[PATCH] Dynamic share permission change detection.

Volker Lendecke Volker.Lendecke at SerNet.DE
Mon Nov 30 06:27:00 MST 2009

On Mon, Nov 30, 2009 at 09:14:45PM +0800, boyang wrote:
> > No, we can't ignore those. It should be possible to use the
> > "valid users", "read list" and the other access control
> > parameters to create a security descriptor. SDs are
> > expressive enough to cover all these cases.
> >
> > We definitely need to minimize the work in
> > open_file_ntcreate to the absolute minimum, otherwise our
> > performance will just go down the tube. It might be
> > difficult to code up the secdesc from a general share
> > definition, but there is no other way.
> >   
> I see. We need map functions to map those parameters to security
> descriptors.

Yes. And then we need a "struct security_descriptor *share_sd;"
as part of connection_struct.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: Digital signature
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20091130/23af6cd7/attachment.pgp>

More information about the samba-technical mailing list