S3 plain text to encrypted password transition

Andrew Bartlett abartlet at samba.org
Sun Aug 1 16:06:41 MDT 2010

On Wed, 2010-07-28 at 12:05 -0400, Yannick Bergeron wrote:
> fyi
> We do still have DOS, Win9x and other OS/SMB client that still require us to use these 3 settings on our Samba server
>         client lanman auth = Yes
>         client plaintext auth = Yes
>         encrypt passwords = No
> Currently on Samba 3.3.0 but in the process of upgrading to 3.5.4

Is this meant to be in response to the questions about 'update
encrypted'?  If so, then this should not impact you. 

But do those clients really require plaintext, or just lanman passwords?
Also, given how weak plaintext authentication is, would a long-term
alternative for your operation be to simply allowing guest access?

Andrew Bartlett

Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Cisco Inc.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 190 bytes
Desc: This is a digitally signed message part
URL: <http://lists.samba.org/pipermail/samba-technical/attachments/20100802/1262cc08/attachment.pgp>

More information about the samba-technical mailing list