smbfs mount shows password
Using 'mount' to show mounted filesets (even as a normal user) shows
the password used for mounting (here in case of samba), whereas
OSol 2009.06 U7 (support line version) just shows ** in place of
the password. This is a security problem and should be fixed quickly.
Do you have any information on which release or build first exhibits this problem?
No, I suspect that this was only fixed on the support line of Osol, we just recently saw this when
converting one specific machine to OI-151a7 which had this password-secured smbfs mount.
- Status changed from New to In Progress
Here's a simple fix: (see attached)
- Project changed from OpenIndiana Distribution to illumos gate
- Subject changed from mount shows password to smbfs mount shows password
- Assignee set to Gordon Ross
Better fix attached. (one that works:)
Only show the server name and share name in the mounted resource.
That's sufficient, and makes this a normal "UNC" path.
(the name;password stuff was non-standard anyway.)
A quick workaround until this reaches the distributions is to specify the
user/password information persistently with 'smbutil login user@server' .
Right. Another work-around is to put the password in $HOME/.nsmbrc
- Status changed from In Progress to Resolved
Author: Gordon Ross <firstname.lastname@example.org>
Date: Tue Oct 30 23:03:27 2012 -0400
3305 smbfs mount shows password
Reviewed by: Garrett D'Amore <email@example.com>
Reviewed by: Marcel Telka <firstname.lastname@example.org>
Approved by: Richard Lowe <email@example.com>
:100644 100644 afc4b3c... d8a5a98... M usr/src/cmd/fs.d/smbclnt/mount/mount.c
Also available in: Atom