1 <samba:parameter xmlns:samba="http://samba.org/common">
2 <term><anchor id="HOSTSEQUIV"/>hosts equiv (G)</term>
3 <listitem><para>If this global parameter is a non-null string,
4 it specifies the name of a file to read for the names of hosts
5 and users who will be allowed access without specifying a password.
8 <para>This is not be confused with <link linkend="HOSTSALLOW">
9 <parameter moreinfo="none">hosts allow</parameter></link> which is about hosts
10 access to services and is more useful for guest services. <parameter moreinfo="none">
11 hosts equiv</parameter> may be useful for NT clients which will
12 not supply passwords to Samba.</para>
14 <para><emphasis>NOTE :</emphasis> The use of <parameter moreinfo="none">hosts equiv
15 </parameter> can be a major security hole. This is because you are
16 trusting the PC to supply the correct username. It is very easy to
17 get a PC to supply a false username. I recommend that the
18 <parameter moreinfo="none">hosts equiv</parameter> option be only used if you really
19 know what you are doing, or perhaps on a home network where you trust
20 your spouse and kids. And only if you <emphasis>really</emphasis> trust
23 <para>Default: <emphasis>no host equivalences</emphasis></para>
24 <para>Example: <command moreinfo="none">hosts equiv = /etc/hosts.equiv</command></para>