SECURITY HOLE - SMB Shares to XP - Total Access to Home Directory??

In System Preferences Sharing, before you click on Options to enable SMB, how are the read/write privileges set up for each of your shared folders in the list?

I'm not very skilled with Windows, but when I enabled smb on my work Mac, then went to a Windows machine (where I do not have a local account with the same login name as on my Mac) and accessed my drive through the Windows "Finder", all I had access to was public folders. But those that were configured on the Mac as read/write acted just like that, and those that were configured as "read only" were just that (I didn't check my drop box for write only fro the Windows box).

So I'm thinking that if you access your Mac from a Windows box while logged in on the Windows machine with the same user name as on your Mac, that that is how you are getting escalated privileges to read/write the entire home directory. But if someone else tries from a different account with different user name, then they will have more restricted access, corresponding to the "Everyone" privileges set up on the Mac's System Preferences' Sharing panel. So make sure that for your home directory, that "Everyone" is set to "No Access"

For example, my Sharing panel had read/write for everyone on one particular folder, and my home folder is read/write for me and "No Access" for everyone else. Those privileges seemed to propagate along to SMB when I turned it on.

That's a lengthy thread. After I finished reading it, I think its bottom line is what I just said, right? Same username on the two machines, you get access to the home folder upon successful authentication. Different user names on the two machines, and all you get is the public (or other specifically shared) folders. Right? Or are you getting a different interpretation?