Passthough security fix.

[Jeremy Allison]

Andrew Tridgell wrote:
> 
> > how about using "LsaSamLogon" instead?
> 
> indeed! Jeremy, is that the basis of your proposed security=domain
> code? Sorry for not paying attention earlier ...

Well yes, doing an NT style logon does get around the
problem completely - but then the code that does passthroughs
just isn't used in that case. Plus you need to setup
a machine account & add yourself to the domain etc.

I have it designed, and will start to code it up
asap (it should be rather easy to add, it just means
calling a different function than server_validate()).

What I was talking about here was fixing the older
code as well :-).

Jeremy.

-- 
--------------------------------------------------------
Buying an operating system without source is like buying
a self-assembly Space Shuttle with no instructions.
--------------------------------------------------------