broken string_to_sid, sid_to_string

Luke Kenneth Casson Leighton lkcl at
Wed Nov 25 20:09:08 GMT 1998

On Wed, 25 Nov 1998, Jeremy Allison wrote:

> Luke Kenneth Casson Leighton wrote:
> > 
> > jerem, it's ALREADY broken, this is what i've been trying to tell you.
> > by fixing sid_to_string and fixing string_to_sid we ALREADY have the
> > problem that 82.5% by probability (1 - 50% * 50% * 50% because there are
> > three RIDs in the MACHINE.SID file) of all existing servers will be broken
> > by this fix, and all these administrators will have to unjoin all nt
> > workstations and rejoin them.
> > 
> > therefore, given that is is ALREADY broken, we have an opportunity to fix
> > sid_to_string and string_to_sid to do what they ought to do.
> It isn't broken for the security=domain case, and that's

ok, i think you might be right.

> *all* I care about right now (until after 2.0 ships).

if that's all, then the impact is even less than i thought it would be, so
there isn't an issue / problem, so we _can_ fix this.  i was concerned
about PDC cases.


More information about the samba-technical mailing list