Default SAMBA configuration allows guest access unexpectedly
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
gnome-system-tools (Ubuntu) |
Expired
|
Low
|
Unassigned |
Bug Description
Binary package hint: samba
Using Gutsy (7.10), the default SAMBA configuration (in /etc/samba/
Steps to replicate:
1. Configure computer A to have a SAMBA shared folder, using System -> Administration -> Shared Folders
2. On computer B, using Places -> Network, browse to or enter the address of Computer A's share
3. Note that, without authenticating (possibly without even setting up a SAMBA user account using smbpasswd), all files in the share are readable, but not writable.
Changed in gnome-system-tools (Ubuntu): | |
importance: | Undecided → Low |
> Using Gutsy (7.10), the default SAMBA configuration (in /etc/samba/ smb.conf) allows guest (non-authenticated) logins to a share.
Actually, no, it doesn't. By default, all samba shares are available only to authenticated users; changing this default requires explicitly setting 'guest ok = yes' (or 'public = yes') in smb.conf.
This is a bug in shares-admin, which explicitly marks all shares as guest-accessible. Reassigning to gnome-system-tools.