MCCALL,DON (HP-USA,ex1)
2001-Feb-22 18:07 UTC
[homes] share and security=server ... possible BUG?
Tom,
Isn't that supposed to be valid users = %S (uppercase).
This works for me...
Don
-----Original Message-----
From: Tom [mailto:freyason@yahoo.com]
Sent: Thursday, February 22, 2001 10:58 AM
To: samba@lists.samba.org
Subject: re: [homes] share and security=server ... possible BUG?
OK I think I found a bug.
My homes share is as follows:
[homes]
valid users = %s
browseable = no
guest ok = no
read only = no
create mode = 0750
I have security=server and password server=<Our Windows BDC's>
I also have a username map set up to map UNIX id's to NT id's.
Now, if someone tries to connect to the home directory they
get prompted for password.
If I take the "valid users" lines out.. then it works fine!
However, I could ocnnect to //server/someone-elses-username
and see their home directory! Which I don't want to do.
valid users = %s won't let anyone, even the legitimate user
connect to their own home directory!
Is there a fix for this?
This is with Samba 2.07 running on Solaris 7.
Thanks,
Tom
__________________________________________________
Do You Yahoo!?
Yahoo! Auctions - Buy the things you want at great prices!
http://auctions.yahoo.com/
"MCCALL,DON (HP-USA,ex1)" wrote:> > Tom, > Isn't that supposed to be valid users = %S (uppercase). > This works for me... > Don >But always remember that samba's restrictions don't apply to interactive users (eg telnet) and it might be worth tightening up the permissions anyway. I run all my home directories mode 700.> -----Original Message----- > From: Tom [mailto:freyason@yahoo.com] > Sent: Thursday, February 22, 2001 10:58 AM > To: samba@lists.samba.org > Subject: re: [homes] share and security=server ... possible BUG? > > OK I think I found a bug. > > My homes share is as follows: > > [homes] > valid users = %s > browseable = no > guest ok = no > read only = no > create mode = 0750 > > I have security=server and password server=<Our Windows BDC's> > I also have a username map set up to map UNIX id's to NT id's. > > Now, if someone tries to connect to the home directory they > get prompted for password. > > If I take the "valid users" lines out.. then it works fine! > However, I could ocnnect to //server/someone-elses-username > and see their home directory! Which I don't want to do. > valid users = %s won't let anyone, even the legitimate user > connect to their own home directory! > > Is there a fix for this? > This is with Samba 2.07 running on Solaris 7. > > Thanks, > > Tom > > __________________________________________________ > Do You Yahoo!? > Yahoo! Auctions - Buy the things you want at great prices! > http://auctions.yahoo.com/-- Andrew Bartlett abartlet@pcug.org.au