Comment 0 for bug 1099401

Revision history for this message
ceg (ceg) wrote : samba maps guest user to reserved user "nobody"

The reserved system user "nobody" should never be the owner of files. This ensures that the least privileged "nobody" user will never be able to access or even corrupt files. This user may not even be suited for granting public read access, if it is intended to just run unprivileged local deamons.

Samba however creates files as the "nobody" user when samba guests are allowed to create files (e.g. a public share).

Expected:
Samba gets configured to use an appropriate user id for guests that are able to create files. This may be a samba specific user, e.g. "guest user = smbguest" to show the origin of the file, together with "guest group = users (to which all local users should belong, bug #253103)". The latter enables all system users to access/modify/delete the files of smbguest also directly on the filesystem.