Should SWAT offer a way to login on systems with root access
disabled?
Gerald (Jerry) Carter
jerry at samba.org
Tue May 29 18:35:52 GMT 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Christian Perrier wrote:
> This was initially sent as bug #4663 but Jerry suggested
> I bring this to -technical so that it can be discussed with
> a wider audience:
>
> On Debian systems since the release of Etch and on Ubuntu
> systems for a while, the root account may be disabled. In such
> case, the first created user is generally added to sudoers.
>
> However, SWAT insists on login in with the root account
> and the root account Unix password.
>
> Would it be possible to offer an alternative login method
> for users of such setups?
My initial thought is that we could either doa check
against a user right (in the NT token) or a simple
gid check (including a "swat admins" global smb.conf paramter).
I think the latter is a better solution since it doesn't
require a running smbd to begin with.
cheers, jerry
=====================================================================
Samba ------- http://www.samba.org
Centeris ----------- http://www.centeris.com
"What man is a man who does not make the world better?" --Balian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFGXHKIIR7qMdg1EfYRAgpxAJwKl8/QJnzpnNdbYzjxQA1I4UnbPQCfYN6Q
B6jkBgY3D1hNiIHWY9LJ4bA=
=xaNM
-----END PGP SIGNATURE-----
More information about the samba-technical
mailing list