Re: [Samba] quick pam_winbind.so question
Makes perfect sense. I should have looked at a trace, thanks guys! ~ Daniel [EMAIL PROTECTED] wrote: [EMAIL PROTECTED] wrote: It does work, but when I enter a wrong password I get this error inlog.winbindd:Plain-text authentication for user jarboed returned NT_STATUS_WRONG_PASSWORDIs there a way that pam_winbind.so can encrypt the passwords rather thansend them plaintext? All communications with the DC are encrypted - this message refers tothe fact that your typed a plaintext password, rather than supplying anNTLM challange-response pair.Andrew Bartlett
[Samba] quick pam_winbind.so question
2.2.6 installed from rpm on rh 7.2 system... I'm trying to use pam_winbind and apache's basic authentication to restrict access to certain directories served by apache. It does work, but when I enter a wrong password I get this error in log.winbindd: Plain-text authentication for user jarboed returned NT_STATUS_WRONG_PASSWORD Is there a way that pam_winbind.so can encrypt the passwords rather than send them plaintext? Thanks, ~ Daniel -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] quick pam_winbind.so question
[EMAIL PROTECTED] wrote: 2.2.6 installed from rpm on rh 7.2 system... I'm trying to use pam_winbind and apache's basic authentication to restrict access to certain directories served by apache. It does work, but when I enter a wrong password I get this error in log.winbindd: Plain-text authentication for user jarboed returned NT_STATUS_WRONG_PASSWORD Is there a way that pam_winbind.so can encrypt the passwords rather than send them plaintext? All communications with the DC are encrypted - this message refers to the fact that your typed a plaintext password, rather than supplying an NTLM challange-response pair. Andrew Bartlett -- Andrew Bartlett [EMAIL PROTECTED] Manager, Authentication Subsystems, Samba Team [EMAIL PROTECTED] Student Network Administrator, Hawker College [EMAIL PROTECTED] http://samba.org http://build.samba.org http://hawkerc.net -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] quick pam_winbind.so question
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Thu, 17 Oct 2002 [EMAIL PROTECTED] wrote: 2.2.6 installed from rpm on rh 7.2 system... I'm trying to use pam_winbind and apache's basic authentication to restrict access to certain directories served by apache. It does work, but when I enter a wrong password I get this error in log.winbindd: Plain-text authentication for user jarboed returned NT_STATUS_WRONG_PASSWORD Is there a way that pam_winbind.so can encrypt the passwords rather than send them plaintext? pam_winbind.so does not authenticate users using plain text passwords. The messages you see (assuming you get this from 'wbinfo -a') has to do with wbinfo sending winbindd the clear text. Winbindd uses NTLMv1 for authentication. Look at a packet trace for further convincing. cheers, jerry - Hewlett-Packard - http://www.hp.com SAMBA Team-- http://www.samba.org GnuPG Key http://www.plainjoe.org/gpg_public.asc ISBN 0-672-32269-2SAMS Teach Yourself Samba in 24 Hours 2ed I never saved anything for the swim back. Ethan Hawk in Gattaca -BEGIN PGP SIGNATURE- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://quantumlab.net/pine_privacy_guard/ iD8DBQE9rz6KIR7qMdg1EfYRAgVEAKCIEua2twmZWGS+3jB1YN/2zFN2FgCg8nD+ iL15Hve/LuG7gmsgJi68pV4= =iOhE -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba