[linux-cifs-client] Unix Extensions & Limitations

[a.nielsen at research.uq.edu.au]

>> Has there been any discussion on allowing a -o flag for mapping a 
>> local UID to a server UID? Or - have an option that would make 
>> mount.cifs behave like old 2.x mounts?

> Yes.  This needs to be thought through.  suggestions welcome.

Well, here's a quick suggestion which although a little dodgy would
help - add an option into the credentials file, so you have something
like this:

username=user
password=pass
uidmap=12345:1001,38395:1002

Then presumably implementing this bit wouldn't be too difficult, and
once the UID/GID mapping was in place it should be relatively easy to
change the method of supplying the mapping if required later on.  Plus
for those of us that only require one UID/GID map, it's a nice easy
solution (no need to install anything else.)

>> Now the -o noparm option is a bit of a security concern in that it 
>> allows any user on the Client to write to that directory. I suppose a 
>> work around is to make a parent directory for the mount and chmod it
>> to 700.

If you mean -o noperm then yes, I was reluctant to do this as well.  I
ended up making a parent directory that's chmodded to 770 so that I can
allow a specific group of people access to the share and this works
well, except that you can either give people full access or no access
to the share - in this case it's fine, but if you were mounting a share
that had files from multiple users then it wouldn't work, as everyone
with access to the share could overwrite everyone else's files.

Cheers,
Adam.