Patch below.
Created attachment 4687 [details] Patch for selectively disabling LDAP referral following
Looks good, thanks. Two comments: In Samba, we always use {} in if-statements, even if there's only a single statement inside. And, can you please also provide a manpage entry for that parameter? See docs-xml/smbdotconf for examples. Thanks, Volker
As this patch adds a new parameter, it won't be added in a stable release branch. That means that it will be in Samba 3.5, not in 3.2, 3.3 or 3.4. Raising Product number. Please provide the manpage entry also and then we could pick that for 3.5. Thanks a lot!
Jan, can you please tell the use case for this option?
https://bugzilla.samba.org/show_bug.cgi?id=6715 smbd would exit with a trace whenever it sees the same user on two different DNs. We happen to have an LDAP referral somewhere in below ou=asterisk,o=ourorg to ou=users,o=ourorg so that asterisk can search the posixAccounts in "its" subtree, but since smbd has to practically search below o=ourorg instead of just the defined ou=(users,group,machines),o=ourorg, it is required to deactivate following LDAP referrals. Suboptimal, but I can't change it.
As I said, it does make sense to have this option. Please add a manpage and the small change I requested. After that from my point of view it can go into master. Volker
Created attachment 4701 [details] Revised patch with doc New patch with manpage entry. Also pullable from git://dev.medozas.de/samba master
Volker, is a review of the new patch needed? Can I push the patch to master and v3-5-test?
Pushed the patch + an additional build fix (prototype declaration) to master and v3-5-test. Will be included in 3.5.0. Closing out bug report. Thanks for providing the patch! :-)
Please note the this parameter has been renamed to "ldap follow referral".