svn commit: lorikeet r558 - in trunk/samba4-ad-thesis: .
abartlet at samba.org
abartlet at samba.org
Mon Jul 3 00:14:42 GMT 2006
Author: abartlet
Date: 2006-07-03 00:14:41 +0000 (Mon, 03 Jul 2006)
New Revision: 558
WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=lorikeet&rev=558
Log:
Some almost-forgotton final changes to my thesis, found in a local tree...
Andrew Bartlett
Modified:
trunk/samba4-ad-thesis/abstract.tex
trunk/samba4-ad-thesis/ack.tex
trunk/samba4-ad-thesis/chapters.tex
Changeset:
Modified: trunk/samba4-ad-thesis/abstract.tex
===================================================================
--- trunk/samba4-ad-thesis/abstract.tex 2006-06-14 23:45:23 UTC (rev 557)
+++ trunk/samba4-ad-thesis/abstract.tex 2006-07-03 00:14:41 UTC (rev 558)
@@ -19,7 +19,7 @@
protocols used in NT4.
Samba version 4 is already a massive leap forward in the way Samba is
-designed, and built. This thesis attempts to take that further, but
+designed, and built. This thesis attempts to take that further, by
examining the protocol basis and implementation details adding
support for hosting the Kerberos network authentication system into
Samba4's partial implementation of an Active Directory Domain
@@ -30,9 +30,16 @@
a compatible product is important, if the Samba project is to remain
relevant into the future.
+As a member of the Samba Team, and a core developer on the Samba4
+project, I decided to research and document the protocols used by
+Active Directory in a way that would lay the groundwork for future
+development. As a developer, I have been involved in a number of
+authentication-related sub-projects on Samba4, but in particular I took
+on the addition of Kerberos to Samba4 as a documented part of this thesis.
+
In the process, this thesis describes the authentication problem
-space, and the existing protocols, in particular Microsoft's
-proprietary NTLM and Microsoft's extensions to Kerberos.
+space, the existing protocols, and in particular Microsoft's
+proprietary NTLM and Kerberos extensions.
By making these changes to Samba version 4, we have progressed closer
to (but not yet succeeded in) creating an implementation compatible
Modified: trunk/samba4-ad-thesis/ack.tex
===================================================================
--- trunk/samba4-ad-thesis/ack.tex 2006-06-14 23:45:23 UTC (rev 557)
+++ trunk/samba4-ad-thesis/ack.tex 2006-07-03 00:14:41 UTC (rev 558)
@@ -23,7 +23,7 @@
Vance Lankhaar, Jim McDonough, Bruce Bartlett, Jelmer Vernooij, Luke
Howard and Dr Andrew Tridgell.
-To the Samba Team, and it's supporters for providing the infrustructure
+To the Samba Team, and it's supporters for providing the infrastructure
on which this thesis has been developed - this thesis has been developed
in public, with a full version control history available from:
Modified: trunk/samba4-ad-thesis/chapters.tex
===================================================================
--- trunk/samba4-ad-thesis/chapters.tex 2006-06-14 23:45:23 UTC (rev 557)
+++ trunk/samba4-ad-thesis/chapters.tex 2006-07-03 00:14:41 UTC (rev 558)
@@ -2177,15 +2177,36 @@
\chapter{Glossary}
\begin{lyxlist}{00.00.0000}
+\item [AD]Active Directory
+\item [ADS]Active Directory Services
+\item [CIFS]Common Internet File System, originally the file and print
+ sharing protocol known as SMB, and the core of Microsoft's
+ networking stack.
+\item [DECNet]A now deprecated networking standard from Digital
+ Equipment Corporation (DEC).
\item [DES]Data Encryption Standard, a US Government encryption standard.
+\item [DNS]Domain Name System, the Internet standard for hierarchical name to
+ address translation.
+\item [HTTP]Hyper-Text Transfer Protocol, the Internet standard
+ transport for the 'World Wide Web'.
+\item [IDL]Interface Definition Language, the structured format for
+ description of DCE-RPC interfaces, including the network format.
+\item [IP]Internet Protocol. The base networking standard on which
+ TCP/IP sits, and which the Internet runs.
+\item [IPX]Novell's network standard, now superseded by TCP/IP.
+\item [Kerberos]A centralised authentication system, the current
+ version of which is also known simply as KRB5, based on strong
+ cryptography, shared-secrets, and a trusted third party (the KDC).
+\item [LDAP]An Internet standard directory services interface. While LDAP
+is a protocol specification, the protocol implies the X.500 information
+model.
+\item [NetBEUI]An simple encapsulation of NetBIOS directly onto
+ Ethernet, now superseded by TCP/IP.
\item [NT~Domains]Windows NT domains share the information about users,
groups and passwords between machines in the domain. The protocols
are limited in what information can be stored, and is not extensible.
Windows 2000 and Samba both provide {}``NT Domain'' views onto their
more complex directory back-ends.
-\item [LDAP]An Internet standard directory services interface. While LDAP
-is a protocol specification, the protocol implies the X.500 information
-model.
\item [LM~hash]The user's case insensitive, ASCII password, processed
with DES, as described in Section \ref{sub:Calculating-the-LM} (comparatively
weak).
@@ -2203,4 +2224,9 @@
key should change between sessions.
\item [Shared~Secret]A value, usually a password, shared between two systems
but otherwise private.
+\item [TCP]Transmission Control Protocol, which combined with IP is
+ the Internet standard TCP/IP suite, and provides reliable
+ connections over IP connections.
+\item [UDP]User Datagram Protocol, part of the IP suite of Internet
+ Protocols for unreliable datagram (message) transmission.
\end{lyxlist}
More information about the samba-cvs
mailing list