losing connections to password server
Christopher R. Hertel
crh at ubiqx.mn.org
Tue May 27 17:15:38 GMT 2003
On Tue, May 27, 2003 at 04:32:33PM +0000, jra at dp.samba.org wrote:
> On Tue, May 27, 2003 at 09:38:16AM -0400, Brandon Craig Rhodes wrote:
> >
> > Why does server_validate() simply give up rather than re-establishing
> > its connection to the password server? Though I am not fluent in the
> > SMB protocol, perhaps the cluster server process passes along to its
> > client workstation the session key it receives from the password
> > server, which means the password hashes submitted by the client would
> > not work on a subsequent connection, whose session key would be
> > different. So server_validate() must give up.
>
> Indeed. That's why security = server is at best a nasty hack. Please
> use security = domain.
"security = server" mode is also known as pass-through authentication.
There are some notes and references here:
http://ubiqx.org/cifs/SMB.html#SMB.8.8
Chris -)-----
--
"Implementing CIFS - the Common Internet FileSystem" ISBN: 013047116X
Samba Team -- http://www.samba.org/ -)----- Christopher R. Hertel
jCIFS Team -- http://jcifs.samba.org/ -)----- ubiqx development, uninq.
ubiqx Team -- http://www.ubiqx.org/ -)----- crh at ubiqx.mn.org
OnLineBook -- http://ubiqx.org/cifs/ -)----- crh at ubiqx.org
More information about the samba-technical
mailing list