Dear all,

I have got a security problem using cifs shares. After installing and configuring cifs I am able to access the shares. So far no problem.

But when I use a username which exists in the eDirectory but not in the AD I can get access to all folders where the user has permissions to after loging in with any password. Means there is no password validation working. Even when I log in with such a user an do not enter a password at the windows authentication I can log in and get access.

Any Ideas, or is there any Security Patch available for this?

Servers are NW65 SP7 and the Domain is a Win2000 (native)

Thanks for any help.