Smb multi-sessions, samba3.0.2pre1
Andrew Bartlett
abartlet at samba.org
Wed Jan 21 01:10:45 GMT 2004
On Wed, 2004-01-21 at 01:54, Jianliang Lu wrote:
> > On Tue, 2004-01-20 at 22:25, Jianliang Lu wrote:
> >
> > Indeed, if admin users were a global parameter. People (for some
> > reason) want to give users root on only one share, hence this parameters
> > existence.
> >
> > Andrew Bartlett
> >
>
> Should we add a new global parameter like "Domain Admins" to have root
> privilege Under User Level Security?
> Today we are using "admin users" in global section, in this way we can
> use "user manager for domain" to manage users on ldap backend, otherwise
> we'll get a "cannot access ldap without root" error.
> That I would like to know is how can I have a user that has the privileges
> but is not root (uid=0)? We can create a new global parameter "Domain Admins"
> like samba-2.2 or we can continue use "admin users" in global scope.
Using 'admin users' to get around the 'ldap as not root' issue is the
wrong fix. The real thing we need to do is properly implement the
required ACLs etc, so that we don't need such ugly hacks.
Andrew Bartlett
--
Andrew Bartlett abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team abartlet at samba.org
Student Network Administrator, Hawker College abartlet at hawkerc.net
http://samba.org http://build.samba.org http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20040121/5c3e6edb/attachment.bin
More information about the samba-technical
mailing list