[Samba] nscd, ldap and the root/Administrator account

taso ahg1 at aanet.com.au
Thu May 5 13:51:56 GMT 2005


Tony Earnshaw wrote:

> 
> That was the vision of the samba team. I don't have a root user in LDAP
> any longer, I don't need him. The point about Administrator is, that
> he's only good for anything in Windows and it's his SID that counts. Why
> Idealx would want to turn everything back to what it was before and muck
> up security by reimplementing a second 0:0 object I can't even guess.
> 
The IDEALX guys have a Samba/LDAP/PDC guide based on Samba 3.0.11rc1 - maybe
that version needs it. But then you wouldn't want a guide based on a rc
version.

> 
> On my rigs, though getent works normally for LDAP-based posixAccount
> users, it doesn't give duplicates. If a user (e.g. root) is only present
> in /etc/passwd, it will return that entry. If there's a duplicate entry
> in passwd and LDAP (e.g. tonni)  it will only return the passwd entry,
> not the LDAP entry. Otherwise it returns the LDAP entry. It never
> returns more than one entry.
> 
What OS/software would that be?

-- 
Taso Hatzi

tr -d "blewky" <<-QWERTY
tabsol at kelemunnkari.dowzy.au
QWERTY


More information about the samba mailing list