On Fri, Sep 13, 2002 at 02:46:58AM -0400, [EMAIL PROTECTED] wrote: > > Date: Fri Sep 13 06:46:58 2002 > Author: tpot > > Update of /data/cvs/samba/source/smbd > In directory dp.samba.org:/tmp/cvs-serv18279 > > Modified Files: > Tag: APPLIANCE_HEAD > password.c > Log Message: > CR#730 > > Universal group membership for trusted domains is stored in the > "other" sids field of the NET_USER_INFO_3 structure. We weren't > adding these sids to the NT user token.
I was wondering about these ever since we did the first round... However, we need to valididate that the DC is indeed sending us 'valid' sids - if not for a member server, certainly for a PDC (with trusted domains). See references to 'sid filtering' on MS's website.
