[Samba] Restricting samba subfolder acl changes to admin users
Volker Lendecke
Volker.Lendecke at SerNet.DE
Fri Oct 15 02:57:03 MDT 2010
On Fri, Oct 15, 2010 at 02:07:55AM -0400, suresh.kandukuru at emc.com wrote:
> Thanks Volker. Adding Jeremy, as my manager told me that
> let samba team know that I am part of EMC lifeline team ..
> and some of team members discussed with Jeremy regarding
> some other samba problems.
>
>
> Volker , if you don't mind can you elaborate this , if we
> make share offline , how the setting of acls goes through
> the samba source code.?
When you make a folder available offline, then when a user
comes back and re-synchronizes his data, then the client
will set ACLs. I'm not sure how it reacts when you deny
that. The setting of ACLs goes comes into the Samba source
code in source3/smbd/nttrans.c, there we have the function
called call_nt_transact_set_security_desc. From there we end
up in set_sd and via the VFS we call SMB_VFS_FSET_NT_ACL,
which is by default the function set_nt_acl() in
smbd/posix_acls.c.
Hope that helps,
Volker
More information about the samba
mailing list