[Samba] Wide links and insecure wide links
Stilez
stilezy at gmail.com
Wed Feb 28 19:30:45 UTC 2018
Thanks - that much I (pretty much) got.
Its really the "wide links" option that isn't well distinguished/clarified.
*insecure* wide links is much more clear, although the detail you've given
helps a lot.
What exactly is the "ordinary" "wide links = yes" option going to do (with
or without Unix extensions), and how does it compare/how much exposure to
mischief does it expose?
On 28 February 2018 18:20:02 Jeremy Allison <jra at samba.org> wrote:
> On Wed, Feb 28, 2018 at 01:39:09PM +0000, Stilez via samba wrote:
>> I'd like to understand reasonably fully,, the difference between the two
>> options "wide links" and "allow insecure wide links" in smb.conf. The docs
>> make them sound very similar but as there are obvious security implications
>> for anything to do with symlink scope, it's important to know what each of
>> them allows/blocks and where they differ.
>
> Setting "allow insecure wide links" to true allows
> clients to create SMB1 UNIX extension symlinks on
> the server filesystem that *THE SERVER WILL FOLLOW*.
>
> You can see why this is a problem. The SMB2 UNIX
> extensions will eliminate this possibility by
> changing client-stored symlinks into a datastore
> that the server will never follow. SMB2 UNIX extensions
> are currently being coded up as a test branch (not
> even experimental yet).
More information about the samba
mailing list