search for: security_token_has_privileg

Displaying 4 results from an estimated 4 matches for "security_token_has_privileg".

2024 Jun 11
1
SeDiskOperatorPrivilege_Privilege
...mand, smbd requires that the administrator connects using a root account (i.e. uid == 0) or has the SeDiskOperatorPrivilege. Scripts defined in the delete share command parameter are executed as root. Looks like it is still checked (in master) in: _srvsvc_NetShareSetInfo() is_disk_op = security_token_has_privilege( session_info->security_token, SEC_PRIV_DISK_OPERATOR); /* fail out now if you are not root and not a disk op */ if (session_info->unix_token->uid != sec_initial_uid() && !is_disk_op) { DEBUG(2,("_srvsvc_NetShareSetInfo: u...
2012 Feb 24
2
STATUS_ACCESS_DENIED with NTCreateAndX if Access Mask has System Security bit set
I've been trying to run a .NET app on Windows 2008 against a Samba v3.6.1 server running on OpenSuse x64 v12.1 but keep running into problems. What the .NET app is doing is trying to read the ACL for a directory using UNC path pointing to a directory below the "users" share on the samba server. The app is running as user Administrator. On the samba side the Administrator user has
2024 Jun 11
1
SeDiskOperatorPrivilege_Privilege
On Tue, 11 Jun 2024 15:52:45 +0100 Luis Peromarta via samba <samba at lists.samba.org> wrote: > Again, my exact same experience. > > LP > On Jun 11, 2024 at 14:58 +0100, Bailey Allison via samba > <samba at lists.samba.org>, wrote: > > Hey Rowland, > > > > Just wanted to say you are 100% correct, and it does (seemingly) > > nothing, at least
2024 Jun 11
1
SeDiskOperatorPrivilege_Privilege
...s > using a root account (i.e. uid == 0) or has the > SeDiskOperatorPrivilege. Scripts defined in the delete share command > parameter are executed as root. > > > Looks like it is still checked (in master) in: > > _srvsvc_NetShareSetInfo() > > is_disk_op = security_token_has_privilege( > session_info->security_token, > SEC_PRIV_DISK_OPERATOR); > > /* fail out now if you are not root and not a disk op */ > > if (session_info->unix_token->uid != sec_initial_uid() && > !is_disk_op) { DEBUG(2,("_srvsvc_...