SMB Security Exploit?

This is only a problem if you have timemachine support enabled.

Zitat von KM0201

I thought all the time machine stuff was basically enabled by default now w/ SMB.

Luckily, it does require checking the box on the share - https://github.com/openmediava…samba/files/shares.j2#L55

Zitat von greg77

Plus attackers have to have access to your home network....

That isn't the hard part if you get a virus from a download or malicious web site.

Debian tracker is here - https://security-tracker.debian.org/tracker/CVE-2021-44142

Ubuntu did fix it. So, maybe their fix will get pushed upstream.

The conditions are something of a long shot; a server that is exposed to the internet AND has "others + guest" write access to SMB shares. But, I have little doubt that some users are exposed.

It is, however, another strong vote for keeping truly sensitive data (medical, financial, credit card info, etc.) on a thumbdrive.

Zitat von Zoki

thenI had to put min protocol=NT1 somewhere to make my ... work"

While I know that kind of advice might be found on the net, it's no longer true. I suspect it is very (very) old. When I tested the last time, years ago, Linux was fine with NTLMv2. (Here's an -> MS article explaining the security level differences. NT1 is ancient history )

While NT1 has been patched against "wanna cry", there's very few solid reasons why NT1 compatibility might actually be needed. Mostly, it might be used to support very expensive hardware, like photographic and imaging equipment or industrial process software, used in businesses. (The type of equipment that can't easily be replaced and will never get software or driver updates.)
__________________________________________

Zitat von Zoki

"I just want access to my files, I need them in my phones file browser and there was yt video which says chmod -R 777.

There's a cost for ignorance and, sometimes, it's quite high. Reasonable security for SMB shares doesn't have to be difficult and it doesn't necessarily have to be done on the CLI. -> Permissions The maximum I would allow, for local guest access is, others + guest = read.

Zitat von Zoki

I am probably better protected than most, but I do not consider my home network safe. With so many devices around one will ultimately arrive at zero trust security models.

That's an astute assumption. No home network, that's physically connected to the Net, is truly safe. However, in the case of home network exploitation, the only value of a home user's data would be as leverage for a ransomware demand. It has no commercial value.

Using ZFS for data storage (copy on write) and maintaining off-line (cold) server backups are excellent defenses against ransomware. So, while I'm sure world class hacks could get into my LAN, there would be zero benefit to them. They couldn't get to anything I can't restore. (Which includes my truly sensitive data which I store on thumbdrives.)

In the bottom line, an "air gap" can't be hacked.

Zitat von crashtest

n "air gap" can't be hacked.

Are you sure? : ) Google "air gap hack hard drive"

Zitat von ryecoaaron

Are you sure? : ) Google "air gap hack hard drive"

That's another level of hacking where the running assumption is that the equipment is "ON". Note that I'm using cold (mostly powered off) servers for backup and, while not mentioned previously, my servers are in a closet. Adding to that, my clients do not have microphones and my wife's laptop is in another room with a plug in the mic jack and tape over the camera. The only smart phone we have is outside, inside a car, powered off.

I know from back in the day, for example, that it was possible to read the contents of an undampened CRT screen from a considerable (air gaped) distance. The EM fields generated were really high. But this is another level of "hacking" altogether where, if there's any chance of success to collect something worthwhile, a targeting process is involved and that means really deep pockets. Perhaps Elon Musk might have something to offer, that would be worthwhile, but I doubt that the average OMV user would fit the profile of a "profitable target".

The typical hacker is looking for easy, low hanging fruit, to make a quick buck. For the vast majority of home users, that would be compromising financial info (which is safe on a thumbdrive) or a ransomware exploit (easy to defeat with backup).