Hello, i have some big dilemas regarding to smb, and i couldn't figure out the following(afer reading the docs): When a client authenticates to a samba server does he send the hash of the password over a clear text connection , or does he send the hash over some kind of encrypted connection ?. When there is a password change from the client, does the password travel in clear text over and encrypted connection, or is the password hashed ? I ask those question beacuse i'm wondering how the: unix password sync = yes is really working(couldn't make it work on a gentoo linux distro, think it was beacuse of the chat script). My goal is to crate a ldap backend for storing samba and unix accounts, and i want to have 1 user and 1 pass for using both services -- Permission to live...DENIED!
Daniel A: Betancourt Reboso
2003-Sep-12 05:00 UTC
[Samba] How to install Samba in RedHat 7.2?
Hi: How to install Samba 2.0.4b in RedHat 7.2 (Enigma)?. And how configure it?. I?m new on these matters therefore I don?t have to much experience at Linux and it?s asociates. Could you please explain it slowly?. Thanks.. It is very important for me. Daniel...
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Fri, 12 Sep 2003, Alexandru Ionica wrote:> When a client authenticates to a samba server does he send the hash of the > password over a clear text connection , or does he send the hash over some > kind of encrypted connection ?.Depends on what type of authentication you are referring to. With NTLMv1 and v2, the response is a generated sequence based on the original hash but the hash is never sent. Kerberos is a different matter.> When there is a password change from the client, does the password travel > in clear text over and encrypted connection, or is the password hashed ?The old password hash is used as the key for encryption a byte stream. The server has to have the current password hash to decode and obtain the clear text of the new password. But then again there about about 4 different ways to change passwords in the CIFS protocol. cheers, jerry -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.0 (GNU/Linux) Comment: For info see http://quantumlab.net/pine_privacy_guard/ iD8DBQE/Yqt8IR7qMdg1EfYRAn7JAJ9WVmXyQzHxCdo4gAW+ysBQbEUf4ACguI1/ H77jDyAJ/rYEDzRcgJQd6oU=EuHZ -----END PGP SIGNATURE-----