search for: priveleged

Hi, I'm kinda new to samba so forgive my ignorance. I want to set up users so that depending on the user you would have access - read, write or read/write both. I know that is is possible to specify whether the drive is read only, write etc. So is it possible to set priveleges at the user level? thanx. Abhishake

...o, I did a quick change to the patched port of poppassd and am wondering if you think my code would introduce any potential problems. The idea is right after we check if the username exists, also check if the UID of that username is over 1000. I wanted to make sure that no one monkeys around with priveleged users once poppassd is running. So, the middle chunk of code is mine, everything else has been there before me. What's the general feeling about the security of poppassd provided that users with valid passwords already have shell access to the system, and now nobody can try to change priveleg...

This problem appears to have been discussed before, but none of the offered suggestions have been any help. Situation: I had a working Samba PDC, using SuSE 7.3 Professional (I believe 2.4.16 Kernel) and I do NOT know what version of Samba. Then my hard disk died.. Rather than re-build another 7.3 box (SuSE is dropping support December 15th) - I used the latest and greatest SuSE 9.0

> ... > I used the latest and greatest SuSE 9.0 Professional... > I then installed all the latest patches via YaST. That > gives me a kernel of 2.4.21 (-144 in SuSE speak) and > Samba 2.2.8a > > I had the configuration backed up on another box, so I > used that as the base for Samba 2.2.8a. I have tried > chmod, chown of various directories, making profile >

Hello all, this patch allows master process to drop more root priveleges under Solaris. My limited testing shows that code works, but I'm not sure that defined privilege set is permissive enough for dovecot. Unfortunately I have no root access to our Solaris servers to really test it. So if someone is ready to test this patch please do it :) Best regards. -------------- next part

...tcp packed ipchains -A input -j ACCEPT -i eth0 -s any/0 --dport 1024:65535 -p tcp ! -y So I added the following : #allow return from ssh connections ipchains -A input -j ACCEPT -i eth0 -s any/0 22 -p tcp ! -y Now everything is fine. I even see the config file option to switch back to using non-priveleged ports. What was the reason for switching to priveleged by default in 2.5.1p1? -Troy Jason Stone wrote: > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > > I just recently installed OpenSSH 2.5.1p1 on a RH6.2 box (kernel > > 2.2.17). I run ipchains to do packet...

Ok, I'm doing a heads up here. I just applied: - markus at cvs.openbsd.org 2002/06/11 04:14:26 [ssh.c sshconnect.c sshconnect.h] no longer use uidswap.[ch] from the ssh client run less code with euid==0 if ssh is installed setuid root just switch the euid, don't switch the complete set of groups (this is only needed by sshd). ok provos@ A few comments about

The owner of my company just asked me for an Asterisk brochure. Has anyone seen such a creature? I know of some really informative websites, but I think a pdf would be priceless at this point. Thanks, Bob McDowell EMAIL PRIVELEGED & CONFIDENTIAL CLIENT COMMUNICATION    *** PRIVILEGED AND CONFIDENTIAL CLIENT COMMUNICATION *** This e-mail message and all attachments, if any, may contain confidential and privileged material and are intended only for the intended recipient.  Any unauthorized review, use, disclosure or dist...

...ted within some protocol between ssh and sshd. No problem to change this slightly with a private patch. If it only wouldn't incompatibly change the protocol. So my idea is to implement it in a way that client_request_forwarded_tcpip() in clientloop.c checks originator_port for being in the priveleged range and - if yes - uses a privileged port to connect. Any comments? Regards, Robert -- Robert.Dahlem at siemens.com Siemens Business Services - SBS D ORS FS BO DEZ KORDOBA-Outsourcing Tel: +49-69-797-6530 Fax: +49-69-797-6599 -------------------------------------------------------...

On Fri, Apr 06, 2018 at 10:27:32AM -0700, Jeremy Allison via samba wrote: > On Fri, Apr 06, 2018 at 01:44:50PM +0530, Akash Jain wrote: > > Hi All > > > > I found there is one bug in the plugin. The name of the attribute for ACL as > > per strace output of nfs4_setfacl is system.nfs4_acl. > > The source code has defined it as > > #define

Hi All I found there is one bug in the plugin. The name of the attribute for ACL as per strace output of nfs4_setfacl is *system.nfs4_acl.* The source code has defined it as #define NFS4ACL_XATTR_NAME ( "system.nfs4acl" ) Note there is missing underscore. After this, the EOPNOTSUPP error is not observed. Hope this helps Akash On Thu, Apr 5, 2018 at 11:43 PM, Jeremy Allison

How does one create all of the builtin groups for this release? When using tdbsam with previous releases one would automatically get such groups as: System Operators (S-1-5-32-549) -> -1 Replicators (S-1-5-32-552) -> -1 Guests (S-1-5-32-546) -> -1 Domain Admins (S-1-5-21-1832519723-2688400599-3493754984-512) -> domadmin Domain Guests (S-1-5-21-1832519723-2688400599-3493754984-514)

Hello I''ve started working through the book "Agile web development with Rails" and so far everything has been great. I''m on page 56, 57 trying to create the admin tool for the example project "Depot". I''m on OS X Panther 10.3.9. I have checked the Errata on the website and tried some of the suggestions there, but nothing has worked. When I

On Fri, Apr 06, 2018 at 01:44:50PM +0530, Akash Jain wrote: > Hi All > > I found there is one bug in the plugin. The name of the attribute for ACL as > per strace output of nfs4_setfacl is system.nfs4_acl. > The source code has defined it as > #define NFS4ACL_XATTR_NAME      ( "system.nfs4acl" ) > > Note there is missing underscore. > > After this, the

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Is there any interest in using mlock to lock pages in core so that potentially sensitive data won't get swapped out to disk? (GnuPG, for example, does this). There was a thread on this a long time ago, and it degenerated into a discussion of crypto-swap, but the question was never answered. Is there a good reason not to do this? The only one

I'm running 32-bit wine (from the multilib repo on arch) on a 64-bit system and have been trying to install Warcraft 3 and Steam. Steam installed fine but when I tried logging in, I would get the "could not connect to server" error. I couldn't even get warcraft 3 to install, it gave me some error like "GetDef.ins could not be found: unrecognized registry entry." After

...ter proceeds to execute the login script (a .BAT file). However, the client computer does not use the policy file which is located in the netlogon share. I will point out the the login script and the policy file are located on the same share, both with the same set of permissions (writeable by one priveleged user only, group and world readable). Hopefully this will clear up any confusion that my original message may have caused. Glen Gibb Ridley College

When using Dos command: net use Z: \\servername\public I get prompted for a user name and password. I have admin priveleges and have tried using user root, user admin, user guest, my own account etc. And I get System error 1240 has occurred. The account is not authorized to log in from this station. What could be causing this? This is happening via a remote connection from my laptop using our

Hello everyone I am trying to use "hide unreadable = yes" in my [global] section and having some problems - I make a share and then add "valid users = @MYDOMAIN+group" - this works to protect access, but it is still visible to non-priveleged users (even though they cant get in) - is there something I need to do to make these shares hidden? Thanks, Hamish

On Fri, Apr 06, 2018 at 12:40:31PM -0700, Jeremy Allison wrote: > On Fri, Apr 06, 2018 at 09:22:17PM +0200, Ralph Böhme wrote: > > On Fri, Apr 06, 2018 at 10:27:32AM -0700, Jeremy Allison via samba wrote: > > > On Fri, Apr 06, 2018 at 01:44:50PM +0530, Akash Jain wrote: > > > > Hi All > > > > > > > > I found there is one bug in the plugin. The