[KLUG Members] Re: Samba encrypted passwords
Bryan J. Smith
members@kalamazoolinux.org
07 Dec 2002 01:07:42 -0500
--=-P4pRjnuA3fKaOwgr+X3P
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable
On Fri, 2002-12-06 at 22:33, Jon Smitley wrote:
> I understand that most Win?? passwords are for preferences only.
Yes, the DOS kernel in DOS-based Windows (95, 98, ME) has absolute
_no_support_ for protected applications, security privaledge levels,
etc... You can not only by-pass login screens on the desktop, but any
passwords on SMB shares served out by them can be by-passed as well.
> This is just a home based network with 1 Linux box & 2 Win98 boxes.
Then you don't need encrypted passwords. Just run the registry hack to
disable it on the Windows 98 boxen.
> OK, I'll see if I can get that started. It hasn't responded when
> asked for. I'll check /etc/services for:
> swat 901/tcp
It probably isn't running. /etc/services is just a listing of
services/ports, it has _nothing_ to do with anything running.
You'll need to look in /etc/xinetd.d and find the swat file.
> If I'm not mistaken, the first example is at user level security
> and the second is at share level security. But I could be entirely
> wrong?!?
Er, no. You define which model you are using with the "security =3D" line
in your smb.conf.
"user" security is the NT-based Windows model.
"share" security is the DOS-based Windows model (only you can't by-pass
the password like on real DOS-based Windows boxen ;-).
--=20
Bryan J. Smith, E.I. (BSECE) Contact Info: http://thebs.org
[ http://thebs.org/files/resume/BryanJonSmith_certifications.pdf ]
------------------------------------------------------------------
The more government chooses for you, the less freedom you have.
--=-P4pRjnuA3fKaOwgr+X3P
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQA98ZAuDjEszaVrzmQRAnVOAKCFND+16A5oMPvcmdHJ/GaZukbiEACdGZiM
IM2WWZyeCYejvMc4OOYHjG0=
=MX/P
-----END PGP SIGNATURE-----
--=-P4pRjnuA3fKaOwgr+X3P--