From owner-freebsd-questions@FreeBSD.ORG Mon Jun 30 21:36:50 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 2120337B401 for ; Mon, 30 Jun 2003 21:36:50 -0700 (PDT) Received: from smtp02.mrf.mail.rcn.net (smtp02.mrf.mail.rcn.net [207.172.4.61]) by mx1.FreeBSD.org (Postfix) with ESMTP id 6A8A14401F for ; Mon, 30 Jun 2003 21:36:49 -0700 (PDT) (envelope-from rjhalljr@starpower.net) Received: from 66-44-56-120.s120.tnt2.lnhva.md.dialup.rcn.com ([66.44.56.120] helo=svold.krig.net) by smtp02.mrf.mail.rcn.net with smtp (Exim 3.35 #4) id 19XCsp-0005aF-00 for freebsd-questions@freebsd.org; Tue, 01 Jul 2003 00:36:48 -0400 Received: by svold.krig.net (sSMTP sendmail emulation); Tue, 1 Jul 2003 00:33:37 -0400 From: "Bob Hall" Date: Tue, 1 Jul 2003 00:33:37 -0400 To: FreeBSD Questions List Message-ID: <20030701043337.GA25092@kongemord.krig.net> Mail-Followup-To: Bob Hall , FreeBSD Questions List References: <20030701002557.GB17249@kongemord.krig.net> <20030701044822.L645@small.pukruppa.de> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20030701044822.L645@small.pukruppa.de> User-Agent: Mutt/1.4.1i Subject: Re: Samba passwords X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 01 Jul 2003 04:36:50 -0000 On Tue, Jul 01, 2003 at 04:54:33AM +0200, P. U. Kruppa wrote: > On Mon, 30 Jun 2003, Bob Hall wrote: > > > samba-2.2.8a > > FreeBSD 4.8 > > > > I'm trying to get samba running on my FBSD server. I've done this > > previously with another server, but I can't seem to get it to > > work this time. If I turn off password encryption, then I pass > > all the tests in the DIAGNOSIS file, but Win2k obviously won't > > allow the connection without encrypted passwords. If I turn > > encryption on, I pass any test that doesn't involve a password. > Did you change the registry entry on you win2k machine > (i.e. did you apply > /usr/local/share/doc/samba/Registry/Win2000_PlainPassword.reg)? Thanks for responding, but I need a more secure solution. The point of setting up a samba password file is to avoid sending passwords in plain text. I was able to pass encrypted passwords in the earlier version of Samba. There should be a way of doing it with this version. What I'm hoping is that the ENCRYPTION file that was dropped from this port (or this version, whichever) was replaced with another file that documents how encrypted passwords are currently handled. Since the sh script mentioned in the ENCRYPTION file has been replaced with the undocumented make_smbpasswd file, I'm hoping that there actually is some documentation that explains it all, as the ENCRYPTION file once did. The documentation included with the port doesn't do the trick, and the tests in the DIAGNOSIS file seem to indicate that I've got everything except the encrypted passwords set up correctly. Google hasn't led to anything, nor has searching the archives. Alternately, if someone who has set up encrypted passwords successfully using the old instructions would let me know, that would help also. Knowing that I'm an idiot would give me a more accurate basis for proceeding. Bob Hall