[Samba] taking ownership

Sven Köhler skoehler at upb.de
Thu Jul 25 10:18:01 GMT 2002

> I did some reading on it ( howtos, archives from the -devel list ) and
> it appears that this feature is not implemented in Samba. Changing
> ownership is something only root can do on Unix systems, whereas NT
> systems allow this kind of behavior ( the "Take Ownership" bit doesn't
> seem to mean anything in Posix ACLs either ).

the problem is not, that the feature of "taking owner-ship" is not 
implemented - it's the "changing the ACL of a file that the user doesn't 
own"-feature that's missing.

in fact both features cannot be implemented by using POSIX-ACLs (as far 
as i know) cause there're only 3 bits per user: RWX

we whould need another bit meaning "user is allowed to change ACL of file"

this would be far more like NTFS-ACLs

> So, I guess people will have to go through the administrator to make
> these changes ( "for reasons of security" sounds good :) ).

that sucks :-(

we would need far more:
strict inheritance of the ACLs (i had a case where a file didn't get all 
the ACLs of it's parent - don't know why or when this happens yet)
and even more bits per right to allow more windows-xp-like 
right-management (NTFS5.1 has inheritance-bits, to see which right's are 
inherited or not)

POSIX-ACLs just don't offer that!

we would need some kind of "emulation" or an external (meaning not 
within the FS) storage for the ACLs.

Read my mail called "Samba VFS - suggestions" for the steps i would make.

More information about the samba mailing list