Menu
What's new
By:
Filters Better Search

samba and symlinks

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

S

sk1887

Occasional Visitor
I've recently upgraded to Merlin's Build 374.33 Beta 1
I've been using his firmwares in a while.

anyway. this last build denies me accessing symlinks through samba shares or through http.

I was used to symlink my torrent download folder to a nginx share so I could acces files over my web page, now i can't anymore, either through normal samba browsing or through http.
Any clue on to solve this?

adding this to smb.conf
Code: 
follow symlinks = yes
wide links = yes
unix extensions = no
should do the trick as reported around the web, yet the smb.conf configuration seems to regenerate through boots or samba restarts.
 
sk1887 said:
I've recently upgraded to Merlin's Build 374.33 Beta 1
I've been using his firmwares in a while.

anyway. this last build denies me accessing symlinks through samba shares or through http.

I was used to symlink my torrent download folder to a nginx share so I could acces files over my web page, now i can't anymore, either through normal samba browsing or through http.
Any clue on to solve this?

adding this to smb.conf
Code: 
follow symlinks = yes
wide links = yes
unix extensions = no
should do the trick as reported around the web, yet the smb.conf configuration seems to regenerate through boots or samba restarts.
Click to expand...

wide links is disabled by the firmware in recent versions, for security reasons. Otherwise, anyone could plug in a flash drive with a symlink on it, and gain unrestricted access to anything on your router. From there it would be come trivial from anyone to gain root access on your router.

Now that Asus has also released a version that includes the fix (374.720), here are the details on the security issue:

http://www.samba.org/samba/news/symlink_attack.html
 
yes, I understand. Has Asus just realized this now? :p
So is there an alternative for my needs? In my web server folder I want a symlink to avoid copying files I have in another folder.
example: hostname.com/downloads/file.rar
where downloads is a symlink to /mnt/sda1/torrents/downloads

I hope there is a secure way around this :) I hope I won't have to duplicate files!

I also thought of changing the nginx root folder, but it seems a bit insecure as well.
 
You must log in or register to reply here.

Similar threads

S
Tutorial Installing Caddy reverse proxy
Replies
3
Views
1K
hexcallm
hexcallm
F
Tutorial Setup the ASUS TUF Gaming AX5400 router for Transmission with remote access using an SSD for storage
Replies
2
Views
3K
KattinVN
KattinVN
S
ASUS RT-AC1200GU SAMBA slow transfer speed
Replies
7
Views
6K
FTC
FTC
B
smbd high CPU usage
Replies
7
Views
5K
L&LD
L&LD
4
SMB not working unless it's been several hours after reboot AC68U 384.14
2
Replies
31
Views
6K
Jack Yaz
Jack Yaz

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 626 (members: 9, guests: 617)
Top