search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
add WITH_SENDFILE profiling data (from Pierre Belanger)
[Samba.git] / source / utils / smbpasswd.c
blob79d49a9e058ea88e2c0fb070eb343581b9f69518
1
2 /*
3 * Unix SMB/Netbios implementation.
4 * Version 1.9.
5 * smbpasswd module.
6 * Copyright (C) Jeremy Allison 1995-1998
7 * Copyright (C) Tim Potter 2001
8 *
9 * This program is free software; you can redistribute it and/or modify it
10 * under the terms of the GNU General Public License as published by the
11 * Free Software Foundation; either version 2 of the License, or (at your
12 * option) any later version.
13 *
14 * This program is distributed in the hope that it will be useful, but WITHOUT
15 * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
16 * FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
17 * more details.
18 *
19 * You should have received a copy of the GNU General Public License along with
20 * this program; if not, write to the Free Software Foundation, Inc., 675
21 * Mass Ave, Cambridge, MA 02139, USA. */
22
23 #include "includes.h"
24
25 extern pstring global_myname;
26 extern BOOL AllowDebugChange;
27
28 /*
29 * Next two lines needed for SunOS and don't
30 * hurt anything else...
31 */
32 extern char *optarg;
33 extern int optind;
34
35 /* forced running in root-mode */
36 static BOOL local_mode;
37 static BOOL joining_domain = False, got_pass = False, got_username = False, changing_trust_pw = False;
38 static int local_flags = 0;
39 static BOOL stdin_passwd_get = False;
40 static fstring user_name, user_password;
41 static char *new_domain = NULL;
42 static char *new_passwd = NULL;
43 static char *old_passwd = NULL;
44 static char *remote_machine = NULL;
45 static pstring servicesf = CONFIGFILE;
46
47 #ifdef WITH_LDAP_SAM
48 static fstring ldap_secret;
49 #endif
50
51
52
53 /*********************************************************
54 A strdup with exit
55 **********************************************************/
56
57 static char *strdup_x(const char *s)
58 {
59 char *new_s = strdup(s);
60 if (!new_s) {
61 fprintf(stderr,"out of memory\n");
62 exit(1);
63 }
64 return new_s;
65 }
66
67
68 /*********************************************************
69 Print command usage on stderr and die.
70 **********************************************************/
71 static void usage(void)
72 {
73 printf("When run by root:\n");
74 printf(" smbpasswd [options] [username] [password]\n");
75 printf("otherwise:\n");
76 printf(" smbpasswd [options] [password]\n\n");
77
78 printf("Version: %s\n", VERSION);
79 printf("options:\n");
80 printf(" -L local mode (must be first option)\n");
81 printf(" -h print this usage message\n");
82 printf(" -s use stdin for password prompt\n");
83 printf(" -c smb.conf file Use the given path to the smb.conf file\n");
84 printf(" -D LEVEL debug level\n");
85 printf(" -r MACHINE remote machine\n");
86 printf(" -U USER remote username\n");
87
88 printf("extra options when run by root or in local mode:\n");
89 printf(" -a add user\n");
90 printf(" -d disable user\n");
91 printf(" -e enable user\n");
92 printf(" -m machine trust account\n");
93 printf(" -n set no password\n");
94 #ifdef WITH_LDAP_SAM
95 printf(" -w ldap admin password\n");
96 #endif
97 printf(" -x delete user\n");
98 printf(" -j DOMAIN join domain name\n");
99 printf(" -t DOMAIN change trust account password on domain\n");
100 printf(" -S DOMAIN Retrieve the domain SID for DOMAIN\n");
101 printf(" -R ORDER name resolve order\n");
102
103 exit(1);
104 }
105
106 static void set_line_buffering(FILE *f)
107 {
108 setvbuf(f, NULL, _IOLBF, 0);
109 }
110
111 /*******************************************************************
112 Process command line options
113 ******************************************************************/
114 static void process_options(int argc, char **argv, BOOL amroot)
115 {
116 int ch;
117
118 user_name[0] = '\0';
119
120 while ((ch = getopt(argc, argv, "c:axdehmnj:t:r:sw:R:D:U:LS")) != EOF) {
121 switch(ch) {
122 case 'L':
123 local_mode = amroot = True;
124 break;
125 case 'c':
126 pstrcpy(servicesf,optarg);
127 break;
128 case 'a':
129 if (!amroot) goto bad_args;
130 local_flags |= LOCAL_ADD_USER;
131 break;
132 case 'x':
133 if (!amroot) goto bad_args;
134 local_flags |= LOCAL_DELETE_USER;
135 new_passwd = strdup_x("XXXXXX");
136 break;
137 case 'd':
138 if (!amroot) goto bad_args;
139 local_flags |= LOCAL_DISABLE_USER;
140 new_passwd = strdup_x("XXXXXX");
141 break;
142 case 'e':
143 if (!amroot) goto bad_args;
