sync passwords
Christian Barth
barth at cck.uni-kl.de
Thu Sep 27 12:06:11 GMT 2001
> Hi all,
>
> I have managed to make smbpasswd update both unix NIS passwords
> and smb-passwords. Only that the price is a big security hole!
> yppasswd needs the root password! So I have changed the chat in smb.conf to
> include the root password in clear text.
>
> smb passwd file = /usr/local/samba/private/smbpasswd
> unix password sync = yes
> passwd program = /usr/bin/yppasswd %u
> passwd chat = *NIS* <root password>\n *NIS* %n\n *new* %n\n *changed*
> encrypt passwords = yes
>
> Now this has worked, but really not acceptable, since smb.conf must be
> readable by every one! So the root password can be read by anyone!
>
> Does any one know how to go around this?
If the NIS server is your PDC you can use passwd in the chat and push
the NIS maps with cron or a "cd /var/yp; make" at the end of the chat.
Christian
>
> Thanks a bunch
>
> Dominic
>
_(_)_ wWWWw _
@@@@ (_)@(_) vVVVv _ @@@@ (___) _(_)_
@@()@@ wWWWw (_)\ (___) _(_)_ @@()@@ Y (_)@(_)
@@@@ (___) `|/ Y (_)@(_) @@@@ \|/ (_)\
/ Y \| \|/ /(_) \| |/ |
\ | \ |/ | / \ | / \|/ |/ \| \|/
jgs|// \\|/// \\\|//\\\|/// \|/// \\\|// \\|// \\\|//
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
More information about the samba-ntdom
mailing list