On Sun, 2021-10-24 at 18:30 +1300, Andrew Bartlett wrote:> On Sun, 2021-10-24 at 01:11 -0400, Eric Levy via samba wrote: > > I am not familiar at this time with these components, but it would > > seem > > that the level of complexity from using such an external tool might > > defeat the purpose of seeking to eliminate the need for a domain > > server. > > Yeah. I'm pretty sure you get the idea we think you should work with > the tools and protocols we have rather than re-invent the wheel. > > For no-security client-side asserted permissions NFS and sec=sys (or > whatever it is called these days) is over => THERE. > > (slightly) Sorry! > > Andrew,Right, so coming full circle to my opening comments, we have a case that is not supported internally by Samba, and I wish to inquire about enthusiasm for keeping open any possibility for considering such support in future development.
On Sun, 2021-10-24 at 03:23 -0400, Eric Levy via samba wrote:> Right, so coming full circle to my opening comments, we have a case > that is not supported internally by Samba, and I wish to inquire about > enthusiasm for keeping open any possibility for considering such > support in future development.I don't have any enthusiasm for host-based (rather than user based) authentication, if that is what you mean, but do suggest a way, without changing Samba, that you could achive your goal. Other remote file systems may offer host-based authentication. Andrew, -- Andrew Bartlett (he/him) https://samba.org/~abartlet/ Samba Team Member (since 2001) https://samba.org Samba Developer, Catalyst IT https://catalyst.net.nz/services/samba