Fix up a security issue with the way we handle domain groups retuned on the

info3. These are RIDs, and it only makes sense to combine them with the domain SID returned with them. This is important for trusted domains, where that sid might be other than the one we currently reterive from the secrets.tdb. Also remove the become_root()/unbecome_root() wrapper from around both remaining TDB users: Both are now initialised at smbd startup. Andrew Bartlett
author: Andrew Bartlett <abartlet@samba.org> 2002-01-26 06:24:53 +0000
committer: Andrew Bartlett <abartlet@samba.org> 2002-01-26 06:24:53 +0000
commit: 554842e0a55155193f25aefca6480b89d5c512ca (patch)
tree: 8dcea3354020d3a9460cd3a7e10ede491124ca29 /source/smbd
parent: 8ffc024ebc73dee32a9dfc1873e824c996205475 (diff)
download: samba-554842e0a55155193f25aefca6480b89d5c512ca.tar.gz
samba-554842e0a55155193f25aefca6480b89d5c512ca.tar.xz
samba-554842e0a55155193f25aefca6480b89d5c512ca.zip
1 files changed, 3 insertions, 0 deletions
diff --git a/source/smbd/server.c b/source/smbd/server.c
index 492632e7ac4..44002bfc94d 100644
--- a/source/smbd/server.c
+++ b/source/smbd/server.c
@@ -556,6 +556,7 @@ static void init_structs(void )
 	init_dptrs();
 
 	secrets_init();
+
 }
 
 /****************************************************************************
@@ -841,6 +842,8 @@ static void usage(char *pname)
 	if(!initialize_password_db(False))
 		exit(1);
 
+	uni_group_cache_init(); /* Non-critical */
+	
 	/* possibly reload the services file. */
 	reload_services(True);
author	Andrew Bartlett <abartlet@samba.org>	2002-01-26 06:24:53 +0000
committer	Andrew Bartlett <abartlet@samba.org>	2002-01-26 06:24:53 +0000
commit	554842e0a55155193f25aefca6480b89d5c512ca (patch)
tree	8dcea3354020d3a9460cd3a7e10ede491124ca29 /source/smbd
parent	8ffc024ebc73dee32a9dfc1873e824c996205475 (diff)
download	samba-554842e0a55155193f25aefca6480b89d5c512ca.tar.gz samba-554842e0a55155193f25aefca6480b89d5c512ca.tar.xz samba-554842e0a55155193f25aefca6480b89d5c512ca.zip