[Samba] Windows ACL (beaten to death I know)
Misty Stanley-Jones
misty at borkholder.com
Mon Mar 14 15:33:22 GMT 2005
I've been ignoring the ACL issue because I have yet to get it to work. But
now I am curious. I log in as root and create a text file in root's home
directory. I look in the security properties and verify that the file is
indeed owned by root. In Linux, the permissions of the file are 750, root
owner, root group.
In Windows, I try to add a user with read permissions. I get permission
denied. I am able to change my own permissions but I'm unable to add another
person into the permissions. I get the following in the log file:
[2005/03/14 10:23:32, 2] smbd/open.c:open_file(245)
root opened file bar.txt read=Yes write=No (numopen=3)
[2005/03/14 10:23:32, 2] smbd/close.c:close_normal_file(270)
root closed file bar.txt (numopen=2)
[2005/03/14 10:23:32, 2] smbd/open.c:open_file(245)
root opened file bar.txt read=Yes write=No (numopen=3)
[2005/03/14 10:23:32, 2] smbd/close.c:close_normal_file(270)
root closed file bar.txt (numopen=2)
Thinking maybe the 'root' group is causing trouble because it is not mapped
into a Samba group, I change the group to "Domain Users". I try to take away
write access for a specific user who is in "Domain Users" and again get the
Permission Denied.
I verify that ACLs indeed work on my filesystem:
oink:/usr/local/samba/lib # setfacl -m u:misty:r /root/bar.txt
oink:/usr/local/samba/lib # getfacl /root/bar.txt
getfacl: Removing leading '/' from absolute path names
# file: root/bar.txt
# owner: root
# group: Domain\040Users
user::rwx
user:misty:r--
group::rw-
mask::rw-
other::---
I am really not sure what else to try. I did compile with ACLs enabled.
Misty
More information about the samba
mailing list