On Wed, 2001-09-19 at 23:21, Tom Badran wrote:
> On Thursday 20 September 2001 4:24 am, you wrote:
> > Okay then ... big question.
> >
> > How do I ensure my shares are not publicly writable?
>
> If your not sure, then they probably are not - its harder to set them that
> way. I have never been able to set up a writable share in samba (although i
> havent tried very hard). Basically, you would already know.
>
> I think the options are:
>
> [public] = yes
> [writeable] = yes
>
> And then it still depends on global settings
The real problem is this: some people, because they are not able to get
Samba working properly with User-level security (it can be confusing,
and took me a couple of tries), change it to Share-level security, and
then they don't even password-protect the shares! Suddenly, your Linux
box is just as open as a Win9x system with full-access shares on the
drive.
Yes, it's true that the *.eml files won't cause any harm by themselves
on your Linux system. However, I would be very curious to find out what
would happen if someone (like a web designer, who must test a website
under several browsers) ran MSIE under Win4Lin or VMWare, and then
(accidentally?) opened such a file on their Linux partition. Would IE
still execute it with the permissions of the user? Curious.
Dave
PGP signature
