[wpkg-users] security issues
Tomasz Chmielewski
mangoo at wpkg.org
Wed Jun 6 09:26:18 CEST 2007
Tomasz Chmielewski schrieb:
> Brian May schrieb:
>>>>>>> "Tomasz" == Tomasz Chmielewski <mangoo at wpkg.org> writes:
>> Tomasz> Well, so it's your setup's fault - mapping bad
>> Tomasz> users/passwords is not a recommended habit...
>>
>> Tomasz> Would the same scenario work if you didn't map bad
>> Tomasz> user/password to guest?
>>
>> This was on the fraudulent server.
>>
>> You cannot ask an attacker "please do not use this option as you might
>> break security" - they will not comply!
>
> Yeah, you're perfectly right.
>
> This means, Samba is evil... Hmm...
I'm not sure of few things in your setup:
1) was the workstation a domain member on a real server?
2) did you use a domain user for user executing WPKG and for WPKG path
access?
--
Tomasz Chmielewski
http://wpkg.org
wpkg-users mailing list
wpkg-users at lists.wpkg.org
http://lists.wpkg.org/mailman/listinfo/wpkg-users
More information about the wpkg-users
mailing list