P. 1
Samba

Samba

|Views: 167|Likes:
Publicado porNurul Istiqomah

More info:

Published by: Nurul Istiqomah on Dec 14, 2010
Direitos Autorais:Attribution Non-commercial

Availability:

Read on Scribd mobile: iPhone, iPad and Android.
download as PDF, TXT or read online from Scribd
See more
See less

02/21/2014

pdf

text

original

SWAT is convenient,butthe administrator must address some security issues. The
three most pressing security concerns are smb.confpermissions,persistence,and clear
passwords.

The basic problem is that anyone who can write smb.confcan have his way with the
entire server,via the smb.conf root preexec=parameter (explained later in this sec-
tion). Such unauthorized write access can be gained from SWAT’s unique use of the root
group id,or from the fact that it persists on all of a box’s browser sessions. The SWAT
user forgetting to close all browsers before lunch empowers others to hack smb.confin
his absence. Since SWAT uses clear passwords,they can be sniffed off the wire if SWAT
is operated from a host other than the Samba server.

You're Reading a Free Preview

Descarregar
scribd
/*********** DO NOT ALTER ANYTHING BELOW THIS LINE ! ************/ var s_code=s.t();if(s_code)document.write(s_code)//-->