daniel.jarboe@custserv.com
2002-Nov-05 13:28 UTC
[Samba] Valid characters in NT user/pass, wbinfo -a
Samba 2.2.6. I've been looking for (without success) a doc that specifies what characters are valid in an NT login/password. A script will popen '/usr/bin/wbinfo -a MY_DOMAIN+"'+user+'"%"'+passw+'"' where user and passw are untrusted submitted values, so you can understand my concern. I want to keep things tight but not reject valid user/pass combinations. Thanks for any help, ~ Daniel p.s. i've google'd and searched the archives at marc.theaimsgroup, but turning up a LOT of false positives.
On Wed, 2002-11-06 at 00:27, daniel.jarboe@custserv.com wrote:> Samba 2.2.6. I've been looking for (without success) a doc that > specifies what characters are valid in an NT login/password. A script > will popen '/usr/bin/wbinfo -a MY_DOMAIN+"'+user+'"%"'+passw+'"' where > user and passw are untrusted submitted values, so you can understand my > concern. I want to keep things tight but not reject valid user/pass > combinations.Don't use it like that. Instead use pam_winbind. (Because this is a standard interface that won't change). If you are using perl for your scripting language, then you can use Authen::PAM to hook in with it. Andrew Bartlett -- Andrew Bartlett abartlet@pcug.org.au Manager, Authentication Subsystems, Samba Team abartlet@samba.org Student Network Administrator, Hawker College abartlet@hawkerc.net http://samba.org http://build.samba.org http://hawkerc.net -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part Url : http://lists.samba.org/archive/samba/attachments/20021106/4d62914c/attachment.bin