Passthough security fix.
Jeremy Allison
jallison at whistle.com
Tue Apr 21 16:37:34 GMT 1998
Andrew Tridgell wrote:
>
> > how about using "LsaSamLogon" instead?
>
> indeed! Jeremy, is that the basis of your proposed security=domain
> code? Sorry for not paying attention earlier ...
Well yes, doing an NT style logon does get around the
problem completely - but then the code that does passthroughs
just isn't used in that case. Plus you need to setup
a machine account & add yourself to the domain etc.
I have it designed, and will start to code it up
asap (it should be rather easy to add, it just means
calling a different function than server_validate()).
What I was talking about here was fixing the older
code as well :-).
Jeremy.
--
--------------------------------------------------------
Buying an operating system without source is like buying
a self-assembly Space Shuttle with no instructions.
--------------------------------------------------------
More information about the samba-technical
mailing list