[Samba] prevent normal users from getting userlist

Craig White craigwhite at azapple.com
Mon Oct 3 13:49:06 GMT 2005


On Mon, 2005-10-03 at 15:20 +0200, Florian Effenberger wrote:
> Hi Andrew,
> 
> > Not without breaking functionality.  See, any user should be able to run
> > the ACL editor, and assign rights to users and groups.
> > 
> > You could modify code to lock this down, but I would be worried about
> > the consequences, as well as what other mean (direct LDAP query, for
> > example) you would also need to lock down.
> > 
> > I know this is difficult in strict privacy environments.  
> 
> you are right, of course, I did not think of the ACL features needed!
> However, there are some environments where it could as well be illegal
> to allow every user to fetch the whole user list.
> 
> Are there any plans to implement a feature to disable getting user list
> for some users?
----
how would this be accomplished in a purely Microsoft Windows
environment? This doesn't seem to be a samba question.

Craig


-- 
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.



More information about the samba mailing list