svn commit: samba r21390 - in branches/SAMBA_4_0/source/kdc: .

Andrew Bartlett abartlet at samba.org
Fri Feb 16 21:42:30 GMT 2007


On Fri, 2007-02-16 at 15:56 +0000, metze at samba.org wrote:
> Author: metze
> Date: 2007-02-16 15:56:24 +0000 (Fri, 16 Feb 2007)
> New Revision: 21390
> 
> WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=rev&root=samba&rev=21390
> 
> Log:
> move fetching the key version number into the function
> which contrusts the keys...

Why?

> later we need to get the key version number from the
> "replPropertyMetaData" attribute entry to the (I assume)
> the "unicodePwd" attribute.
> 
> msDs-KeyVersionNumber is a constructed attribute,
> and is "1" when no "supplementalCredentials" is present.

This needs to be in a ldb module, as LDAP clients may enquire of this
attribute.

> we need to make some tests with a password change function
> which don't give a cleartext to the server...

That shouldn't be too hard to do.

Andrew Bartlett

-- 
Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Red Hat Inc.                  http://redhat.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20070217/9e0c1114/attachment.bin


More information about the samba-technical mailing list