samba maps guest users to reserved user "nobody"
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| samba (Ubuntu) |
Confirmed
|
Medium
|
Unassigned | ||
Bug Description
The reserved system user "nobody" should never be the owner of files. This ensures that an access granted with the least privileged "nobody" user will never be able to access or even corrupt files on the system. The "nobody" user may not even be suited for granting public read access, if it is intended to just run unprivileged local deamons.
Samba however creates files as the "nobody" user when samba guests are allowed to create files (e.g. a public share).
Expected:
Samba gets configured to use an appropriate user id for guests that are able to create files. This may be a samba specific user, e.g. "guest user = smbguest" to show the origin of the file, together with "guest group = users (to which all local users should belong, bug #253103)". The latter enables all system users to access/
| description: | updated |
| description: | updated |
| summary: |
- samba maps guest user to reserved user "nobody" + samba maps guest users to reserved user "nobody" |
| Changed in samba (Ubuntu): | |
| status: | New → Confirmed |
| importance: | Undecided → Medium |
