smbpasswd password on the command line

Anthony Liguori aliguor at
Fri Jul 11 15:25:22 GMT 2003

I think we should re-enable the password on the command line but then also 
introduce an environmental variable and deprecate the password on the 
command line.

At least on Linux, env vars are not world readable and can be used just as 
easily as command line.

Issueing something like:

SMB_PASS=test smbpasswd -a Administrator

as opposed to:

smbpasswd -a Administrator test

Anthony Liguori
Linux/Active Directory Interoperability
Linux Technology Center (LTC) - IBM Austin
E-mail: aliguor at
Phone: (512) 838-1208
Tie Line: 678-1208

Jim McDonough/Portland/IBM at IBMUS
Sent by: at
11/07/2003 09:39 AM

        To:     samba-technical at
        Subject:        smbpasswd password on the command line

in 3.0, specifying the password on the commandline has been broken for
quite some time (since late 2001).  It went unnoticed until recently. Some
folks don't want to allow this for security reasons.  I've re-enabled it 
that help/doc/smbpasswd are consistent (well, more consistent), but we
could also just yank this.  What do folks think?

Jim McDonough
IBM Linux Technology Center
Samba Team
6 Minuteman Drive
Scarborough, ME 04074

jmcd at
jmcd at

Phone: (207) 885-5565
IBM tie-line: 776-9984

More information about the samba-technical mailing list