[cifs-protocol] 112050346749387 handle based permission checks in SMB1?

Volker Lendecke Volker.Lendecke at SerNet.DE
Mon Aug 20 02:35:35 MDT 2012


On Fri, Aug 10, 2012 at 02:54:44AM +0000, Sreekanth Nadendla wrote:
> Hello Volker,
> Based on test results and some verification,  we have
> found that some command groups (e.g.  session management)
> in general do not enforce change in the latest security
> token in the session while others ( e.g.  Transaction
> sub-protocol commands) do enforce latest security token
> resulting from the re-authentication operation performed.
> Below is a representative list of commands from the two
> categories described. Please note that because of the
> effort involved in testing/cross checking with spec, this
> is not a complete list of every SMB command. If you have
> any follow up questions please let us know. For instance
> if a specific list of commands you are interested in are
> not listed here and you want to know specifically how they
> work, do not hesitate to reply to this e-mail with that
> list. Also for obsolete commands, would you still be
> interested in how security is applied for those ?

Thanks for that list! I don't think we really need the
obsolete commands. What we much rather need is the
equivalent list for SMB2 commands.

Thanks,

Volker


More information about the cifs-protocol mailing list