[homes] share and security=server ... possible BUG?

Andrew Bartlett abartlet at pcug.org.au
Fri Feb 23 02:08:28 GMT 2001


"MCCALL,DON (HP-USA,ex1)" wrote:
> 
> Tom,
> Isn't that supposed to be valid users = %S  (uppercase).
> This works for me...
> Don
> 

But always remember that samba's restrictions don't apply to interactive
users (eg telnet) and it might be worth tightening up the permissions
anyway.  I run all my home directories mode 700.


> -----Original Message-----
> From: Tom [mailto:freyason at yahoo.com]
> Sent: Thursday, February 22, 2001 10:58 AM
> To: samba at lists.samba.org
> Subject: re: [homes] share and security=server ... possible BUG?
> 
> OK I think I found a bug.
> 
> My homes share is as follows:
> 
> [homes]
>     valid users = %s
>     browseable = no
>     guest ok = no
>     read only = no
>     create mode = 0750
> 
> I have security=server and password server=<Our Windows BDC's>
> I also have a username map set up to map UNIX id's to NT id's.
> 
> Now, if someone tries to connect to the home directory they
> get prompted for password.
> 
> If I take the "valid users" lines out.. then it works fine!
> However, I could ocnnect to //server/someone-elses-username
> and see their home directory! Which I don't want to do.
> valid users = %s won't let anyone, even the legitimate user
> connect to their own home directory!
> 
> Is there a fix for this?
> This is with Samba 2.07 running on Solaris 7.
> 
> Thanks,
> 
> Tom
> 
> __________________________________________________
> Do You Yahoo!?
> Yahoo! Auctions - Buy the things you want at great prices!
> http://auctions.yahoo.com/

-- 
Andrew Bartlett
abartlet at pcug.org.au




More information about the samba mailing list