[Samba] NT Security tab changes

Jules Agee julesa at pcf.com
Sat Oct 5 01:27:00 GMT 2002

jra at dp.samba.org wrote:
> On Thu, Oct 03, 2002 at 05:30:07PM -0700, Jules Agee wrote:
>>Do I need to patch ACL support into the Linux kernel just to allow users 
>>to change permissions on files hosted on the Samba 2.2.5 server? All I 
>>really need is to allow users to set read/write/execute on files. Right 
>>now, I don't have an ACL-patched kernel installed on the server.
> No you don't. So long as the users are only changing the u/g/w 
> permissions Samba should reflect these onto the standard UNIX
> permissions.
> Jeremy.

So... forgive me, I'm still new at using Samba. Any idea why it isn't 
working with the configuration described below?  If I try to modify 
perms on a file that I don't own from the Security Tab, I get a 
permission denied dialog as expected. But when I actually own the file 
and try to change perms, for example to give "Everyone" write access to 
it, the second I click the Apply button, all my changes simply revert to 
whatever they were before I changed anything. If I add "nt acl support = 
no" to the config, then the Security tab disappears on the Windows client.

RedHat 7.2 with RedHat kernel 2.4.9-34
Samba 2.2.5 installed from samba-latest.tar.gz
running on ext3 filesystem

> All users have Windows 2000 Pro (not sure what SP). Samba is
> authenticating to OpenLDAP, and I'm using nss_ldap. Here's the relevant
> section of smb.conf:
>> [global]
>     ldap server = localhost
>     ldap port = 389
>     ldap suffix = "o=internet"
>     ldap admin dn = "cn=Manager,o=internet"
>     ldap ssl = no
>     workgroup = IS
>     netbios name = THOR
>     server string = Thor File Server
>     security = server
>     dos filemode = yes
>     encrypt passwords = Yes
>     log file = /var/log/samba/%m.log
>     max log size = 0
>     socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
>     dns proxy = No
> [private]
>     comment = Private File Storage
>     path = /usr/local/fileshare/home
>     read only = No 

Jules Agee
System Administrator
Pacific Coast Feather Co.
julesa at pcf.com      x284

More information about the samba mailing list