Re: [Samba] Samba Password Aging
On Tue, 2004-02-03 at 09:12, Kenneth Loafman wrote: Samba version 2.999+3.0cvs20020906-1 for Debian Somehow the Samba password is aging and is requiring a reset once a month for a couple of users. I can't see anything in the man pages to indicate that the passwords age, so how is Samba doing it, and how do I stop this behavior? By not running such an old version of Samba. Current versions of samba in debian use smbpasswd by default (will keep tdbsam if you upgrade however) and do not have the 21 day password expiry. pdbedit allows you to see into the tdbsam. Andrew Bartlett -- Andrew Bartlett [EMAIL PROTECTED] Manager, Authentication Subsystems, Samba Team [EMAIL PROTECTED] Student Network Administrator, Hawker College [EMAIL PROTECTED] http://samba.org http://build.samba.org http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba Password Aging
Andrew Bartlett wrote: On Tue, 2004-02-03 at 09:12, Kenneth Loafman wrote: Samba version 2.999+3.0cvs20020906-1 for Debian Somehow the Samba password is aging and is requiring a reset once a month for a couple of users. I can't see anything in the man pages to indicate that the passwords age, so how is Samba doing it, and how do I stop this behavior? By not running such an old version of Samba. Current versions of samba in debian use smbpasswd by default (will keep tdbsam if you upgrade however) and do not have the 21 day password expiry. pdbedit allows you to see into the tdbsam. Updated to latest Debian (3.0x) and it kept the tdb password file. Any way to convert back to smbpasswd without a complete uninstall/reinstall? ...Ken -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba Password Aging
Kenneth Loafman wrote: Andrew Bartlett wrote: On Tue, 2004-02-03 at 09:12, Kenneth Loafman wrote: Samba version 2.999+3.0cvs20020906-1 for Debian Somehow the Samba password is aging and is requiring a reset once a month for a couple of users. I can't see anything in the man pages to indicate that the passwords age, so how is Samba doing it, and how do I stop this behavior? By not running such an old version of Samba. Current versions of samba in debian use smbpasswd by default (will keep tdbsam if you upgrade however) and do not have the 21 day password expiry. pdbedit allows you to see into the tdbsam. Updated to latest Debian (3.0x) and it kept the tdb password file. Any way to convert back to smbpasswd without a complete uninstall/reinstall? Never mind. smbpasswd and smb.conf man pages answered it. A simple change to 'passdb backend' and a 'pdbedit -e ...' fixed it. Now, no more evil password aging. ...Ken -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Samba Password Aging
Samba version 2.999+3.0cvs20020906-1 for Debian Somehow the Samba password is aging and is requiring a reset once a month for a couple of users. I can't see anything in the man pages to indicate that the passwords age, so how is Samba doing it, and how do I stop this behavior? One user is on Windows 2000 and the other on Windows XP. The Windows passwords are not aging and neither are the Linux passwords on the Samba server itself, just the Samba password. Plus, with the new *.tdb format, how do you see what users are there? This seems to be a valid security hole if there is no Samba machanism to see into this mysterious database to find out what settings are there and to audit the users that might show up without authorization. ...Thanks, ...Ken -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Samba password aging w/win98 Clients
Hello all. Thanks so much with the assistance people provided with helping me set up a pdc, and giving me the hints to be able to change my smbpasswd and have it sync with the passwd file, from the win98 client. Now I need to figure out how to enforce password aging so people will change their passwords, and be prompted at the win98 client to do so. Here is what happens now. When the unix password expires, the win98 client user can still log into the domain, it looks like because the smbpasswd does not expire. Any other function that requires the unix passwd (mail, ssh) does not work of course. Here is my chat line in the smb.conf: passwd program = /usr/bin/passwd %u passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n unix password sync = Yes This part works fine. When the smbpasswd is changed the unix passwd is changed as well. Is there any way to have them expire at the same time as well and a prompt sent out to the win98 clients so they know to change the password? Thanks in advance everyone! Bob -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
