[Samba] ACL permissions with XP problem

Thomas Klettke thomas at klettke.us
Fri Feb 28 17:51:34 GMT 2003 

No clue here yet, just guesses.

What happens when you repeat the experiment with a Windows 2000 (or NT)
client? I don't expect it to make a difference, but to rule out that XP
is the problem.

>From what I see so far it seems that there is a discrepancy between the
Unix and Samba IDs - not sure though.


On Fri, 2003-02-28 at 11:29, Brad Sagowitz wrote:
> My understanding was that nt acl support = yes was a default... but I added
> it anyway and restarted to no avail.
> 
> Whenever I edit a files permissions (as root) from a XP client I get the
> error
> 
> "Unable to save permission changes on <filename>
>  Access is denied. "
> 
> 
> 
> -----Original Message-----
> From: Thomas Klettke [mailto:thomas at klettke.us]
> Sent: Friday, February 28, 2003 11:16 AM
> To: Brad Sagowitz
> Cc: samba at lists.samba.org
> Subject: Re: [Samba] ACL permissions with XP problem
> 
> 
> I've added a line to the share in smb.conf:
> 
> nt acl support = yes
> 
> See if that helps.
> 
> Thomas
> 
> 
> On Thu, 2003-02-27 at 09:47, Brad Sagowitz wrote:
> > Wondering if anyone can help...
> >
> > here is my setup:
> >
> > RedHat 7.3 with XFS (using the XFS install disk)
> > After installation I'd downloaded 2.2.7 src rpm from redhat and rebuilt it
> > with the --with-acl-support option in the samba.spec file
> > then upgraded the resulting rpm files
> > I've added the machine accounts and made root a smb user
> > I can log in successfully(after applying the xp registry hack), the
> problem
> > comes in when I try to change permission on a file from windows explorer.
> > For example adding users to give them rwx permissions on a file gives me
> > access denied.
> > Now... I tried getfacl and setfacl and both work.  When I use setfacl on a
> > file and add a user, that user does not show up on the security tab in XP.
> > And one other thing... I check the log for the XP machine and it has this
> > error
> > "is104 (192.168.0.104) couldn't find service screenings"
> >
> > Any help would be greatly appreciated!!!!
> >
> > Thanks
> >
> >
> >
> >
> > here is my smb.conf file:
> >
> > [global]
> > 	smb passwd file = /etc/samba/smbpasswd
> > 	passwd program = /usr/bin/passwd %u
> > 	domain master = yes
> > 	dns proxy = no
> > 	encrypt passwords = yes
> > 	socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
> > 	short preserve case = no
> > 	printcap name = /etc/printcap
> > 	wins support = yes
> > 	max log size = 0
> > 	preferred master = yes
> > 	logon script = %U.bat
> > 	password level = 4
> > 	passwd chat = *New*password* %n\n *Retype*new*password* %n\n
> > *passwd:*all*authentication*tokens*updated*successfully*
> > 	security = user
> > 	domain logons = yes
> > 	unix password sync = Yes
> > 	workgroup = JDMC
> > 	server string = JDMC Samba Server
> > 	local master = yes
> > 	netbios name = THE-SCOOP
> > 	log file = /var/log/samba/%m.log
> > 	load printers = no
> > 	os level = 64
> >
> > [netlogon]
> > 	path = /home/netlogon
> > 	public = no
> > 	read only = yes
> >
> > [homes]
> > 	path = %H
> > 	volume = Private
> > 	writable = yes
> > 	comment = Private Share
> > 	valid users = %S
> > 	browseable = no
> > 	create mode = 0764
> > 	directory mode = 0775
> >
> > [general]
> > 	path = /shares/general
> > 	writeable = yes
> > 	public = yes
> > 	valid users = @users, at root,root
> >         force group = users
> >         force create mode = 764
> >
> > Brad Sagowitz
> > Operating Systems Specialist III
> > A+, MCP, Linux+, CCAI-UNIX
> > 1125 E. Alameda
> > Norman, OK 73071
> > brad at jdmc.org

More information about the samba mailing list