Ubuntu
samba package

mksmbpasswd, called from samba postinst, should not create Samba user for user with uid <1000

Bug #194412 reported by Etienne Goyer
12
Affects Status Importance Assigned to Milestone
samba (Debian)
Fix Released
Unknown
samba (Ubuntu)
Fix Released
Wishlist
Unassigned

Bug Description

When installing the samba package, the postinst script may be calling mksmbpasswd to import the Unix user into the Samba user backend. This is controlled by the debconf variable samba/generate_smbpasswd, which currently default to false.

The way mksmbpasswd is called is indiscriminate, and will create a Samba user for all entries returned by getent passwd. This include system user (those with uid < 1000) such as root, games, lp, etc. While these users do not have a Samba password set (and hence cannot be used to connect to the Samba service), they are still very much unlikely to be useful in the context of Samba and should not be imported.

The best would be for mksmbpasswd to import only user with uid >= 1000, or at least have a blacklist of user it should not import.

Revision history for this message
Chuck Short (zulcss) wrote :

Im having a look at this.

chuck

Changed in samba:
importance: Undecided → Wishlist
status: New → Triaged
Revision history for this message
Chuck Short (zulcss) wrote :

This should be fixed now

Changed in samba:
status: Triaged → Fix Released
Bug Watch Updater (bug-watch-updater)
Changed in samba (Debian):
status: Unknown → New
Bug Watch Updater (bug-watch-updater)
Changed in samba (Debian):
status: New → Fix Committed
Bug Watch Updater (bug-watch-updater)
Changed in samba (Debian):
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Duplicates of this bug

Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.