[squid-users] security issue regarding smb_auth

From: Van Bossche Koen <Koen.VanBossche@dont-contact.us>
Date: Tue, 18 Dec 2001 14:17:33 +0100

Hi,

I have a security issue with using smb_auth. A user not granted access and
therefor not listed in any NT group is able to have access to the internet.

        [root@TNLLXS01 /root]# /opt/squid/libexec/squid/smb_auth -W KONE.COM
-d
        tnltest5 0ngewoon
        Domain name: KONE.COM
        Pass-through authentication: no
        Query address options:
        Domain controller IP address: 138.249.140.39
        Domain controller NETBIOS name: TNLNTS1
        Contents of //TNLNTS1/NETLOGON/proxyauth: allow
        OK

Does anyone know how this is possible or what actually is wrong?

BR,
./koen
Received on Tue Dec 18 2001 - 06:22:04 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:05:22 MST