[Samba] Advice on Secure Samba usage

abartlet at samba.org abartlet at samba.org
Wed May 1 10:05:02 GMT 2002

On Wed, May 01, 2002 at 12:22:53PM -0400, Jason Stewart wrote:
> Hi Anthony,
> Read the smb.conf man page and look at the encrypt passwords = yes option. 
> Also, you can compile SSL-enabled Samba with the --with-ssl option at 
> ./configure time. There is more info about this in the smb.conf man page and 
> the Docs that come with the Samba source distribution. I have not actually 
> tried SSL-enabled Samba, but I do send encrypted passwords across the wire.

No windows client will connnect to an SSL-enabled samba server, unless you use 
some form of client-side proxy.

As such --with-ssl is useless with Windows clients.  We may well remove this 
option entirely, as it is much better implemented by use of stunnel and inetd.

(The code for this is *really* ugly)

Andrew Bartlett

More information about the samba mailing list