[Samba] winbind cache time

Andrew Bartlett abartlet at samba.org
Sun Dec 4 13:11:55 GMT 2005


On Mon, 2005-11-28 at 12:31 -0600, Gerald (Jerry) Carter wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> Adam Clark wrote:
> 
> | http://lists.samba.org/archive/samba-technical/2003-February/027095.html
> |
> | Which confused me a bit.
> 
> Ignore that mail.  Out of date.
> 
> | Is the argument to "winbind cache time" in seconds?
> | And what is the default value for this parameter?
> 
> yes.  it's in seconds.  Default is 5 minutes (300 seconds).
> 
> | With that in mind, how long after a password change can
> | a user be guaranteed To be authenticated properly with ntlm_auth?
> 
> Winbindd does not cache passwords.  So the answer
> really depends on your DC.  There was a Windows 2003 bug
> where the DC would continue to authenticate the old password
> for a period of time.

I think it's claimed to be a feature, and as far as my tests showed, it
appeared in Win2k3 SP1

Andrew Bartlett

-- 
Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Student Network Administrator, Hawker College  http://hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba/attachments/20051205/024db35b/attachment.bin


More information about the samba mailing list