[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]

Samba symlink vulnerabilities

To: linux-delhi@xxxxxxxxxxxxxxxxxxxxx, linux-india-help@xxxxxxxxxxxxxxxxxxxxx
Subject: Samba symlink vulnerabilities
From: Raju Mathur <raju@xxxxxxxxxxxxxxx>
Date: Fri, 15 Dec 2000 09:24:56 +0530 (IST)
Reply-to: raju@xxxxxxxxxxxxxxx

Hi,

If you are:

- Running Samba for providing shares to multiple users

- Also allowing these users to login to a shell on the Samba server

- Permitting symlinks in Samba (Follow Symlinks = on), and

- Have a common upload directory

you are vulnerable to a nasty local root compromise attack.  Please
turn off Follow Symlinks in smb.conf to be safe.

I'm not posting the vulnerability here: it's available at your regular
neighbourhood vulnerability store.

Regards,

-- Raju
-- 
Raju Mathur          raju@xxxxxxxxxxxxx           http://kandalaya.org/

Prev by Subject: Re: Request: Seasons Greetings, etc.
Next by Subject: sendmail/any mta
Previous by thread: Adding SCSI Hardisk
Next by thread: Packaging Help..
Index(es):
- Subject
- Thread