Re: [Samba] Samba vs Microsoft Logon Protocols
On Wed, Sep 26, 2007 at 10:29:09AM -0400, Server Gremlin wrote: > Volker Lendecke wrote: > >On Wed, Sep 26, 2007 at 10:01:40AM -0400, Server Gremlin wrote: > > > >>If my "mapping" of the notes in the smb.conf man page to the Microsoft > >>jargon is incorrect, then could someone please provide me with a correct > >>one? In particular, I am most curious to know if I am right about NT1 > >>being the same thing as NTLMv1. If it is, then what is NTLMv2? > >> > > > >The full story can be found on http://davenport.sourceforge.net/ntlm.html. > > > >But beware, this is not a particularly easy read :-) > > > >Volker > > > Bring the pain!!! Thanks, love it. That looks like a wealth of great > information if I can manage to grasp it. I'd still like a simple answer > to "Is NT1 going to make my Samba server use NTLMv1, NTLMv2, or what?" > if anyone knows. The SMB protocol dialects and the authentication protocols are somewhat orthogonal. The mapping you are trying to make simply does not make sense. Simo. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Problem with Samba-3.0.25rc3 & idmap_ldap (winbind dumps core)
On Tue, May 01, 2007 at 02:49:10AM -0500, Don Meyer wrote: [...] > Then I traced the secret retrieval process back to passdb/secrets.c, > where I then traced the secrets_store_generic function back out to > the 'net idmap secret' command. For others reference, to set the > ldap_user_dn password for each defined domain, and for the idmap > alloc config side, you use the following commands: > > net idmap secret > net idmap secret alloc > > > (Note: A little pointer dropped in the man page for idmap_ldap would > have been quite helpful here...) There is a note in the man pages that say: NOTE In order to use authentication against ldap servers you may need to provide a DN and a password. To avoid exposing the password in plain text in the configuration file we store it into a security store. The "net idmap " command is used to store a secret for the DN specified in a specific idmap domain. From: http://www.samba.org/samba/docs/man/manpages-3/idmap_ldap.8.html [..] > I'm having trouble tracing this beyond the idmap_init function in > nsswitch/idmap.c. > > > If this points to a problem in samba, I hope this helps. On the > other hand, if this is a problem in my setup, any pointers in the > direction of fixing it would be greatly appreciated. A core dump is definitively an issue, I will try to reproduce and fix it today on my train trip or at worst tomorrow. Simo. -- Simo Sorce [EMAIL PROTECTED] --- Samba Team http://www.samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Issue with mounted drive
On Tue, Apr 24, 2007 at 10:24:41AM -0500, Phusion wrote: > The first three mounts are on a NT4 domain, while the last is on a > active directory domain. I can reboot the RHEL4 ES server and when > that reboots it gets mounted again, but how can I avoid doing it this > way. You can't with smbfs, it is a known issue. Smbfs is deprecated anyway and nobody supports it in the kernel anymore, switch to cifs vfs. Simo. -- Simo Sorce [EMAIL PROTECTED] --- Samba Team http://www.samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] question re multiple backends and the 'guest' backend
Sun, Apr 22, 2007 at 06:35:00AM -0500, Gerald (Jerry) Carter wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Gary Dale wrote: > > I suspect that "guest" will simply allow someone to log on as a guest > > with whatever privileges (usually none) you give to guests. > > The "guest" backend is builtin and should not be specified > in smb.conf. We also removed the support foir multiple passdb backends in latest versions of samba IIRC, so passdb backend should never list more than 1 backend. -- Simo Sorce [EMAIL PROTECTED] --- Samba Team http://www.samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
