Samba Create Masks

David Bullock davidb at loftuscomp.com.au
Fri Aug 28 05:33:42 GMT 1998 

Milivoj,

OK.  I'll give it a try - look for my comments......

>I had no luck with my previous post, so I try again:

>Would someone please help me with the "create mode/mask" settings and/or
>others if needed, or point me to some docs. In the following 2 examples, I
>cannot find the correct settings:

>I use the [netlogon] share, and edit logon scripts there from my Windows
>machine. The group gets set to my user name's group (mi), execute by others
>is not set, and I'm the only one for whom logon scripts are executed.

>What are the correct settings for this?

	create mask (alias create mode) is a MASK only, much like Unix's
  	umask.  

	"force create mode" will probably do what you want most easily.
	It forces the Unix mode to what you want it to be.

	You simply use it to set the logon scripts for read only for "others"
	if that is what you want.  Be careful of the x bits, they are generally
	used in Samba to map system files, hidden files, archive.

>A different case, probably also very classical, is the web server's share:

>It should be readable and executable by everybody, and writable by the
>@webmasters only.

	Again use Force create mode - 664 probably.

>How do I control the owner and group of a changed/created file, so it is
>not the individual user?

	You cannot quite do this.  You can make a share for which the
	user is always the user you require - which will do what you want
	when a file is created, and often when it is changed, but not if
	it is moved (it's standard Unix semantics here).  I haven't tried
	this but I believe it will work.

	Of course, that share is only made available for the users who
	put files in there.  You have a separate share for the "everyone"
	who must have only readonly access.

	On most Unixen, you can set the group execute bit on a directory
	to force the group ownership of files created in that directory.
	This can be used to set the group ownership of files.  Again it
	doesn;t work if the file is moved in, rather than created.

Thanks for any help.


Regards,

David Bullock
Loftus Computing Services
Adelaide, South Australia

More information about the samba mailing list