tdb database permissions for smbd
Amitay Isaacs
amitay at gmail.com
Mon May 14 07:21:19 UTC 2018
Hi,
Martin and I noticed that some of the databases are opened with mode
0644. These include (but not limited to):
locking.tdb
brlock.tdb
leases.tdb
idmap2.tdb
Is that intentional? Are non-root users supposed to get to them (e.g.
smbstatus)?
In the clustered case, currently all these databases reside by default
in /var/lib/ctdb/volatile and /var/lib/ctdb/persistent directories
with 0700 permissions. So even if the intention is to allow the users
to access them it's not working currently.
There might be a change in CTDB which will install all the database
directories with default permissions (0755). In that case, it will
match the current single-server smbd set up.
Amitay.
More information about the samba-technical
mailing list