[linux] security bug - Samba ignoruje permitions
Peter Ronai
dzony na bicba.sk
Pátek Červenec 30 12:07:13 CEST 1999
POZOR NA SAMBU
tu je zoper riadkov z dokumentacie ako odpoved na to s cim sa serkam asi
stvrt roka, totiz ako nastavit permitions na shareovanych oblastiach
disku
********************************************
alternate permissions (S)
This is a deprecated parameter. It no longer has any effect in
Samba2.0. In previous versions of Samba it affected the way the DOS
"read only"
attribute was mapped for a file. In Samba2.0 a file is marked "read
only" if the UNIX file does not have the 'w' bit set for the owner of
the file,
regardless if the owner of the file is the currently logged on user
or not.
****************************************
vyzera to tak ze nastavit sa to neda.....
ak totiz ma owner suboru (dajme tomu root) na tento prava 6 (teda rw-)
tak hocikto ma cez sambu moznost tento subor zmazat alebo prepisat.
aj ked groupa aj others maju nulove prava.....
ak potom nenastavite adresar po ktory sa moze clovek dostat na najvyssi
level teda napr root directory = /share tak vam niekto zmaze system ani
neviete ako, presne ako ked exploitnete windoze cez buffer owerflow a
potm zmazete z remotu adresar windows aby bola prca
ak niekto poznate riesenie na tento problem tak prosim napiste
ja zacinam silne zvazovat o sambe
dz
--
***************************************
(_(_I Dzony (Peter Ronai) |
I e-mail:dzony na bicba.sk |
webmaster of sites @ bicba.sk |
*************************************
Další informace o konferenci linux