[PATCH]: wbc: expand wbcAuthUserParams to pass
alternate domain\user
Gerald Carter
jerry at plainjoe.org
Mon Jun 1 17:30:50 GMT 2009
Hey Steven,
> Attached is a pcap from a Vista client to our modified
> Samba 3.0.24 server.
>
> I captured this while running the command:
>
> net use * \\10.54.172.21\ifs /user:sd-vistalocal client
>
> The main difference being, I did not specify a user domain.
I've recreated it locally now. If the only reason to extend the
wbcAuthUserParams struct is for local accounts, the target name
could technically be read from the "client nonce" in the local
account provider. This always seems to be accurate. Even for
example, when WinXP fills in the domain name as the IP address:
net use * \\aaa.bbb.ccc.ddd\share /user:username
Although technically the client nonce could be random stuff
so if any client ever used a structure other than the one
used by Windows, we could be in trouble. It is of course,
much easier to just treat the nonce as an opaque blob rather
than trying to parse it. But I expect that Windows has to
parse the blob as well as a standalone server.
It also seems, that if in make_user_info_map() we mapped
client_domain to "our-authoritative-sam-name" we would be
ok without extending the interface.
cheers, jerry
--
=====================================================================
http://www.plainjoe.org/
"What man is a man who does not make the world better?" --Balian
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 252 bytes
Desc: OpenPGP digital signature
Url : http://lists.samba.org/archive/samba-technical/attachments/20090601/065141b9/signature.bin
More information about the samba-technical
mailing list