[Samba] "net rpc vampire" command and Domain Local Groups
Luca Landi
quasar at gif.it
Sun Jan 14 16:18:32 GMT 2007
Hello, I think I spotted an inconsistency between "net rpc vampire" and "the
rest of the Samba suite" with regard to creation of domain local-groups.
By looking at the source code I can see that during a netvampire the
creation of local-groups follows the same process used for global-groups.
Specifically, netvampire gets the necessary gid by running the "add group
script". See file "source/utils/net_rpc_samsync.c", function
"fetch_alias_info".
The above behavior seems to be inconsistent with what is done by smbd when
it has to create a local-group, because smbd gets the necessary gid from
winbindd. See file "source/groupdb/mapping.c", function
"pdb_default_create_alias".
The end results seem to be at least that:
1. gids for local-groups are allocated from different ranges depending on
which program creates them.
2. local-groups created by netvampire most probably get stored also as posix
groups, as this is what add-group-scripts usually do.
Unless I got something wrong, of course... :-)
Cheers,
Luca
More information about the samba
mailing list