[Samba] root preexec problem
Jeremy Allison
jra at samba.org
Mon Feb 11 19:16:25 GMT 2008
On Mon, Feb 11, 2008 at 11:04:25AM -0800, Robert wrote:
> Is this perhaps related to the folowing bug:
>
> https://bugzilla.samba.org/show_bug.cgi?id=4812
Yes, this is certainly it. We're not going to
fix this though - the security change was painful enough
that I don't feel safe in allowing arbitrary characters
in smb.conf scripts - remember the % substitution can
allow client input here. The best solution is to rewite
prexecs to use a single script.
Sorry for the problem.
Jeremy.
More information about the samba
mailing list