[Samba] user authentication ....

Andrew Bartlett abartlet at samba.org
Sun Mar 28 00:59:59 GMT 2004

On Thu, 2004-03-25 at 11:17, prasad.vasireddy at criticalpath.net wrote:
> Hi..
>   If  i add these entries to the smb.conf in the GLOBAL parmeters.
>         update encrypted = Yes

This will only work if 'encrypt passwords = no', but 'encrypt passwords
= yes' is the default on Samba 3.0.  

Even if you set 'encrypt passwords = no' you must enforce the registry
hack on your clients.  This may also expose bugs in microsoft's client
implementation, as well as exposing plataintext passwords over the

>         smb passwd file = /etc/shadow

This is *compleatly wrong*.  Bogus.

The smb passwd file is 'smbpasswd', and cannot be in any way shared with
any other program.  It should be /etc/samba/smbpasswd, or any other
file, but it is *not* a shadow file.

>         unix password sync = Yes
>  I was getting following error messages.
> getsmbfilepwent: malformed password entry (uid not number)
> getsmbfilepwent: malformed password entry (no : after uid)
> getsmbfilepwent: malformed password entry (uid not number)
>  Please let me know if any one have seen these error messages.

Only if they do not read any of the documentation, or follow any of the

Andrew Bartlett

Andrew Bartlett                                 abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team  abartlet at samba.org
Student Network Administrator, Hawker College   abartlet at hawkerc.net
http://samba.org     http://build.samba.org     http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba/attachments/20040328/26fb32e9/attachment.bin

More information about the samba mailing list