGS} ${RM} > @${RM} -rf ${WRKDIR}/${DISTNAME}/examples/libsmbclient >- @${CP} -pf ${FILESDIR}/samba.schema ${WRKDIR}/${DISTNAME}/examples/LDAP > > post-install: > .for sect in 1 5 7 8 >Index: distinfo >=================================================================== >RCS file: /home/ncvs/ports/net/samba3/distinfo,v >retrieving revision 1.56 >diff -u -r1.56 distinfo >--- distinfo 1 Sep 2004 16:23:29 -0000 1.56 >+++ distinfo 12 Sep 2004 13:24:16 -0000 >@@ -1,6 +1,2 @@ >-MD5 (samba-3.0.6.tar.gz) = c8dc06e2bcf63513c2e8d849f6352d8a >-SIZE (samba-3.0.6.tar.gz) = 14947376 >-MD5 (samba-3.0.5.tar.gz) = 5896ad33676e3c26efaab5dcd897c466 >-SIZE (samba-3.0.5.tar.gz) = 15076996 >-MD5 (samba-3.0.4-i18n-20040521.bz2) = 24158c2fd00b47ff5b0bcad23cae16e1 >-SIZE (samba-3.0.4-i18n-20040521.bz2) = 18982 >+MD5 (samba-3.0.7.tar.gz) = 5906341429e64214909865a4be92e4ab >+SIZE (samba-3.0.7.tar.gz) = 15012667 >Index: pkg-plist >=================================================================== >RCS file: /home/ncvs/ports/net/samba3/pkg-plist,v >retrieving revision 1.53 >diff -u -r1.53 pkg-plist >--- pkg-plist 1 Sep 2004 16:23:29 -0000 1.53 >+++ pkg-plist 12 Sep 2004 14:12:33 -0000 >@@ -46,7 +46,6 @@ > lib/samba/vfs/extd_audit.so > lib/samba/vfs/fake_perms.so > lib/samba/vfs/full_audit.so >-%%I18N%%lib/samba/vfs/hex.so > lib/samba/vfs/netatalk.so > lib/samba/vfs/readonly.so > lib/samba/vfs/recycle.so >@@ -74,6 +73,7 @@ > %%SMBPASS%%%%EXAMPLESDIR%%/pam_smbpass/password-sync > %%EXAMPLESDIR%%/LDAP/README > %%EXAMPLESDIR%%/LDAP/convertSambaAccount >+%%EXAMPLESDIR%%/LDAP/get_next_oid > %%EXAMPLESDIR%%/LDAP/ldapsync.pl > %%EXAMPLESDIR%%/LDAP/samba-nds.schema > %%EXAMPLESDIR%%/LDAP/samba-schema-netscapeds4.x >@@ -126,7 +126,7 @@ > %%EXAMPLESDIR%%/VFS/skel_transparent.c > %%EXAMPLESDIR%%/auth/Makefile > %%EXAMPLESDIR%%/auth/auth_skel.c >-%%EXAMPLESDIR%%/autofs/auto.a >+%%EXAMPLESDIR%%/autofs/auto.smb > %%EXAMPLESDIR%%/dce-dfs/README > %%EXAMPLESDIR%%/dce-dfs/smb.conf > %%EXAMPLESDIR%%/genlogon/genlogon.pl >Index: files/patch-jerry-homes-reuse_v2 >=================================================================== >RCS file: files/patch-jerry-homes-reuse_v2 >diff -N files/patch-jerry-homes-reuse_v2 >--- files/patch-jerry-homes-reuse_v2 1 Sep 2004 16:23:29 -0000 1.1 >+++ /dev/null 1 Jan 1970 00:00:00 -0000 >@@ -1,69 +0,0 @@ >-Index: smbd/password.c >-=================================================================== >---- smbd/password.c (revision 2069) >-+++ smbd/password.c (working copy) >-@@ -252,27 +252,30 @@ >- } >- >- /* Register a home dir service for this user iff >-+ >- (a) This is not a guest connection, >- (b) we have a home directory defined >-- If a share exists by this name (autoloaded or not) reuse it so >-- long as the home directory is the same as the share directory. */ >-+ (c) there s not an existing static share by that name >-+ >-+ If a share exists by this name (autoloaded or not) reuse it . */ >- >-- if ( (!vuser->guest) && vuser->unix_homedir && *(vuser->unix_homedir)) { >-+ vuser->homes_snum = -1; >-+ >-+ if ( (!vuser->guest) && vuser->unix_homedir && *(vuser->unix_homedir)) >-+ { >- int servicenumber = lp_servicenumber(vuser->user.unix_name); >-+ >- if ( servicenumber == -1 ) { >- DEBUG(3, ("Adding homes service for user '%s' using home directory: '%s'\n", >- vuser->user.unix_name, vuser->unix_homedir)); >- vuser->homes_snum = add_home_service(vuser->user.unix_name, >- vuser->user.unix_name, vuser->unix_homedir); >-- } else