[18108] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Symlink attack in (all?) Samba. - Local root walkthrough by

daemon@ATHENA.MIT.EDU (Tim Potter *)
Fri Dec 15 17:29:13 2000

Message-Id:  <20001215032430.24981.qmail@securityfocus.com>
Date:         Fri, 15 Dec 2000 03:24:30 -0000
Reply-To: tpot@LINUXCARE.COM.AU
From: Tim Potter * <tpot@LINUXCARE.COM.AU>
To: BUGTRAQ@SECURITYFOCUS.COM

> Requirements:
> 
> * Shell access or any other way to create
symlinks
> * A running samba deamon
> * The username and/or password of a user named
in the
>   admin lists in one or more shares.

This basically boils down to the fact that if you
give someone root access on a machine they can do
things.  

It is usually not necessary to use the admin users
parameter.  Tasks like managing upload directories
and so on can usually be achieved with a
combination of the various force user, group and
create mode parameters.

Tim.


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[18108] in bugtraq

Re: Symlink attack in (all?) Samba. - Local root walkthrough by

daemon@ATHENA.MIT.EDU (Tim Potter *)Fri Dec 15 17:29:13 2000

daemon@ATHENA.MIT.EDU (Tim Potter *)
Fri Dec 15 17:29:13 2000