similar to: Fwd: Login shell always /bin/false or whatever template is set in smb.conf

I'm noticing True and False seem to be interchangeable with Yes and No in smb.conf. Can someone confirm? Does this apply to all params?

For local login to our samba server, we are using posix information stored in an openldap directory. - I can log in via shell with no problems. We are authenticating samba against AD2003. I can attach to the samba server from both windows and macintosh - just not access my home directory. Currently, "template homedir = /home/%U" - which results in a path of /home/<username> I

On Thu, Jun 25, 2020 at 01:04:29PM +0300, Dan Carpenter wrote: > On Wed, Jun 24, 2020 at 12:39:24PM -0700, Kees Cook wrote: > > On Wed, Jun 24, 2020 at 07:51:48PM +0300, Dan Carpenter wrote: > > > In Debian testing the initrd triggers the warning. > > > > > > [ 34.529809] process '/usr/bin/fstype' started with executable stack > > > >

On Tue, 2020-02-25 at 13:36 -0800, Kees Cook wrote: > On Thu, Feb 06, 2020 at 04:38:34PM +0100, Christophe Leroy wrote: [...] > > Indeed, the stack is rwx, which is unexpected. And it is the case for all > > klibc tools. > > > > How can we fix that ? > > klibc uses trampolines for its setjmp implementation. I ran into this > years ago when eradicating

While the Samba server is running, does it ever refresh the contents of the smb.conf file, or do you have to restart the server for it to see changes to the smb.conf file? Thanks in advance. Jeff Rasnick Software Technologies, Inc. www.softtechks.com -------------- next part -------------- HTML attachment scrubbed and removed

With latest kernel (Linus tree as of 5.6 merge window), I get the following warning in the kernel 'dmesg': [ 5.746588] process '/bin/sh' started with executable stack This comes from commit https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/fs/exec.c?id=47a2ebb7f5053387f5753b524f4920b9b829f922 "execve: warn if process starts with executable

I am intrigued by the possibility of using R as the SHELL in a (Gnu) makefile (instead of /bin/sh). (c.f. http://www.gnu.org/software/make/manual/make.html#Choosing-the-Shell) Well, rather, I would like the makefile's SHELL to be a command which communicated with an R process. The makefile targets/prerequistes would, as always, be OS files, which would be written/read using standard R file

I am trying to setup a simple Samba server using the instructions in the O'Reilly book "Using Samba" first edition on a Slackware 9.1 system which uses Samba 2.2.8a. The windows machine uses windows 98SE. The instructions under Server Configuration starting page 93 and Disk Share Configuration starting page 96 had me setup a very simple smb.conf which should then appear in Network

Hello again, no idea!? Both my DCs running now 4.3.4, but there is a strange behaviour, Ex.: First DC root at s4master wingroup]# id maurerp uid=90036(TPLK\maurerp) gid=100(users) Gruppen=100(users),3000048(TPLK\schreiben),3000038(TPLK\orbis),3000023(TPLK\ agfa),3000009(BUILTIN\users) Second DC [root at s4slave ~]# id maurerp uid=90036(TPLK\maurerp) gid=100(users)

Hello, Is there a way to let someone access to Asterisk CLI and type whatever command (s)he likes but the shell command (the ones started by !) ? Ideally, it could be an argument to rasterisk: rasterisk --no-shell When done, a session could be like this: > pjsip show endpoints ... > core reload ... > !rm /etc/foobar Forbidden Suggestions ? Best regards -------------- next part

On Tue, Dec 01, 2015 at 03:59:56PM +0100, Mateusz Guzik wrote: > CHROOT_IN/OUT around commandvf are definitely problematic. chroot should be > done in the child, which also removes the need to chroot out in the > parent. The CHROOT_IN/OUT business does need to be rewritten. Every instance where we currently do something like: CHROOT_IN; r = stat (fd, &statbuf); CHROOT_OUT

On Wed, Oct 11, 2017 at 2:34 PM, Tom Lendacky <thomas.lendacky at amd.com> wrote: > On 10/11/2017 3:30 PM, Thomas Garnier wrote: >> Changes: >> - patch v1: >> - Simplify ftrace implementation. >> - Use gcc mstack-protector-guard-reg=%gs with PIE when possible. >> - rfc v3: >> - Use --emit-relocs instead of -pie to reduce dynamic

On Wed, Oct 11, 2017 at 2:34 PM, Tom Lendacky <thomas.lendacky at amd.com> wrote: > On 10/11/2017 3:30 PM, Thomas Garnier wrote: >> Changes: >> - patch v1: >> - Simplify ftrace implementation. >> - Use gcc mstack-protector-guard-reg=%gs with PIE when possible. >> - rfc v3: >> - Use --emit-relocs instead of -pie to reduce dynamic

Programs with special uncommon file formats (not jpg) often register a shell extension in Explorer that offers thumbnails for these files (since the files otherwise wouldn't have previews). When I trigger in a Wine application (eg. SketchUp) the File Open dialog, I can see previews of the files (skp files) in the preview panel. This means the shell extension does work in Wine. The Shell

hi! i need ssh users and sftp users on my server. they don't mix so sftp users have a /bin/false as their shell. however when i try a ssh connect to such a user. he does not get disconnected but hangs forever. can it be that sshd searches foer /bin/false in the chroot environment? but i tried to place it there including ldd requirements. no success. i just want sftp users to get no shell

On 9 Jul 2004 at 13:11, Daniel Brown wrote: > On the other hand, I've run across a sysadmin who always enables his > toor accounts -- and changes its shell to bash. As a result, not only > is there an alternate root account (good in case 'root' trampled on by > accident or purpose), but you can get root bash as a login shell while > leaving the real root to its normal

Howdy, I'm trying to get my feet wet with pjsip using the conversion script mentioned on the Wiki on this page: https://wiki.asterisk.org/wiki/display/AST/Migrating+from+chan_sip+to+res_pjsip I'm using the copy of the script that's included with Asterisk 13 /usr/src/asterisk-13.0.0/contrib/scripts/sip_to_pjsip I assume I run it from /etc/asterisk with the input and output file as

Hi, As part of the bash 'shellshock' bug / vulnerability in unix/linux environments i would like to know whether the use of the samba parameter 'template shell' in my product may cause my product to be vulnerable to the shellshock bug , since this 'template shell' parameter , as per my understanding allows to open a remote bash session used by external users. I would

On 04/12/15 22:43, Jeff Sadowski wrote: > We use power broker here at work and where wondering why we need it. > > I was able to setup a new linux server using samba and am able to login > with my active directory accounts but I couldn't figure out how to set the > login shells. > I have a work around but would like feedback > in my /etc/samba/smb.conf I have the following

On 07/12/15 18:49, Jeff Sadowski wrote: > But that doesn't work for me. As I am saying > If I set it like that I only see 7 domain users with getent passwd > experimenting I see if I set > > idmap config * : range = 2000-7999 > idmap config DOMAIN:range = 8000-99999 > > I see all my users. > > which is really odd because all my users have uids above 10000 >