144 local_flags |= LOCAL_ENABLE_USER;
145 break;
146 case 'm':
147 if (!amroot) goto bad_args;
148 local_flags |= LOCAL_TRUST_ACCOUNT;
149 break;
150 case 'n':
151 if (!amroot) goto bad_args;
152 local_flags |= LOCAL_SET_NO_PASSWORD;
153 new_passwd = strdup_x("NO PASSWORD");
154 break;
155 case 'j':
156 if (!amroot) goto bad_args;
157 new_domain = optarg;
158 strupper(new_domain);
159 joining_domain = True;
160 break;
161 case 't':
162 if (!amroot) goto bad_args;
163 new_domain = optarg;
164 strupper(new_domain);
165 changing_trust_pw = True;
166 break;
167 case 'r':
168 remote_machine = optarg;
169 break;
170 case 'S':
171 if (!amroot) goto bad_args;
172 local_flags |= LOCAL_GET_DOM_SID;
173 break;
174 case 's':
175 set_line_buffering(stdin);
176 set_line_buffering(stdout);
177 set_line_buffering(stderr);
178 stdin_passwd_get = True;
179 break;
180 case 'w':
181 if (!amroot) goto bad_args;
182 #ifdef WITH_LDAP_SAM
183 local_flags |= LOCAL_SET_LDAP_ADMIN_PW;
184 fstrcpy(ldap_secret, optarg);
185 break;
186 #else
187 printf("-w not available unless configured --with-ldapsam\n");
188 goto bad_args;
189 #endif
190 case 'R':
191 if (!amroot) goto bad_args;
192 lp_set_name_resolve_order(optarg);
193 break;
194 case 'D':
195 DEBUGLEVEL = atoi(optarg);
196 break;
197 case 'U': {
198 char *lp;
199
200 got_username = True;
201 fstrcpy(user_name, optarg);
202
203 if ((lp = strchr(user_name, '%'))) {
204 *lp = 0;
205 fstrcpy(user_password, lp + 1);
206 got_pass = True;
207 memset(strchr(optarg, '%') + 1, 'X',
208 strlen(user_password));
209 }
210
211 break;
212 }
213 case 'h':
214 default:
215 bad_args:
216 usage();
217 }
218 }
219
220 argc -= optind;
221 argv += optind;
222
223 if (joining_domain && (argc != 0))
224 usage();
225
226 switch(argc) {
227 case 0:
228 if (!got_username)
229 fstrcpy(user_name, "");
230 break;
231 case 1:
232 if (!amroot == 1) {
233 new_passwd = argv[0];
234 break;
235 }
236 if (got_username)
237 usage();
238 fstrcpy(user_name, argv[0]);
239 break;
240 case 2:
241 if (!amroot || got_username || got_pass)
242 usage();
243 fstrcpy(user_name, argv[0]);
244 new_passwd = strdup_x(argv[1]);
245 break;
246 default:
247 usage();
248 }
249
250 }
251
252 /* Initialise client credentials for authenticated pipe access */
253
254 void init_rpcclient_creds(struct ntuser_creds *creds, char* username,
255 char* domain, char* password)
256 {
257 ZERO_STRUCTP(creds);
258
259 if (lp_encrypted_passwords()) {
260 pwd_make_lm_nt_16(&creds->pwd, password);
261 } else {
262 pwd_set_cleartext(&creds->pwd, password);
263 }
264
265 fstrcpy(creds->user_name, username);
266 fstrcpy(creds->domain, domain);
267 }
268
269 /*********************************************************
270 Join a domain using the administrator username and password
271 **********************************************************/
272
273 /* Macro for checking RPC error codes to make things more readable */
274
275 #define CHECK_RPC_ERR(rpc, msg) \
276 if (!NT_STATUS_IS_OK(result = rpc)) { \
277 DEBUG(0, (msg ": %s\n", get_nt_error_msg(result))); \
278 goto done; \
279 }
280
281 #define CHECK_RPC_ERR_DEBUG(rpc, debug_args) \
282 if (!NT_STATUS_IS_OK(result = rpc)) { \
283 DEBUG(0, debug_args); \
284 goto done; \
285 }
286
287 static int join_domain_byuser(char *domain, char *remote,
288 char *username, char *password)
289 {
290 /* libsmb variables */
291
292 pstring pdc_name;
293 struct nmb_name calling, called;
294 struct ntuser_creds creds;
295 struct cli_state cli;
296 fstring acct_name;
297 struct in_addr dest_ip;
298 TALLOC_CTX *mem_ctx;
299
300 /* rpc variables */
301
302 POLICY_HND lsa_pol, sam_pol, domain_pol, user_pol;
303 DOM_SID domain_sid;
304 uint32 user_rid;
305
306 /* Password stuff */
307
308 char *machine_pwd;
309 int plen = 0;
310 uchar pwbuf[516], ntpw[16], sess_key[16];
311 SAM_USERINFO_CTR ctr;
312 SAM_USER_INFO_24 p24;
313 SAM_USER_INFO_10 p10;
314
315 /* Misc */
316
317 NTSTATUS result;
318 int retval = 1;
319
320 pstrcpy(pdc_name, remote ? remote : "");
321
322 /* Connect to remote machine */
323
324 ZERO_STRUCT(cli);
325 ZERO_STRUCT(creds);
326 ZERO_STRUCT(dest_ip); /* Make sure no nasty surprises */
327
328 if (!(mem_ctx = talloc_init())) {
329 DEBUG(0, ("Could not initialise talloc context\n"));
330 goto done;
331 }
332
333 if (!cli_initialise(&cli)) {
334 DEBUG(0, ("Could not initialise client structure\n"));
335 goto done;
336 }
337
338 init_rpcclient_creds(&creds, username, domain, password);
339 cli_init_creds(&cli, &creds);
340
341 /*
342 * If we are given a remote machine assume this is the PDC.
