BTW, Apple followed up on this about a year later saying
it "behaves as intended", and that SMB has no knowledge
of unix permissions.
So basically, SMB is not considered a multiuser file system,
as it only allows a single user access to the mount; the user
that owns the mount point.
Nothing about that it worked in Panther and earlier versions,
or that the unix perms on the mount point were being ignored,
and that only the username is being used for authentication.
So your only hope is to use NFS for mounts for true multiuser
access that abides by unix permissions in a predictable manner.
The only way it seems to make SMB mounts work is if you use
the rush 'forceuid/gid' options to force the renders to run
as the same user that you have configured to own the mount points.
This would also mean all users have to be logged in as that user
as well, or they won't be able to access the mounts either.
Some folks have set things up that way, but most companies
prefer to give everyone their own login, instead of using a
common login for everyone [and thus go with the NFS approach].
Greg Ercolano wrote:
> The following was first posted on the Apple discussions board:
> http://discussions.info.apple.com/webx?14@31.sd2laJjn7IM.6@.68b77715
>
> ..then deciding it really has to be a Apple related bug,
> I recently reported it to Apple (bug #4234684).
>
> I'll try to follow up here if there are any developments, or if any
> of you admins have any opinions, feel free to add to this thread.
>
> * * *
> Title: Permission problems with mount_smbfs
> Originator: Greg Ercolano
> State: Analyze
> Created Date: 26-Aug-2005 09:22 PM
>
> Since upgrading to Tiger, I've had trouble using it as a
> client via mount_smbfs.
>
> It mounts our samba oriented file server just fine, but it seems
> that OSX 10.4.x only allows the mount point owner access to the server;
> any other user (besides root) gets a 'permission denied' error.
>
> **Even the user who the mount is authenticated as is denied access.**
>
> This just seems very wrong; when 'sandro' owns the mount dir /smb/meade,
> even if the dir is 777, when the dir is mounted, only sandro can access
> the dir, even if it's mounted as 'fred':
>
> ---------------------------------------------------
> # mkdir -m 777 /smb/meade ; chown sandro:sandro /smb/meade
> # ls -lad /smb/meade
> drwxrwxrwx 1 sandro sandro 16384 Jul 28 14:26 /smb/meade
>
> # mount_smbfs //fred:fred@meade/net /smb/meade
>
> # su fred -c 'ls -la /smb/meade'
> ls: meade: Permission denied
>
> # su sandro -c 'ls -la /smb/meade'
> [directory listing displays]
> ---------------------------------------------------
> [..]
|