Navigation
User login
Quote
Albert Einstein
Few people are capable of expressing with equanimity opinions which differ from the prejudices of their social environment. Most people are even incapable of forming such opinions.
New Critical Samba Security Patch
Tue, 04/08/2003 - 10:06 — kebernet
CNet coverage linked:
"If it was related to the previous flaw, we would have found it when we audited the code," said Jeremy Allison, co-author of Samba and a leader of the Samba Team. "This has been in the code for seven or eight years."
Samba.org seems unavailable right now. Hope that isn't a sign of pwnage. com.news.com.com/~com/com/news/com
This work is licensed under a Creative Commons License.
1998-2008 temple of the screaming penguin
TotSP Search
Community
Chatter
- I am a huge Java developer
6 days 16 hours ago - Its coooooooool.. Java
1 week 1 hour ago - Perfect!
1 week 1 day ago - Necropost about Linux v Mac
1 week 3 days ago - Agreed
1 week 5 days ago - I ran Ubuntu for awhile. It
1 week 5 days ago - A common task when developing
1 week 6 days ago - Sorry, not just counter-racism
1 week 6 days ago - The problem isn't the any one party alone
1 week 6 days ago - I couldnt agree more
1 week 6 days ago
Comments
Re: New Critical Samba Security Patch
This is a serious issue, dont get me wrong here, but Samba is not a service that you would generally put on a publix network (ie Internet) so most machines should not be affected by this.
Even if you use Samba, which I do, I use it a ton, its not a good idea in general to leave it exposed to the outside.
Yes there may be very special cases where people transfer files across it on the Internet, but that should be RARE. Use something more secure in general like scp or sftp, or a vpn tunnel if you must transfer files.
You still need to patch to protect your internal network of course, but that should be MUCH less risk than public access.