Fedora Linux Support Community & Resources Center

Go Back   FedoraForum.org > Fedora 24/25 > Security and Privacy
FedoraForum Search

Forgot Password? Join Us!

Security and Privacy Sadly, malware, spyware, hackers and privacy threats abound in today's world. Let's be paranoid and secure our penguins, and slam the doors on privacy exploits.

Reply
 
Thread Tools Search this Thread Display Modes
  #1  
Old 28th May 2004, 03:26 PM
ndv Offline
Registered User
 
Join Date: May 2004
Location: Italy
Posts: 82
/etc/fstab cifs/smbfs passwords in cleartext

I'd like to write a line in fstab that mount a share on a windows 2000 (so SMBFS) and/or 2003DC (so CIFS), but my problem is that I have to write a cleartext password... is it necessary are there some md5/shadow solution?
here a sample of the option I am evaluating: //server/share /mnt/servershare/ noauto,username=xxx,password=yyy,uid=500,gid=500 1 2


thanks in advance
nicola
Reply With Quote
  #2  
Old 20th June 2004, 01:37 PM
ghenry Offline
Retired Community Manager
 
Join Date: Mar 2004
Location: Scotland
Age: 38
Posts: 1,019
create /home/username/.smbcredentials containing (in this format):

Code:
username=USERNAME
password=P@$$WORD
Code:
chmod 600 /home/username/.smbcredentials
So
Code:
//server/share /mnt/servershare/ noauto,username=xxx,password=yyy,uid=500,gid=500 1 2
Becomes:

Code:
//server/share /mnt/servershare/ noauto,credentials=/home/username/.smbcredentials,uid=500,gid=500 1 2
__________________
http://blog.suretecsystems.com

Last edited by ghenry; 20th June 2004 at 01:40 PM.
Reply With Quote
  #3  
Old 20th June 2004, 02:49 PM
micha Offline
Registered User
 
Join Date: Feb 2004
Location: France
Age: 39
Posts: 533
The problem is that the password is still stored in plain text in a file. I guess CIFS is not yet ready for everyone...
Reply With Quote
  #4  
Old 20th June 2004, 11:04 PM
ghenry Offline
Retired Community Manager
 
Join Date: Mar 2004
Location: Scotland
Age: 38
Posts: 1,019
Doesn't matter is it is encrypted as it is still sent across the wire in clear text.
__________________
http://blog.suretecsystems.com
Reply With Quote
  #5  
Old 11th January 2005, 03:36 PM
wshawn Offline
Registered User
 
Join Date: Apr 2004
Location: Daytona Beach, FL
Age: 51
Posts: 422
Windows still only deals with Clear Text

Until Windows is devolped to handle the encrypted text there is no reason to build it any other way than clear. You can lock it down on your system, but once it hits the network its free game. This is actually a very old problem dating back to win95 and I have heard of no plans to change this.

A possible solution would be to make a "dummy" user on the system in question, using the Administration Settings and not the add user wizard.

Make him limited. Go into his docs and make a directory named LINUXSHARE and then add the REAL user access to that directory you want to share files with. This way you can keep sniffers from grabbing access to a legitimate account. You can also have this dummy user not in the login screen (which shouldn't be used outside of the control-alt-del screen anyway-- in other words no usernames listed) so as to keep it hidden a little better.

Turn on logging to see if anyone actually tries to logon as that user locally.

Another thought would be to add your linux box as a member of the Domain Controller

Just some thoughts....
Reply With Quote
Reply

Tags
cifs or smbfs, cleartext, or etc or fstab, passwords

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
cifs instead of smbfs daviddoria Servers & Networking 14 9th July 2008 01:47 PM
cifs or smbfs? harisund Servers & Networking 4 31st July 2006 07:37 AM
smbfs/cifs mount point in fstab not mounting on boot rgladwell Servers & Networking 5 15th January 2006 11:05 PM
useradd -p stores cleartext passwords Patpicos Security and Privacy 1 30th July 2005 01:04 AM
CIFS and SMBFS digaddictions Servers & Networking 0 16th March 2005 07:28 AM


Current GMT-time: 11:04 (Wednesday, 29-03-2017)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.

Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

FedoraForum is Powered by RedHat