343 */
344
345 if(remote == NULL || !strcmp(remote, "*")) {
346 struct in_addr *ip_list;
347 int addr_count;
348 if (!get_dc_list(True /* PDC only*/, domain, &ip_list, &addr_count)) {
349 fprintf(stderr, "Unable to find the domain controller for domain %s.\n", domain);
350 return 1;
351 }
352 if ((addr_count < 1) || (is_zero_ip(ip_list[0]))) {
353 fprintf(stderr, "Incorrect entries returned when finding the domain controller for domain %s.\n", domain);
354 return 1;
355 }
356
357 if (!lookup_dc_name(global_myname, domain, &ip_list[0], pdc_name)) {
358 fprintf(stderr, "Unable to lookup the name for the domain controller for domain %s.\n", domain);
359 return 1;
360 }
361 dest_ip = ip_list[0];
362 }
363
364 make_nmb_name(&called, pdc_name, 0x20);
365 make_nmb_name(&calling, dns_to_netbios_name(global_myname), 0);
366
367 if (!cli_establish_connection(&cli, pdc_name, &dest_ip, &calling,
368 &called, "IPC$", "IPC", False, True)) {
369 if (!NT_STATUS_IS_OK(cli_nt_error(&cli))) {
370 DEBUG(0, ("Error connecting to %s - %s\n", pdc_name,cli_errstr(&cli)));
371 } else {
372 DEBUG(0, ("Error connecting to %s\n", pdc_name));
373 }
374 goto done;
375 }
376
377 /* Fetch domain sid */
378
379 if (!cli_nt_session_open(&cli, PIPE_LSARPC)) {
380 DEBUG(0, ("Error connecting to SAM pipe\n"));
381 goto done;
382 }
383
384
385 CHECK_RPC_ERR(cli_lsa_open_policy(&cli, mem_ctx, True,
386 SEC_RIGHTS_MAXIMUM_ALLOWED,
387 &lsa_pol),
388 "error opening lsa policy handle");
389
390 CHECK_RPC_ERR(cli_lsa_query_info_policy(&cli, mem_ctx, &lsa_pol,
391 5, domain, &domain_sid),
392 "error querying info policy");
393
394 cli_lsa_close(&cli, mem_ctx, &lsa_pol);
395
396 cli_nt_session_close(&cli); /* Done with this pipe */
397
398 /* Create domain user */
399
400 if (!cli_nt_session_open(&cli, PIPE_SAMR)) {
401 DEBUG(0, ("Error connecting to SAM pipe\n"));
402 goto done;
403 }
404
405 CHECK_RPC_ERR(cli_samr_connect(&cli, mem_ctx,
406 SEC_RIGHTS_MAXIMUM_ALLOWED,
407 &sam_pol),
408 "could not connect to SAM database");
409
410
411 CHECK_RPC_ERR(cli_samr_open_domain(&cli, mem_ctx, &sam_pol,
412 SEC_RIGHTS_MAXIMUM_ALLOWED,
413 &domain_sid, &domain_pol),
414 "could not open domain");
415
416 /* Create domain user */
417
418 fstrcpy(acct_name, global_myname);
419 fstrcat(acct_name, "$");
420
421 strlower(acct_name);
422
423 {
424 uint32 unknown = 0xe005000b;
425
426 result = cli_samr_create_dom_user(&cli, mem_ctx, &domain_pol,
427 acct_name, ACB_WSTRUST,
428 unknown, &user_pol,
429 &user_rid);
430 }
431
432
433 if (NT_STATUS_IS_OK(result)) {
434
435 /* We *must* do this.... don't ask... */
436
437 CHECK_RPC_ERR_DEBUG(cli_samr_close(&cli, mem_ctx, &user_pol), ("error closing user policy"));
438 result = NT_STATUS_USER_EXISTS;
439 }
440
441 if (NT_STATUS_V(result) == NT_STATUS_V(NT_STATUS_USER_EXISTS)) {
442 uint32 num_rids, *name_types, *user_rids;
443 uint32 flags = 0x3e8;
444 char *names;
445
446 /* Look up existing rid */
447
448 names = (char *)&acct_name[0];
449
450 CHECK_RPC_ERR_DEBUG(
451 cli_samr_lookup_names(&cli, mem_ctx,
452 &domain_pol, flags,
453 1, &names, &num_rids,
454 &user_rids, &name_types),
455 ("error looking up rid for user %s: %s\n",
456 acct_name, get_nt_error_msg(result)));
