samba - Dec 2000 - password validation

Hi All,

I have successfully installed Samba 2.0.7 under TRU64 unix 4.0F
with C2 security.  With "security=user" I can correctly mount
shares using the unix password, and with "security=server" I can
successfully mount shares using the NT password.  In the
"security=server" section, the smb.conf man page says:

              In this mode Samba will try to validate  the  user-
              name/password  by passing it to another SMB server,
              such as an NT box. If this fails it will revert  to
              "security = user", but note that if encrypted pass-
              words have been negotiated then Samba cannot revert
              back  to  checking  the UNIX password file, it must
              have a valid smbpasswd file to check users against.
              See  the  documentation file in the docs/ directory
              ENCRYPTION.txt for details on how to set this up.

My problem is that when "security=server" is set, I can't mount
a share using the unix password, even though my client is set to
use plain text passwords, and the documentation says that smbd 
should revert to "security=user".  Some debugging shows that
my client is sending plain text passwords when "security=user" but
is encrypting the passwords when "security=server".  How can I
configure samba so that it will NOT negotiate encrypted passwords
when "security=server" is set.  I have a box running Mandrake 7.0
and samba-2.0.6-1mdk.rpm that works exactly as I want it to, but I
can't seem to get the correct combination of compilation and
smb.conf options to get it working on TRU64.
-- 
Bob Sloane, University of Kansas Computer Center, Lawrence, KS, 66045
sloane@ukans.edu http://www.ukans.edu/home/sloane Phone:(785)864-0444

I think you have two choices here. You could try setting the NT machine
to use uncrypted passwords with the registry hacks included in the samba
package, or you could create an encrypted password on the unix box with
smbpasswd -a user pw. I use the latter method and it works fine, ie hits
the NT machine first and attempts to validate the user, and on failure
it will try the local password file. Good luck.

> My problem is that when "security=server" is set, I can't
mount
> a share using the unix password, even though my client is set to
<snip>
> can't seem to get the correct combination of compilation and
> smb.conf options to get it working on TRU64.

Hello,

when using "security = server" and "encrypt passwords = yes"
,
user is validate using secret.tdb, password server or /etc/password?
i have create diferrent password for all three above (but same username),
it seems it can use all of password.

i'm using samba 2.2.7, it seems the default value for "encrypt
passwords"
is "yes" (which is "no" in smb.conf man pages), is it
correct?

TIA.