<html>
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
Laurent;<br>
<br>
Thanks for that info, the first answer I have been able to get.<br>
I did know it was protocol issue we were discussing that. If netbios
turns out to need changes it feels like that could be an easier fix.<br>
<br>
We use it to connect NIS/NFS disk space from a Sparc box to students
using Windows machines in public general purpose 'labs'. The student
that authenticates via AD to login the Windows computer doesn't
start samba or cifs their piece of storage is available they choose
to map it or not.<br>
<br>
<b>CSW is not providing a patch for the version provided?</b><b><br>
</b><b>You mention you are no longer supporting samba for CSW do you
know who is?</b><b><br>
</b><br>
The only patch I can find is one Oracle/Solaris provides but that of
course is for a Solaris package which I am not using. I am between
a rock and a kettle!<br>
<br>
And again thanks for taking the time to help me. Samba has beem
something that I ran without issue.<br>
I went back and looked I think it was run on this Sparc box since
2011 without an issue.<br>
<br>
<div class="moz-cite-prefix">On 04/15/2016 10:02 AM, Laurent Blume
wrote:<br>
</div>
<blockquote cite="mid:5710F46E.4000408@opencsw.org" type="cite">
<pre wrap="">Le 2016/04/15 15:57 +0200, Cmh a écrit:
</pre>
<blockquote type="cite">
<pre wrap="">Thanks for that info, but I still am not sure I need to do anything
regarding the samba badlock issue.
It appears to be A Windows issue only.
</pre>
</blockquote>
<pre wrap="">
It's a protocol flaw, not an implementation error, so basically,
anything using the protocol is at risk.
</pre>
<blockquote type="cite">
<pre wrap="">I have searched and asked and can't get an answer to confirm or deny that.
The good news is that samba can only be accessed internally, not outside
network connections.
</pre>
</blockquote>
<pre wrap="">
Pretty much, yes. It's a real issue, but it was overhyped from the
start. Nobody in their right mind does CIFS over the internet, and if
someone is in the position of doing an MITM in your local network, then
you have some issues already. Still, it ought to be patched.
Laurent
</pre>
</blockquote>
<br>
<pre class="moz-signature" cols="72">--
ITS Systems @ TTH
Craig M. Houck ><>
204B - 607 777 6827
We are only as good as the problems we solve.</pre>
</body>
</html>