Bug 21143

Summary: setuid not posionned on mount.cifs, mount as non root impossible
Product: Mageia Reporter: jacques rebourcier <jacques.rebourcier>
Component: RPM PackagesAssignee: Shlomi Fish <shlomif>
Status: RESOLVED INVALID QA Contact:
Severity: normal    
Priority: Normal CC: marja11
Version: 5   
Target Milestone: ---   
Hardware: All   
OS: Linux   
URL: https://lists.samba.org/archive/samba/2010-April/154922.html
Whiteboard:
Source RPM: cifs-utils-6.4-4.mga5 CVE:
Status comment:

Description jacques rebourcier 2017-06-25 11:14:53 CEST 
Description of problem:
When trying to mount a filesystem as a user, mount.cifs refuse because setuid is not positionned (sticky bit)

Version-Release number of selected component (if applicable): 6.4


How reproducible:
mount at the console any filesystem as non root (if this is done with fsatb entry, don't forget to enable user mountin : option "user" or "users" activated).

Another way,to test, if you have fsatb entry, is to mount via dolphin, by clicking on your mount point (lesft panel).

Steps to Reproduce:
1.as a user mount the file system => error
2.as root : chmod u+s /sbin/mount.cifs
3.as a user mount the file system => no error

Note, that there is an history about authorizing sticky bit with mount.cifs, but according to this mail, seems vulnerability has been fixed (see provided URL). But didn't perform inquiry to double check after this mailing list...
Comment 1 Marja Van Waes 2017-06-25 14:25:54 CEST 
Assigning to the registered maintainer.

CC: (none) => marja11
Assignee: bugsquad => shlomif

Comment 2 David Walser 2017-07-02 16:47:20 CEST 
Not having it SUID root is the correct default for security reasons.  As a system administrator, you can make the choice to change that if you feel it's appropriate for your system.

A better way to mount CIFS shares as a user without making mount.cifs SUID root is to use pam_mount.  autofs might work too.

Resolution: (none) => INVALID
Status: NEW => RESOLVED