Fedora Core 2: FEDORA-2004-459 Critical: Samba Insecure Permissions Fix

Samba is the protocol by which a lot of PC-related machines share

files, printers, and other information (such as lists of available

files and printers). The Windows NT, OS/2, and Linux operating systems

support this natively, and add-on packages can enable the same thing

for DOS, Windows, VMS, UNIX of all kinds, MVS, and more. This package

provides an SMB server that can be used to provide network services to

SMB (sometimes called "Lan Manager") clients. Samba uses NetBIOS over

TCP/IP (NetBT) protocols and does NOT need the NetBEUI (Microsoft Raw

NetBIOS frame) protocol.

This update closes two security holes: CAN-2004-0882 and CAN-2004-0930

* Thu Nov 11 2004 Jay Fenlason <fenlason@redhat.com> 3.0.8-2.FC2

- Upgrade to 3.0.9 to fix CAN-2004-0930 and CAN-2004-0882 - Include the -smbmnt patch from Steven Lawrance (slawrance@yahoo.com) that modifies smbmnt to work with 32-bit uids. This closes #134570 - Include my -changetrustpw patch that closes #134694 - rework this spec file to replace %{initdir} with /etc/rc.d/init.d - Add "/sbin/ldconfig -n $RPM_BUILD_ROOT/usr/lib/" to this spec file to create libsmbclient.so.0 so it gets owned by the correct package. - Clean up whitespace in this spec file - Update docs section to not carryover the docs/manpages directory This moved many files from /usr/share/doc/samba-*/docs/* to /usr/share/doc/samba-*/* - Move {lowcase,upcase,valid}.dat to the -common package. - move the net command to the -common package. - Update the pidfile comment in xinetd.init to close #76641

This update can be downloaded from:

...