diff options
| author | John Terpstra <jht@samba.org> | 1997-08-19 23:11:41 +0000 |
|---|---|---|
| committer | John Terpstra <jht@samba.org> | 1997-08-19 23:11:41 +0000 |
| commit | 335959b97797ac19b832c5bc78ca205307d6e3fc (patch) | |
| tree | 8208c0308a25a01155061cbedde9bff5d0bcf340 /docs/textdocs/ENCRYPTION.txt | |
| parent | 800a28df41e9e40368ba11a7ccc8033541cfd4e3 (diff) | |
| download | samba-335959b97797ac19b832c5bc78ca205307d6e3fc.tar.gz samba-335959b97797ac19b832c5bc78ca205307d6e3fc.tar.bz2 samba-335959b97797ac19b832c5bc78ca205307d6e3fc.zip | |
JHT ===> Added instructions for Windows 95 encrypted password change.
(This used to be commit 422e55092f01505ba616ff9e03e36592bb66866b)
Diffstat (limited to 'docs/textdocs/ENCRYPTION.txt')
| -rw-r--r-- | docs/textdocs/ENCRYPTION.txt | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/docs/textdocs/ENCRYPTION.txt b/docs/textdocs/ENCRYPTION.txt index 04822eed32..69dd49b257 100644 --- a/docs/textdocs/ENCRYPTION.txt +++ b/docs/textdocs/ENCRYPTION.txt @@ -17,7 +17,7 @@ and the "PROS and CONS" section. How does it work ? ------------------ - LanManager encryption is somewhat similar to UNIX password +LanManager encryption is somewhat similar to UNIX password encryption. The server uses a file containing a hashed value of a users password. This is created by taking the users paintext password, capitalising it, and either truncating to 14 bytes (or @@ -26,7 +26,7 @@ two 56 bit DES keys to encrypt a 'magic' eight byte value, forming a 16 byte value which is stored by the server and client. Let this value be known as the *hashed password*. - Windows NT encryption is a higher quality mechanism, consisting +Windows NT encryption is a higher quality mechanism, consisting of doing an MD4 hash on a Unicode version of the users password. This also produces a 16 byte hash value that is non-reversible. @@ -129,7 +129,7 @@ details on how to do this. The smbpasswd file. ------------------- - In order for Samba to participate in the above protocol it must +In order for Samba to participate in the above protocol it must be able to look up the 16 byte hashed values given a user name. Unfortunately, as the UNIX password value is also a one way hash function (ie. it is impossible to retrieve the cleartext of the users @@ -214,7 +214,7 @@ normal unix /etc/passwd file. The smbpasswd Command. ---------------------- - The smbpasswd command maintains the two 32 byte password fields in +The smbpasswd command maintains the two 32 byte password fields in the smbpasswd file. If you wish to make it similar to the unix passwd or yppasswd programs, install it in /usr/local/samba/bin (or your main Samba binary directory) and make it setuid root. |