losing connections to password server

Christopher R. Hertel crh at ubiqx.mn.org
Tue May 27 17:15:38 GMT 2003

On Tue, May 27, 2003 at 04:32:33PM +0000, jra at dp.samba.org wrote:
> On Tue, May 27, 2003 at 09:38:16AM -0400, Brandon Craig Rhodes wrote:
> > 
> > Why does server_validate() simply give up rather than re-establishing
> > its connection to the password server?  Though I am not fluent in the
> > SMB protocol, perhaps the cluster server process passes along to its
> > client workstation the session key it receives from the password
> > server, which means the password hashes submitted by the client would
> > not work on a subsequent connection, whose session key would be
> > different.  So server_validate() must give up.
> Indeed. That's why security = server is at best a nasty hack. Please
> use security = domain.

"security = server" mode is also known as pass-through authentication.
There are some notes and references here:

Chris -)-----

"Implementing CIFS - the Common Internet FileSystem" ISBN: 013047116X
Samba Team -- http://www.samba.org/     -)-----   Christopher R. Hertel
jCIFS Team -- http://jcifs.samba.org/   -)-----   ubiqx development, uninq.
ubiqx Team -- http://www.ubiqx.org/     -)-----   crh at ubiqx.mn.org
OnLineBook -- http://ubiqx.org/cifs/    -)-----   crh at ubiqx.org

More information about the samba-technical mailing list