Quoting Michal Suchanek <[email protected]> ([email protected]): > Package: samba-common > Version: 2:3.2.5-4lenny2 > Severity: normal > File: smb.conf.5 > > > Hello > > There is a section on user validation in the smb.conf(5) man page. This > ends with point 6: if the user supplies the guest user name the user is > validated regardless of password. > > However, for setting up guest shares that are reasonably usable it is > required that user names are mapped to the guest account. > > Specifically, the security should be set to share or guest map to > Invalid User.
Sorry, I don't get your point.
smb.conf:
[global]
workgroup = TEST
security = user
[public]
browseable=yes
comment=Public
guest ok = yes
path=/var/tmp/samba-test
r...@mykerinos:~# smbclient -N //localhost/public
Anonymous login successful
Domain=[TEST] OS=[Unix] Server=[Samba 3.3.4]
smb: \> dir
. D 0 Thu Apr 23 23:40:48 2009
.. D 0 Wed May 6 05:32:32 2009
foo 5 Fri Apr 17 07:58:37 2009
bar 0 Tue Apr 21 21:12:29 2009
tmpdir0 D 0 Thu Apr 23 10:23:43 2009
tmpfile1 0 Thu Apr 23 10:23:45 2009
10filesdir D 0 Thu Apr 23 10:27:54 2009
testfile 0 Thu Apr 23 23:40:17 2009
testfile2 0 Thu Apr 23 23:40:48 2009
60675 blocks of size 32768. 28676 blocks available
So, no need to specify "security = share" or "map to guest = Bad
User".
In don't see any bug in there....
signature.asc
Description: Digital signature

