Question - Latest security alery of samba

[Nir Livni]

I've read the announcement carefully.
The announcement does not point a specific threat in the samba code.
It mentions that "This version of Samba adds explicit overrun and overflow
checks on
fragment re-assembly of SMB/CIFS packets to ensure that only valid
re-assembly is performed by smbd."

It also mentions that samba is highly vulnerable to attacks from an external
network,
And that 
1. host based protection
2. interface protection
3. Using a firewall
4. Using a IPC$ share deny
May reduce vulnerability to such attacks.

There is no access to my samba servers from the internet, but I would like
to know more about this security issue - specially, which source codes are
involved. (SMB client code is currently no issue for me)
Any list of affected source files would be appreciated.

Thanks,
Nir

-----Original Message-----
From: Alexander Bokovoy [mailto:ab at samba.org] 
Sent: Sunday, March 16, 2003 4:31 PM
To: Nir Livni; samba-technical at samba.org
Subject: Re: Question - Latest security alery of samba


On Sun, Mar 16, 2003 at 04:27:04PM +0200, Nir Livni wrote:
> Hi all,
> Just wanted to know if the latest security alert is all about 
> quotas.c. An upgrade (for me) is a bit problematic at the moment. If I 
> patch this specific source code myself and recompile smbd - is it
> (basically) enough ?
No, it is not all about quotas.c. Please read carefully announcement. You
will also find there some suggestions how to make break harder in mean time,
when you are working on upgrade. 

The upgrade is really required.

-- 
/ Alexander Bokovoy
Samba Team                      http://www.samba.org/
ALT Linux Team                  http://www.altlinux.org/
Midgard Project Ry              http://www.midgard-project.org/