Fix SAMR server for winbindd access. Ensure we allow MAX_ACCESS to be mapped to what...

author Jeremy Allison <jra@samba.org>

Mon, 18 May 2009 21:26:37 +0000 (14:26 -0700)

committer Karolin Seeger <kseeger@samba.org>

Mon, 10 Aug 2009 15:53:12 +0000 (17:53 +0200)
author Jeremy Allison <jra@samba.org>
Mon, 18 May 2009 21:26:37 +0000 (14:26 -0700)
committer Karolin Seeger <kseeger@samba.org>
Mon, 10 Aug 2009 15:53:12 +0000 (17:53 +0200)
diff --git a/source/rpc_server/srv_samr_nt.c b/source/rpc_server/srv_samr_nt.c

index 47aa1e9a9b045db1b765f9b0b7746e73da3219d0..92a198dd3b8dd3ec6058a478aa1faa72076e8d3c 100644 (file)
--- a/source/rpc_server/srv_samr_nt.c
+++ b/source/rpc_server/srv_samr_nt.c
@@ -260,8 +260,8 @@ static void map_max_allowed_access(const NT_USER_TOKEN *token,
         }
         *pacc_requested &= ~MAXIMUM_ALLOWED_ACCESS;
  
-       /* At least try for generic read. */
-       *pacc_requested = GENERIC_READ_ACCESS;
+       /* At least try for generic read|execute - Everyone gets that. */
+       *pacc_requested = GENERIC_READ_ACCESS|GENERIC_EXECUTE_ACCESS;
  
         /* root gets anything. */
         if (geteuid() == sec_initial_uid()) {
author	Jeremy Allison <jra@samba.org>
	Mon, 18 May 2009 21:26:37 +0000 (14:26 -0700)
committer	Karolin Seeger <kseeger@samba.org>
	Mon, 10 Aug 2009 15:53:12 +0000 (17:53 +0200)