Must a Samba PDC use encrypted passwords?

Gerald Carter cartegw at Eng.Auburn.EDU
Wed Jun 10 13:13:17 GMT 1998

Andy Smith wrote:
> On Tue, Jun 09, 1998 at 01:13:51PM -0700, William Stuart wrote:
> >
> > A way to automate this process (assuming your users have the right 
> > to modify thier registries) you could email the *.reg file found on 
> > the SAMBA web site.  Your users then double-click on the file and 
> > it changes the keys.
> >
> > Later, after your sure you have all the accounts, you can send them 
> > an email with a *.reg file that will set them back.

Hmmm....IMHO this value should not be accessible for users to modify. 
Big security hole.  Also like to remove the association betwen the
registry editor and *.reg files.

                            Gerald ( Jerry ) Carter	
Engineering Network Services                           Auburn University 
jerry at   

       "...a hundred billion castaways looking for a home."
                                  - Sting "Message in a Bottle" ( 1979 )

More information about the samba-ntdom mailing list