[Samba-it] Strano comportamento ACL
EndelWar
endelwar at aregar.it
Mon Jan 30 19:34:02 MST 2006
Il giorno lun, 30/01/2006 alle 11.47 -0500, simo ha scritto:
> Puoi fare un listing di una directory in cui questo succede e fornire
> sezione global e share coinvolte?
Ciao Simo, grazie per la risposta,
copio qui sotto quanto chiesto, avrei fatto un allegato, ma non si
può ;)
Questo il pezzo di smb.conf interessato:
[global]
log file = /var/log/samba/log.%m
# log level = 5
load printers = No
name resolve order = wins lmhosts host bcast
idmap gid = 1000-10000000
map acl inherit = yes
# obey pam restrictions = Yes
wins server = 192.168.1.7
encrypt passwords = true
winbind use default domain = Yes
admin users = Administrator, root
realm = NOMEDOMINIO.LOCAL
template shell = /bin/bash
nt acl support = yes
server string = %h server (Samba %v)
idmap uid = 1000-10000000
winbind enum users = no
password server = 192.168.1.7
winbind nested groups = Yes
unix password sync = yes
workgroup = NOMEDOMINIO
winbind enum groups = no
security = ADS
syslog = 0
panic action = /usr/share/samba/panic-action %d
max log size = 1000
[dati]
writeable = yes
map acl inherit = Yes
path = /home/dati
vfs object = recycle
recycle:keeptree = True
recycle:exclude = *.TMP,*.tmp,*.temp,*.o,*.obj,~$*
create mask = 0775
comment = Directory Pubblica Dati
directory mask = 0775
recycle:version = True
public = yes
recycle:maxsize = 0
ea support = Yes
Questo un ls -la
srvlinux:/home/dati# ls -la
total 450832
drwxrwxrwx 10 root root 4096 2006-01-17 16:59 .
drwxr-xr-x 5 root root 45 2006-01-17 15:00 ..
-rwxrwxr--+ 1 c025 ufftecnico 157 2005-02-24 15:55
plot.log
drwxrwxrwx+ 97 c066 ufftecnico 8192 2006-01-20 17:02
PRJ
drwx------ 4 administrator Domain Admins 39 2006-01-25
21:04 .recycle
drwxrwxrwx+ 8 c013 ufftecnico 4096 2004-04-09 18:09
snaptec
-rwxrwxrw-+ 1 c013 ufftecnico 94208 2005-11-23 13:10
SYSTEM011.mdb
-rw-rwxrw-+ 1 administrator ufftecnico 461381632 2003-05-22 22:00
SYSTEM01.DBF
-rwxrwxrw-+ 1 c021 ufftecnico 102400 2005-12-07 19:44
SYSTEM01.mdb
drwxrwxr-x+ 2 c089 ufftecnico 83 2005-03-10 10:01
Temp
drwxrwx---+ 3 administrator Domain Users 83 2006-01-17 16:47
test
drwxrwxr-x+ 26 c013 ufftecnico 4096 2006-01-17 12:30
Ufficio Tecnico
drwxrwxr-x+ 2 554 ufftecnico 6 2005-09-05 18:25
USERS
drwxrwxrwx+ 3 c021 ufftecnico 92 2003-08-29 09:12
Vectravl420DT
questo un getfacl *
srvlinux:/home/dati# getfacl *
# file: plot.log
# owner: c025
# group: ufftecnico
user::rwx
user:root:rwx
user:administrator:rwx
group::rw-
group:Domain\040Admins:rwx
mask::rwx
other::r--
# file: PRJ
# owner: c066
# group: ufftecnico
user::rwx
user:root:rwx
user:administrator:rwx
group::rwx
group:Domain\040Admins:rwx
mask::rwx
other::rwx
default:user::rwx
default:group::rwx
default:group:Domain\040Admins:rwx
default:group:ufftecnico:rwx
default:mask::rwx
default:other::rwx
# file: snaptec
# owner: c013
# group: ufftecnico
user::rwx
user:root:rwx
user:administrator:rwx
group::rwx
group:Domain\040Admins:rwx
mask::rwx
other::rwx
default:user::rwx
default:group::rwx
default:group:Domain\040Admins:rwx
default:group:ufftecnico:rwx
default:mask::rwx
default:other::rwx
# file: SYSTEM011.mdb
# owner: c013
# group: ufftecnico
user::rwx
user:root:rwx
user:administrator:rwx
group::rw-
group:Domain\040Admins:rwx
mask::rwx
other::rw-
# file: SYSTEM01.DBF
# owner: administrator
# group: ufftecnico
user::rw-
user:root:rwx
user:administrator:rwx
group::rw-
group:Domain\040Admins:rwx
mask::rwx
other::rw-
# file: SYSTEM01.mdb
# owner: c021
# group: ufftecnico
user::rwx
user:root:rwx
user:administrator:rwx
group::rw-
group:Domain\040Admins:rwx
mask::rwx
other::rw-
# file: Temp
# owner: c089
# group: ufftecnico
user::rwx
user:root:rwx
user:administrator:rwx
group::rwx
group:Domain\040Admins:rwx
mask::rwx
other::r-x
default:user::rwx
default:group::rwx
default:group:Domain\040Admins:rwx
default:group:ufftecnico:rwx
default:mask::rwx
default:other::r-x
# file: test
# owner: administrator
# group: Domain\040Users
user::rwx
group::rwx
group:Domain\040Admins:rwx
mask::rwx
other::---
default:user::rwx
default:user:administrator:rwx
default:group::---
default:group:Domain\040Admins:rwx
default:group:ufftecnico:rwx
default:mask::rwx
default:other::---
# file: Ufficio\040Tecnico
# owner: c013
# group: ufftecnico
user::rwx
user:root:rwx
user:administrator:rwx
group::rwx
group:Domain\040Admins:rwx
mask::rwx
other::r-x
default:user::rwx
default:user:administrator:rwx
default:group::rwx
default:group:Domain\040Admins:rwx
default:group:ufftecnico:rwx
default:mask::rwx
default:other::r-x
# file: USERS
# owner: 554
# group: ufftecnico
user::rwx
user:root:rwx
user:administrator:rwx
group::rwx
group:Domain\040Admins:rwx
mask::rwx
other::r-x
default:user::rwx
default:group::rwx
default:group:Domain\040Admins:rwx
default:group:ufftecnico:rwx
default:mask::rwx
default:other::r-x
# file: Vectravl420DT
# owner: c021
# group: ufftecnico
user::rwx
user:root:rwx
user:administrator:rwx
group::rwx
group:Domain\040Admins:rwx
mask::rwx
other::rwx
default:user::rwx
default:group::rwx
default:group:Domain\040Admins:rwx
default:group:ufftecnico:rwx
default:mask::rwx
default:other::rwx
--- StripMime Report -- processed MIME parts ---
multipart/signed
text/plain (text body -- kept)
application/pgp-signature
---
More information about the samba-it
mailing list