WinXP SP2 security zones, streams and Samba
Andrew Bartlett
abartlet at samba.org
Wed Aug 18 22:09:48 GMT 2004
I was pointed at: http://www.heise.de/security/artikel/50051/0
While the various 'get around zones' measures presented here are classic
goofs, the one that worries me is the need for the filesystem to
implement streams, and while MS can easily 'explain away' FAT use, I
think Samba falls into the same category.
I understand we now support OS/2 extended attributes, but it looks like
full NT stream support might be something we need sooner rather than
later. When I get some time I'll play about with my WinXP SP2 machine,
and see how this really works, but I figured it would be worth posting
the heads-up.
Naturally, this opens up a whole can of worms, particularly as every
other application will also want to use them.
Andrew Bartlett
--
Andrew Bartlett abartlet at samba.org
Authentication Developer, Samba Team http://samba.org
Student Network Administrator, Hawker College abartlet at hawkerc.net
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba-technical/attachments/20040819/627162d1/attachment.bin
More information about the samba-technical
mailing list