On Wed, 2008-08-27 at 08:50 +1000, Andrew Bartlett wrote: > On Tue, 2008-08-26 at 14:21 -0700, Richard Guthrie wrote: > > Andrew, > > > > I will be working with you to resolve your issue. I had a quick > > question to help with our research: > > > > If you have a secret object with old/new secret values set. They also > > both have a timestamp indicating when the values were last > > updated/set. You call LsarSetSecret passing in null for new secret > > value and some value for old secret value. You observe that the old > > secret value timestamp = ?, You observe that the new secret value > > timestamp = ? (Please let me know what these values are in the test > > you reference). > > The old secret timestamp and the new secret timestamp is 'current server > time' (or at least the same, my tests don't actually verify the clock). > > http://gitweb.samba.org/?p=samba.git;a=blob;f=source/torture/rpc/lsa.c;h=ec74426ac6487be632441ca925342eac2466914b;hb=0c4227e45d6b8e31a0219358042318e9d2a0b36d#l1276 > > Andrew Bartlett
I should note, that the changes to implement this in our code were mostly to remove the distinction between global and local secrets. ie http://gitweb.samba.org/?p=samba.git;a=commitdiff;h=da200ac64485fd9531b1aa048570c682b680b012;hp=1f12c368b2566b378a6c521c389b8b1bafbcf916 -- Andrew Bartlett http://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Samba Developer, Red Hat Inc.
signature.asc
Description: This is a digitally signed message part
_______________________________________________ cifs-protocol mailing list cifs-protocol@cifs.org https://lists.samba.org/mailman/listinfo/cifs-protocol