Modify the package so that the message is only displayed if SAMBA_USE_LDAP

is not defined, as that is the only time when the smbpasswd file is
consulted.  Also don't create a the smbpasswd file from /etc/passwd, as
that generates a lot of bad users, e.g. root, daemon, operator, etc.
Instead, just create an empty smbpasswd file and rely on the admin to add
approved users to the smbpasswd file using "smbpasswd -a".

1 files changed, 17 insertions, 0 deletions

diff --git a/net/samba/MESSAGE.smbpasswd b/net/samba/MESSAGE.smbpasswd
new file mode 100644
index 00000000000..7bc088440c1
--- /dev/null
+++ b/net/samba/MESSAGE.smbpasswd
@@ -0,0 +1,17 @@
+===========================================================================
+$NetBSD: MESSAGE.smbpasswd,v 1.1 2002/02/05 05:14:46 jlam Exp $
+
+                    *===* SECURITY NOTES *===*
+
+The users' encrypted passwords stored in
+
+	${SAMBA_ETCDIR}/private/smbpasswd 
+
+are _PASSWORD_EQUIVALENT_ from the viewpoint of SMB protocol.  Do not
+weaken the permissions of this file (owned by ${ROOT_USER}:${ROOT_GROUP} and with file
+mode rw-------) without any special reasons.
+
+Please note that even if you pkg_delete ${PKGNAME}, pkg_delete will
+not remove the smbpasswd file.  If you won't use this package anymore, it
+is strongly recommended that you remove the smbpasswd file manually.
+===========================================================================