[CentOS] Forget SMB password immediately
John Hodrien
J.H.Hodrien at leeds.ac.uk
Mon Nov 28 09:43:40 UTC 2011
On Sat, 26 Nov 2011, Guitart Francesc wrote:
> El vie, 25-11-2011 a las 11:03 +0000, John Hodrien escribió:
>> On Fri, 25 Nov 2011, Guitart Francesc wrote:
>>
>> > Thanks for your comment. You're right, but the problem arises with your
>> > solution is that all users are using the CentOS machine login locally
>> > with the same user. So, correct me if I'm wrong, I think I can not mount
>> > the volume for each user without the others have access.
>>
>> Don't correct one mistake by making another. Once you've got all users
>> sharing the same user account, you might as well throw away security anyway.
>> Unless you're saying that this account is something like guest with no
>> password where the account is completely deleted when you logout.
>
> I'm talking of one local account in the CentOS machine without
> permissions to the network (this is why i'm trying to give them acces to
> the NAS as your own network user account) where the users run a
> calculation system.
I'm fairly sure I get what you're describing. Problem is, given you've got a
single shared account on the CentOS machine, any user is free to run any old
key logger or put modified binaries in the path. It's just plain not secure,
and it doesn't matter that the machine has now permissions to the network.
Shared accounts are a bad idea from almost every angle.
jh
More information about the CentOS
mailing list