diff options
author | Andrew Tridgell <tridge@samba.org> | 2005-01-07 01:56:19 +0000 |
---|---|---|
committer | Gerald (Jerry) Carter <jerry@samba.org> | 2007-10-10 13:08:29 -0500 |
commit | 468b3fcef2500f5c45ed1e21ca43db507ef9c6ef (patch) | |
tree | ac9b239886b5f51feda0a71c27d25500f8f1fd53 /prog_guide.txt | |
parent | b8b0927455e837e3fdf9c60da17c39cd1405e908 (diff) | |
download | samba-468b3fcef2500f5c45ed1e21ca43db507ef9c6ef.tar.gz samba-468b3fcef2500f5c45ed1e21ca43db507ef9c6ef.tar.bz2 samba-468b3fcef2500f5c45ed1e21ca43db507ef9c6ef.zip |
r4582: finally worked out what is going on with the inherited ACLs test and win2003. It is a
win2003 bug!
This new test code works against w2k, and against longhorn, but fails
against w2k3. When tested against w2k3 it allows a open with an access
mask that should be denied by the given ACL, after setting up the ACL
using inheritance. Note that only the very specific
SEC_RIGHTS_FILE_ALL mask incorrectly succeeds, so they must have a
special case for that mask. Maybe its an optimisation gone wrong?
I don't know if there are any serious security implications to this,
but it is pretty clearly wrong, and has been fixed in longhorn.
(This used to be commit 4f9fd767dbb5e47f3786f5acda17267d57e839e0)
Diffstat (limited to 'prog_guide.txt')
0 files changed, 0 insertions, 0 deletions