On Mon, Jan 09, 2006 at 02:28:31PM +1100, Andrew Bartlett wrote: > On Sun, 2006-01-08 at 17:54 -0800, Steve Langasek wrote: > > On Sun, Jan 08, 2006 at 06:30:44PM +0000, George B. wrote: > > > Package: samba > > > Version: 3.0.20b-4 > > > Severity: normal
> > > I run the 'smbpasswd -L' to see what it did and I got a segfault. The > > > panic email asked me to submit a report, so here it is. > > Technically not a segfault; it's a bug in the mail script that it tells you > > it is. This is an assertion failure instead. > > > The secrets.tdb file has permissions 600, but the smbpasswd help text > > > implies the -L option can be used by non-root users? > > What part of the help text implies this to you? Everything I see merely > > states that the -L option exists, it doesn't say who's allowed to use it. > It is very hard to correctly return up the stack from this deep in the > code, so the assertion is correct. If you can't read the secrets.tdb, > there isn't much else we can do when we need that value. Sure; the only other thing I could see doing here would be to have smbpasswd check the readability of secrets.tdb at the argument-parsing stage. -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. [EMAIL PROTECTED] http://www.debian.org/
signature.asc
Description: Digital signature
