Permissions Problem

William R. Knox wknox at mitre.org
Fri Jan 26 12:49:24 GMT 2001


One small item - you can remove the Accounting group from the read list
option, as they already have read-write access due to their being in the
write list option list. Oh, and you were right to use the +Accounting for
the groups, in response to the post that I saw in response to yours -
the + indicates that samba should look for the group in the Unix groups,
whereas the @ indicates that samba should look first for an NIS netgroup
and then for a Unix group.
Good luck!

			Bill Knox
			Senior Operating Systems Programmer/Analyst
			The MITRE Corporation

On Thu, 25 Jan 2001, Dustin Butler wrote:

> Date: Thu, 25 Jan 2001 21:21:35 -0700
> From: Dustin Butler <dustin at intrcomm.net>
> To: 'Chris Herrmann' <chris at faredge.com.au>,
>      "samba (E-mail)" <samba at us5.samba.org>
> Subject: RE: Permissions Problem
>
> It seems @ has the same behavior. After reading some more of the Using Samba
> book I found these definitions.
>
> write list: Specifies a list of users that have read-write access to a read
> only share.
>
> read list: Specifies a list of users that have read-only access to a
> writable share.
>
> I was assuming read list meant 'list of users that can read the share' and
> write list meant 'list of users that can write to the share'.  It seems
> that's not the case.
>
> I think I've found the behavior I want by changing my share definition to
> the following
>
> [test]
>   path = /home/test
>   comment = Testing Permissions
>   valid users = @Accounting @Graphics
>   write list = @Accounting
>   read list = @Accounting @Graphics
>
> Dustin
>
> > -----Original Message-----
> > From: Chris Herrmann [mailto:chris at faredge.com.au]
> > Sent: Thursday, January 25, 2001 7:31 PM
> > To: 'Dustin Butler'; 'samba (E-mail)'
> > Subject: RE: Permissions Problem
> >
> > is it supposed to be @Accounting ???
> >
> > -----Original Message-----
> > From: samba-admin at lists.samba.org
> > [mailto:samba-admin at lists.samba.org]On
> > Behalf Of Dustin Butler
> > Sent: Friday, 26 January 2001 11:52
> > To: samba (E-mail)
> > Subject: Permissions Problem
> >
> > Hi Crazy Samba People,
> >
> > I've set up a share with the following attributes.
> >
> > [test]
> >   path = /home/test
> >   comment = Testing Permissions
> >   write list = +Accounting
> >   read list = +Accounting
> >
> > The directory /home/test has the following permissions
> >
> > drwxrwxrwx   2 root     root         4096 Jan 25 11:23 test
> >
> > I'm connecting from a windows workstation with a user that is
> > not in the
> > Accounting group.  When I try to copy a file to the share I
> > get an accessed
> > denied message, which is what I want.  When I read a file
> > from the share I
> > am able to do so successfully which is not what I want.  I
> > realize Samba
> > must use the system file permissions but shouldn't the config
> > override them
> > for reading as it did for the writing?
> >
> > Dustin
>
>
>





More information about the samba mailing list