Your message dated Tue, 9 Mar 2010 13:21:27 -0800
with message-id <20100309212127.ga22...@dario.dodds.net>
and subject line Re: Bug#573223: samba: ignores file/directory permissions on
the host
has caused the Debian Bug report #573223,
regarding samba: ignores file/directory permissions on the host
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)
--
573223: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=573223
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: samba
Version: 2:3.4.6~dfsg-1
Severity: grave
Tags: security
Justification: user security hole
I have this in smb.conf (only including the relevant bits):
[global]
...
security = user
follow symlinks = yes
wide links = yes
unix extensions = no
[shared]
comment = Shared file space
path = /shared
read only = No
In /shared are the following:
lrwxrwxrwx 1 root root 9 2009-04-07 22:25 backedup -> /backedup
-rw-r--r-- 1 mike mike 817480 2008-11-22 12:53 DryRetreiver.wmv
drwxr-xr-x 2 kirsty kirsty 4096 2010-03-09 20:22 kirsty
-rwxr--r-- 1 mike mike 16999 2009-09-30 19:15 KirstyCarLoan.ods
drwxr-xr-x 2 mike mike 4096 2010-01-06 19:45 LegoInstructions
drwxr-xr-x 2 mike mike 4096 2010-03-03 16:59 LinInstallers
drwx------ 2 root root 4096 2008-08-13 19:57 lost+found
drwxr-x--- 3 mike mike 4096 2010-03-09 19:42 mike
This server is accessed only from windows clients (the same directories
are shared via NFS for the unix clients)
I found I had to add the follow symlinks, wide links and unix extensions
options in order for \\server\shared\backedup\ to remain accessible
last time samba was upgraded. The problem remains even if these options
are removed.
The problem is that user 'mike' can now WRITE to (and read from)
\\server\shared\kirsty
and \\server\shared\lost+found.
This means any user can read/write to any other user's data.
The unix file permissions should prevent this happening.
I also have a [homes] share, which seems to be working correctly - users
can only browse to their own directories.
-- System Information:
Debian Release: squeeze/sid
APT prefers testing
APT policy: (500, 'testing')
Architecture: i386 (i686)
Kernel: Linux 2.6.32-trunk-686 (SMP w/1 CPU core)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages samba depends on:
ii adduser 3.112 add and remove users and groups
ii debconf [debconf-2.0] 1.5.28 Debian configuration management sy
ii libacl1 2.2.49-2 Access control list shared library
ii libattr1 1:2.4.44-1 Extended attribute shared library
ii libc6 2.10.2-6 Embedded GNU C Library: Shared lib
ii libcap2 1:2.17-2 support for getting/setting POSIX.
ii libcomerr2 1.41.10-1 common error description library
ii libcups2 1.4.2-4 Common UNIX Printing System(tm) -
ii libgnutls26 2.8.5-2 the GNU TLS library - runtime libr
ii libgssapi-krb5-2 1.8+dfsg~alpha1-7 MIT Kerberos runtime libraries - k
ii libk5crypto3 1.8+dfsg~alpha1-7 MIT Kerberos runtime libraries - C
ii libkrb5-3 1.8+dfsg~alpha1-7 MIT Kerberos runtime libraries
ii libldap-2.4-2 2.4.17-2.1 OpenLDAP libraries
ii libpam-modules 1.1.1-2 Pluggable Authentication Modules f
ii libpam-runtime 1.1.1-2 Runtime support for the PAM librar
ii libpam0g 1.1.1-2 Pluggable Authentication Modules l
ii libpopt0 1.15-1 lib for parsing cmdline parameters
ii libtalloc2 2.0.1-1 hierarchical pool based memory all
ii libwbclient0 2:3.4.6~dfsg-1 Samba winbind client library
ii lsb-base 3.2-23 Linux Standard Base 3.2 init scrip
ii procps 1:3.2.8-7 /proc file system utilities
ii samba-common 2:3.4.6~dfsg-1 common files used by both the Samb
ii update-inetd 4.36 inetd configuration file updater
ii zlib1g 1:1.2.3.4.dfsg-3 compression library - runtime
Versions of packages samba recommends:
ii logrotate 3.7.8-4 Log rotation utility
Versions of packages samba suggests:
pn ctdb <none> (no description available)
pn ldb-tools <none> (no description available)
ii openbsd-inetd [inet-superse 0.20080125-4 The OpenBSD Internet Superserver
pn smbldap-tools <none> (no description available)
-- debconf information:
samba/run_mode: daemons
samba/generate_smbpasswd: true
--- End Message ---
--- Begin Message ---
Version: 2:3.4.7~dfsg-1
On Tue, Mar 09, 2010 at 08:48:13PM +0000, Mike wrote:
> Package: samba
> Version: 2:3.4.6~dfsg-1
> Severity: grave
> Tags: security
> Justification: user security hole
This bug is the subject of the 3.4.7 security update, which has been
uploaded to unstable today.
--
Steve Langasek Give me a lever long enough and a Free OS
Debian Developer to set it on, and I can move the world.
Ubuntu Developer http://www.debian.org/
slanga...@ubuntu.com vor...@debian.org
signature.asc
Description: Digital signature
--- End Message ---