Samba under Coherant and Macintosh
Cole, Timothy D.
timothy_d_cole at md.northgrum.com
Mon Dec 20 16:19:35 GMT 1999
> -----Original Message-----
> From: Jean Francois Micouleau [SMTP:Jean-Francois.Micouleau at dalalu.fr]
> Sent: Sunday, December 19, 1999 17:23
> To: Multiple recipients of list SAMBA-TECHNICAL
> Subject: Re: Samba under Coherant and Macintosh
>
>
> On Mon, 20 Dec 1999, Luke Kenneth Casson Leighton wrote:
>
> > it's going to be a lot of work. there are well over a hundred locations
> > where this function needs to be called, so i hope to automate the
> process
> > somehow.
>
> I don't think so. You need only to check in the "open handle functions".
> NT will try the different info levels only if you allowed it to do so in
> the reply to the open handle function.
>
Ehh, there's no guarantee that the client couldn't actually be
something other than NT. You shouldn't really rely on the assumption that
the client simply won't ask for things that it shouldn't have access to if
you want any sort of security. You need to do validation in some fashion,
be it explicit access checks or by letting the native OS access controls do
their thing.
More information about the samba-technical
mailing list