[Samba] Default Hidden Disk Shares

Mon Jul 5 12:04:12 MDT 2010

The Windows client will hide any share that ends with a '$' whether or not
it is an administrator share, it's doesn't know or care. In this case there
is no difference between hidden and normal because to Windows they are both
hidden. Give it a try sometime.

If you hit the server with a Mac client, it shows all the shares (at least
it used to, I haven't tried in a long time), even the c$, d$, etc. I think
the Linux SMB clients also do the same. So to rely on 'server' to 'hide'
these shares, is a very false sense of security. It's the actual client that
does the hiding from normal users.

Robert LeBlanc
Life Sciences & Undergraduate Education Computer Support
Brigham Young University

On Mon, Jul 5, 2010 at 2:43 AM, Atkinson, Robert <RATKINSON at tbs-ltd.co.uk>wrote:

>  Robert, the discussion was around the hidden ‘$’ shares, not normal ones.
>
>
>
> Rob.
>
>
>
> *From:* Robert LeBlanc [mailto:robert at leblancnet.us]
> *Sent:* 02 July 2010 19:15
> *To:* Atkinson, Robert
> *Cc:* Jeremy Allison; samba at lists.samba.org
>
> *Subject:* Re: [Samba] Default Hidden Disk Shares
>
>
>
> On Fri, Jul 2, 2010 at 2:05 AM, Atkinson, Robert <RATKINSON at tbs-ltd.co.uk>
> wrote:
>
> Interesting to see you say it's dangerous. The way the Windows version
> works
> is that you have to be part of the Administrator group to be able to see
> them, which I would have thought secure enough?
>
>
>
> This is not true, the share is advertised to anyone who asks. The Windows
> client only hides shares that end with a '$'. By default Windows gives
> access only to administrators (by default), but they are by no means hidden.
>
>
> Robert LeBlanc
> Life Sciences & Undergraduate Education Computer Support
> Brigham Young University
>
>
> ***********************************************************************************
>
> Any opinions expressed in email are those of the individual and not
> necessarily those of the company. This email and any files transmitted with
> it are confidential and solely for the use of the intended recipient or
> entity to whom they are addressed. It may contain material protected by
> attorney-client privilege. If you are not the intended recipient, or a
> person responsible for delivering to the intended recipient, be advised that
> you have received this email in error and that any use is strictly
> prohibited.
>
>
>
> Random House Group + 44 (0) 20 7840 8400
>
> http://www.randomhouse.co.uk
>
> http://www.booksattransworld.co.uk
>
> http://www.kidsatrandomhouse.co.uk
>
> Generic email address - enquiries at randomhouse.co.uk
>
>
>
> Name & Registered Office:
>
> THE RANDOM HOUSE GROUP LIMITED
>
> 20 VAUXHALL BRIDGE ROAD
>
> LONDON
>
> SW1V 2SA
>
> Random House Group Ltd is registered in the United Kingdom with company No.
> 00954009, VAT number 102838980
>
>
> ***********************************************************************************
>
>
>