status of unixsam and guest passdb backends?

Gerald (Jerry) Carter jerry at samba.org
Mon Mar 31 00:10:39 GMT 2003


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 31 Mar 2003, Andrew Bartlett wrote:

> > Unixsam was a useful hack and a bad idea.  Most of what it was trying
> > to do it couldn't really do, and will be replaced by idmap.  I had
> > wanted all rid->uid translations to go via the passdb.  However, we
> > still have to map uid->rid for 'non-existant' accounts, so the
> > fallback code never got removed, and having unixsam just confused
> > things (particularly when we were running winbindd too).
> > 
> > It also broke a pile of conventions about the relationship between
> > unix and Samba accounts, as you correctly note.
> 
> Guestsam is in there to provide the only useful thing unixsam did -
> ensuring that the guest account really was the guest, and had the guest
> RID.  It also helped with some Win2k behavior that assumed the presence
> of the guest account.

Could you update smb.conf(5) to this effect?  Thanks.
Should unixsam support be removed altogether so people can't
break their servers by listing it in the passdb backends?




cheers, jerry
 ----------------------------------------------------------------------
 Hewlett-Packard            ------------------------- http://www.hp.com
 SAMBA Team                 ---------------------- http://www.samba.org
 GnuPG Key                  ---- http://www.plainjoe.org/gpg_public.asc
 "You can never go home again, Oatman, but I guess you can shop there."  
                            --John Cusack - "Grosse Point Blank" (1997)

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.0 (GNU/Linux)
Comment: For info see http://quantumlab.net/pine_privacy_guard/

iD8DBQE+h4eCIR7qMdg1EfYRAktRAKDf+1/gZTwnuV+PAaYCj+pnihWZNgCdE7+U
XeN14E1wNJRj6Lo2Uk1KYRI=
=6ky/
-----END PGP SIGNATURE-----



More information about the samba-technical mailing list