First Last Prev Next    This bug is not in your last search results.
Bug 51522 - Samba/AD LDAP ACLs are ignored for searches
Samba/AD LDAP ACLs are ignored for searches
Status: CLOSED FIXED
Product: UCS
Classification: Unclassified
Component: Samba4
UCS 4.4
Other Linux
: P5 normal with 1 vote (vote)
: UCS 5.0
Assigned To: Arvid Requate
Felix Botner
:
Depends on:
Blocks: 51514
  Show dependency treegraph
 
Reported: 2020-06-18 09:57 CEST by Arvid Requate
Modified: 2021-05-25 15:57 CEST (History)
3 users (show)

See Also:
What kind of report is it?: Security Issue
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional): API change
Max CVSS v3 score: 4.3 (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Comment 1 Ingo Steuwer univentionstaff 2020-06-19 08:38:00 CEST 
I suggest to do that with UCS 5.0 ?
Comment 2 Florian Best univentionstaff 2021-03-02 19:03:05 CET 
(In reply to Ingo Steuwer from comment #1)
> I suggest to do that with UCS 5.0 ?

Are you still suggesting this?
Comment 3 Arvid Requate univentionstaff 2021-04-01 11:46:15 CEST 
fb1f2ec45d | Change default for samba/acl_search to yes
d1e1ef4cb1 | Release changelog

Package: univention-samba4
Version: 9.0.5-2A~5.0.0.202104011141
Branch: ucs_5.0-0
Comment 4 Felix Botner univentionstaff 2021-04-09 12:23:35 CEST 
ok, but what is this acl:search? It is not mentions in man smb.conf

and we should have a ucr description samba/acl_search
Comment 5 Arvid Requate univentionstaff 2021-04-12 11:00:34 CEST 
> ok, but what is this acl:search? It is not mentions in man smb.conf

It's an internal parameter that we used to avoid a bug in Samba.

> and we should have a ucr description samba/acl_search

I don't think so. The only reason I didn't remove it straight away is to have it as an option for support
in case some customer has a problem with the new default.
Comment 6 Felix Botner univentionstaff 2021-04-12 11:32:52 CEST 
(In reply to Arvid Requate from comment #5)
> > ok, but what is this acl:search? It is not mentions in man smb.conf
> 
> It's an internal parameter that we used to avoid a bug in Samba.
> 
> > and we should have a ucr description samba/acl_search
> 
> I don't think so. The only reason I didn't remove it straight away is to
> have it as an option for support
> in case some customer has a problem with the new default.

ok
Comment 7 Florian Best univentionstaff 2021-05-25 15:57:44 CEST 
UCS 5.0 has been released:
 https://docs.software-univention.de/release-notes-5.0-0-en.html
 https://docs.software-univention.de/release-notes-5.0-0-de.html

If this error occurs again, please use "Clone This Bug".
First Last Prev Next    This bug is not in your last search results.