Using Access Control Lists with SMB2/SMB3 Mounts on Linux Clients
Jeremy Allison
jra at samba.org
Thu Feb 28 23:21:06 UTC 2019
On Fri, Mar 01, 2019 at 08:05:52AM +1000, ronnie sahlberg wrote:
> In current kernels we have the new IOCTL / QueryInfo passthrough where
> you can use a simple ioctl() on an object in a SMB2/3 share and pull
> the full security descriptor.
> It would be fairly trivial to expand this to allow setting the
> security descriptor too using SetInfo. We can add that when there is a
> need.
>
> Now, since this is available through a simple ioctl() interface, you
> can access this from almost any language that has support for calling
> the ioctl() syscall.
>
> What I think would be really awesome is if we had a python tool that
> mimics the same UI as you have in explorer when you go to
> properties/security/...
> That would be really really nice.
> Anyone that wants to take a stab at implementing this, reach out to me
> and I can assist/advice.
>
> Once we have a tool like this with a nice operational UI. We can start
> petition Nautilus and other FileManager folks to integrate it.
> That would be super awesome.
Sounds like a great Summer of Code Samba project (hint hint :-).
More information about the samba-technical
mailing list