On Mon, Jul 28, 2008 at 01:32:49PM -0700, Amin Al-Regan wrote: > Is there are way to also hide the Samba password hashes without breaking > Samba functionality? Say, by using some LDAP rights-management tool to > limit access to these attributes to certain accounts. Or does Samba require > these hashes to be generally readable?
Samba itself needs to be able to read and write its password attributes, but nss_ldap does not need to see them at all. You should fix that wiki page and add the appropriate fds acl settings there. Thanks, Volker
pgpzelhw2mqdj.pgp
Description: PGP signature
-- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
