[Samba] Re: file permissions with inherit permission + ACL's
Ralf Gross
Ralf-Lists at ralfgross.de
Thu Apr 19 07:52:32 GMT 2007
Jay Flory schrieb:
> > I have a share (testshare) where different unix groups (testgroup1,
> > testgroup2) should have access to. But I want that new files are only
> > created with 660 permissions.
> >
> > Here are the ACL's of testshare:
> >
> > # file: testshare
> > # owner: ralfgro
> > # group: ve
> > user::rwx
> > group::rwx
> > group:testgroup1:rwx
> > group:testgroup2:rwx
> > mask::rwx
> > other::---
> > default:user::rwx
> > default:group::---
> > default:group:testgroup1:rwx
> > default:group:testgroup2:rwx
> > default:mask::rwx
> > default:other::---
> > [snip]
> > I already played with the default mask ACL, but then I always ended with
> > no
> > executable bit on files _and_ directories which denies access to the new
> > created directories...
>
> What would happen if you removed the default entries from your directory
> ACLs? It looks to me like the default ACLs are being applied from the
> directory to the newly created file. I believe that POSIX ACLs do this by
> design.
But I need the default directory ACLs to give the 2 groups rights on
all new created files and directories in this share, or am I wrong
about this? The only thing I don't want is the executable bit on
files.
Ralf
More information about the samba
mailing list