ACLs on Digital UNIX

TAKAHASHI Motonobu monyo at samba.org
Sat Jul 28 07:43:38 GMT 2001 

|If you do a configure --with-acl-support on a
|Compaq Tru 64 UNIX 5.x system you should get the
|message "Using Draft 13 Posix ACLs" as part of
|the output from configure. 

Yes, here is the message:

checking checking if large file support can be enabled... yes
checking whether to support ACLs... Using Draft 13 Posix ACLs
checking whether to compile winbind... no, unsupported on osf5.0

>Then it should "just build" and "just work" ...

As far as I examine, it does not work yet. 

At first I enable ACL feature and type

%setacl -u group:sysadmin:rwx foo.txt
%getacl foo.txt
# file: foo.txt
# owner: monyo
# group: users
#
user::rwx
group::r--
group:sysadmin:rwx
other::r--

The sysadmin's ACE is read from Windows 2000.

But I cannot add/modify/delete any ACE from Windows 2000.
Pressing OK, then Windows says "Access denied".

The following log is a level 3 log for deleting the sysadmin's ACE
from Windows 2000. Sorry I am not familiar with ACL so that I do not
know the meaning of the message.

[2001/07/28 16:35:22, 3] smbd/process.c:(650)
  switch message SMBnttrans (pid 14434)
[2001/07/28 16:35:22, 3] smbd/nttrans.c:(1777)
  call_nt_transact_set_security_desc: file = TEST/foo.txt, sent
0x20000004
[2001/07/28 16:35:22, 3] smbd/dosmode.c:(113)
  unix_mode(TEST/foo.txt) returning 0744
[2001/07/28 16:35:22, 0] smbd/posix_acls.c:(1643)
  set_canon_ace_list: Failed to create permset for mode (448) on entry
0. (Invalid argument)
[2001/07/28 16:35:22, 3] smbd/posix_acls.c:(2097)
  set_nt_acl: failed to set file acl on file TEST/foo.txt (Invalid
argument).
[2001/07/28 16:35:22, 3] smbd/error.c:(123)
  error string = Invalid argument
[2001/07/28 16:35:22, 3] smbd/error.c:(136)
  error packet at line 1781 cmd=160 (SMBnttrans) eclass=1 ecode=5
[2001/07/28 16:35:22, 3] smbd/process.c:(837)
  Transaction 3845 of length 45

And when I simply added a group to ACE and press OK, the following
message was displayed:

[2001/07/28 16:39:01, 0] smbd/posix_acls.c:(1643)
  set_canon_ace_list: Failed to create permset for mode (320) on entry
0. (Invalid argument)

-----
TAKAHASHI, Motonobu(monyo)         monyo at samba.org
Personal - http://home.monyo.com/, 
Samba Team - http://samba.org/,    Samba-JP - http://www.samba.gr.jp/  
JWNTUG - http://www.jwntug.or.jp/, Analog-JP - http://www.jp.analog.cx/
MCSE+I, SCNA, CCNA, Turbo-CI

More information about the samba-technical mailing list