From owner-freebsd-security Tue Mar 18 10:16:35 2003 Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A1DA237B404 for ; Tue, 18 Mar 2003 10:16:33 -0800 (PST) Received: from mail.liwing.de (mail.liwing.de [213.70.188.162]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1B2E243FE5 for ; Tue, 18 Mar 2003 10:16:31 -0800 (PST) (envelope-from rehsack@liwing.de) Received: (qmail 87393 invoked from network); 18 Mar 2003 18:16:28 -0000 Received: from stingray.liwing.de (HELO liwing.de) ([213.70.188.164]) (envelope-sender ) by mail.liwing.de (qmail-ldap-1.03) with SMTP for ; 18 Mar 2003 18:16:28 -0000 Message-ID: <3E77627C.2020709@liwing.de> Date: Tue, 18 Mar 2003 19:16:28 +0100 From: Jens Rehsack Organization: LiWing IT-Services User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.2) Gecko/20021120 Netscape/7.01 X-Accept-Language: en-us, en MIME-Version: 1.0 To: "Nikolaj I. Potanin" Cc: security@FreeBSD.ORG Subject: Re: Samba vulnerability References: <20030318143759.GA77729@nevermind.kiev.ua> <3E774C85.902@drweb.ru> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Nikolaj I. Potanin wrote: >> A flaw has been detected in the Samba main smbd code which could allow >> an external attacker to remotely and anonymously gain Super User (root) > > ^^^^^^^^^^^^^^^^^ > > Does anyone here have smbd bound to an external interface? ;-) Even if it's possible when you're using ssl-binding in samba as described in the book "Samba unleashed". If someone hacks your ssl-keys, I think the open samba is a minor problem :-) Jens To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message