[Samba] [permissions] smbpasswd vs passwd

Andrew Bartlett abartlet at pcug.org.au
Thu Feb 21 14:15:09 GMT 2002 

Bill Schoolcraft wrote:
> 
> Hello Family,
> 
> I had encounted that as "user" I couldn't change my own passwd with
> "smbpasswd" and noticed the permission differences between smbpasswd
> and passwd.  This is Samba-2.2.2
> 
> -rwxr-xr-x    1 root     root       782415 Dec 28 03:14
> /usr/local/samba/bin/smbpasswd
> 
> -r-s--x--x    1 root     root        12244 Feb  7  2000
> /usr/bin/passwd
> 
> Is there a reason why the perms are not the same ?

Setuid root programs are *very* hard to write.  As such, smbpasswd is no
longer setuid root, it instead assumes that smbd is running on
localhost, and changes the password 'over the network'.  Should this not
be the desired behaviour, then look at pam_smbpass.  But I'm not sure
how safe pam_smbpass is, becouse it calls code not originally intended
to be setuid root...

Andrew Bartlett

-- 
Andrew Bartlett                                 abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet at samba.org
Student Network Administrator, Hawker College   abartlet at hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net

More information about the samba mailing list