Patch for unix extensions
jra at dp.samba.org
jra at dp.samba.org
Tue Dec 31 02:30:00 GMT 2002
On Fri, Dec 27, 2002 at 07:09:43PM +1100, John Newbigin wrote:
> If no one has any problems with this patch, can it be applied?
>
> John.
>
> -------- Original Message --------
> Subject: Patch for unix extensions
> Date: Tue, 03 Dec 2002 09:51:39 +1100
> From: John Newbigin <jn at it.swin.edu.au>
> To: samba-technical at samba.org
>
> This is a small patch which added a new config option to turn the
> ensure_link_is_safe check off. This check prevents a client using the
> unix extensions from creating a symlink which points to a directory
> outside of the share. Many GUI programs make links from ~ to /tmp which
> will fail. Gnome requires this to work.
>
> This does not strictly have to be a config option but if people want the
> ensure_link_is_safe semantics then there needs to be some way to turn it
> on and off.
>
> With this patch, Samba 3 should fully support home directories mounted
> via smb.
Sorry, I have some problems with this patch. It allows a
client to add a symlink to a Samba share which points to
a file elsewhere on the server disk. For example :
create a symlink from /home/myhome/p -> /etc/passwd.
Now as Samba resolves names on the *server* not the client,
anyone opening /home/myhome/p using smbclient or a Windows
client will get /etc/passwd. This (IMHO) is not desirable.
Jeremy.
More information about the samba-technical
mailing list