Patch: Allow unprivileged processes to read registry

Volker Lendecke Volker.Lendecke at SerNet.DE
Fri Apr 6 00:29:46 MDT 2012

On Fri, Apr 06, 2012 at 07:39:28AM +0200, Volker Lendecke wrote:
> Others have commented that this is not ok. The "real"
> solution would be to read the registry via RPC, potentially
> over a local unix-domain socket. This would be served by a
> light-weight small daemon. I know that this is a lot of work
> and might be frustrating for you, but that way we can ensure
> that no DoS happens and no unprivileged access can happen.

Next alternative: Every change to the registry based
smb.conf triggers a r/o copy in normal text format


SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen
phone: +49-551-370000-0, fax: +49-551-370000-9
AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen, mailto:kontakt at

More information about the samba-technical mailing list