[PATCH 7/7] s3-winbind: Allow sec_initial_uid() to store creds.
Andreas Schneider
asn at samba.org
Mon Jul 1 05:02:48 MDT 2013
Signed-off-by: Andreas Schneider <asn at samba.org>
---
source3/winbindd/winbindd_ccache_access.c | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/source3/winbindd/winbindd_ccache_access.c b/source3/winbindd/winbindd_ccache_access.c
index 5557b95..7787b3e 100644
--- a/source3/winbindd/winbindd_ccache_access.c
+++ b/source3/winbindd/winbindd_ccache_access.c
@@ -168,7 +168,7 @@ static bool check_client_uid(struct winbindd_cli_state *state, uid_t uid)
return False;
}
- if (uid != ret_uid) {
+ if (uid != ret_uid && ret_uid != sec_initial_uid()) {
DEBUG(1, ("check_client_uid: Client lied about its uid: said %u, "
"actually was %u; denying access\n",
(unsigned int)uid, (unsigned int)ret_uid));
--
1.8.3.1
More information about the samba-technical
mailing list