From 552b4f3e022dca594e1dada7979fe351eee8cf9b Mon Sep 17 00:00:00 2001
From: Matthieu Patou <mat@matws.net>
Date: Sun, 30 Jun 2013 02:03:02 -0700
Subject: drs-cracknames: When cracking NT4 names we should just look at
 netbios for the match

Looking at dnsRoot will yield a result for domain.tld\username when it
shouldn't work.

Signed-off-by: Matthieu Patou <mat@matws.net>
Reviewed-by: Andrew Bartlett <abarlett@samba.org>
---
 source4/dsdb/samdb/cracknames.c | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

(limited to 'source4/dsdb')

diff --git a/source4/dsdb/samdb/cracknames.c b/source4/dsdb/samdb/cracknames.c
index 388b6c7cec..628546e959 100644
--- a/source4/dsdb/samdb/cracknames.c
+++ b/source4/dsdb/samdb/cracknames.c
@@ -577,8 +577,7 @@ WERROR DsCrackNameOneName(struct ldb_context *sam_ctx, TALLOC_CTX *mem_ctx,
 		}
 
 		domain_filter = talloc_asprintf(mem_ctx, 
-						"(&(objectClass=crossRef)(|(dnsRoot=%s)(netbiosName=%s))(systemFlags:%s:=%u))",
-						ldb_binary_encode_string(mem_ctx, domain),
+						"(&(objectClass=crossRef)(netbiosName=%s)(systemFlags:%s:=%u))",
 						ldb_binary_encode_string(mem_ctx, domain),
 						LDB_OID_COMPARATOR_AND,
 						SYSTEM_FLAG_CR_NTDS_DOMAIN);
-- 
cgit