OS X Lion in Active Directory - disable default shares?
I have an iMac running Lion (10.7.3) which is joined to my Active Directory domain. If I enable SMB file sharing then even with no users explicitly enabled for sharing and no shares explicitly defined domain users can access the Mac via Windows file sharing. Depending on the type of user (administrator or not) who is accessing the Mac they will see either just their Mac home directory exposed via SMB sharing, if they are a non admin user, or their home directory plus all attached hard drives (Macintosh HD, Time Machine Backup) exposed if they are an admin user.
This is very insecure and prevents me properly exploiting SMB sharing.
Is there any way to 'disable' these default shares leaving just shares I create explicitly?
Thanks,
Chris
iMac 27" Core i7, Mac OS X (10.6.3)