[PATCH] DNS and Subdomain patches
Stefan (metze) Metzmacher
metze at samba.org
Wed Sep 3 10:36:21 MDT 2014
>> Except for SAMR (which we should avoid as much as we can) we should only
>> ever contact
>> directly trusted domains and allow the remote dc forward netlogon and
>> lsa requests.
>> In addition to NETLOGON and LSA we could have a drsuapi connection
>> (using krb5)
>> for our own domain and other direct trusts.
>> Windows seems to forward LSA Lookup calls as DsCrackNames calls
>> (maybe only to GC servers).
> So, with lots of work to do and a larger refactor of winbindd proposed
> above, how do you suggest we proceed? Are you able to work on some of
Only small fixes here and there, sorry.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 181 bytes
Desc: OpenPGP digital signature
More information about the samba-technical