[Samba] Valid characters in NT user/pass, wbinfo -a
Andrew Bartlett
abartlet at samba.org
Wed Nov 6 00:03:34 GMT 2002
On Wed, 2002-11-06 at 00:27, daniel.jarboe at custserv.com wrote:
> Samba 2.2.6. I've been looking for (without success) a doc that
> specifies what characters are valid in an NT login/password. A script
> will popen '/usr/bin/wbinfo -a MY_DOMAIN+"'+user+'"%"'+passw+'"' where
> user and passw are untrusted submitted values, so you can understand my
> concern. I want to keep things tight but not reject valid user/pass
> combinations.
Don't use it like that. Instead use pam_winbind. (Because this is a
standard interface that won't change). If you are using perl for your
scripting language, then you can use Authen::PAM to hook in with it.
Andrew Bartlett
--
Andrew Bartlett abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team abartlet at samba.org
Student Network Administrator, Hawker College abartlet at hawkerc.net
http://samba.org http://build.samba.org http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba/attachments/20021106/4d62914c/attachment.bin
More information about the samba
mailing list