[Samba] Samba StartTLS

zoolook nbensa at gmail.com
Sat Nov 12 13:39:18 MST 2011

2011/11/12 steve <steve at steve-ss.com>:

> Nearly understood it but I'm missing this: How does the username and
> password that is typed in on the win client travel over the network to the
> samba (and in my case also ldap) server? It must be sent as plain text no?
> Cheers, Steve.

Yup... more or less. I don't know the internals of NTLM(or whatever 7
is using). But yes, the username and a hash of the password travels
over the network to the samba server, not openldap. You can add
kerberos to the mix if you're concerned about security.

More information about the samba mailing list