s3:doc: add some detail about lanman auth parameter

add interesting detail: lm passwords will be removed from databaѕe with lanman auth = no
author: Björn Jacke <bj@sernet.de> 2009-10-02 17:55:50 +0200
committer: Björn Jacke <bj@sernet.de> 2009-10-03 00:22:51 +0200
commit: 2aacca010da59c2521bddda3e004271008fe2b6f (patch)
tree: 7845fe1916adc0beede638a6eebec0fd19a2e385 /docs-xml/smbdotconf/security
parent: 2b9b232912a6e561e0f5ba57afbd605dc4197d97 (diff)
download: samba-2aacca010da59c2521bddda3e004271008fe2b6f.tar.gz
1 files changed, 7 insertions, 0 deletions
diff --git a/docs-xml/smbdotconf/security/lanmanauth.xml b/docs-xml/smbdotconf/security/lanmanauth.xml
index 4e68c5e03aa..e055bd35f1a 100644
--- a/docs-xml/smbdotconf/security/lanmanauth.xml
+++ b/docs-xml/smbdotconf/security/lanmanauth.xml
@@ -16,6 +16,13 @@
     case-insensitive nature, and the choice of algorithm.  Servers
     without Windows 95/98/ME or MS DOS clients are advised to disable
     this option.  </para>
+
+    <para>When this parameter is set to <value>no</value> this
+    will also result in sambaLMPassword in Samba's passdb being
+    blanked after the next password change. As a result of that
+    lanman clients won't be able to authenticate, even if lanman
+    auth is reenabled later on.
+    </para>
 		
     <para>Unlike the <command moreinfo="none">encrypt
     passwords</command> option, this parameter cannot alter client
author	Björn Jacke <bj@sernet.de>	2009-10-02 17:55:50 +0200
committer	Björn Jacke <bj@sernet.de>	2009-10-03 00:22:51 +0200
commit	2aacca010da59c2521bddda3e004271008fe2b6f (patch)
tree	7845fe1916adc0beede638a6eebec0fd19a2e385 /docs-xml/smbdotconf/security
parent	2b9b232912a6e561e0f5ba57afbd605dc4197d97 (diff)
download	samba-2aacca010da59c2521bddda3e004271008fe2b6f.tar.gz