Re: pam and clear text passwords

Subject: Re: pam and clear text passwords
From: andrew morgan (morgan@orst.edu)
Date: Fri Jun 16 2000 - 11:32:48 EDT

• Next message: andrew morgan: "Re: compile (and other) problems on redhat 6.1"
• Previous message: andrew morgan: "Re: Can't register server:Workstation@*"
• In reply to: Ian Willis: "pam and clear text passwords"
• Reply: andrew morgan: "Re: pam and clear text passwords"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Thu, 15 Jun 2000, Ian Willis wrote:

> I know nothing about MACs and possibly less about netatalk however I will
> have to deal with one and the other seem a lot better than CAP so ...
> I would like macs to login to an NT domain, I assume that this is possible
> using pam. However is it possible to stop clear text password passing on the
> network.

Here's what you'll need:

1. Setup pam_smb to authenticate against an NT server.
2. Uncomment PAMDIR in the top-level netatalk Makefile to enable pam
support.
3. Install OpenSSL somewhere on your server for the crypto libraries.
4. Uncomment CRYPTODIR in the top-level netatalk Makefile and point it to
your openssl installation.

The crypto settings will let you build the Diffie-Hellman UAM for
encrypted logins.

Note: I haven't done this myself, but these are the steps as I understand
them.

        Andy

• Next message: andrew morgan: "Re: compile (and other) problems on redhat 6.1"
• Previous message: andrew morgan: "Re: Can't register server:Workstation@*"
• In reply to: Ian Willis: "pam and clear text passwords"
• Reply: andrew morgan: "Re: pam and clear text passwords"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b28 : Wed Jan 17 2001 - 14:31:04 EST