samba.git/source3, branch talloc-2.0.8 Unnamed repository; edit this file 'description' to name the repository. Remove the parameters: 2012-10-04T19:04:21+00:00 Jeremy Allison jra@samba.org 2012-10-03T23:04:18+00:00 db62a159b8833a4f1aee0c9733fd263b6d239d53 security mask force security mode directory security mask force directory security mode and update the docs. 
security mask
force security mode
directory security mask
force directory security mode

and update the docs.
Remove all uses of lp_security_mask/lp_force_security_mode/lp_dir_security_mask/lp_force_dir_security_mode 2012-10-04T16:52:38+00:00 Jeremy Allison jra@samba.org 2012-10-03T21:49:01+00:00 7622aa16adeb00bf161a6dd07664c37125391272 and replace with the normal masks. Now these parameters can be removed. 
and replace with the normal masks. Now these parameters can be removed.
Revert "Add functions to programatically set the security mask and directory security mask parameters." 2012-10-04T16:52:38+00:00 Jeremy Allison jra@samba.org 2012-10-03T20:59:43+00:00 92fee007bbc0a5ab3a16c8f1521478d4813d0b79 This reverts commit 8f0ecbbbeebff0174579a78827d384067cd4cbb7. Not now needed as part of the move to remove security mask parameters. 
This reverts commit 8f0ecbbbeebff0174579a78827d384067cd4cbb7.

Not now needed as part of the move to remove security mask parameters.
Revert "When creating a new file/directory, we need to obey the create mask/directory mask parameters." 2012-10-04T16:52:38+00:00 Jeremy Allison jra@samba.org 2012-10-03T20:58:53+00:00 3f5a3b60e267d8342a95fff54428f0b13086ff77 This reverts commit c251a6b0442abc13bc8be4ff8de324c1d7706a78. Remove this as we're planning to remove the security mask, directory security mask parameters and only use create mask/directory mask. 
This reverts commit c251a6b0442abc13bc8be4ff8de324c1d7706a78.

Remove this as we're planning to remove the security mask,
directory security mask parameters and only use create mask/directory mask.
s3fs-smbd: Make sure the registry is set up before we init printing. 2012-10-04T10:06:29+00:00 Andreas Schneider asn@samba.org 2012-10-02T13:51:08+00:00 50de2c9bbbc25074f022b4b2cf9d49f8e9a53e01 Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Thu Oct 4 12:06:29 CEST 2012 on sn-devel-104 
Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org>
Autobuild-Date(master): Thu Oct  4 12:06:29 CEST 2012 on sn-devel-104
waf: Build pam_smbpass module only if enabled. 2012-10-04T08:20:35+00:00 Andreas Schneider asn@samba.org 2012-10-02T12:25:40+00:00 fb3cf6c24270d22dad8ac9a1c12e8d77c8189f11 






Revert "Fix bug #9222 - smbd ignores the "server signing = no" setting for SMB2."
2012-10-03T19:50:42+00:00

Jeremy Allison
jra@samba.org

2012-10-03T19:50:42+00:00

49a335731a7139a5c66be596f3d544bef72a8556

This reverts commit dfd3c31a3f9eea96854b2d22574856368e86b245.

As Metze pointed out:

From MS-SMB2 section 2.2.4:

SMB2_NEGOTIATE_SIGNING_ENABLED

When set, indicates that security signatures are enabled
on the server. The server MUST set this bit, and the client MUST return
STATUS_INVALID_NETWORK_RESPONSE if the flag is missing.

I'll submit a documentation bug to fix #9222 that way.





This reverts commit dfd3c31a3f9eea96854b2d22574856368e86b245.

As Metze pointed out:

From MS-SMB2 section 2.2.4:

SMB2_NEGOTIATE_SIGNING_ENABLED

When set, indicates that security signatures are enabled
on the server. The server MUST set this bit, and the client MUST return
STATUS_INVALID_NETWORK_RESPONSE if the flag is missing.

I'll submit a documentation bug to fix #9222 that way.







Fix bug #9214 - Bad user supplied SMB2 credit value can cause smbd to call smb_panic.
2012-10-03T19:49:15+00:00

Jeremy Allison
jra@samba.org

2012-10-03T00:30:54+00:00

c2f5b2466bb05939c953341517da6d9df814b27c

Terminate the connection cleanly instead.





Terminate the connection cleanly instead.







Fix bug #9222 - smbd ignores the "server signing = no" setting for SMB2.
2012-10-02T22:59:42+00:00

Jeremy Allison
jra@samba.org

2012-10-02T21:10:21+00:00

dfd3c31a3f9eea96854b2d22574856368e86b245

Still sign if client request is signed, just don't negotiate it in
negprot or sessionsetup.

Autobuild-User(master): Jeremy Allison <jra@samba.org>
Autobuild-Date(master): Wed Oct  3 00:59:42 CEST 2012 on sn-devel-104





Still sign if client request is signed, just don't negotiate it in
negprot or sessionsetup.

Autobuild-User(master): Jeremy Allison <jra@samba.org>
Autobuild-Date(master): Wed Oct  3 00:59:42 CEST 2012 on sn-devel-104







When creating a new file/directory, we need to obey the create mask/directory mask parameters.
2012-10-02T20:27:17+00:00

Jeremy Allison
jra@samba.org

2012-10-02T17:25:14+00:00

c251a6b0442abc13bc8be4ff8de324c1d7706a78

Currently we call FSET_NT_ACL to inherit any ACLs on create. However
FSET_NT_ACL uses the security mask/directory security mask parameters
instead of the create mask/directory mask parameters.

Swap them temporarily when creating to ensure the correct masks
are applied.

Autobuild-User(master): Jeremy Allison <jra@samba.org>
Autobuild-Date(master): Tue Oct  2 22:27:17 CEST 2012 on sn-devel-104





Currently we call FSET_NT_ACL to inherit any ACLs on create. However
FSET_NT_ACL uses the security mask/directory security mask parameters
instead of the create mask/directory mask parameters.

Swap them temporarily when creating to ensure the correct masks
are applied.

Autobuild-User(master): Jeremy Allison <jra@samba.org>
Autobuild-Date(master): Tue Oct  2 22:27:17 CEST 2012 on sn-devel-104