Printing from NT and Win95

[Cole, Timothy D.]

+t is indeed the best way to more or less secure a shared (world-writable)
spool directory, but your description of its semantics is not quite correct.

+t merely prevents users other than root, the owner of the directory, or the
owner of the file from removing links to it from that directory (or renaming
existing links).  Anyone with write access to the directory, however, can
create additional links to the file (although they cannot of course
subsequently remove them).  +t on a directory also has no bearing on being
able to modify a file in that directory; that is still determined soley by
the applicable w bit on the file, and thus the umask of the process that
creates it.

> -----Original Message-----
> From:	Doug VanLeuven [SMTP:ldx at ibm.net]
> Sent:	Monday, June 21, 1999 14:56
> To:	Multiple recipients of list
> Subject:	Re: Printing from NT and Win95
> 
> On linux:
>     chmod o+t directoryname
> or
>     chmod 1777 directoryname
> This allows users to create files,
> but not modify or delete files they don't own.
> 
> Vladimir Yumashev wrote:
> 
> > I've set up printer named \\MM\HP
> > User MARCEL connects to printer.  When printing he get the message
> > "Error writing \\MM\HP : Access denied"
> >
> > I have found out that MARCEL should have write permissions to samba
> > spool directory.  That's seems to be little insecure.  Am I right? How
> > to change this?
> >
> > Configuration:
> > Samba 2.0.3
> > security=domain
> >
> > WBR,
> > Vladmir Yumashev
> 
> -- Doug VanLeuven - 707-545-6933 (voice) 707-545-6945 (fax)
> Chief Engineer, USMM roamdad at ibm.net
> Programmer/Analyst, SCWA doug at scwa.ca.gov
>