Possible SAMBA Vulnerability

veg writes "The samba team have released 2.2.7 following the discovery of a secureity hole in versions 2.2.2 to 2.2.6 that could lead to remote root access. Eeek! Full story on the samba site"

Re:it's a mystery

[Jeremy+Allison+-+Sam]

Because it doesn't crash anymore when you
send it a packet that would overflow the buffer :-).

Cheers,

Jeremy Allison,
Samba Team.

Never ever trust your internal network.

[miffo.swe]

Depending on what level of security you strive for ofcourse. There will always be back entryways into your network. A firewall that stops incoming traffic on let say port 137-139 doesnt stop all attacks. Someone might aswell succed in hacking something else on another port and then go on to the samba server from the internal network.

I also strongly suggest you not to trust inhouse staff completely. Most hackings that really hurts are insiders that rarely gets discovered.