From owner-freebsd-questions  Wed Jul 10 15:38:35 1996
Return-Path: owner-questions
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.5/8.7.3) id PAA22924
          for questions-outgoing; Wed, 10 Jul 1996 15:38:35 -0700 (PDT)
Received: from mole.mole.org (marmot.mole.org [204.216.57.191])
          by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id PAA22909
          for <questions@freebsd.org>; Wed, 10 Jul 1996 15:38:29 -0700 (PDT)
Received: (from mail@localhost) by mole.mole.org (8.6.12/8.6.12) id WAA09215; Wed, 10 Jul 1996 22:37:07 GMT
Received: from meerkat.mole.org(206.197.192.110) by mole.mole.org via smap (V1.3)
	id sma009211; Wed Jul 10 22:36:52 1996
Received: (from mrm@localhost) by meerkat.mole.org (8.6.11/8.6.9) id PAA02228; Wed, 10 Jul 1996 15:36:52 -0700
Date: Wed, 10 Jul 1996 15:36:52 -0700
From: "M.R.Murphy" <mrm@MARMOT.Mole.ORG>
Message-Id: <199607102236.PAA02228@meerkat.mole.org>
To: terry@lambert.org
Subject: Re: Samba FS planned to implement?
Cc: igor@cs.ibank.ru, jim@starshine.org, questions@freebsd.org
Sender: owner-questions@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

>
> The problem with the FS client is that SMB servers institute credentials
> (and therefore per-user protections) on a per connection basis.  When
> you have only one connection from a multiuser mahine to an SMB server,
> you rob the server of its ability to distinguish individual users from
> the user who instantiated the mount.
>
> Further protections rely on typical obscurity mechanisms to interpose
> a layer of protection to the mount point to enforce user access semantics;
> even if this is instituted (which is not an enforced access method),
> doing so on a per user basis requires a mount per user -- an unrealistic
> administrative burden.
>

Suppose that one were to look at this in a slightly twisted manner.
Suppose that the SMB FS client is a FreeBSD box, and that the
SMB (Samba) server is also a FreeBSD box. One could set up the
server so that the client (and _all_ of its users, therefore)
was suitably restricted. Samba's pretty good at that. That NT or Win*
might not be quite as good still does not keep the facility from
being useful. If usefulness outweighs security concerns, why not
have the facility? If it doesn't, then don't allow the sharing.
This is a policy matter.

If the administrator of the SMB server wants to grant access to
some set of users on a FreeBSD box and is willing to act in
concert with the administrator of the FreeBSD box, especially
since the administrators might be one in the same person, why
should that not be an available security mode? I'd give you examples
with group permissions and such on the mount directory, but you'd
give better examples than I would.

I draw your attention once again to the quote in my signature :-)

Regards,
Mike
--
Mike Murphy  mrm@Mole.ORG  +1 619 598 5874
Better is the enemy of Good