On Thu, 2002-11-28 at 01:58, Jim Morris wrote:
Andrew (or anyone),
As an alternative to modifying Samba, is there any way that the Samba
logon could be aborted as late as the processing of the Windows logon
scripts? If I could somehow force the user to log back out at that
point (via
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Wed, 27 Nov 2002, Jim Morris wrote:
Now their corporate headquarters has identified this issue (unlimited
login attempts allowed) as the primary violation on a recent security
audit of the network in this branch office of the company. I
On Wed, 2002-11-27 at 08:22, Jim Morris wrote:
Hi All,
I have been using Samba for a long time, as a network administrator and
as a network consultant (since 1994). For the first time, I have had
someone ask me how to setup Samba to deny access to a user after 3
unsuccessful logon
Andrew,
Thanks for your detailed response on this subject.
As everyone on this list is probably aware, the use of encrypted
passwords and PAM password authentication are an apparently mutually
exclusive options with Samba 2.2.x. This is stated up front in the
help
for the 'obey pam
Andrew (or anyone),
As an alternative to modifying Samba, is there any way that the Samba
logon could be aborted as late as the processing of the Windows logon
scripts? If I could somehow force the user to log back out at that
point (via the logon script), then that may be a temporary
On Wed, Nov 27, 2002 at 08:51:44AM -0600, Jim Morris wrote:
It would also prevent domain logons, and exposes bugs in other parts of
Microsoft's client.
The domain in this case is controlled by Samba. Most of the clients are
Windows 95/98 clients, and testing with Windows 98 seems to show
On Wednesday, November 27, 2002, at 09:12 AM, Steve Langasek wrote:
With Win95/98 it might not be such an issue. If you have any member
servers in your domain, it IS an issue, because the only way to get
recent versions of Windows to negotiate plaintext auth is for the
server
to say it does
On Tue, Nov 26, 2002 at 03:22:48PM -0600, Jim Morris wrote:
Alternatively, how difficult would it be to modify Samba to support an
option like this directly, within the constructs of the smbpasswd file?
What is your timeframe on this ? Do you need it to work on 2.2.x or
later ? It certainly
On Wed, 27 Nov 2002, Jim Morris wrote:
Andrew (or anyone),
As an alternative to modifying Samba, is there any way that the Samba
logon could be aborted as late as the processing of the Windows logon
scripts? If I could somehow force the user to log back out at that
point (via the
On Thu, 2002-11-28 at 01:51, Jim Morris wrote:
Andrew,
Thanks for your detailed response on this subject.
As everyone on this list is probably aware, the use of encrypted
passwords and PAM password authentication are an apparently mutually
exclusive options with Samba 2.2.x. This is
Hi All,
I have been using Samba for a long time, as a network administrator and
as a network consultant (since 1994). For the first time, I have had
someone ask me how to setup Samba to deny access to a user after 3
unsuccessful logon attempts. This is part of a new corporate security
policy at
11 matches
Mail list logo