[PATCH] A script to compare the differences in ntSecurityDescriptor between 2 hosts

Nadezhda Ivanova nadezhda.ivanova at postpath.com
Fri May 22 14:39:10 GMT 2009 

Hi Samba Team,
Attached is the first version of a script, whose purpose is to compare a freshly provisioned samba against a freshly installed win2008 and export the ntSecurityDescriptors in ldif format to be applied against samba. Its not doing comparison at this point, just exporting the Win2008 descriptors. It has two serious issues and I would really appreciate it if someone can take a look and tell me what is wrong.
      1. I believe the way the descriptors are base64 encoded is wrong, because when I simply read a descriptor from the remote host and encode it as base64 directly, the results are not what I see using Apache directory studio, for example. 
      2. How to use the paged search control to get more that 1000 entries? It appears we cannot use it, as there is no way to obtain the cookie that the server returns, so that we cannot request the next page. Dealt with this rather ugly by resetting the macpageAize of the default query policy.
 
Anyway, I will be sending a more tested and better version, but I would appreciate your comments on how it looks now and possible solutions to the problems.
 
Regards,
Nadya 

	
Nadezhda Ivanova

 Software Engineer IVSoftware Development

 nadezhda.ivanova at postpath.com	CISCO SYSTEMS BULGARIA EOOD

 18 Macedonia Blvd. Sofia 1606

 Bulgaria

 	 	
 
Think before you print.	
 

-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-A-script-to-compare-the-differences-in-ntSecurityDes.patch
Type: application/octet-stream
Size: 8506 bytes
Desc: not available
Url : http://lists.samba.org/archive/samba-technical/attachments/20090522/55268771/0001-A-script-to-compare-the-differences-in-ntSecurityDes.obj
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/gif
Size: 837 bytes
Desc: not available
Url : http://lists.samba.org/archive/samba-technical/attachments/20090522/55268771/attachment.gif
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/gif
Size: 87 bytes
Desc: not available
Url : http://lists.samba.org/archive/samba-technical/attachments/20090522/55268771/attachment-0001.gif

More information about the samba-technical mailing list