summaryrefslogtreecommitdiff
path: root/docs-xml/smbdotconf/security
AgeCommit message (Collapse)AuthorFilesLines
2012-03-04s3-auth: Remove security=share (depricated since 3.6).Andrew Bartlett4-169/+16
This patch removes security=share, which Samba implemented by matching the per-share password provided by the client in the Tree Connect with a selection of usernames supplied by the client, the smb.conf or guessed from the environment. The rationale for the removal is that for the bulk of security=share users, we just we need a very simple way to run a 'trust the network' Samba server, where users mark shares as guest ok. This is still supported, and the smb.conf options are documented at https://wiki.samba.org/index.php/Public_Samba_Server At the same time, this closes the door on one of the most arcane areas of Samba authentication. Naturally, full user-name/password authentication remain available in security=user and above. This includes documentation updates for username and only user, which now only do a small amount of what they used to do. Andrew Bartlett -------------- / \ / REST \ / IN \ / PEACE \ / \ | SEC_SHARE | | security=share | | | | | | 5 March | | | | 2012 | *| * * * | * _________)/\\_//(\/(/\)/\//\/\///|_)_______
2012-02-16docs-xml: remove docs for "send spnego principal"Stefan Metzmacher1-28/+0
metze
2011-11-17docs: Add documentation for server roleAndrew Bartlett2-1/+75
2011-06-01s3-param Make lp_passwordserver() const.Andrew Bartlett1-8/+0
This means that it no longer takes % substituations, and so the documentation for this behaviour is removed from the smb.conf manpage. (This mode is only useful in security=server, which is already marked as deprecated in 3.6). Andrew Bartlett
2011-05-25docs: Rewrite 'password server' documentationAndrew Bartlett1-52/+54
I think this new version is more clear. Andrew Bartlett
2011-05-25docs: Clarify the 'security=server' fails for NTLMv2Andrew Bartlett1-0/+3
2011-05-13s3-param Deprecate a number of security parameters for 3.6Andrew Bartlett3-78/+68
This follows up on the agreement on the samba-technical list in Jan 2011 to deprecate these options, and to possibly remove these in the 4.0 release after user feedback. Andrew Bartlett Autobuild-User: Andrew Bartlett <abartlet@samba.org> Autobuild-Date: Fri May 13 19:51:41 CEST 2011 on sn-devel-104
2010-12-10s3-docs Add docs for 'client use spnego principal' and 'send spengo principal'Andrew Bartlett2-0/+56
Andrew Bartlett
2010-12-10s3-docs Explain change to NTLMv2 by default in the clientAndrew Bartlett1-6/+7
2010-11-22s3: Fix some typosVolker Lendecke1-1/+1
2010-08-16s3-auth: Remove docs about obsolete 'update encrypted' option.Andreas Schneider1-34/+0
2010-07-19s3-docs: Add more verbose description of "username map cache time".Volker Lendecke1-7/+16
2010-04-13s3: Cache the username map in gencacheVolker Lendecke1-0/+18
This is for uses with a heavy-weight username map script
2009-11-06Fix bug 6865 - acl_xattr module: Has dependency that inherit acls = yes or ↵Jeremy Allison1-0/+5
xattrs are removed. Jeremy.
2009-10-26s3:docs: Public is not a synonym for access based shareenum.Karolin Seeger1-1/+0
Fix build warning. Karolin
2009-10-03s3:doc: add some detail about lanman auth parameterBjörn Jacke1-0/+7
add interesting detail: lm passwords will be removed from databaѕe with lanman auth = no
2009-06-30s3 docs: Add documentation for 'kerberos method' and 'dedicated keytab file' ↵Tim Prouty2-0/+54
parameters
2009-06-19s3/docs: Fix typo.Karolin Seeger1-1/+1
This fixes bug #6412. Thanks to Carsten Dumke <carsten [at] cdumke.de> for reporting! Karolin
2009-05-27s3: update manpage as to the new passdb backend defaultBjörn Jacke1-3/+5
2009-05-26s3/docs Add manpage for "map untrusted to domain" parameterSteven Danneman1-0/+33
This fixes bug 6352.
2009-04-29s3/docs: Remove documentation of "use kerberos keytab".Karolin Seeger1-23/+0
This parameter has been removed with d96248a9b4655. Karolin
2009-03-02s3/docs: Add missing full stop.Karolin Seeger1-1/+1
Karolin
2009-02-20s3/docs: Fix several typos.Karolin Seeger9-15/+12
This fixes bug #6127. Thanks to Justin T Pryzby <justinpryzby [at] users.sourceforge.net> for the review! Karolin
2008-12-08s3: Add support for access based share enumerationTodd Stecher1-0/+18
2008-12-02docs: Add default value for "writeable" to man smb.conf.Karolin Seeger1-0/+2
Karolin
2008-08-28Clarify usage of "force create mode".Jeremy Allison1-9/+8
Jeremy. (This used to be commit 1d252ffd313e0cd6fcb3d7cb2c99f2daf56728c1)
2008-07-10docs: fix the specified default of "password server" - it is *, not "".Michael Adam1-2/+1
Michael (This used to be commit d7f759d302612ef9eb0bba022f3b3e1dd433f843)
2008-07-10man pages: Add missing whitespace.Karolin Seeger1-1/+1
Karolin (This used to be commit 5ba418d8bd7bd9a678853b23b0928da4f8693bcf)
2008-07-03Patch from SATOH Fumiyasu <fumiyas@osstech.co.jp> for bug #5202. Re-activate ↵Jeremy Allison1-2/+4
"acl group control" parameter and make it only apply to owning group. Also added man page fix. Jeremy. (This used to be commit e98e080bad2c8b9f038a8f2dffcfeba1d5f392ce)
2008-06-12man pages: Added improvements.Christoph Zauner1-5/+6
(This used to be commit 7fecd548af0a21b9644bd70e22a38aaa28777aa0)
2008-06-12man pages: Fix typos.Christoph Zauner2-2/+2
(This used to be commit 881eaa26e071a7fde9c6fc5eb42ae122d0ddd490)
2008-04-23Moving docs tree to docs-xml to make room for generated docs in the release ↵Gerald W. Carter70-0/+2478
tarball. (This used to be commit 9f672c26d63955f613088489c6efbdc08b5b2d14)