[Samba] security issues wint smbmount

[Georg A. Eie]

Dear sirs/madams,

I am using smbmount (mount -t smbfs) version 2.2.8a for mounting shares 
from a Windows 2003 server on a Linux machine.
This works fine, but there seems to be a security problem; ordinary 
users can write to files, even when the Unix protection does not allow this.
The user cannot remove the file or create a new one, but can do what 
he/she wants with an existing one.

Is this a known problem, or am I doing someting wrong?
I could not find anything on the subject on www.samba.org.

Please see the attached log for detail.

Thanks and regards,
Georg A. Eie
Basefarm AS

=====

[root at nfs1 ~]# mount -t smbfs -o 
rw,username=Administrator,password=xxxxxxxx,uid=0,gid=0,fmask=644,dmask=755 
//winst2/testingtesting /testingtesting

[root at nfs1 ~]# echo "test" > /testingtesting/test.txt

[root at nfs1 ~]# ls -la /testingtesting/test.txt
-rw-r--r--    1 root     root            5 Sep  4 09:49 
/testingtesting/test.txt

[root at nfs1 ~]# su - georg

bash-2.05a$ cat /testingtesting/test.txt
test

bash-2.05a$ echo "test test test" > /testingtesting/test.txt

bash-2.05a$ cat /testingtesting/test.txt
test test test

bash-2.05a$ rm /testingtesting/test.txt
rm: cannot unlink `/testingtesting/test.txt': Permission denied

bash-2.05a$ touch /testingtesting/test_1.txt
touch: creating `/testingtesting/test_1.txt': Permission denied

bash-2.05a$ grep ^root: /etc/group
root:x:0:root

bash-2.05a$ smbmount
Usage: mount.smbfs service mountpoint [-o options,...]
Version 2.2.8a
.
(cut)
.

bash-2.05a$ exit
logout

[root at nfs1 ~]# ls -la /testingtesting/test*
-rw-r--r--    1 root     root           15 Sep  4 09:50 
/testingtesting/test.txt