457
458 if (name_types[0] != SID_NAME_USER) {
459 DEBUG(0, ("%s is not a user account\n", acct_name));
460 goto done;
461 }
462
463 user_rid = user_rids[0];
464
465 /* Open handle on user */
466
467 CHECK_RPC_ERR_DEBUG(
468 cli_samr_open_user(&cli, mem_ctx, &domain_pol,
469 SEC_RIGHTS_MAXIMUM_ALLOWED,
470 user_rid, &user_pol),
471 ("could not re-open existing user %s: %s\n",
472 acct_name, get_nt_error_msg(result)));
473
474 } else if (!NT_STATUS_IS_OK(result)) {
475 DEBUG(0, ("error creating domain user: %s\n",
476 get_nt_error_msg(result)));
477 goto done;
478 }
479
480 /* Create a random machine account password */
481
482 {
483 UNISTR2 upw; /* Unicode password */
484
485 upw.buffer = (uint16 *)talloc_zero(mem_ctx, 0xc *
486 sizeof(uint16));
487
488 upw.uni_str_len = 0xc;
489 upw.uni_max_len = 0xc;
490
491 machine_pwd = (char *)upw.buffer;
492 plen = upw.uni_str_len * 2;
493 generate_random_buffer((unsigned char *)machine_pwd, plen, True);
494
495 encode_pw_buffer((char *)pwbuf, machine_pwd, plen, False);
496
497 mdfour( ntpw, (unsigned char *)upw.buffer, plen);
498 }
499
500 /* Set password on machine account */
501
502 ZERO_STRUCT(ctr);
503 ZERO_STRUCT(p24);
504
505 init_sam_user_info24(&p24, (char *)pwbuf,24);
506
507 ctr.switch_value = 24;
508 ctr.info.id24 = &p24;
509
510 /* I don't think this is quite the right place for this
511 calculation. It should be moved somewhere where the credentials
512 are calculated. )-: */
513
514 mdfour(sess_key, cli.pwd.smb_nt_pwd, 16);
515
516 CHECK_RPC_ERR(cli_samr_set_userinfo(&cli, mem_ctx, &user_pol, 24,
517 sess_key, &ctr),
518 "error setting trust account password");
519
520 /* Why do we have to try to (re-)set the ACB to be the same as what
521 we passed in the samr_create_dom_user() call? When a NT
522 workstation is joined to a domain by an administrator the
523 acb_info is set to 0x80. For a normal user with "Add
524 workstations to the domain" rights the acb_info is 0x84. I'm
525 not sure whether it is supposed to make a difference or not. NT
526 seems to cope with either value so don't bomb out if the set
527 userinfo2 level 0x10 fails. -tpot */
528
529 ZERO_STRUCT(ctr);
530 ctr.switch_value = 0x10;
531 ctr.info.id10 = &p10;
532
533 init_sam_user_info10(&p10, ACB_WSTRUST);
534
535 /* Ignoring the return value is necessary for joining a domain
536 as a normal user with "Add workstation to domain" privilege. */
537
538 result = cli_samr_set_userinfo2(&cli, mem_ctx, &user_pol, 0x10,
539 sess_key, &ctr);
540
541 /* Now store the secret in the secrets database */
542
543 strupper(domain);
544
545 if (!secrets_store_domain_sid(domain, &domain_sid) ||
546 !secrets_store_trust_account_password(domain, ntpw)) {
547 DEBUG(0, ("error storing domain secrets\n"));
548 goto done;
549 }
550
551 retval = 0; /* Success! */
552
553 done:
554 /* Close down pipe - this will clean up open policy handles */
555
556 if (cli.nt_pipe_fnum)
557 cli_nt_session_close(&cli);
558
559 /* Display success or failure */
560
561 if (retval != 0) {
562 trust_password_delete(domain);
563 fprintf(stderr,"Unable to join domain %s.\n",domain);
564 } else {
565 printf("Joined domain %s.\n",domain);
566 }
567
568 return retval;
