UNIX BASED SAMBA ATTACKS
ALLOWS EXPORTING YOUR ENTIRE FILESYSTEM

When a Windows for Workgroups or Windows 95 machine shares any folder, bugs Microsoft's SMB implementation (over all network protocols) allows access to the whole drive, with whatever permissions the sharename was given. These resources are advertised on a browse list that is made available to anyone on the local network by default, and to anyone on the Internet who knows the machine's IP address. Any user sharing a folder on a TCP/IP network without a password is opening the whole disk up to the entire Internet (all an intruder needs to do is locate the machine) and those with a password should be aware that Windows has no protection against brute force attacks. You should be aware of the necessity to choose incredibly difficult passwords!

SMBCLIENT, an ftp-style browser for any UNIX variety, plus a complete file system for Linux and a few UNIX versions, are available from the Samba web site. Please note that Samba's exploitation of this fundamental bug in Microsoft file sharing was unintentional, and was immediately reported to Microsoft. It could have happened with any client over any protocol. In other words, Samba wasn't designed to intentionally hack Microsoft Windows. It was a byproduct discovered after the software was already developed.