'System' access to LDAPI without a bind in Samba4
Andrew Bartlett
abartlet at samba.org
Wed Jun 10 06:45:05 GMT 2009
On Wed, 2009-06-10 at 16:38 +1000, tridge at samba.org wrote:
> Hi Andrew,
>
> > I'm pretty sure you just specify a SASL mechanism of EXTERNAL, with no
> > data exchanged (where you would put the password or ticket) either way.
>
> I guess we also need to add some support for this in the s4
> ldap_server code in source4/ldap_server/ldap_bind.c, and then add some
> OS specific code for getting the uid/gid of the process connecting to
> the socket.
No, it belongs in GENSEC as another SASL mechanism.
Andrew Bartlett
--
Andrew Bartlett
http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Red Hat Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20090610/b8be9ceb/attachment.bin
More information about the samba-technical
mailing list