[PATCH] Fix for bug 10882

Rowland Penny repenny241155 at gmail.com
Fri Jun 17 12:20:49 UTC 2016

Hi, this patch fixes bug 10882.

If you use Bind on a DC and somehow the 'dns-<DCNAME>' user gets 
deleted, samba_upgradedns cannot recreate it, unless you 'upgrade' to 
the internal DNS first.

The reason for this is quite simple, the script searches in secrets.ldb 
for the user and most likely it will be the user in sam.ldb that will 
have been deleted.

The patch moves the deletion of the user in secrets.ldb & sam.ldb to 
before the Bind9_DLZ code, this means that if the user exists in either 
.ldb, it will be deleted.

If you run the script with '--dns-backend=BIND9_DLZ', the user will be 
created in both locations.

If you run the script with '--dns-backend=SAMBA_INTERNAL', the user does 
not need to exist, so will not be created.

I have tested this patch, I deleted the dns user with samba-tool, then 
ran 'samba_upgradedns --dns-backend=BIND9_DLZ', I then checked and the 
dns user existed in secrets.ldb & sam.ldb.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: samba_upgradedns-fix-for-bug-10882.patch
Type: text/x-diff
Size: 6980 bytes
Desc: not available
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20160617/98104067/samba_upgradedns-fix-for-bug-10882.diff>

More information about the samba-technical mailing list