similar to: [Fwd: password quality compliance]

Hi! I've wrote to you on previous occasion but surprisingly nobody seems to have this problem, I don't know if it can be an error mine in the configuration files or if it's a problem in the Samba with cracklib, well I've installed samba 3.0.4 and put in the file /etc/pam.d/samba an entry to the cracklib library but smbd seems to do nothing with this line, I've devel

Hi! before nothing, sorry for my english, I hope you understand me. I've a problem with the new samba 3.0.4-1.12, before I had the version 3.0.2a with LDAP for administrate all the users and when a samba password expired I used the "use cracklib" parameter for force the user to insert a strong password, well now this parameter isn't avaliable and I believe that must make it

Hi, I have an existing WinNT domain and, after some labour, a new Samba3x domain. I created the Samba domain with a different name because the WinNT domain name wasn't appropriate. I have about 40 users. Their accounts have been added to the new domain. I'm almost ready to shift everyone to the new domain but I am a bit concerned about the user's profiles. These are local profiles. I

Hello, I'm planning migration to Samba over Debian Etch servers from NT domain with Windows NT servers. I have only one domain, with 1 PDC and 5 BDC distributed on various subnets. Unfortunately I have running various services in PDC and BDC servers that I must remain after the migrations, so I can't stop PDC and BDC servers permanently after the migration to Samba. Can I deactivate

I have been running Samba 4 as an AD/DC for a couple of years now with few problems. I provisioned the domain using --dns-backend=BIND9_FLATFILE and the /etc/named.conf includes the samba-tool provision created file /var/lib/samba/private/named.conf, with zone files in /var/lib/samba/private/dns. All that has been working just fine for for 2 or 3 years. Lately, I added a VirtualBox XP guest

Dear all, I am a new user of R and currently trying hard to develop my own package. Here I am following this tutorial 'http://www.mathfinance.cn/how-to-create-an-R-package-in-windows/' Here it says that (step 8): "open a ?command prompt? window, change the directory to where your package is, type the command ?R CMD build MonteCarloPi? to build the package, this will generate a file

Hi all, Dave Burt mentioned the possibility of adding symlinks to the Dir class. http://www.sysinternals.com/ntw2k/source/misc.shtml#junction There is also Autrijus Tang''s symlink Perl module at http://search.cpan.org/~autrijus/Win32-Symlink-0.04/ Looks easy enough, but it only seems to work for directories, not regular files. Should we add this to the Directory class, or simply

Hello, I'm using samba 3.0.11 and SuSE Enterprise Server 8 (SLES8). All authentication tests using sambaclient works as expected, I can authenticate logon requests, but when I use windows 98 clients authentification fails with some password lenghts :-?. I know it sounds weird but I can reproduce it as many times as I want. i.e: password "aaa" -> smbclient - always works

We have a Samba-4.3 AD-DC hosted on a FreeBSD-10.3 system. We have just discovered that for some reason our domain workstations are not synchronising their time with the AD-DC. We have not altered the default GPO nor have we created a special GPO to handle time services. I have been working on several of the domain clients and I cannot seem to get them to source from the Samba server. I have

Hi there, Here are the facts: - I have samba 3.4.2-0.42.fc11 running on a Fedora 11 system. - Samba is acting as a domain controller, no Windows server involved. - I am using tdbsam. - I need to enforce certain password requirements. The password requirements are: - min 8 characters - expiration 90 days - last 10 passwords may not be reused - not a dictionary word Per the Samba 3.2 FAQ, the

seems to mess up the pam for swat. [root at host67 security]# rpm -qf /etc/pam.d/samba samba-3.0.25b-1.el4_6.4 [root at host67 security]# cat /etc/pam.d/samba #auth required /lib/security/pam_stack.so service=system-auth #account required /lib/security/pam_stack.so service=system-auth auth required pam_stack.so service=system-auth account required

Hi all, I'm quite new to all this, so please go easy on me if I don't quite seem to say the right things. (any advice is good advice) I have a 3.0.14a-debian samba install, with ldap auth using pam_unix (see smb.conf below) We want to implement a few password checks for complexity, so I have written a pretty basic script (see below) which definitely exits 0 on a good password

[Mod: Other lists removed from the headers. The patch looks okay but I did not really checked it line by line -- alex] Last night I sent to redhat-list a letter with a patch. After sleeping a little I found that my patch is not enough correct. Now I post the new patch and description of the problem. In redhat distribution passwd program uses PAM, namely, pam_unix_passwd.so. This module use

Hi Samba folks, I had a couple questions about password complexity checking. To preface, in smb.conf, we set: check password script = /usr/local/sbin/crackcheck -d /usr/share/cracklib/pw_dict Also, if I understand correctly: /usr/local/sbin/crackcheck comes from samba source rpm package. maybe we need to compile it ourselves. /usr/share/cracklib/pw_dict* comes from cracklib-dicts rpm

I'm testing Samba 3.0.3pre2 and am particularly interested in the new --with-cracklib support. I see the configuration directive to enable cracklib functionality in the changelog, but am curious if anyone has any additional documentation. The man pages, etc... appear not to be updated yet. Is there any mechanism for 'tweaking' the password strenth rules, as there is with

Hello, I'm following the recipe 26.2.1.4 to disable roaming profiles for win9x and XPpro machines, but perhaps I'm missing something because it doesn't seem be possible get the home shares mapped with profiles disabled. windows machines fails with this error: ------------------------------------------------------------------- net use u: /HOME The user's home directory has not

Hello, I would like to enforce some level of password complexity when users change their password. I have a Samba PDC running on Debian set to sync Unix passwords. I'm trying to get Samba to work with cracklib, but it isn't going well. Here is what I've tried: Installed libpam-cracklib, compiled examples/auth/crackcheck and copied the binary to /usr/local/sbin. I added the

Hi, maybe I didn't explained myself well. What i meant is that the user can't have the SID S-1-5-21-528226156-890416033-2029241632 but MUST have a sid like S-1-5-21-528226156-890416033-2029241632-xxxx ( where x is usually assigned automatically by the add user's script) Best Regards, Bruno Guerreiro -----Original Message----- From: Jos? M. Fandi?o [mailto:samba@fadesa.es] Sent:

Hi all, can someone give a working example for checking the password complexity in samba? I have tried the next one 1. Download and extract samba-3.4.15.tar.zg. Go to samba-3.4.15/examples/auth/crackcheck and compile crackcheck 2. Copy crackcheck binary to the /usr/bin/ 3. Check that the program working correctly # /usr/bin/crackcheck -d /usr/share/cracklib/pw_dict 123 ERR - it is too short #

When I set the 'maximum password age' to 0, my password expired immediately after I did a smbpasswd. Shouldn't setting it to 0 mean the password will never expire? Or are there any other way to set password to never expire? Here is the microsoft's interpretation on 'maximum password age':