Use talloc_tos() in regkey_access_check()

[ira/wip.git] / examples / LDAP / samba.schema

diff --git a/examples/LDAP/samba.schema b/examples/LDAP/samba.schema
index 061fb9791ab1a6b8440a6a9e56ceb9348f021db8..8f82dddeb38092e19e332372fa48a85f71dac74f 100644 (file)
--- a/examples/LDAP/samba.schema
+++ b/examples/LDAP/samba.schema
@@ -292,7 +292,7 @@ attributetype ( 1.3.6.1.4.1.7165.2.1.47 NAME 'sambaMungedDial'
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.15{1050} )
 
 attributetype ( 1.3.6.1.4.1.7165.2.1.54 NAME 'sambaPasswordHistory'
-       DESC 'Concatenated MD4 hashes of the unicode passwords used on this account'
+       DESC 'Concatenated MD5 hashes of the salted NT passwords used on this account'
        EQUALITY caseIgnoreIA5Match
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} )
 
@@ -457,6 +457,17 @@ attributetype ( 1.3.6.1.4.1.7165.2.1.67 NAME 'sambaRefuseMachinePwdChange'
        EQUALITY integerMatch
        SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE )
 
+#
+attributetype ( 1.3.6.1.4.1.7165.2.1.68 NAME 'sambaClearTextPassword'
+       DESC 'Clear text password (used for trusted domain passwords)'
+       EQUALITY octetStringMatch
+       SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 )
+
+#
+attributetype ( 1.3.6.1.4.1.7165.2.1.69 NAME 'sambaPreviousClearTextPassword'
+       DESC 'Previous clear text password (used for trusted domain passwords)'
+       EQUALITY octetStringMatch
+       SYNTAX 1.3.6.1.4.1.1466.115.121.1.40 )
 
 
 
@@ -507,7 +518,8 @@ objectclass ( 1.3.6.1.4.1.7165.2.2.14 NAME 'sambaTrustPassword' SUP top STRUCTUR
 objectclass ( 1.3.6.1.4.1.7165.2.2.15 NAME 'sambaTrustedDomainPassword' SUP top STRUCTURAL
        DESC 'Samba Trusted Domain Password'
        MUST ( sambaDomainName $ sambaSID $
-              sambaNTPassword $ sambaPwdLastSet ))
+              sambaClearTextPassword $ sambaPwdLastSet )
+       MAY  ( sambaPreviousClearTextPassword ))
 
 ##
 ## Whole-of-domain info