Samba vs PAM (authentication against NDS)
marek at ryston.cz
Fri Mar 17 12:46:51 GMT 2000
> Samba will authenticate against the smbpasswd file when the parameter
> "encrypt passwords" is set to true in the smb.conf file. In order to use
> a PAM based password, you are going to have to disable the encrypt
> passwords parameter. This means, if you are using NT 4.0 SP3 or greater
> or a more recent release of Win95 (I can't remember exactly which) or
> any release of Win98, that you will have to enable clear text passwords
> from the desktop with a registry hack. See the Win95.txt and WinNT.txt
> files in the documents tree in the Samba directory for details.
Yes but that's what I really don't want to do.. This way it would
send plaintext NDS passwords over the net.. with our network topology
this is unacceptable security measure.. :(
Isn't there another way? It shouldn't be so difficult !
> Marek Les wrote:
> > I wonder, in which way Samba supports PAM? I downloaded
> > samba-2.0.6-19991110 and there I found in changelog it's compiled
> > with --with-pam..
> > My desire is to authenticate Samba users against Novell NDS. I
> > managed to do this (under Linux) with many programs but Samba somehow
> > resists :)
> > I put something like this into /etc/pam.d/samba :
> > auth required /lib/security/pam_ncp_auth.so use_first_pass
> > server=some_server
> > But Samba still authenticates against smbpasswd :( .. one more
> > question - is there a way to completely disable the need of smbpasswd
> > if I want to authenticate _only_ against Novell NDS ?
Marek "MaX" Leš
More information about the samba