Folks, I've missed the latest encrypted passwords thread, so forgive me if this is old hat for some of you. I'm running 2.0.3 with auth being handled by an NT PDC. It seems that some Win95 clients (namely those with later releases of the OS) have problems authenticating. I've got encrypt passwords = yes but it still seems only the old Win95 clients (clear text passwords) can auth without problems. Can someone shed some light on this for me? Cheers, ---- Jeff Newton Unix Systems Administrator PMC-Sierra Inc.
>I'm running 2.0.3 with auth being handled by an NT PDC. It seems that >some Win95 clients (namely those with later releases of the OS) have >problems authenticating. I've got encrypt passwords = yes but it >still seems only the old Win95 clients (clear text passwords) can >auth without problems.>Can someone shed some light on this for me?Well, its like this: Win95 responds with clear text passwords when the server asks for clear text passwords. Win95 responds with encrypted passwords when the server asks for encrypted passwords. Win98 will respond with encrypted passwords only. It won't except clear text password requests. (Unless you change the registry.) So if you have got encrypted passwords = yes, Win95 will respond with encrypted passwords only, since the server, i.e. Samba, asks for it. I don't know the later fixpacks for Win95. At least the first one still allows clear text passwords, though I wouldn't use it. You haven't changed the registry of these newer releases? Maybe they work like Win98. So if you change the registry to clear text password nothing would work. Hope this helps. Cheers, Johann Johann Zuschlag jozuschlag@online.de
On 27 Jun 99, "Johann Zuschlag" <jozuschlag@online.de> had this to say about Re: security = server & encrypted passwords:> Someone asked: > > >I'm running 2.0.3 with auth being handled by an NT PDC. It seems that > >some Win95 clients (namely those with later releases of the OS) have > >problems authenticating. I've got encrypt passwords = yes but it still > >seems only the old Win95 clients (clear text passwords) can auth without > >problems. > > >Can someone shed some light on this for me? > > Well, its like this: > > Win95 responds with clear text passwords when the server asks > for clear text passwords. Win95 responds with encrypted passwords > when the server asks for encrypted passwords. > > Win98 will respond with encrypted passwords only. It won't > except clear text password requests. (Unless you change the > registry.) > > So if you have got encrypted passwords = yes, Win95 will respond > with encrypted passwords only, since the server, i.e. Samba, asks > for it. > > I don't know the later fixpacks for Win95. At least the first > one still allows clear text passwords, though I wouldn't use it. > You haven't changed the registry of these newer releases? Maybe > they work like Win98. So if you change the registry to clear text > password nothing would work.Win95 with the vredir update will require the same reg hack to enable PlainText passwords. See here for M$ update info(win98 too): http://www.walbeehm.com/win95upd.html However, if an NT PDC is doing the authentication, it shouldn't matter what the samba setting is (encrypted vs. plaintext). I don't have access to NT server to check this. What's the version/service pack of the PDC? Maybe Jerry needs to chime in here... Steve ************************************************ Steve Arnold CLE (Certifiable Linux Evangelist) http://www.rain.org/~sarnold
On Sat, Jun 26, 1999 at 02:01:30AM +1000, Jeff Newton wrote:> > Folks, > > I've missed the latest encrypted passwords thread, so forgive me if > this is old hat for some of you. > > I'm running 2.0.3 with auth being handled by an NT PDC. It seems that > some Win95 clients (namely those with later releases of the OS) have > problems authenticating. I've got encrypt passwords = yes but it > still seems only the old Win95 clients (clear text passwords) can > auth without problems. > > Can someone shed some light on this for me?With encrypt passwords = yes, i beleive you have to actually add individual users to /etc/smbpasswd (using the command smbpasswd -a USERNAME PASSWORD). Or you could just get the Win95_PlainPassword.REG file and turn encrypted passwords off.. HTH. Regards, Gonzalo. -=======!==========!===========!========!======!====- System Administrator for GET Systems Pty. Ltd. p: 02 9419 2000 f: 02 9419 2444 m: 0414 294 366 e: gonzalo@getsystems.com -==!===========!========!=========!=======!======!==-