if (strcmp(lp_pathname(servicenumber),vuser->unix_homedir) == 0) { >-- DEBUG(3, ("Reusing homes service for user '%s' using home directory: '%s'\n", >-- vuser->user.unix_name, vuser->unix_homedir)); >-- >-+ } else { >-+ DEBUG(3, ("Using static (or previously created) service for user '%s'; path = '%s'\n", >-+ vuser->user.unix_name, lp_pathname(servicenumber) )); >- vuser->homes_snum = servicenumber; >- } >-- } else { >-- vuser->homes_snum = -1; >-- } >-+ } >- >- if (srv_is_signing_negotiated() && !vuser->guest && !srv_signing_started()) { >- /* Try and turn on server signing on the first non-guest sessionsetup. */ >-Index: param/loadparm.c >-=================================================================== >---- param/loadparm.c (revision 2069) >-+++ param/loadparm.c (working copy) >-@@ -2305,6 +2305,10 @@ >- copy_service(ServicePtrs[i], &tservice, NULL); >- if (name) >- string_set(&ServicePtrs[i]->szService, name); >-+ >-+ DEBUG(8,("add_a_service: Creating snum = %d for %s\n", >-+ i, ServicePtrs[i]->szService)); >-+ >- return (i); >- } >- >-@@ -2344,7 +2348,7 @@ >- ServicePtrs[i]->autoloaded = True; >- >- DEBUG(3, ("adding home's share [%s] for user '%s' at '%s'\n", pszHomename, >-- user, newHomedir)); >-+ user, ServicePtrs[i]->szPath )); >- >- return (True); >- } >Index: files/patch-jerry-winbind_getpwnam_v1 >=================================================================== >RCS file: files/patch-jerry-winbind_getpwnam_v1 >diff -N files/patch-jerry-winbind_getpwnam_v1 >--- files/patch-jerry-winbind_getpwnam_v1 1 Sep 2004 16:23:29 -0000 1.1 >+++ /dev/null 1 Jan 1970 00:00:00 -0000 >@@ -1,66 +0,0 @@ >-Index: libsmb/samlogon_cache.c >-=================================================================== >---- libsmb/samlogon_cache.c (revision 2082) >-+++ libsmb/samlogon_cache.c (working copy) >-@@ -106,9 +106,10 @@ >- >- /*********************************************************************** >- Store a NET_USER_INFO_3 structure in a tdb for later user >-+ username should be in UTF-8 format >- ***********************************************************************/ >- >--BOOL netsamlogon_cache_store(TALLOC_CTX *mem_ctx, NET_USER_INFO_3 *user) >-+BOOL netsamlogon_cache_store(TALLOC_CTX *mem_ctx, const char * username, NET_USER_INFO_3 *user) >- { >- TDB_DATA data; >- fstring keystr; >-@@ -130,6 +131,14 @@ >- slprintf(keystr, sizeof(keystr), "%s", sid_string_static(&user_sid)); >- >- DEBUG(10,("netsamlogon_cache_store: SID [%s]\n", keystr)); >-+ >-+ /* only Samba fills in the username, not sure why NT doesn't */ >-+ /* so we fill it in since winbindd_getpwnam() makes use of it */ >-+ >-+ if ( !user->uni_user_name.buffer ) { >-+ init_unistr2( &user->uni_user_name, username, STR_TERMINATE ); >-+ init_uni_hdr( &user->hdr_user_name, &user->uni_user_name ); >-+ } >- >- /* Prepare data */ >- >-Index: nsswitch/winbindd_pam.c >-=================================================================== >---- nsswitch/winbindd_pam.c (revision 2082) >-+++ nsswitch/winbindd_pam.c (working copy) >-@@ -283,7 +283,7 @@ >- } >- >- if (NT_STATUS_IS_OK(result)) { >-- netsamlogon_cache_store( cli->mem_ctx, &info3 ); >-+ netsamlogon_cache_store( cli->mem_ctx, name_user, &info3 ); >- wcache_invalidate_samlogon(find_domain_from_name(name_domain), &info3); >- >- /* Check if the user is in the right group */ >-@@ -538,7 +538,7 @@ >- } >- >- if (NT_STATUS_IS_OK(result)) { >-- netsamlogon_cache_store( cli->mem_ctx, &info3 ); >-+ netsamlogon_cache_store( cli->mem_ctx, name_user, &info3 ); >- wcache_invalidate_samlogon(find_domain_from_name(name_domain), &info3); >- >- if (!NT_STATUS_IS_OK(result = check_info3_in_group(mem_ctx, &info3, state->request.data.auth_crap.required_membership_sid))) { >-Index: auth/auth_domain.c >-=================================================================== >---- auth/auth_domain.c (revision 2082) >-+++ auth/auth_domain.c (working copy) >-@@ -205,7 +205,7 @@ >- } else { >- nt_status = make_server_info_info3(mem_ctx, user_info->internal_username.str, >- user_info->smb_name.str, domain, server_info, &info3); >-- netsamlogon_cache_store( mem_ctx, &info3 ); >-+ netsamlogon_cache_store( mem_ctx, user_info->smb_name.str, &info3 ); >- } >- >- #if 0 >Index: files/samba.schema >=================================================================== >RCS file: files/samba.schema >diff -N files/samba.schema >--- files/samba.schema 1 Sep 2004 16:23:29 -0000 1.1 >+++ /dev/null 1 Jan 1970 00:00:00 -0000 >@@ -1,471 +0,0 @@ >-## >-## schema file for OpenLDAP 2.x >-## Schema for storing Samba user accounts and group maps in LDAP >-## OIDs are owned by the Samba Team >-## >-## Prerequisite schemas - uid (cosine.schema) >-## - displayName (inetorgperson.schema) >-## - gidNumber (nis.schema) >-## >-## 1.3.6.1.4.1.7165.2.1.x - attributetypes >-## 1.3.6.1.4.1.7165.2.2.x - objectclasses >-## >-## ----- READ THIS WHEN ADDING A NEW ATTRIBUTE OR OBJECT CLASS ------ >-## >-## Run the 'get_next_oid' bash script in this directory to find the >-## next available OID for attribute type and object classes. >-## >-## $ ./get_next_oid >-## attributetype ( 1.3.6.1.4.1.7165.2.1.XX NAME .... >-## objectclass ( 1.3.6.1.4.1.7165.2.2.XX NAME .... >-## >-## Also ensure that new entries adhere to the declaration style >-## used throughout this file >-## >-## <attributetype|objectclass> ( 1.3.6.1.4.1.7165.2.XX.XX NAME .... >-## ^ ^ ^ >-## >-## The spaces are required for the get_next_oid script (and for >-## readability). >-## >-## ------------------------------------------------------------------ >- >-######################################################################## >-## HISTORICAL ## >-######################################################################## >- >-## >-## Password hashes >-## >-#attributetype ( 1.3.6.1.4.1.7165.2.1.1 NAME 'lmPassword' >-# DESC 'LanManager Passwd' >-# EQUALITY caseIgnoreIA5Match >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE ) >- >-#attributetype ( 1.3.6.1.4.1.7165.2.1.2 NAME 'ntPassword' >-# DESC 'NT Passwd' >-# EQUALITY caseIgnoreIA5Match >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE ) >- >-## >-## Account flags in string format ([UWDX ]) >-## >-#attributetype ( 1.3.6.1.4.1.7165.2.1.4 NAME 'acctFlags' >-# DESC 'Account Flags' >-# EQUALITY caseIgnoreIA5Match >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{16} SINGLE-VALUE ) >- >-## >-## Password timestamps & policies >-## >-#attributetype ( 1.3.6.1.4.1.7165.2.1.3 NAME 'pwdLastSet' >-# DESC 'NT pwdLastSet' >-# EQUALITY integerMatch >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-#attributetype ( 1.3.6.1.4.1.7165.2.1.5 NAME 'logonTime' >-# DESC 'NT logonTime' >-# EQUALITY integerMatch >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-#attributetype ( 1.3.6.1.4.1.7165.2.1.6 NAME 'logoffTime' >-# DESC 'NT logoffTime' >-# EQUALITY integerMatch >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-#attributetype ( 1.3.6.1.4.1.7165.2.1.7 NAME 'kickoffTime' >-# DESC 'NT kickoffTime' >-# EQUALITY integerMatch >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-#attributetype ( 1.3.6.1.4.1.7165.2.1.8 NAME 'pwdCanChange' >-# DESC 'NT pwdCanChange' >-# EQUALITY integerMatch >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-#attributetype ( 1.3.6.1.4.1.7165.2.1.9 NAME 'pwdMustChange' >-# DESC 'NT pwdMustChange' >-# EQUALITY integerMatch >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-## >-## string settings >-## >-#attributetype ( 1.3.6.1.4.1.7165.2.1.10 NAME 'homeDrive' >-# DESC 'NT homeDrive' >-# EQUALITY caseIgnoreIA5Match >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{4} SINGLE-VALUE ) >- >-#attributetype ( 1.3.6.1.4.1.7165.2.1.11 NAME 'scriptPath' >-# DESC 'NT scriptPath' >-# EQUALITY caseIgnoreIA5Match >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE ) >- >-#attributetype ( 1.3.6.1.4.1.7165.2.1.12 NAME 'profilePath' >-# DESC 'NT profilePath' >-# EQUALITY caseIgnoreIA5Match >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE ) >- >-#attributetype ( 1.3.6.1.4.1.7165.2.1.13 NAME 'userWorkstations' >-# DESC 'userWorkstations' >-# EQUALITY caseIgnoreIA5Match >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE ) >- >-#attributetype ( 1.3.6.1.4.1.7165.2.1.17 NAME 'smbHome' >-# DESC 'smbHome' >-# EQUALITY caseIgnoreIA5Match >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} ) >- >-#attributetype ( 1.3.6.1.4.1.7165.2.1.18 NAME 'domain' >-# DESC 'Windows NT domain to which the user belongs' >-# EQUALITY caseIgnoreIA5Match >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} ) >- >-## >-## user and group RID >-## >-#attributetype ( 1.3.6.1.4.1.7165.2.1.14 NAME 'rid' >-# DESC 'NT rid' >-# EQUALITY integerMatch >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-#attributetype ( 1.3.6.1.4.1.7165.2.1.15 NAME 'primaryGroupID' >-# DESC 'NT Group RID' >-# EQUALITY integerMatch >-# SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-## >-## The smbPasswordEntry objectclass has been depreciated in favor of the >-## sambaAccount objectclass >-## >-#objectclass ( 1.3.6.1.4.1.7165.2.2.1 NAME 'smbPasswordEntry' SUP top AUXILIARY >-# DESC 'Samba smbpasswd entry' >-# MUST ( uid $ uidNumber ) >-# MAY ( lmPassword $ ntPassword $ pwdLastSet $ acctFlags )) >- >-#objectclass ( 1.3.6.1.4.1.7165.2.2.2 NAME 'sambaAccount' SUP top STRUCTURAL >-# DESC 'Samba Account' >-# MUST ( uid $ rid ) >-# MAY ( cn $ lmPassword $ ntPassword $ pwdLastSet $ logonTime $ >-# logoffTime $ kickoffTime $ pwdCanChange $ pwdMustChange $ acctFlags $ >-# displayName $ smbHome $ homeDrive $ scriptPath $ profilePath $ >-# description $ userWorkstations $ primaryGroupID $ domain )) >- >-#objectclass ( 1.3.6.1.4.1.7165.2.2.3 NAME 'sambaAccount' SUP top AUXILIARY >-# DESC 'Samba Auxiliary Account' >-# MUST ( uid $ rid ) >-# MAY ( cn $ lmPassword $ ntPassword $ pwdLastSet $ logonTime $ >-# logoffTime $ kickoffTime $ pwdCanChange $ pwdMustChange $ acctFlags $ >-# displayName $ smbHome $ homeDrive $ scriptPath $ profilePath $ >-# description $ userWorkstations $ primaryGroupID $ domain )) >- >-######################################################################## >-## END OF HISTORICAL ## >-######################################################################## >- >-####################################################################### >-## Attributes