[Samba] Where does the info of smbcacls comes from?

Lorenzo Milesi maxxer at ufficyo.com
Mon Sep 9 07:02:58 MDT 2013 

hi.
sorry for the "dumb" question, but I'm failing to figure out where the information printed by smbcacls come from.

I have a 3.4.x server with basic settings, few shares and not much more.
Share's access is controlled by unix file permissions. Filesystem has "acl" enabled, but no acl set up, so the standard unix permissions are being used.
Still I have problem for a single user in a group to access a share, normally available to other users in the same group.

Share definition:
[progettazione]
        comment = progettazione
        path = /dati/progettazione
        writeable = yes
        browseable = Yes
        directory mask = 0770
        create mask = 0775
        security mask = 0777
        force security mode = 0
        directory security mask = 0777
        force directory security mode = 0
        hide unreadable = Yes
        force create mode = 0775
        force directory mode = 6775
        vfs object = recycle
        recycle: config-files = /etc/samba/samba-recycle.conf

This is the ls -la of the root dir of the share:
root at file-server:/dati/progettazione# ls -la 
drwxrws--- 55 user1        progettazione     4096 2013-09-09 12:01 .
drwxr-xr-x 20 root         root              4096 2013-07-22 08:29 ..
-rwxrwx---  1 user2        progettazione   939431 2010-02-24 09:32 test.pdf


# getfacl /dati/progettazione/
# file: dati/progettazione/
# owner: zimbra
# group: progettazione
# flags: -s-
user::rwx
group::rwx
other::---

>From a remote machine I isue smbcacls:
$ smbcacls //10.10.10.1/progettazione test.pdf  -U user%pass
REVISION:1
CONTROL:0x9004
OWNER:DOMAINNAME\user2
GROUP:DOMAINNAME\user2
ACL:DOMAINNAME\user2:ALLOWED/0x0/0x001e01ff
ACL:DOMAINNAME\user2:ALLOWED/0x0/0x001e01ff
ACL:Everyone:ALLOWED/0x0/


What puzzles me is this line:
GROUP:DOMAINNAME\user2
user2 is an user, NOT a group! Where is it getting this info from? 
Could it be because of this I cannot access the share using "user2" account, while it works for other shares?

thanks
-- 
Lorenzo Milesi - lorenzo.milesi at yetopen.it

YetOpen S.r.l. - http://www.yetopen.it/

More information about the samba mailing list