Permissions on private directory.

Andrew Bartlett abartlet at
Wed Apr 11 06:46:11 GMT 2001

Tim Potter wrote:
> Steve Langasek writes:
> > > So if UNIX users can read these files then you could be in a bit
> > > of security trouble.
> >
> > I don't dispute that the smbpasswd file and secrets.tdb need to
> > be protected from non-root users; but many systems have shadow
> > password files with hashes so weak that they're nearly
> > plaintext equivalent, yet I've never heard anyone object that
> > it's insecure to keep this file in the public /etc directory --
> Good point.  I can't think of a reason why this isn't the case.
> Perhaps someone else knows some of the history of the privatedir
> stuff.
> Tim.

Sombody made a big fuss on bugtraq, that the files were stored in 'world
readable /etc'.  The files themselves were correctly protected, but the
privatedir thing was created none-the-less.  

At least thats my memory,

Andrew Bartlett
Andrew Bartlett
abartlet at

More information about the samba-technical mailing list