used by Samba 3.0 schema ## >-####################################################################### >- >-## >-## Password hashes >-## >-attributetype ( 1.3.6.1.4.1.7165.2.1.24 NAME 'sambaLMPassword' >- DESC 'LanManager Password' >- EQUALITY caseIgnoreIA5Match >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.25 NAME 'sambaNTPassword' >- DESC 'MD4 hash of the unicode password' >- EQUALITY caseIgnoreIA5Match >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE ) >- >-## >-## Account flags in string format ([UWDX ]) >-## >-attributetype ( 1.3.6.1.4.1.7165.2.1.26 NAME 'sambaAcctFlags' >- DESC 'Account Flags' >- EQUALITY caseIgnoreIA5Match >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{16} SINGLE-VALUE ) >- >-## >-## Password timestamps & policies >-## >-attributetype ( 1.3.6.1.4.1.7165.2.1.27 NAME 'sambaPwdLastSet' >- DESC 'Timestamp of the last password update' >- EQUALITY integerMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.28 NAME 'sambaPwdCanChange' >- DESC 'Timestamp of when the user is allowed to update the password' >- EQUALITY integerMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.29 NAME 'sambaPwdMustChange' >- DESC 'Timestamp of when the password will expire' >- EQUALITY integerMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.30 NAME 'sambaLogonTime' >- DESC 'Timestamp of last logon' >- EQUALITY integerMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.31 NAME 'sambaLogoffTime' >- DESC 'Timestamp of last logoff' >- EQUALITY integerMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.32 NAME 'sambaKickoffTime' >- DESC 'Timestamp of when the user will be logged off automatically' >- EQUALITY integerMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.48 NAME 'sambaBadPasswordCount' >- DESC 'Bad password attempt count' >- EQUALITY integerMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.49 NAME 'sambaBadPasswordTime' >- DESC 'Time of the last bad password attempt' >- EQUALITY integerMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.55 NAME 'sambaLogonHours' >- DESC 'Logon Hours' >- EQUALITY caseIgnoreIA5Match >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{42} SINGLE-VALUE ) >- >-## >-## string settings >-## >-attributetype ( 1.3.6.1.4.1.7165.2.1.33 NAME 'sambaHomeDrive' >- DESC 'Driver letter of home directory mapping' >- EQUALITY caseIgnoreIA5Match >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{4} SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.34 NAME 'sambaLogonScript' >- DESC 'Logon script path' >- EQUALITY caseIgnoreMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{255} SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.35 NAME 'sambaProfilePath' >- DESC 'Roaming profile path' >- EQUALITY caseIgnoreMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{255} SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.36 NAME 'sambaUserWorkstations' >- DESC 'List of user workstations the user is allowed to logon to' >- EQUALITY caseIgnoreMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{255} SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.37 NAME 'sambaHomePath' >- DESC 'Home directory UNC path' >- EQUALITY caseIgnoreMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.38 NAME 'sambaDomainName' >- DESC 'Windows NT domain to which the user belongs' >- EQUALITY caseIgnoreMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{128} ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.47 