[Samba] ADS, pam_winbind and vsftpd

Stefan G. Weichinger lists at xunil.at
Thu Nov 5 03:19:25 MST 2009

Stefan G. Weichinger schrieb:
> Stefan G. Weichinger schrieb:
>> Is it a bug in the old samba-release or just my mistake?
> Should be my mistake. Upgrade samba now, same behavior.
> So it is my stupid config ...

And one more follow-up-myself ... but maybe helpful for others searching
the web in the future ...


It works now.

Edited /etc/pam.d/vsftpd to include the common files:

# cat vsftpd
auth include        common-auth
account  include        common-account
password include        common-password
session include        common-session

while those included files are:

# cat common-auth
auth    sufficient      pam_winbind.so
auth    required        pam_unix.so nullok_secure use_first_pass

# cat common-account
account sufficient	pam_winbind.so
account	required	pam_unix2.so

# cat common-password
password sufficient pam_winbind.so
password required       pam_pwcheck.so	nullok
password required       pam_unix2.so    nullok use_first_pass use_authtok

# cat common-session
session	required	pam_limits.so
session	required	pam_unix2.so


I tested by using right and wrong password, looks OK to me.
Could someone please let me know if this PAM-setup is safe?

Thanks a lot ... Stefan

More information about the samba mailing list