[Samba] Samba 4 security
Matthieu Patou
mat at samba.org
Wed Nov 30 08:43:01 MST 2011
On 30/11/2011 10:48, steve wrote:
> Hi
> Samba 4 from GIT yesterday. openSUSE 12.2 server and client test
> setup. Reproducible on an Ubuntu client too.
>
> in smb.conf have:
>
> [homes]
> path = /home
> read only = no
>
> On a linux client (eg using konqueror or dolphin or nautilus) I enter
>
> smb://hh3/steve
>
> where hh3 is the name of the samba server. Samba is not installed on
> the clients.
>
> As a normal user, I can enter everyone else's /home folder and create
> and delete anything I want!
ACLs on subfolder might be wrong.
Your script for creating the user and the user dir must take care of
giving the correct rights.
Matthieu.
--
Matthieu Patou
Samba Team
http://samba.org
More information about the samba
mailing list