[Samba] SIDs and UIDs and RIDs - Oh My!
Moondance Foxmarnick
calabash at earthlink.net
Mon Aug 15 00:40:12 GMT 2005
When you say: " Every instance in SMB world has to have its own SID "
Does that mean that on top of every logon, say- for each folder connection,
a SID is generated?
And if so, is this a temporary SID like a token for the session, or is it
stored internally to SAMBA?
T.I.A.
-Moondance
-----Original Message-----
From: Ilia Chipitsine [mailto:ilia at paramon.ru]
Sent: Sunday, August 14, 2005 2:56 AM
To: Jeremy Allison
Cc: Moondance Foxmarnick; SAMBA
Subject: Re: [Samba] SIDs and UIDs and RIDs - Oh My!
> On Sat, Aug 13, 2005 at 05:00:16PM -0700, Moondance Foxmarnick wrote:
>>
>> But what the @$@! is a Relative IDentifier (RID)?!?
>>
>> On page 153 the command to map a windows group to a *nix group - no
mention
>> of RIDs.
>
> A SID is a 128 bit identifier of a user/group/computer on a network
> (a GUUID really). It consists of a 96-bit "domain" id, with a 32-bit
> "relative id" (RID) suffix.
Official Samba3 Howto is certanly missing such a clear definition :-)
I would expand user/group/computer to
user/group/computer/domain/interdomaintrust/etc :-)
Every instance in SMB world has to have its own SID
>
> So for a given RID, you prepend the 96-bit domain id to get the full
> SID.
>
> SIDs are supposed to be "structured", but for real users/groups
> and computers they are of the form described above.
>
> Certain (less than 128 bit) SIDs are "well known" SIDs. Such as
> the "Administrators" group.
>
> Jeremy.
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/listinfo/samba
>
More information about the samba
mailing list