git.samba.org - ira/wip.git/commit

author	Stefan Metzmacher <metze@samba.org>
	Sun, 18 Feb 2007 22:01:02 +0000 (22:01 +0000)
committer	Gerald (Jerry) Carter <jerry@samba.org>
	Wed, 10 Oct 2007 19:48:34 +0000 (14:48 -0500)
commit	6e2d85e38baa2221c2d31d2246567e7523e00fd6
tree	03ffa66d3d404b0353943d15a11ae586a24ceff1	tree
parent	0515f728e64dde0c197aee6180dce79ad281d5f8	commit \| diff

r21434: - get rid of "krb5Key"
- use "sambaPassword" only as virtual attribute for passing
  the cleartext password (in unix charset) into the ldb layer
- store des-cbc-crc, des-cbc-md5 keys in the Primary:Kerberos
  blob to match w2k and w2k3
- aes key support is disabled by default, as we don't know
  exacly how longhorn stores them. use password_hash:create_aes_key=yes
  to force creation of them.
- store the cleartext password in the Primary:CLEARTEXT blob
  if configured

TODO:
- find out how longhorn stores aes keys
- find out how the Primary:WDigest blob needs to be constructed
   (not supported by w2k)

metze
(This used to be commit e20b53f6feaaca2cc81ee7d296ca3ff757ee3953)

source4/auth/sam.c		diff \| blob \| history
source4/dsdb/samdb/ldb_modules/local_password.c		diff \| blob \| history
source4/dsdb/samdb/ldb_modules/password_hash.c		diff \| blob \| history
source4/kdc/hdb-ldb.c		diff \| blob \| history