Problems logging onto domain
Luke Kenneth Casson Leighton
lkcl at samba.org
Wed Mar 22 21:43:09 GMT 2000
aaron, can i suggest that you examine NTBUGTRAQ archives for details on
the security procedure to follow, if you are concerned about the internal
security of your NT/samba network.
On Wed, 22 Mar 2000, Aaron D. Brooks wrote:
> > Subject: Re: Problems logging onto domain
> >
> > tom,
> >
> > you should be using a root account for the domain in the network control
> > panel, not smbpasswd -a -m tompc$ or createuser tompc$.
> >
> >
> > only use createuser tompc$ with the -j DOMAINNAME option, and only _after_
> > you have actually joined tompc$ to the domain, and _only_ as a security
> > measure due to microsoft using an insecure trust account password.
>
> What??? Am I reading this right? That to create a machine account password
> one needs to use the _GUI_ and cannot do anything on the UN*X side? If so,
> that is TERRIBLE! Are we really taking a step that far backwards? Or am I
> reading this all wrong?
>
> -Aaron
>
> +------->
> Aaron D. Brooks, 765 . 998 . 5168
> Computing Systems Resource Manager
> Taylor University, CSS Department
> abrooks [SHIFT"2"] css.tayloru.edu
>
>
<a href=" mailto:lkcl at samba.org" > Luke Kenneth Casson Leighton </a>
<a href=" http://cb1.com/~lkcl" > Samba and Network Development </a>
<a href=" http://samba.org" > Samba Web site </a>
<a href=" http://mcp.com" > Macmillan Technical Publishing </a>
ISBN1578701503 DCE/RPC over SMB: Samba and Windows NT Domain Internals
More information about the samba-ntdom
mailing list