[Samba] Re: SETGID not being inherited

Paul Worrall paul at basilisk.ukfsn.org
Fri Nov 30 18:21:01 GMT 2007 

With smbfs, the Unix permissions on the server are not seen on the client,
but with cifs they are thanks to the "CIFS Unix extensions", and
directories that are SGID are shown as such on the client.

using "sudo chmod g+s directory_name" gives:

  with smbfs - "Operation not permitted"
  with cifs - no message but SGID is not set.

-- 
Paul

Mark Adams wrote:

> Can you see the SGID on the folder when it is mounted?
> 
> Mark
> 
> On Fri, Nov 30, 2007 at 08:15:24AM +0000, Paul Worrall wrote:
>> The smbfs problem was resolved by upgrading the server from 3.0.24-6etch5
>> -> 3.0.24-6etch8 and to answer Mark's question: the setgid bit is not
>> inherited by directories created via smbfs.
>> --
>> Paul
>> 
>> On Thursday 29 Nov 2007, Paul Worrall wrote:
>> > smbfs doesn't work at all for me :-( The share appears to be mounted
>> > but when I try to 'ls' it I get "Input/output error", and at the same
>> > time, log.smbd on the server records:
>> >
>> > [2007/11/29 21:41:41, 0] lib/util.c:smb_panic(1599)
>> >   PANIC (pid 5779): push_ascii - dest_len == -1
>> >
>> > ... followed by some backtrace info.
>> >
>> > But that's a different problem.  To return to cifs: I found this on the
>> > linux-cifs-client mailing list archives:
>> >
>> > http://marc.info/?l=linux-cifs-client&m=119027947932259&w=2
>> >
>> > ...which suggests that the clearing of the setgid bit is a known
>> > problem
>> > and it may be fixed in kernel 2.6.24.  Here's hoping!
>> >
>> > --
>> > Paul
>> >
>> > On Thursday 29 Nov 2007, Mark Adams wrote:
>> > > Someone else was recently having a different problem with
>> > > mount.cifs.- is it possible for you to try smbfs ?
>> > >
>> > > Mark.
>> > >
>> > > On 28 Nov 2007, at 19:35, Paul Worrall <paul at basilisk.ukfsn.org>
>> > > wrote:
>> > > > I have exactly the same problem, and the "force directory mode =
>> > > > 2770" does not solve it for me.
>> > > >
>> > > > I have noticed that directories created on the same share by
>> > > > Windows clients, smbclient on Linux and using the KDE smb: slave
>> > > > all inherit the
>> > > > setgid bit as expected, so it seems to be something specific to
>> > > > mount.cifs
>> > > >
>> > > > Here is the line from my /etc/fstab:
>> > > >
>> > > > //basilisk/Shared\040Documents /media/smb/shared_documents cifs
>> > > > guest,domain=HOME 0 0
>> > > >
>> > > > Things I have tried:
>> > > >
>> > > > setting the "nosetuids" mount option (though the man page says this
>> > > > is the
>> > > > default anyway)
>> > > >
>> > > > setting the "noperm" mount option
>> > > >
>> > > > setting the "noacl" mount option
>> > > >
>> > > > Now I've run out of ideas.  Any help appreciated.
>> > > >
>> > > > --
>> > > > Paul
>> > > >
>> > > > On Wednesday 21 Nov 2007, Mark Adams wrote:
>> > > >> Apologies for the blank mail, iphone misbehaving.
>> > > >>
>> > > >> you can use "force directory mode = 2770" in each share config or
>> > > >> globally.
>> > > >>
>> > > >> see
>> > > >>
>> > > >>
http://us1.samba.org/samba/docs/man/Samba-HOWTO-Collection/AccessContr
>> > > >>ol s.h tml
>> > > >>
>> > > >> Cheers,
>> > > >> Mark
>> > > >>
>> > > >> On Wed, Nov 21, 2007 at 02:30:57PM +0000, Mark Adams wrote:
>> > > >>> Mark.
>> > > >>>
>> > > >>>
>> > > >>> On 20 Nov 2007, at 18:57, "Robert L. Harris"
>> > > >>> <robert.l.harris at gmail.com
>> > > >>>
>> > > >>> wrote:
>> > > >>>> -----BEGIN PGP SIGNED MESSAGE-----
>> > > >>>> Hash: SHA1
>> > > >>>>
>> > > >>>>
>> > > >>>> I have an Debian system running samba 3.0.14a from sarge.  It is
>> > > >>>> exporting a file system, /data.  This file system has the perms
>> > > >>>> 2770.
>> > > >>>> I have set the following in the smb.conf:
>> > > >>>>
>> > > >>>> inherit permissions = yes
>> > > >>>> inherit acls = yes
>> > > >>>>
>> > > >>>> I mount the filesystem from a linux, ubuntu, client and create a
>> > > >>>> directory.  The directory comes out with perms 0770.  I can
>> > > >>>> chmod 2770
>> > > >>>> the directory and it takes the setgid just fine.  What am I
>> > > >>>> missing,
>> > > >>>> where, in order to have the setgid pass down to the new
>> > > >>>> directories on
>> > > >>>> the server properly?
>> > > >>>>
>> > > >>>> Robert

More information about the samba mailing list