NAME 'sambaMungedDial' >- DESC '' >- EQUALITY caseExactMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{1050} ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.54 NAME 'sambaPasswordHistory' >- DESC 'Concatenated MD4 hashes of the unicode passwords used on this account' >- EQUALITY caseIgnoreIA5Match >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} ) >- >-## >-## SID, of any type >-## >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.20 NAME 'sambaSID' >- DESC 'Security ID' >- EQUALITY caseIgnoreIA5Match >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{64} SINGLE-VALUE ) >- >- >-## >-## Primary group SID, compatible with ntSid >-## >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.23 NAME 'sambaPrimaryGroupSID' >- DESC 'Primary Group Security ID' >- EQUALITY caseIgnoreIA5Match >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{64} SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.51 NAME 'sambaSIDList' >- DESC 'Security ID List' >- EQUALITY caseIgnoreIA5Match >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{64} ) >- >-## >-## group mapping attributes >-## >-attributetype ( 1.3.6.1.4.1.7165.2.1.19 NAME 'sambaGroupType' >- DESC 'NT Group Type' >- EQUALITY integerMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-## >-## Store info on the domain >-## >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.21 NAME 'sambaNextUserRid' >- DESC 'Next NT rid to give our for users' >- EQUALITY integerMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.22 NAME 'sambaNextGroupRid' >- DESC 'Next NT rid to give out for groups' >- EQUALITY integerMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.39 NAME 'sambaNextRid' >- DESC 'Next NT rid to give out for anything' >- EQUALITY integerMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.40 NAME 'sambaAlgorithmicRidBase' >- DESC 'Base at which the samba RID generation algorithm should operate' >- EQUALITY integerMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.41 NAME 'sambaShareName' >- DESC 'Share Name' >- EQUALITY caseIgnoreMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.42 NAME 'sambaOptionName' >- DESC 'Option Name' >- EQUALITY caseIgnoreMatch >- SUBSTR caseIgnoreSubstringsMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{256} ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.43 NAME 'sambaBoolOption' >- DESC 'A boolean option' >- EQUALITY booleanMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.7 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.44 NAME 'sambaIntegerOption' >- DESC 'An integer option' >- EQUALITY integerMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.45 NAME 'sambaStringOption' >- DESC 'A string option' >- EQUALITY caseExactIA5Match >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 SINGLE-VALUE ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.46 NAME 'sambaStringListOption' >- DESC 'A string list option' >- EQUALITY caseIgnoreMatch >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 ) >- >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.50 NAME 'sambaPrivName' >- SUP name ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.52 NAME 'sambaPrivilegeList' >- DESC 'Privileges List' >- EQUALITY caseIgnoreIA5Match >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{64} ) >- >-attributetype ( 1.3.6.1.4.1.7165.2.1.53 NAME 'sambaTrustFlags' >- DESC 'Trust Password Flags' >- EQUALITY caseIgnoreIA5Match >- SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) >- >- >-####################################################################### >-## objectClasses used by Samba 3.0 schema ## >-####################################################################### >- >-## The X.500 data model (and therefore LDAPv3) says that each entry can >-## only have one structural objectclass. OpenLDAP 2.0 does not enforce >-## this currently but will in v2.1 >- >-## >-## added new objectclass (and OID) for 3.0 to help us deal with backwards >-## compatibility with 2.2 installations (e.g. ldapsam_compat) --jerry >-## >-objectclass ( 1.3.6.1.4.1.7165.2.2.6 NAME 'sambaSamAccount' SUP top AUXILIARY >- DESC 'Samba 3.0 Auxilary SAM Account' >- MUST ( uid $ sambaSID ) >- MAY ( cn $ sambaLMPassword $ sambaNTPassword $ sambaPwdLastSet $ >- sambaLogonTime $ sambaLogoffTime $ sambaKickoffTime $ >- sambaPwdCanChange $ sambaPwdMustChange $ sambaAcctFlags $ >- displayName $ sambaHomePath $ sambaHomeDrive $ sambaLogonScript $ >- sambaProfilePath $ description $ sambaUserWorkstations $ >- sambaPrimaryGroupSID $ sambaDomainName $ sambaMungedDial $ >- sambaBadPasswordCount $ sambaBadPasswordTime $ >- sambaPasswordHistory $ sambaLogonHours)) >- >-## >-## Group mapping info >-## >-objectclass ( 1.3.6.1.4.1.7165.2.2.4 NAME 'sambaGroupMapping' SUP top AUXILIARY >- DESC 'Samba Group Mapping' >- MUST ( gidNumber $ sambaSID $ sambaGroupType ) >- MAY ( displayName $ description $ sambaSIDList )) >- >-## >-## Trust password for trust relationships (any kind) >-## >-objectclass ( 1.3.6.1.4.1.7165.2.2.14 NAME 'sambaTrustPassword' SUP top STRUCTURAL >- DESC 'Samba Trust Password' >- MUST ( sambaDomainName $ sambaNTPassword $ sambaTrustFlags ) >- MAY ( sambaSID $ sambaPwdLastSet )) >- >-## >-## Whole-of-domain info >-## >-objectclass ( 1.3.6.1.4.1.7165.2.2.5 NAME 'sambaDomain' SUP top STRUCTURAL >- DESC 'Samba Domain Information' >- MUST ( sambaDomainName $ >- sambaSID ) >- MAY ( sambaNextRid $ sambaNextGroupRid $ sambaNextUserRid $ >- sambaAlgorithmicRidBase ) ) >- >-## >-## used for idmap_ldap module >-## >-objectclass ( 1.3.6.1.4.1.7165.2.2.7 NAME 'sambaUnixIdPool' SUP top AUXILIARY >- DESC 'Pool for allocating UNIX uids/gids' >- MUST ( uidNumber $ gidNumber ) ) >- >- >-objectclass ( 1.3.6.1.4.1.7165.2.2.8 NAME 'sambaIdmapEntry' SUP top AUXILIARY >- DESC 'Mapping from a SID to an ID' >- MUST ( sambaSID ) >- MAY ( uidNumber $ gidNumber ) ) >- >-objectclass ( 1.3.6.1.4.1.7165.2.2.9 NAME 'sambaSidEntry' SUP top STRUCTURAL >- DESC 'Structural Class for a SID' >- MUST ( sambaSID ) ) >- >-objectclass ( 1.3.6.1.4.1.7165.1.2.2.10 NAME 'sambaConfig' SUP top AUXILIARY >- DESC 'Samba Configuration Section' >- MAY ( description ) ) >- >-objectclass ( 1.3.6.1.4.1.7165.2.2.11 NAME 'sambaShare' SUP top STRUCTURAL >- DESC 'Samba Share Section' >- MUST ( sambaShareName ) >- MAY ( description ) ) >- >-objectclass ( 1.3.6.1.4.1.7165.2.2.12 NAME 'sambaConfigOption' SUP top STRUCTURAL >- DESC 'Samba Configuration Option' >- MUST ( sambaOptionName ) >- MAY ( sambaBoolOption $ sambaIntegerOption $ sambaStringOption $ >- sambaStringListoption $ description ) ) >- >- >-objectclass ( 1.3.6.1.4.1.7165.2.2.13 NAME 'sambaPrivilege' SUP top AUXILIARY >- DESC 'Samba Privilege' >- MUST ( sambaSID ) >- MAY ( sambaPrivilegeList ) ) >-
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=46764">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 71704
: 46764