profile permission
Günter Bielenberg
Bielenberg at t-online.de
Wed Nov 29 23:29:45 GMT 2000
hi all,
I'm administering a NT-domain at a school of about 10 NT4-WSs with a
Samba 2.07-Server running on Linux. We have a standard user named
win, who has a server-stored mandatory profile. Everything worked
(almost) fine until I saw that every user had full access to the
profiles-directory. I changed it by setting the Unix-permissions as
follows:
drwx------ 10 root root 1024 Sep 26 21:39 .
(home/profile)
drwxrwxrwx 7 root root 1024 Jul 17 23:34 ..
(home)
drwx------ 14 root root 1024 Jul 17 23:35 root
drwx------ 13 win ntuser 1024 Sep 14 23:49 win
(home/profile/win)
-rwx------ 1 win
ntuser ntuser.man
(home/profile/win/ntuser.man)
in smb.conf [profile] I put
browseable = no
writeable = yes
and now the most logins start with 'unable to find the server-stored
profile, use the locally stored profile' (translated from german).
In samba.log I find the following lines for one login:
[2000/11/28 14:43:59, 0] smbd/service.c:make_connection(502)
Can't change directory to /home/profile (Permission denied)
[2000/11/28 14:43:59, 0] smbd/service.c:make_connection(502)
Can't change directory to /home/profile (Permission denied)
[2000/11/28 14:44:02, 0] smbd/service.c:make_connection(502)
Can't change directory to /home/profile/win/scripts (Permission
denied)
[2000/11/28 14:44:04, 1] smbd/service.c:make_connection(550)
snoopy-7 (192.168.11.7) connect to service win as user win
(uid=504, gid=101) (pid 15414)
[2000/11/28 14:44:05, 0] smbd/nttrans.c:call_nt_transact_ioctl(2516)
call_nt_transact_ioctl: Currently not implemented.
the user gets access to his home directory, but does not find my
prepared mandatory profile but one by former pupils twisted local
profile.
What's going wrong here?
regards
Günter Bielenberg
More information about the samba-ntdom
mailing list