569 }
570
571 /*********************************************************
572 Join a domain. Old server manager method.
573 **********************************************************/
574
575 static int join_domain(char *domain, char *remote)
576 {
577 pstring pdc_name;
578 fstring trust_passwd;
579 unsigned char orig_trust_passwd_hash[16];
580 DOM_SID domain_sid;
581 BOOL ret;
582
583 pstrcpy(pdc_name, remote ? remote : "");
584 fstrcpy(trust_passwd, global_myname);
585 strlower(trust_passwd);
586
587 /*
588 * Machine names can be 15 characters, but the max length on
589 * a password is 14. --jerry
590 */
591 trust_passwd[14] = '\0';
592
593 E_md4hash( (uchar *)trust_passwd, orig_trust_passwd_hash);
594
595 /* Ensure that we are not trying to join a
596 domain if we are locally set up as a domain
597 controller. */
598
599 if(strequal(remote, global_myname)) {
600 fprintf(stderr, "Cannot join domain %s as the domain controller name is our own. We cannot be a domain controller for a domain and also be a domain member.\n", domain);
601 return 1;
602 }
603
604 /*
605 * Write the old machine account password.
606 */
607
608 if(!secrets_store_trust_account_password(domain, orig_trust_passwd_hash)) {
609 fprintf(stderr, "Unable to write the machine account password for \
610 machine %s in domain %s.\n", global_myname, domain);
611 return 1;
612 }
613
614 /*
615 * If we are given a remote machine assume this is the PDC.
616 */
617
618 if(remote == NULL || !strcmp(remote, "*")) {
619 struct in_addr *ip_list = NULL;
620 int addr_count;
621 if (!get_dc_list(True /* PDC only*/, domain, &ip_list, &addr_count)) {
622 fprintf(stderr, "Unable to find the domain controller for domain %s.\n", domain);
623 return 1;
624 }
625 if ((addr_count < 1) || (is_zero_ip(ip_list[0]))) {
626 fprintf(stderr, "Incorrect entries returned when finding the domain controller for domain %s.\n", domain);
627 return 1;
628 }
629
630 if (!lookup_dc_name(global_myname, domain, &ip_list[0], pdc_name)) {
631 fprintf(stderr, "Unable to lookup the name for the domain controller for domain %s.\n", domain);
632 return 1;
633 }
634 }
635
636 if (!fetch_domain_sid( domain, pdc_name, &domain_sid) ||
637 !secrets_store_domain_sid(domain, &domain_sid)) {
638 fprintf(stderr,"Failed to get domain SID. Unable to join domain %s.\n",domain);
639 return 1;
640 }
641
642 ret = change_trust_account_password( domain, pdc_name);
643
644 if(!ret) {
645 trust_password_delete(domain);
646 fprintf(stderr,"Unable to join domain %s.\n",domain);
647 return 1;
648 } else {
649 printf("Joined domain %s.\n",domain);
650 }
651
652 return 0;
653 }
654
655 static int set_domain_sid_from_dc( char *domain, char *remote )
656 {
657 pstring pdc_name;
658 DOM_SID domain_sid;
659 fstring sid_str;
660
661 pstrcpy(pdc_name, remote ? remote : "");
662
663 if(strequal(pdc_name, global_myname)) {
664 fprintf(stderr, "Cannot fetch domain sid for %s as the domain controller name is our own.\n", domain);
665 return 1;
666 }
667
668 if(remote == NULL || !strcmp(remote, "*")) {
669 struct in_addr *ip_list = NULL;
670 int addr_count;
671 if (!get_dc_list(False , domain, &ip_list, &addr_count)) {
672 fprintf(stderr, "Unable to find the domain controller for domain %s.\n", domain);
673 return 1;
674 }
675 if ((addr_count < 1) || (is_zero_ip(ip_list[0]))) {
676 fprintf(stderr, "Incorrect entries returned when finding the domain controller for domain %s.\n", domain);
677 return 1;
678 }
679
680 if (!lookup_dc_name(global_myname, domain, &ip_list[0], pdc_name)) {
681 fprintf(stderr, "Unable to lookup the name for the domain controller for domain %s.\n", domain);
682 return 1;
683 }
684 }
685
686 if (!fetch_domain_sid( domain, pdc_name, &domain_sid)
687 || !secrets_store_domain_sid(global_myname, &domain_sid))
688 {
689 fprintf(stderr,"Failed to get domain SID for %s.\n",domain);
690 return 1;
691 }
692
693 sid_to_string(sid_str, &domain_sid);
694 printf("Successfully set domain SID to %s.\n", sid_str);
695
696 return 0;
697
698 }
699
700 /*************************************************************
701 Utility function to prompt for passwords from stdin. Each
702 password entered must end with a newline.
