PS: smbcacl doesn't work for me

Zoltan Bogdan zoltan.bogdan at t-online.de
Fri Oct 4 16:50:01 GMT 2002 

Am Don, 2002-10-03 um 23.43 schrieb Zoltan Bogdan:

    Hi, 
    I share an XFS-volume via samba 2.2.4. 
    
    fetching the acls works like the following for me: 
    
    -------------------------------------------- 
    hermes:/secrets # smbcacls //hermes/xfs-share test -U TOGO/hzbogdan 
    Password: 
    REVISION:1 
    OWNER:TOGO\hzbogdan 
    GROUP:TOGO\users 
    ACL:TOGO\hzbogdan:ALLOWED//RW 
    ACL:TOGO\users:ALLOWED//R 
    ACL:\Everyone:ALLOWED//R 
    --------------------------------------------- 
    
    When I try to set - or rather modify - the Acl for the group
    "users", I get strange results: 
    
    --------------------------------------------- 
    hermes:/secrets # smbcacls //hermes/xfs-share test -U TOGO/hzbogdan
    -M ACL:TOGO\users:0/0/W 
    Password: 
    Failed to parse ACL ACL:TOGOusers 
    -------------------------------------------- 
    
    Using various substitutions for type/flags/mask Values didn't get
    better results. 
    
    Could someone provide some help? 
    

Meanwhile I updated to v2.2.5.
I realized that I need to provide the arguments in numeric form.
While this command fails:

linux:/data # smbcacls //linux/testXFS test -U TESTNET/testuser -M
ACL:TESTNET\testuser:0/0/RWX

This one works:

linux:/data # smbcacls //linux/testXFS test -U TESTNET/testuser \
-M  ACL:S-1-5-21-3184567151-898596407-368155116-1201:0/0/0x001f01ff

Have I missed something in my configuration or isn't this implemented
yet?
If the later is true, could someone provide me with the hex
representation of the NT-acls given in the manpage of "smbcacls".

My config looks like that right now:

# Samba config file created using SWAT
# Date: 2002/10/03 10:47:03

# Global parameters
[global]
        workgroup = TESTNET
        encrypt passwords = Yes
        log level =3
        time server = Yes
        unix extensions = Yes
        socket options = SO_KEEPALIVE IPTOS_LOWDELAY TCP_NODELAY
        printcap name = CUPS
        character set = ISO8859-15
        domain logons = Yes
        os level = 2
        wins support = Yes
        printing = cups
        veto files = /*.eml/*.nws/riched20.dll/*.{*}/

[homes]
        comment = Home Directories
        valid users = %S
        read only = No
        create mask = 0640
        directory mask = 0750
        browseable = No

[printers]
        comment = All Printers
        path = /var/tmp
        create mask = 0600
        printable = Yes
        browseable = No

[print$]
        comment = Printer Drivers
        path = /var/lib/samba/drivers
        write list = @ntadmin root
        force group = ntadmin
        create mask = 0664
        directory mask = 0775

[testXFS]
        path = /data
        inherit permissions = Yes
        inherit acls = Yes
        nt acl support = Yes



Thanks
z.

    
    
    


Zoltan Bogdan

Zoltan Bogdan - Linux SystemIntegration
Kreutzerstr. 71 D-90439 Nürnberg
Tel. +49 (0)911 929 191 25
Fax +49 (0)911 929 191 26
Mobil +49 (0)175 521 705 4
Zoltan.Bogdan at t-online.de

-------------- next part --------------
HTML attachment scrubbed and removed

More information about the samba-technical mailing list