[Samba] Proposal to remove security=share in Samba 4.0

Jeremy Allison jra at samba.org
Fri Mar 2 15:24:24 MST 2012


On Thu, Mar 01, 2012 at 11:39:10PM +1100, Andrew Bartlett wrote:
> After feedback from my previous proposal, I am proposing to totally
> remove security=share from Samba 4.0.  security=share has been
> deprecated since Samba 3.6.
> 
> The attached patch shows the removal (a lot of complex code is going
> away, which I think is a very good thing).   
> 
> Naturally, full user-name/password authentication remain available in
> security=user and above.
> 
> The rationale is that for the bulk of security=share users, we just we
> need a very simple way to run a 'trust the network' Samba server, where
> users mark shares as guest ok.  This is still supported, and the
> smb.conf options are documented at
> https://wiki.samba.org/index.php/Public_Samba_Server
> 
> At the same time, I want to close the door on one of the most arcane
> areas of Samba authentication.
> 
> If you have any concerns about this, please let me know,

+1. After thinking about this for a while, I'm ok with this.

If we don't take the chance to remove it for Samba4, we'll
never get rid of it.

Jeremy.


More information about the samba-technical mailing list