[PATCH] New external idmap module

Volker Lendecke Volker.Lendecke at SerNet.DE
Wed May 31 18:35:09 GMT 2006


On Wed, May 31, 2006 at 02:28:01PM -0400, simo wrote:
> > Thanks for raising that. I would be willing to accept a
> > module that implements a secure and authenticated protocol
> > if it comes along with a sample GPL server implementation.
> > This would help us increase the usability of Samba, which is
> > certainly in your best intention as well.
> 
> Can you explain what you mean by secure and authenticated protocol?
> A unix socket can be protected by unix permissions, this way it is
> certainly secure and authentication is not an issue.

I mean something that I can put on a normal company network
and have the 100 boxes you mention connect to it. A local
only implementation or a completely unauthenticated daemon
does not meet these requirements. Neither does any stunnel
construct which way too easy to screw up.

It's a bit like Samba4: It needs to be simple to set up and
be reasonably secure without much configuration.

Volker
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.samba.org/archive/samba-technical/attachments/20060531/762cbf02/attachment.bin


More information about the samba-technical mailing list