diff options
| author | Jelmer Vernooij <jelmer@samba.org> | 2002-11-13 15:34:49 +0000 |
|---|---|---|
| committer | Jelmer Vernooij <jelmer@samba.org> | 2002-11-13 15:34:49 +0000 |
| commit | 2e2a5d50eb0fcbfdab14e56d6150a1bd35d57f28 (patch) | |
| tree | 1177f0fadeb24ccdcba740dc50523ef97d573100 /docs/docbook/projdoc/security_level.sgml | |
| parent | 994b3dbba2f35ddeac24b0d030eee02319b8ec40 (diff) | |
| download | samba-2e2a5d50eb0fcbfdab14e56d6150a1bd35d57f28.tar.gz samba-2e2a5d50eb0fcbfdab14e56d6150a1bd35d57f28.tar.bz2 samba-2e2a5d50eb0fcbfdab14e56d6150a1bd35d57f28.zip | |
Some more doc updates:
- make
- update status of docs document
- move security_level to 'type of installation' part
(This used to be commit 11ad39398e077c3901e63f31bcc6efb223854357)
Diffstat (limited to 'docs/docbook/projdoc/security_level.sgml')
| -rw-r--r-- | docs/docbook/projdoc/security_level.sgml | 46 |
1 files changed, 11 insertions, 35 deletions
diff --git a/docs/docbook/projdoc/security_level.sgml b/docs/docbook/projdoc/security_level.sgml index 2f9a92d872..e2d9cfbbaa 100644 --- a/docs/docbook/projdoc/security_level.sgml +++ b/docs/docbook/projdoc/security_level.sgml @@ -9,40 +9,7 @@ </author> </chapterinfo> -<title>Security levels</title> - -<sect1> -<title>Introduction</title> - -<para> -Samba supports the following options to the global smb.conf parameter -</para> - -<para><programlisting> -[global] -<ulink url="smb.conf.5.html#SECURITY"><parameter>security</parameter></ulink> = [share|user(default)|server|domain|ads] -</programlisting></para> - -<para> -Please refer to the smb.conf man page for usage information and to the document -<ulink url="DOMAIN_MEMBER.html">DOMAIN_MEMBER.html</ulink> for further background details -on domain mode security. The Windows 2000 Kerberos domain security model -(security = ads) is described in the <ulink url="ADS-HOWTO.html">ADS-HOWTO.html</ulink>. -</para> - -<para> -Of the above, "security = server" means that Samba reports to clients that -it is running in "user mode" but actually passes off all authentication -requests to another "user mode" server. This requires an additional -parameter "password server =" that points to the real authentication server. -That real authentication server can be another Samba server or can be a -Windows NT server, the later natively capable of encrypted password support. -</para> - -</sect1> - -<sect1> -<title>More complete description of security levels</title> +<title>User and Share security level (for servers not in a domain)</title> <para> A SMB server tells the client at startup what "security level" it is @@ -136,5 +103,14 @@ cryptographically impossible to translate from unix style encryption to SMB style encryption, although there are some fairly simple management schemes by which the two could be kept in sync. </para> -</sect1> + +<para> +"security = server" means that Samba reports to clients that +it is running in "user mode" but actually passes off all authentication +requests to another "user mode" server. This requires an additional +parameter "password server =" that points to the real authentication server. +That real authentication server can be another Samba server or can be a +Windows NT server, the later natively capable of encrypted password support. +</para> + </chapter> |