From owner-freebsd-current Wed Nov 27 14:34:39 2002 Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AD3F737B401 for ; Wed, 27 Nov 2002 14:34:37 -0800 (PST) Received: from mail.gmx.net (mail.gmx.net [213.165.65.60]) by mx1.FreeBSD.org (Postfix) with SMTP id 60A2343E88 for ; Wed, 27 Nov 2002 14:34:36 -0800 (PST) (envelope-from mdcki@gmx.net) Received: (qmail 8732 invoked by uid 0); 27 Nov 2002 22:34:28 -0000 Received: from cvpn018.gwdg.de (HELO gmx.net) (134.76.22.18) by mail.gmx.net (mp001-rz3) with SMTP; 27 Nov 2002 22:34:28 -0000 Message-ID: <3DE55690.8010405@gmx.net> Date: Thu, 28 Nov 2002 00:34:40 +0100 From: Marcin Dalecki User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.1) Gecko/20020830 X-Accept-Language: en-us, en MIME-Version: 1.0 To: "David W. Chapman Jr." Cc: Terry Lambert , current@freebsd.org Subject: Re: pw_user.c change for samba References: <20021127192126.GA31706@leviathan.inethouston.net> <3DE52B70.44402B98@mindspring.com> <20021127203401.GA35573@leviathan.inethouston.net> <3DE5315A.FC6D59B@mindspring.com> <20021127210640.GA36331@leviathan.inethouston.net> <3DE53B01.BC819662@mindspring.com> <20021127220439.GA38379@leviathan.inethouston.net> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG David W. Chapman Jr. wrote: > On Wed, Nov 27, 2002 at 01:37:05PM -0800, Terry Lambert wrote: > >>"David W. Chapman Jr." wrote: >> >>>>If it's allowed, it whould probably only be allowed in the >>>>user name (i.e. the patch is wrong; it should probably add >>>>another parameter to the allowable values of 'int gecos', and >>>>change it to 'int checktype' or similar). >>> >>>I don't have a problem with this, but the patch I sent in is the >>>extent of my abilities to give me desired results(making pw like >>>samba) >> >>See attached patch. It could still screw scripts (e.g. the perl >>script version of "adduser") by allowing the "$" in the login >>field, but at least it keeps it out of the login class and group >>fields. > > > That sounds great! > > >>I think you misunderstand. >> >>The intent is to allow accounts without "$" appended to be used >>as machine logins. Samba would see the '$', remove it, and check >>normally. >> >>The proper "BSD way" to avoid this hack would be to add a login >>class "samba_server" (or whatever), and make Samba permit this >>type of check only if the user was in the correct login class. I have just forwared the above suggestion to Volker Lendecke from the "samba team", since: 1. It makes perfect sense at least to me. 2. Accidentally I know him personally, so he will not mind nagging. > Unfortunately they have to support more than just BSD, but I do agree > with you that there is probably a better way of doing things. I am > just not technically inclined enough to bring this to the attention > of the samba team properly. I do have some contacts I could forward > to anyone that is interested in trying to persuade them though. -- Marcin Dalecki To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message