SAMBA digest 2009: NT Workstation "Default" Username and
Florian G. Pflug
fgp at fgp.priv.at
Mon Mar 8 21:56:45 GMT 1999
On Mon, Mar 08, 1999 at 09:48:00AM +1100, Sigmund Skjelnes wrote:
> Hi!
> This is because NT and Samba don't understand each others encryption, plain
> password must be used. The NT service pack 3 makes an change in the system,
> so encrypted passwors are always tried first. To make it use plain
> passwords at all, a registry edition is required. Hence you get it thorugh
> on the second attempt, this is done on your NT. It seems not possible to
> make NT and Samba talk the same language on encrypted passwords, maybe
> someone out there have an solution?
Hi
IMHO NT will never send your username/password cleartext to ANY server,
without prompting you (at least after sp3). This is an important security
feature - it was possible to for example create a web-page which links to an
smb-server (<a href="//server/share/file....">...), and nt would send your
"secret" password to this server... NOT GOOD!
NT can easily use samba with encrypted passwords. Just ass "encrypted
passwords = yes" (or similar) to your smb.conf. Then add the users you need
to your smbpasswd (as root with smbpasswd -a <username>). This was it. You
can now disable only clear-text related registry entries on your nt-box.
greetings, Florian Pflug
More information about the samba
mailing list