This is a very brief description on how to setup samba to support
password encryption. More complete instructions will probably be added
later.

1) get and compile the libdes libraries. the source is available from
nimbus.anu.edu.au in pub/tridge/libdes/libdes.tar.92-10-13.gz

2) enable the encryption stuff in the Samba makefile, making sure you
point it to the libdes library and include file (it needs des.h)

3) compile and install samba as usual

4) enable encrypted passwords in smb.conf by adding the line 
"encrypt passwords = yes" in the [global] section

5) create the initial smbpasswd password file in the place you
specified in the Makefile. A simple way to do this based on your
existing Makefile (assuming it is in a reasonably standard format) is
like this:

cat /etc/passwd | mksmbpasswd.sh > /usr/local/samba/private/smbpasswd

note that the mksmbpasswd.sh script is in the samba source directory.

If this fails then you will find that you will need entries that look
like this:

# SMB password file.
tridge:148:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:Andrew Tridgell:/home/tridge:/bin/tcsh

note that the uid and username fields must be right. Also try to get
the number of X's right (there should be 32).

6) set the passwords for users using the smbpasswd command. For
example, as root you could do "smbpasswd tridge"

7) try it out!

Note that you can test things using smbclient, as it also now supports
encryption.
