BIG SECURITY HOLE: new acl mapping

Stefan (metze) Metzmacher metze at metzemix.de
Thu Oct 24 09:07:01 GMT 2002


Hi Jeremy,

the new acl mapping code don't work right!!!

there's something really strange with the acl patch that jra applied!
it didn't translated the acl right
IT'S A BIG SECURITY HOLE!!!

I have a directory 'testdir' with normal unix access bits 700
and owner: metze group: smb
on winXP I view the permissions, and there're only metze shown with special 
rights, (that's ok for me)
then I try to give metze full access via winXP
now the acls are:
[u::rwx,g::rwx,o::rwx/u::rwx,g::rwx,o::rwx]
!!!


metze
-----------------------------------------------------------------------------
Stefan "metze" Metzmacher <metze at metzemix.de>




More information about the samba-technical mailing list