-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 > Our (revised) funnel now works fairly closely to the TNG model, in > which a domain socket is opened to the RPC server and the security > context is passed as a preamble to the first RPC PDU. (Of course, > our security context token probably doesn't look the same as the > TNG one.)
This way you would have a lot less GPL problems :-) If I remember correctly our idea had been a bit different. The idea was to load dynamic objects into the main smbd. All dynamic objects would reside in a special directory. A pipe is to be opened, smbd looks into a table of already loaded objects. If it's not loaded a libpipe_lsass.so (or so) is looked for and loaded on demand. This way the security issues look a lot simpler. Volker -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: Key-ID D32186CF, Fingerprint available: phone +49 551 3700000 iD8DBQE9+G6QOmSXH9Mhhs8RAiRtAJ9vx6msYXZYKyxxKdqZ+NY8rRD5TgCgkXAB MCkQ1DwWfQY4GC7SKOZD8Zs= =JR+r -----END PGP SIGNATURE-----
