Security Identifier (SID) to User Identifier (uid) ResolutionSystem
Jeremy Allison
jeremy at valinux.com
Wed Dec 29 21:11:24 GMT 1999
Luke Kenneth Casson Leighton wrote:
> ok, been thinking about this some more.
>
> do we want this:
>
> int sid2posix(SID sid, enum *gid_or_uid, uint32/64 posix_id);
>
> or do we want this:
>
> int sid2posix(SID sid, uint32/64 posix_id);
>
> because if you do, then you need to do LsaLookupSids(SID, enum *sid_type,
> char* name) and you will get a SID_NAME_USER or SID_NAME_GROUP or
> SID_NAME_ALIAS back, and you have to determine that, ok, it's a
> SID_NAME_USER therefore the posix_id can be typecast to a uid_t.
I don't think we want either. POSIX doesn't deal with SIDs,
and neither should Samba (other than in the ACL code).
winbind should be the one thing on a UNIX box that must
deal with SIDs. No other program on the system is set up
to cope with SIDs.
Jeremy.
--
--------------------------------------------------------
Buying an operating system without source is like buying
a self-assembly Space Shuttle with no instructions.
--------------------------------------------------------
More information about the samba-technical
mailing list