[Samba] Valid characters in NT user/pass, wbinfo -a

Andrew Bartlett abartlet at samba.org
Wed Nov 6 00:03:34 GMT 2002


On Wed, 2002-11-06 at 00:27, daniel.jarboe at custserv.com wrote:
> Samba 2.2.6.  I've been looking for (without success) a doc that 
> specifies what characters are valid in an NT login/password.  A script 
> will popen  '/usr/bin/wbinfo -a MY_DOMAIN+"'+user+'"%"'+passw+'"' where 
> user and passw are untrusted submitted values, so you can understand my 
> concern.  I want to keep things tight but not reject valid user/pass 
> combinations.

Don't use it like that.  Instead use pam_winbind.  (Because this is a
standard interface that won't change).  If you are using perl for your
scripting language, then you can use Authen::PAM to hook in with it.

Andrew Bartlett

-- 
Andrew Bartlett                                 abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet at samba.org
Student Network Administrator, Hawker College   abartlet at hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba/attachments/20021106/4d62914c/attachment.bin


More information about the samba mailing list