search for: roguelynn

...AcwBzAHcAbwByAGQAIgA=' > > Rowland I appreciate that this is how to pass the plaintext password for setting it, for storage by the Kerberos back end. If Samba is using Kerberos in normal fashion, *nothing* ever sees the plain text password again. A decent explanation lives at https://www.roguelynn.com/words/explain-like-im-5-kerberos/ , and there are many others.

...gt; >> Rowland > I appreciate that this is how to pass the plaintext password for > setting it, for storage by the Kerberos back end. If Samba is using > Kerberos in normal fashion, *nothing* ever sees the plain text > password again. A decent explanation lives at > https://www.roguelynn.com/words/explain-like-im-5-kerberos/ , and > there are many others. Sorry but you are wrong ;-) You can sync passwords with 'samba-tool user syncpasswords' You could run something like this on a Samba AD DC: ldbsearch -H /var/lib/samba/private/sam.ldb -b 'dc=samdom,dc=example,d...

On Tue, Oct 8, 2019, 07:45 Rowland penny via samba <samba at lists.samba.org> wrote: > On 08/10/2019 12:27, Elias Pereira via samba wrote: > > hello list, > > > > What kind of hashing/encryption samba4 ADDC uses for user passwords? > base64? > Base64 is neither a hash nor an encryption algorithm; it is an encoding. > > > Thanks! > > > Basically

...> I appreciate that this is how to pass the plaintext password for > > setting it, for storage by the Kerberos back end. If Samba is using > > Kerberos in normal fashion, *nothing* ever sees the plain text > > password again. A decent explanation lives at > > https://www.roguelynn.com/words/explain-like-im-5-kerberos/ , and > > there are many others. > > Sorry but you are wrong ;-) > > You can sync passwords with 'samba-tool user syncpasswords' > > You could run something like this on a Samba AD DC: > > ldbsearch -H /var/lib/samba/privat...