Patch: Allow unprivileged processes to read registry

Stef Walter stefw at
Fri Apr 6 01:26:49 MDT 2012

On 04/06/2012 08:29 AM, Volker Lendecke wrote:
> On Fri, Apr 06, 2012 at 07:39:28AM +0200, Volker Lendecke wrote:
>> Others have commented that this is not ok. The "real"
>> solution would be to read the registry via RPC, potentially
>> over a local unix-domain socket. This would be served by a
>> light-weight small daemon. I know that this is a lot of work
>> and might be frustrating for you, but that way we can ensure
>> that no DoS happens and no unprivileged access can happen.
> Next alternative: Every change to the registry based
> smb.conf triggers a r/o copy in normal text format
> somewhere.

Interesting idea. I'll give it a shot next week.



More information about the samba-technical mailing list