[homes] share and security=server ... possible BUG?
Andrew Bartlett
abartlet at pcug.org.au
Fri Feb 23 02:08:28 GMT 2001
"MCCALL,DON (HP-USA,ex1)" wrote:
>
> Tom,
> Isn't that supposed to be valid users = %S (uppercase).
> This works for me...
> Don
>
But always remember that samba's restrictions don't apply to interactive
users (eg telnet) and it might be worth tightening up the permissions
anyway. I run all my home directories mode 700.
> -----Original Message-----
> From: Tom [mailto:freyason at yahoo.com]
> Sent: Thursday, February 22, 2001 10:58 AM
> To: samba at lists.samba.org
> Subject: re: [homes] share and security=server ... possible BUG?
>
> OK I think I found a bug.
>
> My homes share is as follows:
>
> [homes]
> valid users = %s
> browseable = no
> guest ok = no
> read only = no
> create mode = 0750
>
> I have security=server and password server=<Our Windows BDC's>
> I also have a username map set up to map UNIX id's to NT id's.
>
> Now, if someone tries to connect to the home directory they
> get prompted for password.
>
> If I take the "valid users" lines out.. then it works fine!
> However, I could ocnnect to //server/someone-elses-username
> and see their home directory! Which I don't want to do.
> valid users = %s won't let anyone, even the legitimate user
> connect to their own home directory!
>
> Is there a fix for this?
> This is with Samba 2.07 running on Solaris 7.
>
> Thanks,
>
> Tom
>
> __________________________________________________
> Do You Yahoo!?
> Yahoo! Auctions - Buy the things you want at great prices!
> http://auctions.yahoo.com/
--
Andrew Bartlett
abartlet at pcug.org.au
More information about the samba
mailing list