fixed some typos in the manpage SGML source and regenerated docs.

author: Gerald Carter <jerry@samba.org> 2001-07-05 13:12:51 +0000
committer: Gerald Carter <jerry@samba.org> 2001-07-05 13:12:51 +0000
commit: 57aac361e345bdbc674bf8644080c87298fdbe07 (patch)
tree: ad6f9e29d749a6cfe322f8f89b16b3604d9a3b09 /docs/htmldocs
parent: 1639513916fa9d411f0fdb946da41f139b3ed8d6 (diff)
download: samba-57aac361e345bdbc674bf8644080c87298fdbe07.tar.gz
samba-57aac361e345bdbc674bf8644080c87298fdbe07.tar.xz
samba-57aac361e345bdbc674bf8644080c87298fdbe07.zip
3 files changed, 102 insertions, 35 deletions
diff --git a/docs/htmldocs/lmhosts.5.html b/docs/htmldocs/lmhosts.5.html
index 47df4a9733b..13b162ce44f 100644
--- a/docs/htmldocs/lmhosts.5.html
+++ b/docs/htmldocs/lmhosts.5.html
@@ -50,7 +50,7 @@ NAME="AEN12"
 ><H2
 >DESCRIPTION</H2
 ><P
->This file is part of the &#60;<A
+>This file is part of the <A
 HREF="samba.7.html"
 TARGET="_top"
 >	Samba</A
diff --git a/docs/htmldocs/smb.conf.5.html b/docs/htmldocs/smb.conf.5.html
index 221f1c4cc6b..963935a3c88 100644
--- a/docs/htmldocs/smb.conf.5.html
+++ b/docs/htmldocs/smb.conf.5.html
@@ -12096,7 +12096,7 @@ NAME="OBEYPAMRESTRICTIONS"
 >obey pam restrictions (G)</DT
 ><DD
 ><P
->When Samba 2.2 is configure to enable PAM support
+>When Samba 2.2 is configured to enable PAM support
 		(i.e. --with-pam), this parameter will control whether or not Samba
 		should obey PAM's account and session management directives.  The 
 		default behavior is to use PAM for clear text authentication only
@@ -12428,9 +12428,20 @@ NAME="PAMPASSWORDCHANGE"
 ><DD
 ><P
 >With the addition of better PAM support in Samba 2.2, 
-		this parameter, it is possible to use PAM's password change control 
-		flag for Samba.  If enabled, then PAM will be used for password
-		changes when requested by an SMB client, and  the <A
+  		this parameter, it is possible to use PAM's password change control 
+  		flag for Samba.  If enabled, then PAM will be used for password
+ 		changes when requested by an SMB client insted of the program listed in 
+                <A
+HREF="#PASSWDPROGRAM"
+><TT
+CLASS="PARAMETER"
+><I
+>passwd program</I
+></TT
+></A
+>. 
+                It should be possible to enable this without changing your 
+                <A
 HREF="#PASSWDCHAT"
 ><TT
 CLASS="PARAMETER"
@@ -12438,9 +12449,9 @@ CLASS="PARAMETER"
 >passwd chat</I
 ></TT
 ></A
-> must be
-		be changed to work with the PAM prompts.
-		</P
+>
+                paramater for most setups.
+  		</P
 ><P
 >Default: <B
 CLASS="COMMAND"
@@ -12578,20 +12589,13 @@ HREF="#PAMPASSWORDCHANGE"
 CLASS="PARAMETER"
 ><I
 >pam
-		password change</I
+ 		password change</I
 ></TT
 ></A
-> parameter is set to <TT
-CLASS="CONSTANT"
->true</TT
->, then the
-		chat sequence should consist of three elements. The first element should
-		match the PAM prompt for the old password, the second element should match
-		the PAM prompt for the first request for the new password, and the final
-		element should match the PAM prompt for the second request for the new password.
-		These matches are done case insensitively. Under most conditions this change
-		is done as root so the prompt for the old password will never be matched.
-		</P
+> parameter is set to true, the chat pairs
+                may be matched in any order, and sucess is determined by the PAM result, 
+                not any particular output. The \n macro is ignored for PAM conversions.
