[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Samba/LDAP + passwords



>Hmm.  AFAIK SMB uses a proprietary encryption method.  Unless you were
>running cleartext password authentication I don't see how the server running
>samba could decrypt the password and then re-encrypt it in DES or MD5 or
>whatever method the password is stored in.  Is there something I've missed?

Passwords for password change operations (a seperate RPC call than 
password authenticate) arrive in a form from which the clear text can be 
derived.

-- 
-----------------------------------------------------------
Ximian GNOME, Evolution, LTSP, and RedHat Linux + LVM & XFS
-----------------------------------------------------------