[Samba] setting acls from win XP clients

Jesse Spangenberger jesse at oceanlodge.biz
Fri Jan 13 18:57:33 GMT 2006

Maybe. Has far as I know -- weither using Samba as PDC, using NT4 or ADS
domains, it happens.  So either it's a bug that will never, ever go away
cause of MS not fixing it.  

Besides, I was not talking about Samba, but more towards Windows and the way
windows work.  Again, somehow I doubt this is an actuall "bug" according to
windows.  Besides, how many other things does windows do backwards and
doesn't care about the rest of the world? 

-----Original Message-----
From: Gerald (Jerry) Carter [mailto:jerry at samba.org] 
Sent: Friday, January 13, 2006 1:33 PM
To: Jesse Spangenberger
Cc: samba at lists.samba.org
Subject: Re: [Samba] setting acls from win XP clients

Hash: SHA1

Jesse Spangenberger wrote:

> Actually, this is not a bug but a security measure I do believe.  
> Win2k and WinXP will not connect to the same server multiple time 
> using different user logon information (actually, sorta pointless if 
> you set up permissions right).  Thus, if John Doe is logged in and 
> Jane wants to reach personal information in her home drive, then A) 
> John Doe has to log out or B) disconnect all drives to the server with 
> the home shares on them, then map her drive.

No.  It's not security.  It's a bug.  The SMB protocol can fully multiplex
different sessions over the same CIFS session.
Look at Windows TSE.   The broken windows behavior does nothing
to enhance security.

cheers, jerry
Alleviating the pain of Windows(tm)      ------- http://www.samba.org
Centeris                         -----------  http://www.centeris.com
"There's an anonymous coward in all of us."               --anonymous
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org


More information about the samba mailing list