Must a Samba PDC use encrypted passwords?
Luke Kenneth Casson Leighton
lkcl at switchboard.net
Sun Jun 7 14:32:06 GMT 1998
On Sat, 6 Jun 1998, Gerald Carter wrote:
> Albert Chin-A-Young wrote:
> >
> > If you're running NIS, I'd like to see a modified rpc.yppasswdd that
> > updated NIS passwd and NIS smbpasswd at the same time. Samba would
> > then have to be modified to use NIS for smbpasswd. I'd also like to
> > see Samba refer to both smbpasswd and passwd (if the login name is not
> > in smbpasswd, then look in passwd). The latter is important until
> > everyone changes their password.
>
> making the smbpasswd file available via NIS IHMO is a bad idea.
> Remember that the hashes in smbpasswd are plaintext equivalents. Better
> to use the security = domain model and authenticate against one server
> that has the smbpasswd file local.
alternatively use NIS+. some assistance with this to finish the nis+
password database module is still required (estimated module size: 1200
lines of code).
More information about the samba-ntdom
mailing list