I'm using an NT domain which I don't administer as a password
server for two samba servers I run, and I'm running into a problem
with accounts getting locked out for invalid passwords. Looking at
the server_validate function in password.c, I see that this (the bad
passwords) is deliberate - an attempt to detect a security hole in NT,
but this is causing a lot of problems when installing a series of "You
must reboot your system" applications, since each reboot causes a pair
of invalid login attempts. Does anyone know of a less hostile way of
of detecting this security hole (so that it can go into password.c),
or should I just hardcode the flag that says the server is safe?
--
#include <disclaimer.h> /* Sten Drescher */
Unsolicited bulk email will be stored and handled for a US$500/KB fee.
Amendment II, Revised: A well-regulated population being necessary to
the security of a police state, the right of the Government to keep
and destroy arms shall not be infringed.
