[Samba] Re: Unable to set ACLs with Samba 3.0.11,
near publication deadline
Gerald (Jerry) Carter
jerry at samba.org
Tue Mar 22 11:34:50 GMT 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Thomas Boutell wrote:
| I'm definitely setting ACLs on directories... bear in
| mind that Unix rules still apply, only the owner of the
| file or dirctory and administrator (or whoever maps to
| root) have the privilege of setting and changing ACLs.
|
| Would still love to know why I see raw SIDs when I
| reopen the ACLs in Windows, though.
If you see a SID instead of a name it means that the
client is unable to resolve that SID to a name (sorry
for stating the obvious). For domain members, the
LookupSid() call is sent from the client to the DC.
My guess is that you aren't running winbindd and there
the SID is the Samba server's local SID which the DC
doesn't know anything about. I think the client should
still fall back to asking the file server to resolve the
SID is the DC fails.
Maybe an ethereal trace would help you see where the
process is falling down?
cheers, jerry
=====================================================================
Alleviating the pain of Windows(tm) ------- http://www.samba.org
GnuPG Key ----- http://www.plainjoe.org/gpg_public.asc
"I never saved anything for the swim back." Ethan Hawk in Gattaca
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFCQALaIR7qMdg1EfYRAgsbAJwNhDmWg+I7wSMabOVTraszvMxTmgCfS4B2
yp/Fao0mF317IS4ufv11r6k=
=SdGa
-----END PGP SIGNATURE-----
More information about the samba
mailing list