703 *************************************************************/
704 static char *stdin_new_passwd(void)
705 {
706 static fstring new_pwd;
707 size_t len;
708
709 ZERO_ARRAY(new_pwd);
710
711 /*
712 * if no error is reported from fgets() and string at least contains
713 * the newline that ends the password, then replace the newline with
714 * a null terminator.
715 */
716 if ( fgets(new_pwd, sizeof(new_pwd), stdin) != NULL) {
717 if ((len = strlen(new_pwd)) > 0) {
718 if(new_pwd[len-1] == '\n')
719 new_pwd[len - 1] = 0;
720 }
721 }
722 return(new_pwd);
723 }
724
725
726 /*************************************************************
727 Utility function to get passwords via tty or stdin
728 Used if the '-s' option is set to silently get passwords
729 to enable scripting.
730 *************************************************************/
731 static char *get_pass( char *prompt, BOOL stdin_get)
732 {
733 char *p;
734 if (stdin_get) {
735 p = stdin_new_passwd();
736 } else {
737 p = getpass(prompt);
738 }
739 return strdup_x(p);
740 }
741
742 /*************************************************************
743 Utility function to prompt for new password.
744 *************************************************************/
745 static char *prompt_for_new_password(BOOL stdin_get)
746 {
747 char *p;
748 fstring new_pwd;
749
750 ZERO_ARRAY(new_pwd);
751
752 p = get_pass("New SMB password:", stdin_get);
753
754 fstrcpy(new_pwd, p);
755 safe_free(p);
756
757 p = get_pass("Retype new SMB password:", stdin_get);
758
759 if (strcmp(p, new_pwd)) {
760 fprintf(stderr, "Mismatch - password unchanged.\n");
761 ZERO_ARRAY(new_pwd);
762 safe_free(p);
763 return NULL;
764 }
765
766 return p;
767 }
768
769
770 /*************************************************************
771 Change a password either locally or remotely.
772 *************************************************************/
773
774 static BOOL password_change(const char *rem_machine, char *usr_name,
775 char *old_pwd, char *new_pwd, int loc_flags)
776 {
777 BOOL ret;
778 pstring err_str;
779 pstring msg_str;
780
781 if (rem_machine != NULL) {
782 if (loc_flags & (LOCAL_ADD_USER|LOCAL_DELETE_USER|LOCAL_DISABLE_USER|LOCAL_ENABLE_USER|
783 LOCAL_TRUST_ACCOUNT|LOCAL_SET_NO_PASSWORD)) {
784 /* these things can't be done remotely yet */
785 return False;
786 }
787 ret = remote_password_change(rem_machine, usr_name,
788 old_pwd, new_pwd, err_str, sizeof(err_str));
789 if(*err_str)
790 fprintf(stderr, err_str);
791 return ret;
792 }
793
794 ret = local_password_change(usr_name, loc_flags, new_pwd,
795 err_str, sizeof(err_str), msg_str, sizeof(msg_str));
796
797 if(*msg_str)
798 printf(msg_str);
799 if(*err_str)
800 fprintf(stderr, err_str);
801
802 return ret;
803 }
804
805 #ifdef WITH_LDAP_SAM
806 /*******************************************************************
807 Store the LDAP admin password in secrets.tdb
808 ******************************************************************/
809 static BOOL store_ldap_admin_pw (char* pw)
810 {
811 if (!pw)
812 return False;
813
814 if (!secrets_init())
815 return False;
816
817 return secrets_store_ldap_pw(lp_ldap_admin_dn(), pw);
818 }
819 #endif
820
821
822 /*************************************************************
823 Handle password changing for root.
824 *************************************************************/
825
826 static int process_root(void)
827 {
828 struct passwd *pwd;
829 int result = 0;
830
831 #ifdef WITH_LDAP_SAM
832 if (local_flags & LOCAL_SET_LDAP_ADMIN_PW)
833 {
834 printf("Setting stored password for \"%s\" in secrets.tdb\n",
835 lp_ldap_admin_dn());
836 if (!store_ldap_admin_pw(ldap_secret))
837 DEBUG(0,("ERROR: Failed to store the ldap admin password!\n"));
838 goto done;
839 }
840 #endif
841
842 /*
843 * Ensure both add/delete user are not set
844 * Ensure add/delete user and either remote machine or join domain are
845 * not both set.
