[PATCH] New external idmap module

simo idra at samba.org
Tue May 30 22:41:26 GMT 2006


On Wed, 2006-05-31 at 00:39 +0200, Volker Lendecke wrote:
> On Tue, May 30, 2006 at 06:24:40PM -0400, simo wrote:
> > You can but I still don't see why you are so sensitive to this option.
> > I am not changing any default, just giving a way to manage things in a
> > consistent way with an external manager.
> 
> It is adding a complete remote procedure call protocol of
> its own to core parts of winbind for a reason that I see
> very suspectible and where from my point of view valid
> alternatives exist. Adding a hand-writting ASCII based RPC
> protocol has its own complexities that I would really like
> to avoid if possible.
> 
> The only reason that counts against a forked script that
> returns a simple "UID <n>" or "GID <n>" on stdout is the
> ability to change mappings more easily. And this is
> something I am not willing to take easily.

I think you are taking this more seriously than it deserves.
I repeat you that the option to run without idmap_tdb is just an that,
an option.

> And if you want to avoid going with an LDAP server, I would
> suggest finishing the unixinfo pipe and to set up a central
> smbd that ships the mappings.

The unixinfo pipe solves a different purpose.
It solves only the purpose of distributing the mappings between samba
servers not the problem to control the mappings externally and
potentially sharing this mapping with other applications.

Simo.

-- 
Simo Sorce
Samba Team GPL Compliance Officer
email: idra at samba.org
http://samba.org



More information about the samba-technical mailing list