From owner-freebsd-current Wed Oct 21 19:35:48 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id TAA15930 for freebsd-current-outgoing; Wed, 21 Oct 1998 19:35:48 -0700 (PDT) (envelope-from owner-freebsd-current@FreeBSD.ORG) Received: from smtp02.primenet.com (smtp02.primenet.com [206.165.6.132]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id TAA15925 for ; Wed, 21 Oct 1998 19:35:46 -0700 (PDT) (envelope-from tlambert@usr01.primenet.com) Received: (from daemon@localhost) by smtp02.primenet.com (8.8.8/8.8.8) id TAA13922; Wed, 21 Oct 1998 19:35:16 -0700 (MST) Received: from usr01.primenet.com(206.165.6.201) via SMTP by smtp02.primenet.com, id smtpd013908; Wed Oct 21 19:35:15 1998 Received: (from tlambert@localhost) by usr01.primenet.com (8.8.5/8.8.5) id TAA14623; Wed, 21 Oct 1998 19:35:14 -0700 (MST) From: Terry Lambert Message-Id: <199810220235.TAA14623@usr01.primenet.com> Subject: Re: Riva TNT Patch (Re: Newbie (to development) would like to help To: tom@uniserve.com (Tom) Date: Thu, 22 Oct 1998 02:35:14 +0000 (GMT) Cc: slpalmer@email.com, jrs@enteract.com, freebsd-current@FreeBSD.ORG In-Reply-To: from "Tom" at Oct 21, 98 01:36:47 pm X-Mailer: ELM [version 2.4 PL25] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > smbmount and smbfs code is probably one of the most difficult projects > you can attempt. You would have to understand filesystem operation in > FreeBSD very well, and understand CIFS (SMB) very well too. The client > side of CIFS is the most difficult because it requires kernel support. Actually, it's not the hard. The bugger is that you need to proxy credentials to the remote server on a per user basis. Newer versions of SMB allow this, but you can't make it work uniformly without creating an active session manager program to act as a credential holder for the older servers. > The server side (samba) is easy in comparison. I'll let Jeremey Allison comment on that, if he's listening. 8-). > FreeBSD users typically use Rhumba, which translates SMB to NFS, so it > SMB shares can be mounted as if they were NFS. Right. Note that they get mounted as a single credential, which basically destroys the ability to centrally manage access to resources on a per account basis on your NT server (i.e., it is intentional damage to the security model). This is what makes it so painful to implement: to implement it right requires that you avoid damaging the NT security model, and it's very different (unless you allow the FreeBSD box to be a domain controller client, in which case, you damage the UNIX security model, since it has a requirement that you not use easily crackable passwords or cleartext keys 8-)). Terry Lambert terry@lambert.org --- Any opinions in this posting are my own and not those of my present or previous employers. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message