sys_getpeerid() [was Re: svn commit: samba r21887 -...]

Guenther Deschner gd at samba.org
Tue Mar 20 17:13:54 GMT 2007


Hi Jerry,

Gerald (Jerry) Carter wrote:
  > There are three places we use sys_getpeerid() that I can tell.
> 
> (a) Jeremy's Domain Users hack for reporting group membership,
> (b) access to the ntlm_auth cache for applications like Firefox,
>     and now
> (c) The capability to issue a logoff call.
> 
> If we don't have getpeerid() I can loose the first two.  No big
> deal.
> 
> The problem I see with (c) is that if a platform does not support
> getpeerid() then you get init a user's krb5 ccache but never
> delete it.  Which makes the feature asymetrical based on support
> for getpeerid().
> 
> Am I missing something here ?

No, correct, we need broader support of getpeereid(). I'm awaiting 
response from Kurt from OpenLDAP to import their portable version as a 
complete file.

In the meantime, I will look to make c) consistent.

Guenther

-- 
Günther Deschner                    GPG-ID: 8EE11688
Red Hat                         gdeschner at redhat.com
Samba Team                              gd at samba.org


More information about the samba-technical mailing list