trustdom_cache when winbind is running?

Rafal Szczesniak mimir at
Fri Jun 3 17:18:01 GMT 2005


> On Fri, Jun 03, 2005 at 09:00:33AM -0500, Gerald (Jerry) Carter wrote:
> > The main reason IIRC for not querying winbindd was
> > the fact that historically winbind blocked.  But with your
> > new implementation (and even later versions) this is not
> > as much of a concern.


> There's two points where we look at the trustdom cache:
> During login. This very close to the is_trusted_domain call asks winbind
> anyway, so here not much is gained.
> In _net_logon_ctrl2 we also look whether that domain is trusted. I would
> assume that this call is only issued if we're a DC and thus look at
> secrets.tdb for this info. So another non-issue.
> So there must be another reason for the trustdom cache with winbind around...

The original reason was to avoid delay everytime there was a need
to verify whether a domain is trusted or list trusted domains while 
being domain member.

Rafal Szczesniak
Samba Team member

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url :

More information about the samba-technical mailing list