The "security mask" parameter

MCCALL,DON (HP-USA,ex1) don_mccall at
Thu May 10 00:26:56 GMT 2001

I agree, Jeremy - it's certainly not something that you could implement on
an NT server - not with DOS modes.
Now, you COULD make a file readonly via ntacls, and restrict the
creator/owner from changing those permissions, but I don't think we need to
provide that outside of whatever acl support the underlying OS allows...
Heck, you can't even do that to a UNIX user....

-----Original Message-----
From: Jeremy Allison [mailto:jeremy at]
Sent: Wednesday, May 09, 2001 17:36
Cc: 'Mohammed_Maati at BIOGEN.COM'; samba at;
'samba-technical at'
Subject: Re: The "security mask" parameter

"MCCALL,DON (HP-USA,ex1)" wrote:
> Hello Mohammed,
> I took a brief look at the dosmode.c code, where I <think> this should be
> handled, and it doesn't seem to ever check or use the security mask before
> it attempts the chmod...
> bottom line, I don't think this feature is implemented...
> I've copied the samba technical list, so maybe one of the samba team can
> comment on this...

You're right. It was implemented, but got removed by accident
in the POSIX ACL rewrite.

To be honest I don't think it's usefull, so I think the best
course of action is to remove it and also remove the docs.


Buying an operating system without source is like buying
a self-assembly Space Shuttle with no instructions.

To unsubscribe from this list go to the following URL and read the

More information about the samba-technical mailing list