846 */
847 if ( ((local_flags & (LOCAL_ADD_USER|LOCAL_DELETE_USER)) == (LOCAL_ADD_USER|LOCAL_DELETE_USER))
848 || ( (local_flags & (LOCAL_ADD_USER|LOCAL_DELETE_USER))
849 && ((remote_machine != NULL) || joining_domain || changing_trust_pw) ) )
850 {
851 usage();
852 }
853
854 /* Only load interfaces if we are doing network operations. */
855
856 if ( joining_domain || remote_machine || (local_flags & LOCAL_GET_DOM_SID) ) {
857 load_interfaces();
858 }
859
860 /* Join a domain */
861
862 if (joining_domain) {
863
864 /* smb.conf must specify both security = domain and encrypt passwords = yes */
865
866 if (!lp_encrypted_passwords() || lp_security() != SEC_DOMAIN) {
867 DEBUG(0,("ERROR: Must have both SECURITY = DOMAIN and ENCRYPT PASSWORDS = YES!\n"));
868 return 1;
869 }
870
871 /* Are we joining by specifing an admin username and
872 password? */
873
874 if (user_name[0]) {
875
876 /* Get administrator password if not specified */
877
878 if (!got_pass) {
879 char *pass = getpass("Password: ");
880
881 if (pass)
882 pstrcpy(user_password, pass);
883 }
884
885 return join_domain_byuser(new_domain, remote_machine,
886 user_name, user_password);
887 } else {
888
889 /* Or just with the server manager? */
890
891 return join_domain(new_domain, remote_machine);
892 }
893 }
894
895
896 /* Change Trust Password */
897
898 if (changing_trust_pw) {
899 if (change_trust_account_password(new_domain, remote_machine)) {
900 return 0;
901 }
902 return 1;
903 }
904
905
906 /*
907 * get the domain sid from a PDC and store it in secrets.tdb
908 * Used for Samba PDC/BDC installations.
909 */
910
911 if (local_flags & LOCAL_GET_DOM_SID) {
912 return set_domain_sid_from_dc(lp_workgroup(), remote_machine);
913 }
914
915 /*
916 * Deal with root - can add a user, but only locally.
917 */
918
919 if (!user_name[0] && (pwd = sys_getpwuid(0))) {
920 fstrcpy(user_name, pwd->pw_name);
921 }
922
923 if (!user_name[0]) {
924 fprintf(stderr,"You must specify a username\n");
925 exit(1);
926 }
927
928 if (local_flags & LOCAL_TRUST_ACCOUNT) {
929 /* add the $ automatically */
930 static fstring buf;
931
932 /*
933 * Remove any trailing '$' before we
934 * generate the initial machine password.
935 */
936
937 if (user_name[strlen(user_name)-1] == '$') {
938 user_name[strlen(user_name)-1] = 0;
939 }
940
941 if (local_flags & LOCAL_ADD_USER) {
942 safe_free(new_passwd);
943 new_passwd = strdup_x(user_name);
944 strlower(new_passwd);
945 }
946
947 /*
948 * Now ensure the username ends in '$' for
949 * the machine add.
950 */
951
952 slprintf(buf, sizeof(buf)-1, "%s$", user_name);
953 fstrcpy(user_name, buf);
954 }
955
956 if (remote_machine != NULL) {
957 old_passwd = get_pass("Old SMB password:",stdin_passwd_get);
958 }
959
960 if (!new_passwd) {
961
962 /*
963 * If we are trying to enable a user, first we need to find out
964 * if they are using a modern version of the smbpasswd file that
965 * disables a user by just writing a flag into the file. If so
966 * then we can re-enable a user without prompting for a new
967 * password. If not (ie. they have a no stored password in the
968 * smbpasswd file) then we need to prompt for a new password.
969 */
970
971 if(local_flags & LOCAL_ENABLE_USER) {
972
973 SAM_ACCOUNT *sampass = NULL;
974
975 pdb_init_sam(&sampass);
976 if (!pdb_getsampwnam(sampass, user_name)) {
977 printf("ERROR: Unable to locate %s in passdb!\n", user_name);
978 pdb_free_sam(sampass);
979 result = 1;
980 goto done;
981 }
982 if((sampass != NULL) && (pdb_get_lanman_passwd(sampass) != NULL)) {
983 new_passwd = strdup_x("XXXX"); /* Don't care. */
984 }
985
986 pdb_free_sam(sampass);
987 }
988
989 if(!new_passwd)
990 new_passwd = prompt_for_new_password(stdin_passwd_get);
991
992 if(!new_passwd) {
993 fprintf(stderr, "Unable to get new password.\n");
994 exit(1);
995 }
996 }
997
998 if (!password_change(remote_machine, user_name, old_passwd, new_passwd, local_flags)) {
999 fprintf(stderr,"Failed to modify password entry for user %s\n", user_name);
1000 result = 1;
1001 goto done;
1002 }
1003
1004 if(remote_machine) {
1005 printf("Password changed for user %s on %s.\n", user_name, remote_machine );
1006 } else if(!(local_flags & (LOCAL_ADD_USER|LOCAL_DISABLE_USER|LOCAL_ENABLE_USER|LOCAL_DELETE_USER|LOCAL_SET_NO_PASSWORD))) {
1007 SAM_ACCOUNT *sampass = NULL;
1008 uint16 acct_ctrl;
1009
1010 pdb_init_sam(&sampass);
1011
1012 if (!pdb_getsampwnam(sampass, user_name)) {
1013 printf("ERROR: Unable to locate %s in passdb!\n", user_name);
1014 pdb_free_sam(sampass);
1015 result = 1;
1016 goto done;
1017 }
1018
1019 printf("Password changed for user %s.", user_name );
1020 acct_ctrl = pdb_get_acct_ctrl(sampass);
1021 if(acct_ctrl & ACB_DISABLED)
1022 printf(" User has disabled flag set.");
1023 if(acct_ctrl & ACB_PWNOTREQ)
1024 printf(" User has no password flag set.");
1025 printf("\n");
1026
1027 pdb_free_sam(sampass);
1028 }
1029
1030 done:
1031 safe_free(new_passwd);
1032 return result;
