Proposed patch to add min/max protocol.
David Collier-Brown
David.Collier-Brown at canada.sun.com
Tue Oct 3 17:27:54 GMT 2000
This is a more experimental proposal: no-one yet has be caught
using a "downgrading" attack on an SMB server.
Interestingly enough, Hobbit's paper on "CIFS: Common Insecurities
Fail Scrutiny", available at http://www.security.org.il/cifs.txt
has a whole section on dialect negotiation that suggests one should
use LANMAN2 when hacking SMB servers.
One other, more topical risk exists: sending the code through
parts that haven't been tested since 1.8 or so (;-))
The patch is at http://samba.org/samba-patches?findid=176
A caveat: raising the possibility, and providing the patch,
may attract attention to this kind of attack.
--dave
--
David Collier-Brown, | Always do right. This will gratify some people
185 Ellerslie Ave., | and astonish the rest. -- Mark Twain
Willowdale, Ontario | //www.oreilly.com/catalog/samba/author.html
Work: (905) 415-2849 Home: (416) 223-8968 Email: davecb at canada.sun.com
More information about the samba-technical
mailing list