summaryrefslogtreecommitdiff
path: root/source3/smbd
diff options
context:
space:
mode:
authorAndrew Bartlett <abartlet@samba.org>2002-01-26 06:24:53 +0000
committerAndrew Bartlett <abartlet@samba.org>2002-01-26 06:24:53 +0000
commit714cdd47cb3e0e1f683c0a22396f9167a85e7df3 (patch)
tree713059fb2ea69f180f21abc39e79fa44cc5f48bd /source3/smbd
parent806991158ef016cd7a723912a6eebe1f6d3b0ed1 (diff)
downloadsamba-714cdd47cb3e0e1f683c0a22396f9167a85e7df3.tar.gz
samba-714cdd47cb3e0e1f683c0a22396f9167a85e7df3.tar.bz2
samba-714cdd47cb3e0e1f683c0a22396f9167a85e7df3.zip
Fix up a security issue with the way we handle domain groups retuned on the
info3. These are RIDs, and it only makes sense to combine them with the domain SID returned with them. This is important for trusted domains, where that sid might be other than the one we currently reterive from the secrets.tdb. Also remove the become_root()/unbecome_root() wrapper from around both remaining TDB users: Both are now initialised at smbd startup. Andrew Bartlett (This used to be commit 554842e0a55155193f25aefca6480b89d5c512ca)
Diffstat (limited to 'source3/smbd')
-rw-r--r--source3/smbd/server.c3
1 files changed, 3 insertions, 0 deletions
diff --git a/source3/smbd/server.c b/source3/smbd/server.c
index 492632e7ac..44002bfc94 100644
--- a/source3/smbd/server.c
+++ b/source3/smbd/server.c
@@ -556,6 +556,7 @@ static void init_structs(void )
init_dptrs();
secrets_init();
+
}
/****************************************************************************
@@ -841,6 +842,8 @@ static void usage(char *pname)
if(!initialize_password_db(False))
exit(1);
+ uni_group_cache_init(); /* Non-critical */
+
/* possibly reload the services file. */
reload_services(True);