Q: winbindd, unqualfied users, & name conflicts (a.k.a "Death
to 'winbind use default domain'!")
Gerald (Jerry) Carter
jerry at samba.org
Thu Jul 20 18:55:15 GMT 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Volker Lendecke wrote:
> What happens now? Looking at the code I get the impression
> that we default to DOMAIN\foo. So if we get an unqualified
> name, talloc_asprintf(ctx, "%s\\%s", lp_workgroup(), name),
> try with that and only if that fails then do the naked
> lookup_name() which has its defined order. This is a hack,
> but that whole thing is.
Sure. If a user of the same name doesn't exist in
the local passdb and domain SAM. But when LINUX\foo
and DOMAIN\foo both exist, the lookup for DOMAIN\foo
will succeed.
> I did not try this, so it might break horribly. But I've
> looked at putting lookup_name into /parse_domain_user
> before and did _not_ try that yet.
I was about to and realized it cannot work 100% of the time.
That is what prompted this thread.
cheers, jerry
=====================================================================
Samba ------- http://www.samba.org
Centeris ----------- http://www.centeris.com
"What man is a man who does not make the world better?" --Balian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org
iD8DBQFEv9GTIR7qMdg1EfYRAjn7AJ9WRKpeUoHup7SQxTeNp9Py8Z4GxwCaA7J8
O+xNAflypuPvPvp52Xx/z5A=
=PbIM
-----END PGP SIGNATURE-----
More information about the samba-technical
mailing list