[Samba] libsmb and suid root
Andrew Bartlett
abartlet at pcug.org.au
Thu Apr 18 15:20:03 GMT 2002
J Anthony wrote:
>
> how do i get libsmb to allow me to make smbmount suid root?
>
> currently i get 'libsmb based programs must *NOT* be setuid root.'
There is a reason we have that. Don't do it.
Running libsmb based programs under suid privilages *will* result in a
security hole. A number of its actions are based on user-supplied
environment variables, and it wasn't written to be setuid-secure.
Andrew Bartlett
--
Andrew Bartlett abartlet at pcug.org.au
Manager, Authentication Subsystems, Samba Team abartlet at samba.org
Student Network Administrator, Hawker College abartlet at hawkerc.net
http://samba.org http://build.samba.org http://hawkerc.net
More information about the samba
mailing list