similar to: Encryption

Hello all, as our Windows DCs will switch off DES encryption in the near future I have to change our Samba-Server to AES encryption. If I understand it correctly I have to change kerberos-configuration to new encryption type (aes256-cts-hmac-sha1-96) and then re-join my Samba-Server to the domain. Is this correct? Any other things to consider? Thanks a lot, Christian

Hi all, It seems that setting userMask in the doveadm http api's "user" command to anything involving wildcards ?s or *s causes the API to fail. When using the API with a userMask set to the fully qualified email address, I get the expected fields back. From a python shell, with an asterisk causes the following behaviour (note that doveadm is a python module that wrappers the

Hi all, According to this bug report: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=566977 This particular error is actually a bug in the samba code. Does anyone know if there are patches that fix this ? Adding "allow_weak_crypto = true" to /etc/krb5.conf does not solve this for me :( Has anyone got a working solution for this ? -Alex IMPORTANT: This email remains the

Hi. I have installed samba before. This time I cannot even do a smbclient -L localhost. When I try to connect I get that log: [1999/03/15 11:37:32, 0] smbd/uid.c:become_gid(105) Couldn't set effective gid to 408 currently set to (real=0,eff=0) [1999/03/15 11:37:32, 0] smbd/service.c:make_connection(425) Can't become connected user! [1999/03/15 11:37:50, 0] smbd/uid.c:become_gid(105)

Lest anyone think STARTTLS MITM doesn't happen, https://threatpost.com/eff-calls-out-isps-modifying-starttls-encryption-commands/109325/3/ Not only for security, I prefer port 993/995 as it's just plain simpler to initiate SSL from the get-go rather than to do some handshaking that gets you to the same point. Joseph Tam <jtam.home at gmail.com>

Hello Samba people, I have been successfully using Samba for several years, across many minor versions of Samba across many minor versions of Linux kernel 2.4.x and 2.6.x, against a Windows 2000 and then in the past couple of years 2003 AD Domain. This morning, something broke... Setting the stage: RedHat Fedora based Linux box, FC8, updated over time using 'yum update'...,

If I read this correctly, starttls will fail due to the MITM attack. That is the client knows security has been compromised. Using SSL/TLS, the MITM can use SSL stripping. Since most Postifx conf use "may" for security, the message would go though unencrypted. Correct??? Is there something to enable for perfect forward security with starttls? ? Original Message ? From: s.arcus at

I'm terribly sorry for the double-post, but it seems there was a problem with the attachments the first time around. Here goes the second attempt. Am 07.01.19 um 15:58 schrieb René Bräuer via samba: > Hello everyone, > > I'm trying to mount a CIFS share served by Windows 10 Samba with encryption. > > On the Windows server side, I made a regular share and told Windows via

Hello everyone, I'm trying to mount a CIFS share served by Windows 10 Samba with encryption. On the Windows server side, I made a regular share and told Windows via Powershell command Set-SmbServerConfiguration -EncryptData 1 to encrypt the data if possible, and via Set-SmbServerConfiguration -RejectUnencryptedAccess 1 to reject unencrypted connections instead of negotiating an unencrypted

Hello list, I've seen the recent discussions documenting problems with lm. I have encountered the following problem. I use WinXP Pro with service pack 1, and R 1.9.0, on a XEON 2GHz, with 1GB of RAM. > eff.fro std.dev mean NSTRDSP 7.403749e-01 1.215686e-01 CPFGEP 9.056763e+00 1.815686e+00 WSWOLF 4.703588e+05 1.112832e+05 NPILGRIM 1.017640e+06 2.134335e+05

Hello! I am trying to put two math expressions in the title of a plot. As you can see below, I can place correctly one expression at a time, but not both. Ideally I would like to have them separated by a comma. Any suggestions? > k <- 1 > n.eff <- c(20, 30) > ### this works > plot(0,0, main = substitute(n == k, list(k = k))) > ### this works > plot(0,0, main =

Hi All, Well, despite my general idiocy I've managed to get PDC and roving profiles working perfectly in my test situation. Obviously, this isn't good enough since computers are the devil, so I've run into some more problems. Fortunately for the Samba team, this isn't a problem with Samba - I think it's more a problem with how our network is set up here. Basically,

Hi! How do you guys solve windows security updates? Is there a way to force windows computers to be updated. Even more flexible is if one can update windows through login script. Peter Nyberg Institutionen f?r Biokemi och Biofysik (DBB) Sv.Arrhenius v?gen 12 106 91 Stockholm Tel: 08-16 24 69 Mobil: 070 339 24 69 Fax 08 153679

A customer asked me if someone would be able to sniff (wireshark or something like that) a password if plugging into the same switch as their samba server. They use a desktop icon pointing at a plain old bat-file containing a "net use" command with the password right in there. I *assume* that the "net use" authenticates via encrypted communication? could someone confirm

On the Granstream 102 box that I have in front of me, there is a "feature list" on the side. One of the features has grabbed my attention: " - optional voice encryption (model 102D)" Now, digging through Grandstream's site, I see that it's not offered quite yet. However, sending mail to their standard "information" email address has resulted in no

I have tried to set parameters of an effects plot with moderate success, but I'm finding that although the plot(effect()) method uses trellis graphics (via the lattice package), not all aspects of the plot can be controlled by standard trellis graphics. I am able to set any parameters that are given in trellis.par.get() easily enough, for example: axis.components <-

Am 2017-11-11 um 13:36 schrieb Rowland Penny: > As far as I am aware, 'net use' sends the password unencrypted, so if > someone is trying to 'sniff' the password, they will get it, but then > if the password is stored in the bat file unencrypted and anybody can > read the bat file, they wont need to 'sniff' the password. Yes, we know ;-) The thin client with

hi, - big and ugly mail. If you don't like them, delete it now :-) - I have collected and classified some information of: http://home.earthlink.net/~rwhron/kernel/bigbox.html And I observed that ext3 performance is worse than previous kernels(2.4.19...). -ac and -aa are here only as reference. Complete information is in the upper URL. dbench: Performance is worse. dbench (Numbers are in

Ok. It's a Firefox Add-on: https://www.eff.org/https-everywhere Questions: 1) But: Why can't i find it on the offical Firefox Add-ons site?: https://addons.mozilla.org/en-US/firefox/ 2) Did anyone audited the "HTTPS Everywhere" code? 3) Can someone trust this Add-on? Is it safe to install/use? 4) If it's so great why isn't it more prevalent? What's youre

On Sat, 11 Nov 2017 11:02:31 +0100 "Stefan G. Weichinger via samba" <samba at lists.samba.org> wrote: > > A customer asked me if someone would be able to sniff (wireshark or > something like that) a password if plugging into the same switch as > their samba server. > > They use a desktop icon pointing at a plain old bat-file containing a > "net