sys_getpeerid() [was Re: svn commit: samba r21887 -...]
Guenther Deschner
gd at samba.org
Tue Mar 20 17:13:54 GMT 2007
Hi Jerry,
Gerald (Jerry) Carter wrote:
> There are three places we use sys_getpeerid() that I can tell.
>
> (a) Jeremy's Domain Users hack for reporting group membership,
> (b) access to the ntlm_auth cache for applications like Firefox,
> and now
> (c) The capability to issue a logoff call.
>
> If we don't have getpeerid() I can loose the first two. No big
> deal.
>
> The problem I see with (c) is that if a platform does not support
> getpeerid() then you get init a user's krb5 ccache but never
> delete it. Which makes the feature asymetrical based on support
> for getpeerid().
>
> Am I missing something here ?
No, correct, we need broader support of getpeereid(). I'm awaiting
response from Kurt from OpenLDAP to import their portable version as a
complete file.
In the meantime, I will look to make c) consistent.
Guenther
--
Günther Deschner GPG-ID: 8EE11688
Red Hat gdeschner at redhat.com
Samba Team gd at samba.org
More information about the samba-technical
mailing list