encrypt passwords = yes

Rafal Szczesniak mimir at spin.ict.pwr.wroc.pl
Tue Aug 7 21:39:15 GMT 2001

On Tue, 7 Aug 2001, Gerald Carter wrote:

> On Tue, 7 Aug 2001, Rafal Szczesniak wrote:
> > I've observed the following situation:
> > Explicitly setting encrypted passwords to "yes" makes smbd
> > using NT password hash and authentication works fine. When I
> > comment "encrypted passwords" out, smbd checks password
> > against Lanman hash and everytime authentication fails
> No.  'encrypt passwords = no' checks against /etc/passwd.
> My guess is that ytou are using MD5 passwords in /etc/shadow
> and didn't enable --with-pam when compiling (or did not
> create /etc/pam.d/samba)

So, the log message 'Defaulting to Lanman password for XYZ'
means that smbd is checking my password hash against Lanman
hash in smbpasswd(5) or /etc/shadow ?
If I leave smb.conf(5) without "encrypt passwords" then it
should be set (by smbd run-time) to "yes". What is the
default hash the smbd uses then ?

I assume, samba is compiled without any special parameters.


Rafal 'Mimir' Szczesniak <mimir at spin.ict.pwr.wroc.pl>   |
*BSD, Linux and Samba                                  /

More information about the samba-technical mailing list