Permissions on private directory.
Jeremy Allison
jeremy at valinux.com
Wed Apr 11 07:16:23 GMT 2001
On Wed, Apr 11, 2001 at 04:19:51PM +1000, Tim Potter wrote:
> Steve Langasek writes:
>
> > > So if UNIX users can read these files then you could be in a bit
> > > of security trouble.
> >
> > I don't dispute that the smbpasswd file and secrets.tdb need to
> > be protected from non-root users; but many systems have shadow
> > password files with hashes so weak that they're nearly
> > plaintext equivalent, yet I've never heard anyone object that
> > it's insecure to keep this file in the public /etc directory --
>
> Good point. I can't think of a reason why this isn't the case.
> Perhaps someone else knows some of the history of the privatedir
> stuff.
Complete paranoia by me :-). Having a samba private directory
isn't such a bad idea in the long run you know.
Jeremy.
--
--------------------------------------------------------
Buying an operating system without source is like buying
a self-assembly Space Shuttle with no instructions.
--------------------------------------------------------
More information about the samba-technical
mailing list