Hello,
Does anyone know how to unify the /etc/passwd and NT style
passwords in SAMBA? It seems like this is going to be more and more
important when the NTDOM stuff gets release at some point in time.
I've thought about it and can come up with:
o Create a smbpasswd file and use the SMB PAM module
to authenticate everyone.
o Just use the less secure passwords.
o Create a new unified passwd system file for Unix.
Can it still be used with NIS/NIS+, etc?
o.Make a new module for NT/Win95 systems that is more
compatible with SAMBA/Unix.
o Wait for MS to adopt Kerberos.
Is there any other ideas?
...Jeff
On Tue, 3 Feb 1998 samba-list@zimage.com wrote:> Hello, > Does anyone know how to unify the /etc/passwd and NT style > passwords in SAMBA? It seems like this is going to be more and more > important when the NTDOM stuff gets release at some point in time. > I've thought about it and can come up with: > > o Create a smbpasswd file and use the SMB PAM module > to authenticate everyone. > o Just use the less secure passwords. > o Create a new unified passwd system file for Unix. > Can it still be used with NIS/NIS+, etc? > o.Make a new module for NT/Win95 systems that is more > compatible with SAMBA/Unix. > o Wait for MS to adopt Kerberos. > > Is there any other ideas? > > ...JeffHi Jeff, I don't have any other ideas, but I did want to comment on your last option. Do not hold your breath for MS to adopt standard Kerberos. Last time I heard (back in October I think) Microsoft decided not to adopt standard Kerberos v5 in NT 5 and confirmed that they will instead implement a proprietary flavor of Kerberos v5 that may be incompatible with existing systems. I hope I am wrong on this one and that someone else will have more information. Best, Sean ------------------------------------------ Sean E. Millichamp, Consultant Ingematics - A Division of Compu-Aid, Inc. Voice: 810-756-8000, Fax: 810-756-8004 sean@compu-aid.com
hi jeff, your list is complete, as far as i know. some are more difficult / troublesome than others. oh. there's NISGINA, of course. luke On Tue, 3 Feb 1998 samba-list@zimage.com wrote:> Hello, > Does anyone know how to unify the /etc/passwd and NT style > passwords in SAMBA? It seems like this is going to be more and more > important when the NTDOM stuff gets release at some point in time. > I've thought about it and can come up with: > > o Create a smbpasswd file and use the SMB PAM module > to authenticate everyone. > o Just use the less secure passwords. > o Create a new unified passwd system file for Unix. > Can it still be used with NIS/NIS+, etc? > o.Make a new module for NT/Win95 systems that is more > compatible with SAMBA/Unix. > o Wait for MS to adopt Kerberos. > > Is there any other ideas? > > ...Jeff >
At 12:12 03-02-98 +1100, samba-list@zimage.com wrote:>Hello, > Does anyone know how to unify the /etc/passwd and NT style >passwords in SAMBA? It seems like this is going to be more and more >important when the NTDOM stuff gets release at some point in time. > I've thought about it and can come up with: > > o Create a smbpasswd file and use the SMB PAM module > to authenticate everyone. > o Just use the less secure passwords. > o Create a new unified passwd system file for Unix. > Can it still be used with NIS/NIS+, etc? > o.Make a new module for NT/Win95 systems that is more > compatible with SAMBA/Unix. > o Wait for MS to adopt Kerberos. > > Is there any other ideas?Implement KerbNet (Kerberos 5). You don't need to wait for M$. In fact, they'll probably do something M$ proprietary anyway (like they did MS-CHAP). KerbNet has Win95, WinNT, and MAC clients. I'm implementing now, with SSH for strong host authentication. ___________________________________________________ Roeland M.J. Meyer, ISOC (InterNIC RM993) e-mail: mailto:rmeyer@mhsc.com Personalweb pages: http://www.mhsc.com/~rmeyer Company web-site: http://www.mhsc.com/ ___________________________________________ May you, and yours, have a prosperous New Year, in whichever endeavour you may encounter.