[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Samba/LDAP + passwords

To: Terry Ewing <tewing@ap.org>
Subject: Re: Samba/LDAP + passwords
From: Adam Williams6 <awilliam@whitemice.org>
Date: Mon, 4 Mar 2002 11:30:16 -0500 (EST)
Cc: openldap-software@OpenLDAP.org
In-reply-to: <0d8401c1c399$45b3d2f0$440a01a5@NYCDIG211>

>Hmm.  AFAIK SMB uses a proprietary encryption method.  Unless you were
>running cleartext password authentication I don't see how the server running
>samba could decrypt the password and then re-encrypt it in DES or MD5 or
>whatever method the password is stored in.  Is there something I've missed?

Passwords for password change operations (a seperate RPC call than 
password authenticate) arrive in a form from which the clear text can be 
derived.

-- 
-----------------------------------------------------------
Ximian GNOME, Evolution, LTSP, and RedHat Linux + LVM & XFS
-----------------------------------------------------------

Prev by Date: EMAIL SERVER & BIND UNDER LDAP
Next by Date: Re: EMAIL SERVER & BIND UNDER LDAP
Index(es):
- Chronological
- Thread