libsmbclient and browsing NT and Win9X workgroups:
Evidence of bad things
Andrew Tridgell
tridge at samba.org
Fri Feb 16 03:12:59 GMT 2001
> Hmmmm, if nmbd is not running when the user does an smbc_init, things are
> not likely to be reliable ... so we must start nmbd, which means that I
> need an SUID wrapper to start nmbd.
no, you should either report an error or you should fall back to an
alternative set of code (it is quite possible to browse without
getbackuplist - it just requires some nasty NBT hacks).
auto-launching nmbd is bad because the sysadmin might have quite
deliberately left it off, or the config file might have some error in
it that opens a security hole.
I know that user conveniece is important, but security is more so :)
Cheers, Tridge
More information about the samba-technical
mailing list