+  		</P
 ><P
 >See also <A
 HREF="#UNIXPASSWORDSYNC"
@@ -12684,10 +12688,19 @@ CLASS="PARAMETER"
 >passwd program</I
 ></TT
 > and should 
-		be turned off after this has been done. This parameter is off by
-		default.</P
+ 		be turned off after this has been done. This option has no effect if the 
+                <A
+HREF="#PAMPASSWORDCHANGE"
+><TT
+CLASS="PARAMETER"
+><I
+>pam password change</I
+></TT
+></A
+>
+                paramter is set. This parameter is off by default.</P
 ><P
->See also &#60;<A
+>See also <A
 HREF="#PASSWDCHAT"
 ><TT
 CLASS="PARAMETER"
@@ -12695,7 +12708,16 @@ CLASS="PARAMETER"
 >passwd chat</I
 ></TT
 >
-		</A
+ 		</A
+>, <A
+HREF="#PAMPASSWORDCHANGE"
+><TT
+CLASS="PARAMETER"
+><I
+>pam password change</I
+></TT
+>
+                </A
 >, <A
 HREF="#PASSWDPROGRAM"
 ><TT
@@ -12704,7 +12726,7 @@ CLASS="PARAMETER"
 >passwd program</I
 ></TT
 >
-		</A
+  		</A
 >.</P
 ><P
 >Default: <B
@@ -15143,7 +15165,7 @@ HREF="#AEN234"
 NAME="SECURITYEQUALSUSER"
 ></A
 ><EM
->SECURIYT = USER
+>SECURITY = USER
 		</EM
 ></P
 ><P
@@ -18444,7 +18466,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN5825"
+NAME="AEN5830"
 ></A
 ><H2
 >WARNINGS</H2
@@ -18474,7 +18496,7 @@ TARGET="_top"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN5831"
+NAME="AEN5836"
 ></A
 ><H2
 >VERSION</H2
@@ -18485,7 +18507,7 @@ NAME="AEN5831"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN5834"
+NAME="AEN5839"
 ></A
 ><H2
 >SEE ALSO</H2
@@ -18564,7 +18586,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN5854"
+NAME="AEN5859"
 ></A
 ><H2
 >AUTHOR</H2
diff --git a/docs/htmldocs/smbd.8.html b/docs/htmldocs/smbd.8.html
index 7096dc205f7..f5ce9b78fd8 100644
--- a/docs/htmldocs/smbd.8.html
+++ b/docs/htmldocs/smbd.8.html
@@ -795,6 +795,51 @@ CLASS="REFSECT1"
 NAME="AEN233"
 ></A
 ><H2
+>PAM INTERACTION</H2
+><P
+>Samba uses PAM for authentication (when presented with a plaintext 
+	password), for account checking (is this account disabled?) and for
+	session management.  The degree too which samba supports PAM is restricted
+	by the limitations of the SMB protocol and the 
+	<A
+HREF="smb.conf.5.html#OBEYPAMRESRICTIONS"
+TARGET="_top"
+>obey pam restricions</A
+>
+	smb.conf paramater.  When this is set, the following restrictions apply:
+	</P
+><P
+></P
+><UL
+><LI
+><P
+><EM
+>Account Validation</EM
+>:  All acccesses to a 
+	samba server are checked 
+	against PAM to see if the account is vaild, not disabled and is permitted to 
+	login at this time.  This also applies to encrypted logins.
+	</P
+></LI
+><LI
+><P
+><EM
+>Session Management</EM
+>:  When not using share 
+	level secuirty, users must pass PAM's session checks before access 
+	is granted.  Note however, that this is bypassed in share level secuirty.  
+	Note also that some older pam configuration files may need a line 
+	added for session support. 
+	</P
+></LI
+></UL
+></DIV
+><DIV
+CLASS="REFSECT1"
+><A
+NAME="AEN244"
+></A
+><H2
 >TESTING THE INSTALLATION</H2
 ><P
 >If running the server as a daemon, execute it before 
@@ -850,7 +895,7 @@ CLASS="FILENAME"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN247"
+NAME="AEN258"
 ></A
 ><H2
 >VERSION</H2
@@ -861,7 +906,7 @@ NAME="AEN247"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN250"
+NAME="AEN261"
 ></A
 ><H2
 >DIAGNOSTICS</H2
@@ -884,7 +929,7 @@ NAME="AEN250"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN255"
+NAME="AEN266"
 ></A
 ><H2
 >SIGNALS</H2
@@ -948,7 +993,7 @@ CLASS="COMMAND"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN272"
+NAME="AEN283"
 ></A
 ><H2
 >SEE ALSO</H2
@@ -1014,7 +1059,7 @@ TARGET="_top"
 ><DIV
 CLASS="REFSECT1"
 ><A
-NAME="AEN289"
+NAME="AEN300"
 ></A
 ><H2
 >AUTHOR</H2
author	Gerald Carter <jerry@samba.org>	2001-07-05 13:12:51 +0000
committer	Gerald Carter <jerry@samba.org>	2001-07-05 13:12:51 +0000
commit	57aac361e345bdbc674bf8644080c87298fdbe07 (patch)
tree	ad6f9e29d749a6cfe322f8f89b16b3604d9a3b09 /docs/htmldocs
parent	1639513916fa9d411f0fdb946da41f139b3ed8d6 (diff)
download	samba-57aac361e345bdbc674bf8644080c87298fdbe07.tar.gz samba-57aac361e345bdbc674bf8644080c87298fdbe07.tar.xz samba-57aac361e345bdbc674bf8644080c87298fdbe07.zip