[Samba] Re: Unable to set ACLs with Samba 3.0.11, near publication deadline

Gerald (Jerry) Carter jerry at samba.org
Tue Mar 22 11:34:50 GMT 2005

Hash: SHA1

Thomas Boutell wrote:

| I'm definitely setting ACLs on directories... bear in
| mind that Unix rules still apply, only the owner of the
| file or dirctory and administrator (or whoever maps to
| root) have the privilege of setting and changing ACLs.
| Would still love to know why I see raw SIDs when I
| reopen the ACLs in Windows, though.

If you see a SID instead of a name it means that the
client is unable to resolve that SID to a name (sorry
for stating the obvious).  For domain members, the
LookupSid() call is sent from the client to the DC.

My guess is that you aren't running winbindd and there
the SID is the Samba server's local SID which the DC
doesn't know anything about.  I think the client should
still fall back to asking the file server to resolve the
SID is the DC fails.

Maybe an ethereal trace would help you see where the
process is falling down?

cheers, jerry
Alleviating the pain of Windows(tm)      ------- http://www.samba.org
GnuPG Key                ----- http://www.plainjoe.org/gpg_public.asc
"I never saved anything for the swim back."     Ethan Hawk in Gattaca
Version: GnuPG v1.2.5 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org


More information about the samba mailing list