Date: Thu, 22 Oct 1998 02:35:14 +0000 (GMT) From: Terry Lambert <tlambert@primenet.com> To: tom@uniserve.com (Tom) Cc: slpalmer@email.com, jrs@enteract.com, freebsd-current@FreeBSD.ORG Subject: Re: Riva TNT Patch (Re: Newbie (to development) would like to help Message-ID: <199810220235.TAA14623@usr01.primenet.com> In-Reply-To: <Pine.BSF.4.02A.9810211311550.18116-100000@shell.uniserve.ca> from "Tom" at Oct 21, 98 01:36:47 pm
next in thread | previous in thread | raw e-mail | index | archive | help
> smbmount and smbfs code is probably one of the most difficult projects > you can attempt. You would have to understand filesystem operation in > FreeBSD very well, and understand CIFS (SMB) very well too. The client > side of CIFS is the most difficult because it requires kernel support. Actually, it's not the hard. The bugger is that you need to proxy credentials to the remote server on a per user basis. Newer versions of SMB allow this, but you can't make it work uniformly without creating an active session manager program to act as a credential holder for the older servers. > The server side (samba) is easy in comparison. I'll let Jeremey Allison comment on that, if he's listening. 8-). > FreeBSD users typically use Rhumba, which translates SMB to NFS, so it > SMB shares can be mounted as if they were NFS. Right. Note that they get mounted as a single credential, which basically destroys the ability to centrally manage access to resources on a per account basis on your NT server (i.e., it is intentional damage to the security model). This is what makes it so painful to implement: to implement it right requires that you avoid damaging the NT security model, and it's very different (unless you allow the FreeBSD box to be a domain controller client, in which case, you damage the UNIX security model, since it has a requirement that you not use easily crackable passwords or cleartext keys 8-)). Terry Lambert terry@lambert.org --- Any opinions in this posting are my own and not those of my present or previous employers. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199810220235.TAA14623>