CVS update: samba/source

Luke Leighton lkcl at samba.anu.edu.au
Thu Nov 13 07:47:25 EST 1997 

Date:	Thursday November 13, 1997 @ 7:47
Author:	lkcl

Update of /data/cvs/samba/source
In directory samba:/tmp/cvs-serv19515

Modified Files:
      Tag: BRANCH_NTDOM
	ipc.c ntclient.c ntdomain.h password.c proto.h smb.h 
Log Message:

Status Report
-------------

1) dce/rpc

i eventually realised that DCE/RPC pipe "bind requests" have meaning :-)
therefore, when you specify the "abstract interface syntax", you are
specifying the service and the *version* of that service that you wish
to talk to.

this check-in adds some empirically observed rpc binds that i've seen,
along with their version numbers (\PIPE\srvsvc is at version 3!).


2) nltest.exe

this msdn resource kit program is providing useful test information,
some of which is undocumented.  the only way to get it is to run nltest
against an NT server, and sniff the wire.  that having been said, this
program is for informational purposes only, and is probably a massive
red herring.

still, it's instructive, if nothing else :-)


3) workstation trust accounts

i still don't understand these.  what's going on.  i think, as john said,
a connection is established _and then kept open_.  if you do this, then
you have a "trust relationship" with that machine.



Modified Files
--------------

ipc.c :

	misunderstanding of pipe "bind" stuff.  lsass handles the TNP replies.

ntclient.c :

	wksta_trust_acct() - needed to get the initial passwords sorted out

	made rpc_pipe_bind() responsible for allocating the abstract syntax
	and version number etc, depending on the PIPE service you want to
	talk to.

ntdomain.h :

	structures for Logon Ctrl2 Query Levels 1, 2 and 3.  LSA Query Trusted
	Domains stuff.  all this is generated by NLTEST.EXE, which is probably
	a red herring in disguise.  interesting to note that "LSA Query Trusted
	Domains" comes up as a "bad opnum" in Net Monitor!

rpc_pipes/lsaparse.c :

	Logon Ctrl and Query Trust Domain parsing.

rpc_pipes/ntclientlsa.c rpc_pipes/ntclientnet.c :

	use get_nt_error_msg() to report 32 bit status errors back

rpc_pipes/ntclientpipe.c rpc_pipes/pipe_util.c :

	rpc_pipe_bind() - doing the right thing on the abstract syntax etc
	i _think_.  the ground-work is here: there is more to be done, in
	supporting different _versions_ of the various RPC pipes, and such.

rpc_pipes/pipenetlog.c :

	server-implementation of Logon Ctrl and Query Trust Domain lists.
	not very good ones: it was a bit late.  the info came from NLTEST.EXE
	so its usefulness is questionable.  for a purely diagnostic point of
	view, it's useful.

rpc_pipes/smbparse.c :

	smb_io_unistr2() - experimenting here, to get query trust domain
	lists working (this is the one that's unsupported in NetMonitor,
	but is generated by NLTEST.EXE and NT server _does_ respond).

	net_info 1 to 3 - these are part of the Logon Control2 query stuff.

More information about the samba-cvs mailing list