[602] in Intrusion Detection Systems
Re: Windows 95 Network Security
daemon@ATHENA.MIT.EDU (Peter C. Norton)
Wed Feb 14 22:43:23 1996
From: "Peter C. Norton" <spacey@aleph.sensenet.com>
To: ids@uow.edu.au
Date: Wed, 14 Feb 1996 18:00:40 -0500 (EST)
In-Reply-To: <Pine.3.89.1.0.9602131351.A20527-0100000@cyan> from "Alexander Fok"
at Feb 13, 96 01:09:11 pm
Reply-To: ids@uow.edu.au
Alexander Fok seemed to have said:
> Can anyone detail the "Unix Samba" hole?
> Thank you in advance.
For some stupid reason, Windows for Workgroups put the responsability of
security upon the client side. If I mount a WfW share with a samba client,
assuming I'm in my home directory, and don't have permissions to the ..
directory, I can type "cd ..", and it will. Where the windows client would
not allow a cd to a directory that was not allowed, the samba client never
had that in it (I don't think MS ever specified that it was necessary in
their standards).
--
- Hofstadter's Law: It always takes longer then you expect, -
- even when you take into account Hofstadter's Law -
spacey@sensenet.com
http://www.sensenet.com
Systems Administrator, Sensenet, Inc.
