winbindd: Here's a replacement get_id_from_sid() that gets UNIX
u id/gid from /home/dir
Michael.Gerdts at alcatel.com
Fri Aug 2 05:39:01 GMT 2002
On Fri, 2002-08-02 at 03:10, Ferguson, Ross wrote:
> rebuilding winbindd with the enclosed replacement function gets the UNIX
> uid/gid from the users home directory. If it fails in anyway, it returns
> (g/u)id of 'nobody' This obviously allows specifically assigned uid's per
> user, allowing them to create files in there home directories while
> maintaining security. I'm running this with 2.2.5 on Solaris9 Proof of
> concept only. Not ported / tested on any other platform.
I really like the concept. A quick look at the implementation shows a
problem, though. The home directory should come from the "template
homedir" parameter. Given the proof of concept nature of the code, such
a shortcut is quite acceptable. Also, I don't think that putting this
into the core winbind code is necessarily the right place. It and the
50 other concepts that people come up with will eventually lead to some
pretty signifcant bloat.
A while back I was working on a plug-in system for the idmap
functionality. I have been sidetracked for a while on that project,
though. I think that this concept would be an awesome plug-in.
See http://www.cae.wisc.edu/~gerdts/samba/ for my implementation so
far. Andrew gave me a todo list that has yet to be todone.
More information about the samba-technical