GVFS violating UNIX permissions inside Samba shares
Bug #1664730 reported by
Max-Ulrich Farber
This bug affects 3 people
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| gvfs (Ubuntu) |
Confirmed
|
High
|
Unassigned | ||
Bug Description
If a samba share is mounted with gvfs-mount or just using the file manager on a Linux client, any user having write permissions in that share can edit and change all files inside this share even if their UNIX permissions would not allow. That means for instance, that an ordinary user can edit and change a file belonging to root:root with permissions 0644 (-rw-r--r--) inside this share. Afterwards, on the server, the file will no more belong to root:root, but to $USER:$USER.
This violation of UNIX permissions does not happen if the share is mounted via cifs-vfs (mount -t cifs) or SmbNetFS instead, irrespective of UNIX extensions beeng active or not.
Ubuntu 16.04
Samba Version 4.3.11-Ubuntu (server and client)
gvfs 1.28.2 (client)
| information type: | Private Security → Public |
Revision history for this message
| Launchpad Janitor (janitor) wrote | #1 |
| Changed in gvfs (Ubuntu): | |
| status: | New → Confirmed |
| tags: | added: xenial |
| Changed in gvfs (Ubuntu): | |
| importance: | Undecided → High |
| information type: | Public → Public Security |
To post a comment you must log in.
Status changed to 'Confirmed' because the bug affects multiple users.