[Pkg-samba-maint] Bug#424629: security upgrade broke permissions check

SPUeNTRUP - Kai Henningsen Kai.Henningsen.caahafcbbbajda.S at cats.ms
Mon May 21 09:09:27 UTC 2007

Hello Christian,

Am Thu, 17 May 2007 11:10:17 +0200
schrieb Christian Perrier <bubulle at debian.org>:

> gpg: Signatur am Do 17 Mai 2007 11:10:17 CEST mit DSA Schlüssel, ID C0143D2D, erfolgt
> gpg: Falsche Unterschrift von "Christian Perrier <bubulle at kheops.homeunix.org>"


> I'm afraid I don't really get all the needed information to properly
> process this bug report.

Didn't sound like that from the audit trail :-)

> Your complete smb.conf file would help 

That's a bit more info than I'm comfortable giving out. However, it
seems to me that "force group: +something" is really the only relevant
option here.

>as well as the permissions on
> the offending directory and the users/group mapping (which users
> belong to what group, at least for the groups involved i the problem
> you describe)

The users in question are in the "something" group, and also in the
"other" group (their primary group being the username group). "Other"
membership should allow writing in the directory in question (because
everything in there is in that group and g+w); "something" doesn't
(owner is a different user).

> Of course, providing a level 10 log file (hopefully restricted to that
> directory) would help, in case you're in position of reproducing the
> bug again (which may be hard on a production server).

I'd probably get lynched.

Mit freundlichen Grüßen aus Münster /
with kind regards - Kai Henningsen

SPUeNTRUP Software
Windbreede 12
D-48157	Münster, Germany

Reg:	Münster Nr.29047

Fon:	+49 700 CALL CATS (=22552287)
Fon:	+49 251 322 311 0
Fax:	+49 251 322 311 99
GSM:	+49 171 7700992

Web:	http://www.cats.ms
Mail:	support-kai at cats.ms

More information about the Pkg-samba-maint mailing list