master4-schannel-ok
Andrew Bartlett
abartlet at samba.org
Tue Jan 21 20:54:01 MST 2014
On Mon, 2014-01-20 at 08:55 +0100, Stefan (metze) Metzmacher wrote:
> Hi Andrew,
>
> >>> can you review the attached patches from my master4-schannel-ok
> >>> branch.
> >>>
> >>> It seems that the use computer name in ServerAuthenticate must be at most
> >>> 15 characters long.
>
> Here's an updated patchset from my
> https://git.samba.org/?p=metze/samba/wip.git;a=shortlog;h=refs/heads/master4-schannel-ok
> branch.
>
> We no longer alter the computer name in a cluster, we instead rely on
> ctdb readonly records to keep the performance. It seems that all DCs
> from Windows 2000 and Samba 3.0 (lastest) support netrLogonSamLogonEx.
> Only Windows NT 4.0 needs netrLogonSamLogon() and locking/write per
> authentication,
> which would involve cluster communication. But it would be still better
> than current situation, where each authentication resets the connection
> state
> within winbindd of all other cluster nodes.
This looks really good. Reviewed-by: Andrew Bartlett
<abartlet at samba.org>
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
More information about the samba-technical
mailing list