Patch for unix extensions

jra at jra at
Tue Dec 31 02:30:00 GMT 2002

On Fri, Dec 27, 2002 at 07:09:43PM +1100, John Newbigin wrote:
> If no one has any problems with this patch, can it be applied?
> John.
> -------- Original Message --------
> Subject: Patch for unix extensions
> Date: Tue, 03 Dec 2002 09:51:39 +1100
> From: John Newbigin <jn at>
> To: samba-technical at
> This is a small patch which added a new config option to turn the
> ensure_link_is_safe check off.  This check prevents a client using the
> unix extensions from creating a symlink which points to a directory
> outside of the share.  Many GUI programs make links from ~ to /tmp which
>    will fail.  Gnome requires this to work.
> This does not strictly have to be a config option but if people want the
> ensure_link_is_safe semantics then there needs to be some way to turn it
> on and off.
> With this patch, Samba 3 should fully support home directories mounted
> via smb.

Sorry, I have some problems with this patch. It allows a
client to add a symlink to a Samba share which points to
a file elsewhere on the server disk. For example :

create a symlink from /home/myhome/p -> /etc/passwd.

Now as Samba resolves names on the *server* not the client,
anyone opening /home/myhome/p using smbclient or a Windows
client will get /etc/passwd. This (IMHO) is not desirable.


More information about the samba-technical mailing list