trustdom_cache when winbind is running?
Rafal Szczesniak
mimir at samba.org
Fri Jun 3 17:18:01 GMT 2005
Volker,
> On Fri, Jun 03, 2005 at 09:00:33AM -0500, Gerald (Jerry) Carter wrote:
>
> > The main reason IIRC for not querying winbindd was
> > the fact that historically winbind blocked. But with your
> > new implementation (and even later versions) this is not
> > as much of a concern.
Correct.
> There's two points where we look at the trustdom cache:
>
> During login. This very close to the is_trusted_domain call asks winbind
> anyway, so here not much is gained.
>
> In _net_logon_ctrl2 we also look whether that domain is trusted. I would
> assume that this call is only issued if we're a DC and thus look at
> secrets.tdb for this info. So another non-issue.
>
> So there must be another reason for the trustdom cache with winbind around...
The original reason was to avoid delay everytime there was a need
to verify whether a domain is trusted or list trusted domains while
being domain member.
cheers,
--
Rafal Szczesniak
Samba Team member http://www.samba.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.samba.org/archive/samba-technical/attachments/20050603/d461fa03/attachment.bin
More information about the samba-technical
mailing list