[PATCH] Dynamic share permission change detection.
Volker.Lendecke at SerNet.DE
Mon Nov 30 06:27:00 MST 2009
On Mon, Nov 30, 2009 at 09:14:45PM +0800, boyang wrote:
> > No, we can't ignore those. It should be possible to use the
> > "valid users", "read list" and the other access control
> > parameters to create a security descriptor. SDs are
> > expressive enough to cover all these cases.
> > We definitely need to minimize the work in
> > open_file_ntcreate to the absolute minimum, otherwise our
> > performance will just go down the tube. It might be
> > difficult to code up the secdesc from a general share
> > definition, but there is no other way.
> I see. We need map functions to map those parameters to security
Yes. And then we need a "struct security_descriptor *share_sd;"
as part of connection_struct.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Size: 197 bytes
Desc: Digital signature
More information about the samba-technical