Alan M Wright wrote: > On 11/20/08 14:49, Bill Shannon wrote: >> Afshin Salek wrote: >>> Guest authentication is not supported by CIFS server. >>> We haven't had any plans to support it so the data is still new :) >> >> Sigh. >> >> I guess that means I'm back to Samba for my home network. >> Getting authenticated access to work is just too painful. > > If it's for your home network, i.e. if workgroup mode is sufficient, > it should only require two things: > > 1. Add pam_smb_passwd.so.1 to /etc/pam.conf > > 2. Choose/create a Solaris user account and run the passwd command.
Sorry, what I meant was getting every other computer and every other person using every other computer in my house to understand and use authentication is just too hard. I've accepted the risk of having insecure access within my home. Just because our kernel mode CIFS support doesn't support it isn't going to stop me from doing it, so if the goal is to force me to have a secure network, you've failed. Given that I have so many other ways to allow unauthenticated access, including NFS, I don't see any reason to prevent me from having that choice with kernel mode CIFS support. And while we're on the subject, is the client mode CIFS support going to work with guest access to my Windows machine? Or do I need to uninstall OpenSolaris and replace it with Linux to get that? >> Is guest access really hard to implement, or is it just not considered >> important? > > As mentioned elsewhere, it's considered a security issue. Anonymous > connections are disabled on most implementations by default. It was > discussed during the CIFS PSARC case and we made a commitment not to > allow anonymous user sessions. It would require an ARC case to > introduce support for anonymous connections, which would probably > require additional justification (than provided above) to warrant > introducing a means of connecting to the system without traceable > credentials or authentication. So, compatibility with Windows is not sufficient justification? Isn't that why we're doing CIFS to begin with? _______________________________________________ cifs-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/cifs-discuss
