Need to map SIDs for unknown users
Andrew Bartlett
abartlet at samba.org
Mon Jul 14 23:47:46 GMT 2003
On Mon, Jul 14, 2003 at 03:05:16PM -0500, Gerald (Jerry) Carter wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On Sun, 13 Jul 2003, Andrew Bartlett wrote:
>
> > In an ideal world yes - but for now this is how we have to work - for
> > any POSIX based system.
> >
> > My problem can be resolved with yet another vendor-specific patch, but
> > the issue will bite others.
>
> Then it will have to be a vendor specific patch, because we are not
> solving this for 3.0. Better to store it as an extended attribute on a
> file and resolve it later. This would allow us to cover Linux & Solaris
> with probably adding on IRIX in the future.
>
> Just guessing about an unknown SID is wrong. Please do no check this
> code into SAMBA_3_0.
Except we need to have the kernel do access control for these users - and
it needs posix IDs for that. And it's not just Samba, we have NFS, FTP,
AFP and HTTP access to these files.
Andrew Bartlett
More information about the samba-technical
mailing list