Author Topic: [Solved] Shares (backdoor access?)  (Read 789 times)

brononius

  • Guru
  • ****
  • Posts: 369
  • Trying to keep it simple and centralized...
    • View Profile
    • OnIrIa - linuxMCE blog (runs on ... linuxmce server)
[Solved] Shares (backdoor access?)
« on: February 17, 2012, 10:51:46 am »
Hey,

I've got some users configured in linuxmce.
When somebody access now the server from a windows 7 client, he sees following in the network neighbour:

  • User1
  • User2
  • Public
  • Home


When he's user1, he has access to User1 and Public, but not to User2. Nice, like it should be.
But he can open Home, and open in there User2. So not nice...

Any idea what i'm doing wrong?


Thanks!
« Last Edit: February 20, 2012, 08:42:44 am by brononi »
Version: linuxMCE 1004 (v 2012-07-01)
Extra's: Cacti, webmin, phpmyadmin, joomla

Server: MSI MS-7519 / E7400 2,8GB / 4GB / SSD 60GB / Radeon HD4350 / RTL8111 - 3C905C-TX
Orbiters: HTC Desire Z, HP PocketPC, Samsung Galaxy S, iPAD, ASUS eeePAD
Automation: EIB technology, KNX IP ROUTER 750
Phones: Cisco 7940, Cisco 7960
Camera's: IPCAM02

DragonK

  • Guru
  • ****
  • Posts: 429
    • View Profile
Re: Shares (backdoor access?)
« Reply #1 on: February 17, 2012, 11:52:21 am »
As far as I know, User1 will have read rights on User2's folder. But wont be able to delete or write to it???

I might be wrong.....

brononius

  • Guru
  • ****
  • Posts: 369
  • Trying to keep it simple and centralized...
    • View Profile
    • OnIrIa - linuxMCE blog (runs on ... linuxmce server)
Re: Shares (backdoor access?)
« Reply #2 on: February 17, 2012, 12:45:36 pm »
Won't it be more logical if user folders are for users, and public folders for everyone?  :P
Version: linuxMCE 1004 (v 2012-07-01)
Extra's: Cacti, webmin, phpmyadmin, joomla

Server: MSI MS-7519 / E7400 2,8GB / 4GB / SSD 60GB / Radeon HD4350 / RTL8111 - 3C905C-TX
Orbiters: HTC Desire Z, HP PocketPC, Samsung Galaxy S, iPAD, ASUS eeePAD
Automation: EIB technology, KNX IP ROUTER 750
Phones: Cisco 7940, Cisco 7960
Camera's: IPCAM02

DragonK

  • Guru
  • ****
  • Posts: 429
    • View Profile
Re: Shares (backdoor access?)
« Reply #3 on: February 17, 2012, 02:02:09 pm »
Yes it would be...... I will check mine when I get home...

merkur2k

  • Addicted
  • *
  • Posts: 513
    • View Profile
Re: Shares (backdoor access?)
« Reply #4 on: February 17, 2012, 07:57:47 pm »
it looks like it is because we are forcing the user to "root" for the /home share. i am not sure that we should be doing this, we will need to discuss.

brononius

  • Guru
  • ****
  • Posts: 369
  • Trying to keep it simple and centralized...
    • View Profile
    • OnIrIa - linuxMCE blog (runs on ... linuxmce server)
Re: Shares (backdoor access?)
« Reply #5 on: February 19, 2012, 07:56:40 am »
For the moment, i've solved this by changing /etc/samba/smb.conf from:

Code: [Select]
[home]
        browsable = yes

to
Code: [Select]
[home]
        browsable = no

And a quick reload of the samba server (sudo /etc/init.d/samba restart) solved my problem.
I just hope that nothing else will encounter issues now...



Version: linuxMCE 1004 (v 2012-07-01)
Extra's: Cacti, webmin, phpmyadmin, joomla

Server: MSI MS-7519 / E7400 2,8GB / 4GB / SSD 60GB / Radeon HD4350 / RTL8111 - 3C905C-TX
Orbiters: HTC Desire Z, HP PocketPC, Samsung Galaxy S, iPAD, ASUS eeePAD
Automation: EIB technology, KNX IP ROUTER 750
Phones: Cisco 7940, Cisco 7960
Camera's: IPCAM02

posde

  • Administrator
  • LinuxMCE God
  • *****
  • Posts: 2846
  • Wastes Life On LinuxMCE Since 2007
    • View Profile
    • My Home
Re: Shares (backdoor access?)
« Reply #6 on: February 19, 2012, 09:22:52 am »
If you want to keep the setting (i.e. the invisiblity), change /usr/pluto/templates/smb* as well.

brononius

  • Guru
  • ****
  • Posts: 369
  • Trying to keep it simple and centralized...
    • View Profile
    • OnIrIa - linuxMCE blog (runs on ... linuxmce server)
Re: Shares (backdoor access?)
« Reply #7 on: February 20, 2012, 08:20:36 am »
Thanks, has been updated as well...
Version: linuxMCE 1004 (v 2012-07-01)
Extra's: Cacti, webmin, phpmyadmin, joomla

Server: MSI MS-7519 / E7400 2,8GB / 4GB / SSD 60GB / Radeon HD4350 / RTL8111 - 3C905C-TX
Orbiters: HTC Desire Z, HP PocketPC, Samsung Galaxy S, iPAD, ASUS eeePAD
Automation: EIB technology, KNX IP ROUTER 750
Phones: Cisco 7940, Cisco 7960
Camera's: IPCAM02