samba 2.2.2, session userids, and hp-ux 11.00
Gerald (Jerry) Carter
jerry at samba.org
Thu Jan 10 00:55:04 GMT 2002
On Wed, 9 Jan 2002, Frank Smith wrote:
> with samba 2.2.2 and hp-ux 11.00, i noticed that the smbd
> sessions retained the root userid, even though they created test files with the
> appropriate ownership:
> root 641 1 0 Jan 7 ? 0:02 /usr/sbin/inetd
> root 7749 641 0 02:08:35 ? 0:00 smbd
> root 7747 641 1 02:08:18 ? 0:00 smbd
> root 7751 641 0 02:08:49 ? 0:00 smbd
> btw- the smbd daemon is launched via inetd.
>
> user daemons running as root processes concern me because if/when someone
> cracks their samba daemon, they gain root access to my system.
smbd runs as root except when perform some operation on behalf
of the user. This is by design.
chau, jerry
---------------------------------------------------------------------
Hewlett-Packard http://www.hp.com
SAMBA Team http://www.samba.org
-- http://www.plainjoe.org
"Sam's Teach Yourself Samba in 24 Hours" 2ed. ISBN 0-672-32269-2
--"I never saved anything for the swim back." Ethan Hawk in Gattaca--
More information about the samba
mailing list