samba 3.3.x and SMB RAW-ACLs
yaberger at ca.ibm.com
yaberger at ca.ibm.com
Tue Feb 24 11:23:44 MST 2009
just a precision
we're already using "acl check permissions = No"
yaberge2 at sda7 ==> testparm -vs 2>&1 |grep "acl check permissions"
acl check permissions = No
would it be clean to have something like this? (not tested)
==> diff -c /tmp/open.c.orig /tmp/open.c.new
*** /tmp/open.c.orig Tue Feb 24 13:00:54 2009
--- /tmp/open.c.new Tue Feb 24 13:22:18 2009
***************
*** 397,403 ****
} else {
fsp->fh->fd = -1; /* What we used to call a stat open. */
! if (file_existed) {
status = check_open_rights(conn,
path,
access_mask);
--- 397,403 ----
} else {
fsp->fh->fd = -1; /* What we used to call a stat open. */
! if (lp_acl_check_permissions() && file_existed) {
status = check_open_rights(conn,
path,
access_mask);
my current "ugly" patch
==> diff -c /tmp/open.c.orig /tmp/open.c.yaberger
*** /tmp/open.c.orig Tue Feb 24 13:00:54 2009
--- /tmp/open.c.yaberger Tue Feb 24 13:00:28 2009
***************
*** 397,402 ****
--- 397,403 ----
} else {
fsp->fh->fd = -1; /* What we used to call a stat open. */
+ #if 0
if (file_existed) {
status = check_open_rights(conn,
path,
***************
*** 408,413 ****
--- 409,415 ----
return status;
}
}
+ #endif
}
if (!file_existed) {
Yannick Bergeron
yaberger at ca.ibm.com
IT Specialist
AIX / Samba / Load Balancer / DCE/DFS / SCM / Apache / Security / Perl
scripting / etc.
More information about the samba-technical
mailing list