ZFS snapshots readable over samba - Permission
samba at ira.wakeful.net
Mon Oct 3 16:39:47 MDT 2011
On Mon, Oct 3, 2011 at 5:56 PM, Jeremy Allison <jra at samba.org> wrote:
> On Mon, Oct 03, 2011 at 11:47:40PM +0200, Bodo Kaiser wrote:
> > Sry for giving such a bad issue discriptions, I tried some things out
> > and I think I should formulate the question new.
> > I have different user-dirs in "/usr/home". I also have daily ZFS
> > snapshots in "/usr/home/.zfs/snapshot". Now I want to have access to the
> > snapshots over samba but only with user authentification and then only
> > read access to the user belonging files in the snapshot.
> > So the user should log in with the username and the password and have
> > access to his files. If he now missis a file which is in the snapshot he
> > should easily go to the snap dir (maybe over a softlink) change to his
> > user-dir in the snapshot and get his missing file(s). When he does this
> > he shouldn't get access to the files of the other users.
> > Hope I explained it this time better :S
> Not quite.
> When you use "/usr/home", do you mean for a user named "foo",
> their home directory is "/usr/home/foo", and their snapshot
> directory is "/usr/hme/.zfs/snapshot/foo" ?
> Please be very specific about what the paths are here.
How are are the shares in samba exported? On a per user basis or all of
/usr/home in one share?
Also is there a reason why each user doesn't have their own ZFS subvolume?
It makes quotas and general administration easier.
/usr/home/foo/.profile ; foo's .profile
/usr/home/.zfs/snapshot/daily.0/.profile ; Foo's profile yesterday.
(assuming the snapshot is called daily.0)
/usr/home/foo/.profile ; foo's profile
/usr/home/foo/.zfs/snapshot/daily.0/.profile ; Foo's profile yesterday.
More information about the samba-technical