FSRVP operations should be permitted If the requestors security token
matches the initial process uid. This adds the ability for the selftest
user to issue FSRVP requests.
*/
static bool fss_permitted(struct pipes_struct *p)
{
+ if (p->session_info->unix_token->uid == sec_initial_uid()) {
+ DEBUG(6, ("Granting FSRVP op, user started smbd\n"));
+ return true;
+ }
+
if (nt_token_check_sid(&global_sid_Builtin_Administrators,
p->session_info->security_token)) {
DEBUG(6, ("Granting FSRVP op, administrators group member\n"));
git.samba.org / ddiss / samba.git / commitdiff