From 39be2680e008931ff8372a978ac2d8d705c5e03a Mon Sep 17 00:00:00 2001
From: Gerald Carter <jerry@samba.org>
Date: Wed, 19 Oct 2005 02:50:45 +0000
Subject: r11170: root free pass on eventlog open access check (This used to be
 commit 4e3ff41e1ee2e3c323814fd8c6aa44ecab412257)

---
 source3/rpc_server/srv_eventlog_nt.c | 7 +++++++
 1 file changed, 7 insertions(+)

(limited to 'source3')

diff --git a/source3/rpc_server/srv_eventlog_nt.c b/source3/rpc_server/srv_eventlog_nt.c
index 577ec48482..5901f68f52 100644
--- a/source3/rpc_server/srv_eventlog_nt.c
+++ b/source3/rpc_server/srv_eventlog_nt.c
@@ -88,6 +88,13 @@ static BOOL elog_check_access( EVENTLOG_INFO *info, NT_USER_TOKEN *token )
 		return False;
 	}
 	
+	/* root free pass */
+
+	if ( geteuid() == sec_initial_uid() ) {
+		DEBUG(5,("elog_check_access: using root's token\n"));
+		token = get_root_nt_token();
+	}
+
 	/* run the check, try for the max allowed */
 	
 	ret = se_access_check( sec_desc, token, MAXIMUM_ALLOWED_ACCESS,
-- 
cgit