[Samba] Domain question

Douglas.Shaw at pb.com Douglas.Shaw at pb.com
Tue Apr 2 13:53:03 GMT 2002


I have a question about Samba's interaction with the PDC and SAM database
on the windows domain. There are some in my company who say that Samba must
read and write to the SAM databse in order to authenticate a user. This,
according to them, poses a security risk in that a UNIX user could obtain
tools to gain access to the SAM, retrieve all passwords and potentially
corrupt the database. My question is simple, is this true and is there a
way to ease their concerns?

Thanks,

Please respond to:
Douglas.Shaw at pb.com





More information about the samba mailing list