winbindd name_to_sid cache bug

Qiao Yang qyang at
Fri Aug 20 20:52:17 GMT 2004

We found a bug in winbind. Winbind assumes Name to SID is 1-to-1 match, so when it is looking up a SID, it caches both SID-to-Name and Name-to-SID mapping. But actually a name may have old SIDs mapped to them (this happens when you migrate a user from one domain to another). A name should only be mapped to its primary SID. Attached is the patch.


St. Bernard Software
-------------- next part --------------
A non-text attachment was scrubbed...
Name: name_sid.diff
Type: application/octet-stream
Size: 816 bytes
Desc: name_sid.diff
Url :

More information about the samba-technical mailing list