[Samba] Doesn't require a password

James Bear james.s.bear at sendit.nodak.edu
Wed Sep 10 18:20:29 GMT 2003 

Here is my problem:

Previously, I was using Samba as a PDC and everybody logged in with WXP 
and then they had roaming profiles and all was grand, except sometimes 
my students had really big pictures and such being saved to their "My 
Documents."  That's bad.  When it came time to log off, other students 
sometimes had to wait 20 minutes.  A Bad thing.

So, this year, I scrapped the roaming profiles and got some XP Home 
Edition machines.  I simply shared files on the server using Samba. 
It's fine.  All the machines have a mapped network drive to the homes 
directory.  When they click it, they are prompted for a username and 
password.  They gain access to the server.  They can do things exactly 
as I want them to be able to do things.

One little problem.  A student pointed out that if he didn't enter a 
password, it worked just the same.  A user can enter any username and as 
long as it is a user on the server, they have access to that file 
without supplying a password or supplying a bogus password.  It's a bad 
thing.

Can anybody help?  Keep in mind that this is a modified smb.conf.  I 
previously had it when I had the samba as a PDC and some of the settings 
while seemingly illogical are carryovers.  Me not sharp enough or have 
enough time to bother with trying to change them.  Here is my smb.conf:

> # Samba config file created using SWAT
> # from 0.0.0.0 (0.0.0.0)
> # Date: 2003/09/10 12:54:53
> 
> # Global parameters
> [global]
> 	netbios name = WALDO
> 	encrypt passwords = Yes
> 	update encrypted = Yes
> 	null passwords = Yes
> 	passwd program = /usr/bin/passwd %u
> 	passwd chat = *New*password* %n\n *Retype*new*password* %n\n *passwd:*all*authentication*tokens*updated*successfully*
> 	log file = /var/log/samba/%m.log
> 	max log size = 1000
> 	socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
> 	add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u
> 	domain logons = Yes
> 	os level = 255
> 	domain master = Yes
> 	wins support = Yes
> 	default service = homes
> 	path = /home
> 	guest account = root
> 	read only = No
> 	printing = lprng
> 	browseable = No
> 	locking = No
> 
> [homes]
> 	comment = Home Directories
> 	guest account = %S
> 	valid users = %S
> 	browseable = Yes
> 
> [printers]
> 	comment = All Printers
> 	path = /var/spool/samba
> 	printable = Yes
> 
> [lab]
> 	path = /var/spool/samba
> 	printable = Yes
> 	printer name = lab
> 	oplocks = No

-- 

James Bear
www.montpelier.k12.nd.us

God is good...all the time.

More information about the samba mailing list