Yet another virus is on us. This one comes via windows and when executed will erase your hard drive, or whatever. I have a home network with windows clients on it. So far, nobody has done the unthinkable, but they might some day. I have all the boxes hooked together with a samba network. Seems to work OK. I have all the clients as guest = ftp. This means that they couldn't write to most of my directories (or erase them) but there are plenty of files and probably some directories which are world writeable and erasable. So, question is, if one of these malicious viruses executed on a windows client, how much damage would one expect to the world writable directories and files on my linux boxes (Forget the windows boxes. I would gladly tell my windows users it was a shame.) While I await the answer, I am going to change all my shares to read only. On second thought, using the magic of samba, I'll let the linux boxes have write privileges. Joel
a windows virus kan only do any arm in shares where the current windows user as write access to. This simple means that you must setup your folder so with minimal permissions which is good in any situation. I created a shared folder for the perpose of sharing files between different user groups. Ries Joel Hammer wrote:> > Yet another virus is on us. This one comes via windows and when executed > will erase your hard drive, or whatever. > I have a home network with windows clients on it. So far, nobody has done > the unthinkable, but they might some day. > I have all the boxes hooked together with a samba network. Seems to work OK. > I have all the clients as guest = ftp. This means that they couldn't write > to most of my directories (or erase them) but there are plenty of files and > probably some directories which are world writeable and erasable. > So, question is, if one of these malicious viruses executed on a windows > client, how much damage would one expect to the world writable directories > and files on my linux boxes (Forget the windows boxes. I would gladly tell > my windows users it was a shame.) > While I await the answer, I am going to change all my shares to read only. > On second thought, using the magic of samba, I'll let the linux boxes have write privileges. > Joel > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba
On Tue, 25 Sep 2001, Joel Hammer wrote:> Yet another virus is on us. This one comes via windows and when > executed will erase your hard drive, or whatever. I have a home > network with windows clients on it. So far, nobody has done the > unthinkable, but they might some day. I have all the boxes hooked > together with a samba network. Seems to work OK. I have all the > clients as guest = ftp. This means that they couldn't write to most of > my directories (or erase them) but there are plenty of files and > probably some directories which are world writeable and erasable. So, > question is, if one of these malicious viruses executed on a windows > client, how much damage would one expect to the world writable > directories and files on my linux boxes (Forget the windows boxes. I > would gladly tell my windows users it was a shame.) While I await the > answer, I am going to change all my shares to read only. On second > thought, using the magic of samba, I'll let the linux boxes have write > privileges. JoelA good solution for certain viruses is to use the "veto files" parameter. See smb.conf(5) for details. cheers, jerry --------------------------------------------------------------------- www.samba.org SAMBA Team jerry_at_samba.org www.plainjoe.org jerry_at_plainjoe.org --"I never saved anything for the swim back." Ethan Hawk in Gattaca--