[Samba] password case sensitivity
Andrew Bartlett
abartlet at samba.org
Mon Jul 22 04:31:03 GMT 2002
¨Ìº¿¿ß wrote:
>
> Dear all,
>
> I have a problem regarding to password case sensitivity.
>
> Our company's servers are configured to use plain text passwords
> with PAM due to historical reasons. My collegues encountered a long
> delay each time they boot their PC and map the network shared disks.
> They sometimes even failed connection. The server always says:
>
> Jul 18 17:54:37 atlas PAM_pwdb[30192]: authentication failure; (uid=0)
> -> imacat for samba service
>
> or
>
> Jul 18 17:59:52 atlas samba(pam_unix)[30197]: authentication failure;
> logname= uid=0 euid=0 tty=samba ruser=
> rhost=streetwalker.pristine.com.tw user=imacat
>
> After several days of debugging, I found that the server had
> received the password for 3 times: The client sent an upper-cased
> version of the password and failed twice, and then the untouched password
> (which is correct and successful).
>
> I guess it's the historical compatibility reason that Windows 98
> does so. I can try the "password level", though, but it can't fix the
> delay (and maybe timeout) problem.
The delay is due to the PAM module. Look into the doco for your pam
modules for somthing like 'nodeley'
> Since it will send the untouched password at last, is there a way to
> tell Windows 98 clients to send the untouched password first? Is there
> a possible way to modify some registry entries on this? Or, should I
> turn to encrypted passwords and make the hard way instead?
Win98 sends the passwords only once. In UPPER case. We then try and
figure out what case the password really is in.
You sould turn on encrypted passwords, as it makes this all 'go away'.
--
Andrew Bartlett abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team abartlet at samba.org
Student Network Administrator, Hawker College abartlet at hawkerc.net
http://samba.org http://build.samba.org http://hawkerc.net
More information about the samba
mailing list