On Thursday, December 13, 2001 3:31 PM, Greg Zartman wrote: > > David Brown posted a workaround for the problem in these apps when you > > first raised the issue: > This isn't a work around. It's more like trying to fix the wing of an > airplane with duct-tape. I explored this option in my shop about four > months ago (prior to me even using SME) and it creates several issues that > are not easy to overcome. This is especially true when roaming profiles > are used. In one instance, we had a user lose his local profile > (including > his email history).
As may be obvious from my previous postings, I don't use/encourage the use of roaming profiles in my office, so I can't really comment much about this particular issue. Seems inconsistent, to say the least, especially since the user should be able to read and write to their profile, regardless of their group. I don't see how this can be the same issue as needing elevated privileges to run software. > More accurately, Samba is flawed as it doesn't correctly interpret the > Windows security model . I don't agree with this statement, or I should at least ask for clarification as to what you mean. With NT Server as a PDC, the default groups that the client machines import into local groups are Domain Admins and Domain Users. This is essentially the same thing Samba can do with the domain admin group and domain user group parameters. How does this make Samba flawed? > have already bolted through the gate on this one. Autodesk and ESRI are > HUGE companies and we aren't going to change them. This is a > major issue as > millions of people use AutoCAD and Arc/INFO. VMware is the same way; I can't run it unless I'm a Power User or an Administrator. True, these are huge companies, and many people use these programs, but I don't think making all the users at your site domain administrators is wise at all, regardless of whether you are running Samba or NT Server. I think you'd be hard pressed to find a qualified NT support person that would agree with your stance on this issue. David M. Brown Frick, Frick & Jetté Architects [EMAIL PROTECTED] -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org
