[OpenAFS] New "B" question: Samba versus AFS.

Charles Clancy security@xauth.net
Sat, 30 Nov 2002 14:49:49 -0600 (CST)


On Sat, 30 Nov 2002, Tino Schwarze wrote:

> One setup has two Linux servers (one of them is "the AFS server") and
> only Win98 clients which access files via Samba.

The problem such a setup is that you must use unencrypted passwords, which
only increases the samba's lack of security.  Plus, when using unencrypted
passwords, you can't use samba as a PDC, leaving you with needing to find
some other way to get people logged into their windows workstations (such
as a local account).

IMHO, Samba should only be used sparingly, for clients who abosultely
can't run the OpenAFS client.  If all your clients are Windows machines
and you don't want to run the OpenAFS client, you might as well just set
up an active directory server and stick with a pure Microsoft environment.

[ t charles clancy ]--[ tclancy@uiuc.edu ]--[ www.uiuc.edu/~tclancy ]