What is blocking a Samba4 Tech Preview?
Jelmer Vernooij
jelmer at samba.org
Mon Dec 19 14:55:37 GMT 2005
On Sun, Dec 18, 2005 at 06:37:10PM -0800, Andrew Bartlett wrote about 'Re: What is blocking a Samba4 Tech Preview?':
> On Mon, 2005-12-19 at 02:00 +0100, Jelmer Vernooij wrote:
> > On Mon, Dec 19, 2005 at 08:43:34AM +1100, tridge at samba.org wrote about 'Re: What is blocking a Samba4 Tech Preview?':
> > > > > In the ACL space I don't think that the current (very valuable) work
> > > > > tridge is doing should block the release of the code. Instead we should
> > > > > hard-code the same 'admin write, others read' ACL that Samba3 has.
> > > > That's a sane alternative, indeed.
> > > yep, and then when the ldb ACLs are working we can do an updated
> > > release.
> > What exactly would be necessary for such a hardcoded ACL? I'm
> > afraid I'm not really sure what kind of architecture we're planning to
> > use for authorization. Security tokens or something similar?
> We already push a session_info into LDB. I'm not sure the js is right,
> but the basics are there for the rest of smbd. The SID list in that can
> be checked against the hard-coded ACL.
How does this work at the API level? Will we have a function that
takes a session_info pointer, an ACL and an access mask and returns
True or False? I never understood the way this stuff is handled in
Samba 3.
Cheers,
Jelmer
--
Jelmer Vernooij <jelmer at samba.org> - http://jelmer.vernstok.nl/
Currently playing: Opeth - A Fair Judgement
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.samba.org/archive/samba-technical/attachments/20051219/f14b70eb/attachment.bin
More information about the samba-technical
mailing list