What to do when Windows client asks you to set permissions that
you can't?
Christopher R. Hertel
crh at ubiqx.mn.org
Wed Mar 19 21:46:10 GMT 2003
On Wed, Mar 19, 2003 at 01:59:52PM -0800, Richard Sharpe wrote:
> Hi,
>
> A question I have relating to ACLs is the following:
>
> What should you do (In Samba etc) if you get an ACE in an ACL where the
> ACE contains permission bits that you do not implement?
>
> You could:
>
> 1. Deny the request, leaving the user not knowing which
> bits were good and which not.
>
> 2. Ignore the bits you don't process, leaving the user
> in a state of confusion about which bits you support
> and which you don't. That is, leaving them not
> trusting the file system.
>
> Are there any other choices (assuming that implementing all the NT bits is
> out of the question).
We have the same problem with DOS Attributes vs. Unix Attributes. They
don't map very well. The best you can do is try to find a way to
approximate (your best guess) of the user's intention.
Chris -)-----
--
Samba Team -- http://www.samba.org/ -)----- Christopher R. Hertel
jCIFS Team -- http://jcifs.samba.org/ -)----- ubiqx development, uninq.
ubiqx Team -- http://www.ubiqx.org/ -)----- crh at ubiqx.mn.org
OnLineBook -- http://ubiqx.org/cifs/ -)----- crh at ubiqx.org
More information about the samba-technical
mailing list