[Info-vax] SAMBA and Ransomeware
Michael Moroney
moroney at world.std.spaamtrap.com
Mon Jul 17 15:13:19 EDT 2017
kludge at panix.com (Scott Dorsey) writes:
>Our question, then, becomes this: How do we, knowing we have an inherently
>untrustworthy protocol, manage to implement it in the safest possible way?
>Because we have to implement it. And we have to do it as safely as we can.
I suppose the VMS server process has as few privileges as absolutely possible,
ideally TMPMBX+NETMBX only, if at all possible.
Naive question: Are the protocols fundamentally broken, security wise, or,
in theory, could a good VMS programmer given the SMBx spec and no existing
code as a bad example, write a secure SAMBA implementation from scratch?
More information about the Info-vax
mailing list