On 11/21/08 14:38, Ian Collins wrote: > Alan M Wright wrote: >> Your comment was about being unable to use Solaris CIFS in >> an Internet cafe to share files, and I see no requirement >> for anonymous access to do that. That's easily achieved by >> creating a single account and making the account name and >> password available to everyone in the cafe. You can even >> create an account called "guest" with no password. > Which is what I do with my home server and unrestricted works shares. > > Doesn't this render anonymous access pointless? The user only has to > connect once per session and security issues become a site policy rather > than an implementation one.
Null sessions are/were used by some system services on Windows; perhaps installed as part of a 3rd part application to do virus scanning, over-the-wire backup etc. It's been many years since we've had to consider this and I can't remember a specific application to give as an example. These system services run under the SYSTEM account on the local machine and they use null sessions over shares because they lack valid credentials to use on other systems. If these systems are members of a domain, it is often possible to change the default through a control panel application from the SYSTEM account to a domain account. If that's not possible, it may be necessary to enable anonymous logon (null sessions). Alan _______________________________________________ cifs-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/cifs-discuss
