Jason Straight
jason at jeetkunedomaster.net
Thu Nov 10 06:32:59 CST 2005
On Thursday 10 November 2005 07:12, sh at linux2go.dk wrote:
> Hi!
>
> A few days ago, I had a chat with someone on #ubuntu about Samba.
> He was wondering how to connect to samba on his Ubuntu box. He was used
> to running Gentoo, where he could just use his regular username and
> password. AFAICS that can be achieved in two ways:
> * Using unencrypted passwords
> * by integrating something like smbpasswd -L -a to adduser and the
> smbpasswd PAM module to the passwd PAM stack, we can automagically
> keep the samba user database in sync with the system one.
>
>
> Using unencrypted passwords is a really bad idea.
> If we want adduser to add a samba account we either need to rewrite
> adduser to call smbpasswd directly or add some sort of mechanism for
> calling hook scripts from adduser. The former would add a hard
> dependency on Samba which is less than elegant, while the latter
> method also would allow for other system specific stuff to happen
> upon account creation, like sending a welcome mail to the user or what-
> ever you want. Obviously the security implications need to be carefully
> reviewed as the hook scripts will be passed the password of the newly
> created user.
>
> Thoughts?
My first thought is that I don't want every user I add to my servers to have
samba access, especially if they are a mail-only account, but I still have to
give them a legit /home dir for their Maildir.
--
| Ubuntu Linux
| www.ubuntulinux.org
|
| Kubuntu
| www.kubuntu.org
More information about the ubuntu-devel
mailing list