[oi-dev] samba security

Gary Driggs gdriggs at gmail.com
Sun Apr 15 13:23:37 UTC 2012

On Apr 15, 2012, Alasdair Lumsden wrote:

> Unfortunately however the new version probably won't make the stable branch. The stuff in illumos-userland will be destined for /experimental followed by /dev.

You may wish to reconsider...

"A remote, pre-authentication vulnerability is essentially the most
severe kind of flaw that can crop up in a software package such as
Samba. An attacker who found a vulnerable installation of Samba would
not need to authenticate in order to launch an exploit."


More information about the oi-dev mailing list