problems with smbpasswd (joining a SAMBA-Domain)

Mayers, P J p.mayers at ic.ac.uk
Mon Oct 18 11:07:41 GMT 1999


If you're relying on measures like that to secure you, you're seriously
deluded. A system like Kerberos, where you don't even trust the network
wire, circumvents most of this.

In any case, this is way offtopic. The fact of the matter is that

"encrypted passwords = yes"

Is a *required* setting for a Samba PDC, and that's because of the nature of
the SMB protocol.

Cheers,
Phil

-----Original Message-----
From: Matthias Wächter
To: Multiple recipients of list SAMBA-NTDOM
Sent: 10/18/99 8:42 AM
Subject: Re: problems with smbpasswd (joining a SAMBA-Domain)

On Mon, 18 Oct 1999, Murray Gibbins wrote:

> Thje best solution is to show people how to use 'ssh' or 'pgp', or
even
> better replace all win32 with Linux, then run it over a 'switch
ethernet
> hub'.

.. one which is configurable to have only specified MAC addresses on
specified ports. Every currently available NIC's MAC address can be
reprogrammed, so this could be used on non-configurable Switching Hubs
to
let ports receive packets not destined to them and so being able to
catch
some passwords (f.e. POP sessions).

Sehr Wus,
- Matthias

-- 
Wer reitet so spät durch Nacht und Wind?
- Wos waas I
------------------------------------------------------------------------
-----


More information about the samba-ntdom mailing list