[cifs-protocol] RE: Secret 'last set times' doc incorrect in 2008 -
600578
Andrew Bartlett
abartlet at samba.org
Mon Sep 8 01:22:37 GMT 2008
On Wed, 2008-09-03 at 12:38 -0700, Richard Guthrie wrote:
> Andrew,
>
> I have completed my research on LsarSetSecret. The documentation
> provides information when you have an exception case such as when one
> updates EncryptedCurrentValue. I have included a scenario that might
> help clarify the behavior:
>
> Scenario:
> I have a secret object with old and new secret values set and both
> have timestamps indicating when the values were last updated/set. I
> then make a call to LsarSetSecret passing in null for new secret value
> and a value I choose for old secret value.
>
> This will null out the new secret value and update the old secret
> value. I should also observe that the timestamps for both old/new
> secret values would be set to current server time. The table you
> reference shows this to be the behavior.
>
> Please let us know if you have further questions regarding this issue.
I will note that the new logic is *much* easier to implement than the old...
Andrew Bartlett
--
Andrew Bartlett
http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Red Hat Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/cifs-protocol/attachments/20080908/dec22610/attachment.bin
More information about the cifs-protocol
mailing list