dsdb:schema_data: don't allow replicated deletes

We should protect ourself from a broken schema injected via replication.

Signed-off-by: Stefan Metzmacher <metze@samba.org>

diff --git a/source4/dsdb/samdb/ldb_modules/schema_data.c b/source4/dsdb/samdb/ldb_modules/schema_data.c
index aac85fa6428cbcfa8e42e743078503b82e37daa8..1b9c09a4c28477b7a0d240c557d7e79434b1a7ab 100644 (file)
--- a/source4/dsdb/samdb/ldb_modules/schema_data.c
+++ b/source4/dsdb/samdb/ldb_modules/schema_data.c
@@ -506,11 +506,6 @@ static int schema_data_del(struct ldb_module *module, struct ldb_request *req)
                return ldb_next_request(module, req);
        }
 
-       /* replicated update should always go through */
-       if (ldb_request_get_control(req, DSDB_CONTROL_REPLICATED_UPDATE_OID)) {
-               return ldb_next_request(module, req);
-       }
-
        /* dbcheck should be able to fix things */
        if (ldb_request_get_control(req, DSDB_CONTROL_DBCHECK)) {
                return ldb_next_request(module, req);