1033 }
1034
1035
1036 /*************************************************************
1037 Handle password changing for non-root.
1038 *************************************************************/
1039
1040 static int process_nonroot(void)
1041 {
1042 struct passwd *pwd = NULL;
1043 int result = 0;
1044
1045 if (!user_name[0]) {
1046 pwd = sys_getpwuid(getuid());
1047 if (pwd) {
1048 fstrcpy(user_name,pwd->pw_name);
1049 } else {
1050 fprintf(stderr,"you don't exist - go away\n");
1051 exit(1);
1052 }
1053 }
1054
1055 /*
1056 * A non-root user is always setting a password
1057 * via a remote machine (even if that machine is
1058 * localhost).
1059 */
1060
1061 load_interfaces(); /* Delayed from main() */
1062
1063 if (remote_machine == NULL) {
1064 remote_machine = "127.0.0.1";
1065 }
1066
1067 if (remote_machine != NULL) {
1068 old_passwd = get_pass("Old SMB password:",stdin_passwd_get);
1069 }
1070
1071 if (!new_passwd) {
1072 new_passwd = prompt_for_new_password(stdin_passwd_get);
1073 }
1074
1075 if (!new_passwd) {
1076 fprintf(stderr, "Unable to get new password.\n");
1077 exit(1);
1078 }
1079
1080 if (!password_change(remote_machine, user_name, old_passwd, new_passwd, 0)) {
1081 fprintf(stderr,"Failed to change password for %s\n", user_name);
1082 result = 1;
1083 goto done;
1084 }
1085
1086 printf("Password changed for user %s\n", user_name);
1087
1088 done:
1089 safe_free(old_passwd);
1090 safe_free(new_passwd);
1091
1092 return result;
1093 }
1094
1095
1096
1097 /*********************************************************
1098 Start here.
1099 **********************************************************/
1100 int main(int argc, char **argv)
1101 {
1102 BOOL amroot = getuid() == 0;
1103
1104 DEBUGLEVEL = 0;
1105 AllowDebugChange = False;
1106
1107 #if defined(HAVE_SET_AUTH_PARAMETERS)
1108 set_auth_parameters(argc, argv);
1109 #endif /* HAVE_SET_AUTH_PARAMETERS */
1110
1111 charset_initialise();
1112
1113 process_options(argc, argv, amroot);
1114 TimeInit();
1115
1116 setup_logging("smbpasswd", True);
1117
1118 if(!initialize_password_db(False)) {
1119 fprintf(stderr, "Can't setup password database vectors.\n");
1120 exit(1);
1121 }
1122
1123 if (!lp_load(servicesf,True,False,False)) {
1124 fprintf(stderr, "Can't load %s - run testparm to debug it\n",
1125 servicesf);
1126 exit(1);
1127 }
1128
1129 /*
1130 * Set the machine NETBIOS name if not already
1131 * set from the config file.
1132 */
1133
1134 if (!*global_myname) {
1135 char *p;
1136 fstrcpy(global_myname, myhostname());
1137 p = strchr(global_myname, '.' );
1138 if (p) *p = 0;
1139 }
1140 strupper(global_myname);
1141
1142 codepage_initialise(lp_client_code_page());
1143
1144 /* Check the effective uid - make sure we are not setuid */
1145 if ((geteuid() == (uid_t)0) && (getuid() != (uid_t)0)) {
1146 fprintf(stderr, "smbpasswd must *NOT* be setuid root.\n");
1147 exit(1);
1148 }
1149
1150 if (local_mode || amroot) {
1151 secrets_init();
1152 return process_root();
1153 }
1154
1155 return process_nonroot();
1156 }
Samba GIT mirror