How to secure nmbd transactions?

[Vijaya Upadhyaya K]

Thanks for the valuable inputs, Chris.

I am trying to see if it is possible to secure nmbd’s announcement
about Samba server’s presence (the one that appears in the Windows
"Network Neighborhood" view) and nmbd’s  reply to name resolution
requests.

Regards,
Vijaya


On Thu, Jul 7, 2011 at 8:30 AM, Christopher R. Hertel <crh at ubiqx.mn.org> wrote:
> The nmbd daemon implements support for the NBT name service and portions of
> the NBT datagram service.  It also provides support for the Browse Service.
>
> All of those services were designed eons ago--back in the 80's--for local
> networks.  In addition, all of those services are being phased out by Microsoft.
>
> There's nothing really to secure, and attempting to design a system that
> would provide security (one that Microsoft and other implementations are
> unlikely to use) would seem to be a waste of time.
>
> What is it you are hoping to make more secure?
>
> Chris -)-----
>
> Vijaya Upadhyaya K wrote:
>> Greetings!
>>
>> Samba provides mechanisms to secure both SWAT and smbd transactions.
>> What is the mechanism to be used for securing nmbd transactions? Any
>> info/pointers in that direction would be of great help.
>>
>> Regards,
>> Vijaya
>
> --
> "Implementing CIFS - the Common Internet FileSystem" ISBN: 013047116X
> Samba Team -- http://www.samba.org/     -)-----   Christopher R. Hertel
> jCIFS Team -- http://jcifs.samba.org/   -)-----   ubiqx development, uninq.
> ubiqx Team -- http://www.ubiqx.org/     -)-----   crh at ubiqx.mn.org
> OnLineBook -- http://ubiqx.org/cifs/    -)-----   crh at ubiqx.org
>