[Samba] directory vs. file delete permissions

mlh mlh at zip.com.au
Sat Dec 7 23:20:01 GMT 2002


root wrote:
[ .. ]
> drwxrwxr-x    7 root     smbusers     4096 Dec  7 15:08 apps
> 
> [apps]
>    comment = Applications
>    path = /home/samba/apps
>    force group = smbusers
>    browsable = yes
>    guest ok = no
>    read only = yes
>    delete readonly = no
>    write list = @smbadmin, at smbusers
>    valid users = @smbusers, at smbadmin
>    admin users = @smbadmin
> 
> The @smbusers were added to the write list.  Originally it was only
> @smbadmin.
> 
> The directory & file permissions are: 
> directory-- 755 
> files-- 744 (root:smbusers)

My quick answer is to make the directory sticky:
         chmod +t /home/samba/apps
this prevents non-owners from deleting files, even
if they have directory write permission. (this is
a unix thing, not a samba thing)

A further comment though, if you allow smbusers to write
via unix permissions, you do not have to add that to
the smb.conf 'write list' as well.

Matt








More information about the samba mailing list