[Samba] security = server [was Re: Problems with 2003 Server and
Samba 3.0.1]
Gerald (Jerry) Carter
jerry at samba.org
Fri Jan 9 21:42:44 GMT 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Fri, 9 Jan 2004, Andrew Bartlett wrote:
> > hmmm...have you considered try security = domain ? it could also be an
> > issue in your configuration with SMB signing.
>
> I broke that so many times over the course of my NTLM2 changes it became
> quite silly. I think it's finally all OK in 3.0.2pre1, but it's also a
> good reason to upgrade your network to 'security=domain'.
The official stance is that security = server will continue to
provide past functionality (so we promise not to break it), but
it is inherently a bad idea due to the protocol mechanisms
needed to make it work. When possible, always use
"security = domain".
cheers, jerry
----------------------------------------------------------------------
Hewlett-Packard ------------------------- http://www.hp.com
SAMBA Team ---------------------- http://www.samba.org
GnuPG Key ---- http://www.plainjoe.org/gpg_public.asc
"If we're adding to the noise, turn off this song" --Switchfoot (2003)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.0 (GNU/Linux)
Comment: For info see http://quantumlab.net/pine_privacy_guard/
iD8DBQE//yBUIR7qMdg1EfYRApNWAKCckfGCL9sSBAi3a5UKpWH7GkIeegCgqkbp
8yyF1WhJ0JbnMTQ/0QqXVpo=
=yBST
-----END PGP SIGNATURE-----
More information about the samba
mailing list