[cifs-protocol] RE: Secret 'last set times' doc incorrect in 2008 - 600578

Andrew Bartlett abartlet at samba.org
Mon Sep 8 01:22:37 GMT 2008

On Wed, 2008-09-03 at 12:38 -0700, Richard Guthrie wrote:
> Andrew,
> I have completed my research on LsarSetSecret.  The documentation
> provides information when you have an exception case such as when one
> updates EncryptedCurrentValue.  I have included a scenario that might
> help clarify the behavior:
> Scenario:
> I have a secret object with old and new secret values set and both
> have timestamps indicating when the values were last updated/set.  I
> then make a call to LsarSetSecret passing in null for new secret value
> and a value I choose for old secret value.
> This will null out the new secret value and update the old secret
> value.  I should also observe that the timestamps for both old/new
> secret values would be set to current server time.  The table you
> reference shows this to be the behavior.
> Please let us know if you have further questions regarding this issue.

I will note that the new logic is *much* easier to implement than the old...

Andrew Bartlett

Andrew Bartlett
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Red Hat Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/cifs-protocol/attachments/20080908/dec22610/attachment.bin

More information about the cifs-protocol mailing list