of keytabs, kerberos and winbindd

Ondrej Valousek webserv at s3group.cz
Fri Jun 15 01:50:05 MDT 2012

On 06/15/2012 12:11 AM, simo wrote:
> I think we should strongly consider this option in future, it just makes
> things a lot simpler on many angles and will allow us to avoid having
> some code depend on the secrets code which is a plus as it streamlines
> some dependencies (only for Krb5 for now I know, but it's a start).
I strongly agree here as well - I did not know Samba has to maintain its own secrets.tdb. It would be nice if samba could really maintain 
system Kerberos database (I see it as another big benefit) so that other services (sshd, http, nfs) can make use of it.
Hopefully this idea will not be forgotten (as well as the idea of gss-proxy).


More information about the samba-technical mailing list