(no subject)

Jim McDonough jmcd at us.ibm.com
Tue Mar 9 18:55:23 GMT 2004

>This code has been succesfully tested with NT4 TSE, W2k + TS, W2k3 + TS
>and it works well. Samba can handle TS Servers has member servers if the
>MungedDial field is correctly stored.
I beg to differ.  This is a string longer than a pstring, and in fact you
define it as char[2048] since a pstring is too short, yet inside
smbldap_get_single_attribute(), the string is converted using the size of a
pstring as the max len.  It gets chopped off.  This code doesn't work.  It
comes close, but doesn't work if you really test it, at least with the
usrmgr I've got.  You end up getting "access denied" when trying to change
a user.  Did you make other mods that weren't included in this patch?  Or
did you just set a user once perhaps and not try to change it afterwards?

This is definitely a deficiency in pdb_ldap and smbldap...all attributes
are treated as pstrings without real regard for what is really passed in or
what could be in the directory.

Die pstring, die!

Jim McDonough
IBM Linux Technology Center
Samba Team
6 Minuteman Drive
Scarborough, ME 04074

jmcd at us.ibm.com
jmcd at samba.org

Phone: (207) 885-5565
IBM tie-line: 776-9984

More information about the samba-technical mailing list