diff options
author | Andrew Bartlett <abartlet@samba.org> | 2013-06-03 10:27:41 +1000 |
---|---|---|
committer | Simo Sorce <idra@samba.org> | 2013-06-11 08:35:32 -0400 |
commit | 3f73002f2d5f8a27820e09b024f561fda1560184 (patch) | |
tree | e44195070ba13cad802ecbfe54b0692fd66f2193 | |
parent | 26279a969879bfbd943dfda03c511ed7e14057ba (diff) | |
download | samba-3f73002f2d5f8a27820e09b024f561fda1560184.tar.gz samba-3f73002f2d5f8a27820e09b024f561fda1560184.tar.bz2 samba-3f73002f2d5f8a27820e09b024f561fda1560184.zip |
docs: Do not encourage unix passwords, and remove reference to password level
Reviewed-by: Simo Sorce <idra@samba.org>
-rw-r--r-- | docs-xml/Samba3-Developers-Guide/unix-smb.xml | 13 |
1 files changed, 6 insertions, 7 deletions
diff --git a/docs-xml/Samba3-Developers-Guide/unix-smb.xml b/docs-xml/Samba3-Developers-Guide/unix-smb.xml index ae6bdcdb0d..6964b7fb2e 100644 --- a/docs-xml/Samba3-Developers-Guide/unix-smb.xml +++ b/docs-xml/Samba3-Developers-Guide/unix-smb.xml @@ -112,7 +112,7 @@ shares. <title>Passwords</title> <para> -Many SMB clients uppercase passwords before sending them. I have no +When plaintext passwords are used, very old SMB clients uppercase passwords before sending them. I have no idea why they do this. Interestingly WfWg uppercases the password only if the server is running a protocol greater than COREPLUS, so obviously it isn't just the data entry routines that are to blame. @@ -123,12 +123,11 @@ Unix passwords are case sensitive. So if users use mixed case passwords they are in trouble. </para> -<para> -Samba can try to cope with this by either using the "password level" -option which causes Samba to try the offered password with up to the -specified number of case changes, or by using the "password server" -option which allows Samba to do its validation via another machine -(typically a WinNT server). +<para>Samba will try an additional all lower cased password +authentication if it receives an all uppercase password. Samba used to +support an option called "password level" that would try to crack +password by trying all case permutations, but that option has been +removed. </para> <para> |