similar to: How to check the password complexity in samba

Hi Samba folks, I had a couple questions about password complexity checking. To preface, in smb.conf, we set: check password script = /usr/local/sbin/crackcheck -d /usr/share/cracklib/pw_dict Also, if I understand correctly: /usr/local/sbin/crackcheck comes from samba source rpm package. maybe we need to compile it ourselves. /usr/share/cracklib/pw_dict* comes from cracklib-dicts rpm

Hi there, Here are the facts: - I have samba 3.4.2-0.42.fc11 running on a Fedora 11 system. - Samba is acting as a domain controller, no Windows server involved. - I am using tdbsam. - I need to enforce certain password requirements. The password requirements are: - min 8 characters - expiration 90 days - last 10 passwords may not be reused - not a dictionary word Per the Samba 3.2 FAQ, the

Hello, I would like to enforce some level of password complexity when users change their password. I have a Samba PDC running on Debian set to sync Unix passwords. I'm trying to get Samba to work with cracklib, but it isn't going well. Here is what I've tried: Installed libpam-cracklib, compiled examples/auth/crackcheck and copied the binary to /usr/local/sbin. I added the

maybe there is a bug regarding the use of nis to mount the user's home directory at the login or my misconfiguration. After the CentOS 6.4 (64bit) installation I checked for the latest samba version on the official repository using yum: the latest version (that was already installed) is samba- 3.6.9-151.el6. >From "man smb.conf" I have seen that "nis homedir" is not yet

Hallo, we run a Redhat samba 3.5.4 PDC with openldap 2.4 as user/passwordbackend. The ldap also contains the posix information for the users to login to some web/mail/etc. servers. I'm faced with the task to implement a 'both worlds' compatible paswword sync process regarding complexity etc. For the posix account password we use a webfrontend, configure to use pam/cracklib checks

Hi, I've got samba3 on ubuntu 12 up and running with one exception. I try to get password complexity working to no avail. I understood I needed crackcheck, which in turn needed to be compiled. I downloaded the samba-doc package, and tried to compile crackcheck with a simple make, but all it returns is failure with the following error: crackcheck.c:6:19: fatal error: crack.h: No such file

Hi all, I'm quite new to all this, so please go easy on me if I don't quite seem to say the right things. (any advice is good advice) I have a 3.0.14a-debian samba install, with ldap auth using pam_unix (see smb.conf below) We want to implement a few password checks for complexity, so I have written a pretty basic script (see below) which definitely exits 0 on a good password

nis works well: #ypcat -k auto.home user1 server1:/path/& autofs works well: #cd /home/user1 (no problem) compliled with "configure --with-automount": #smbd -b| grep -i automount * WITH_AUTOMOUNT WITH_AUTOMOUNT * Why doesn't samba read ypcat auto.home? see below for additional detail,,,,it's a rebus! Let the best man win! :) maybe

Hi people! I have a few problems with the password strength in Samba. I have a PDC with LDAP on Debian Stable, with a few packages from backports. The problem is that I can't find a way to enforce strenght to the passwords of the users. I can't define a policy to force things like: number of uppercase letters, number of downcase letters, number of numbers in the password, to check the

Hello, I want to use crackcheck to check password complexity, but users (when password change failed because of complexity check fail) gets only information about valid password length, password history. I think that may be a problem for users. How can I (or Can I?) give them information about expected complexity. I'm almost sure that with NT PDC they would get information about

I would like to understand how the "check password script" interacts with enabling/disabling password complexity checks. That is: if I configure     check password script = /usr/local/samba/sbin/crackcheck -d /var/cache/cracklib/cracklib_dict is this called *in addition* to the default complexity checking, or instead of it? And if I set     samba-tool domain passwordsettings set

Hello everybody, we have an annoying problem with our samba server randomly disconnecting the home shares. Our "Application Data" folders as well as "Desktop" are redirected to directories in the user's home folder outside ".profiledata" to avoid the copying during logon /logoff. >From time to time clients get an error message "Delayed Write

Hi ! I'still running a samba domain controller on a rhel 5 machine, so it is version samba-3.0.33-3.7.el5. Users and accounts are still stored in a ldap database and everything works fine. Now that my setup is complete, I'd like to - force every user of the domain to change their password the next time they open a session on their workstation - be sure that the password is complex

I have Samba PDC with an LDAP backend. I just realized that the users can reset their passwords to anything, a single character a space. Is there anyway to prevent this?

Hello All, Can anyone tell me where i can get a "starter" dictionary for crackcheck? i tried googling this but didn't find anything. tia

Is there any way to use samba as pdc in multinetwork environment without WINS server? In this case (without wins), how will computers find pdc?

Hi, We upgraded a legacy (NT4) domain from 3.6 series to 4.8 and then 4.9.4 samba version (using sernet subscription packages / debian stable) The setup is composed of 4 DCs with each 2 CPU/16GB RAM. We currently have ~700 user accounts / ~600 computers / ~150 groups Our mail setup, SSO, ... query the 4 DCs constantly. Every 5 to 10 days the RAM consumption and CPU usage (due to kswapd)

Hai, How is the swappiness set? cat /proc/sys/vm/swappiness Its probely set to 60, i suggest, lower it to 10 or 20. That wil help keeping the samba processes out of swap. I've see more programs gettting OOM Killed due too out of swap. echo 10 > /proc/sys/vm/swappiness Stop and start samba Greetz, Louis > -----Oorspronkelijk bericht----- > Van: samba

Hi Laurent, > > We upgraded a legacy (NT4) domain from 3.6 series to 4.8 and then 4.9.4 > samba version (using sernet subscription packages / debian stable) > > The setup is composed of 4 DCs with each 2 CPU/16GB RAM. > > We currently have ~700 user accounts / ~600 computers / ~150 groups > > Our mail setup, SSO, ... query the 4 DCs constantly. > > > Every 5 to

Hi Samba-Gurus out there! Ive got some strange problem here i already tried to track down searching the net and reading tons of manuals. no luck yet. So now ill give the Mailing list a try. The Situation: ############ We run a virtual (VM) Debian Lenny Server as LDAP (OpenLDAP) and Samba Domaincontroller/Fileserver. The Server also does NFS Exports of the same Volumes to other Debian Etch