On Tue, Apr 06, 2010 at 04:44:02PM -0700, Linda W wrote: > Jeremy Allison wrote: > > On Wed, Mar 03, 2010 at 03:38:58PM +0100, Stefan Götz wrote: > >> Setting the 'wide links' option to yes and/or the 'follow symlinks' to no > >> on the > >> server has no effect, neither globally nor on a per-share basis. Is there > >> any > >> other way to tell smbd to not meddle with symlinks? > > > > Remove the check in lp_widelinks() (param/loadparm.c) and recompile. > > > > We got bitten badly enough by this that I don't think > > this should be a user settable parameter I'm afraid. > > > > Jeremy. > ---- > I disagree with this decision as well -- I'm bitten by this > and can't mount my share and give my clients access. I use wide links > and also would expect them to work on my unix-extended clients (including, > I believe, cygwin on windows (?)).
Well, if you are slashdotted on every security mailing list on this planet, what can you do? You just close down your service. Sorry for that, but Samba just can't afford to be called insecure by default. Volker
signature.asc
Description: Digital signature
-- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
