[Samba] Problem with PRODUCTION machine, please respond quickly!!
Jeremy Allison
jra at samba.org
Fri Aug 4 15:22:46 GMT 2006
On Fri, Aug 04, 2006 at 11:46:03AM +0200, S. J. van Harmelen wrote:
> Yes, I did...
>
> See below the output from 'ls -la' and below that the output of getfacl:
>
> drwxrwx--x+ 2 mpsfrontpageacct Domain Admins 4096 Aug 4 10:58 .
> drwxrwx--x+ 3 solcon_admin Domain Admins 4096 Aug 4 10:58 ..
> -r--rwx---+ 1 mpsfrontpageacct Domain Admins 25 Aug 4 10:58
> botinfs.cnf
> -r--rwx---+ 1 mpsfrontpageacct Domain Admins 25 Aug 4 10:58 bots.cnf
> -r--rwx---+ 1 mpsfrontpageacct Domain Admins 0 Aug 4 10:58
> frontpg.lck
> -r--rwx---+ 1 mpsfrontpageacct Domain Admins 950 Aug 4 10:58
> service.cnf
> -r--rwx---+ 1 mpsfrontpageacct Domain Admins 0 Aug 4 10:58
> service.lck
> -r--rwx---+ 1 mpsfrontpageacct Domain Admins 3 Aug 4 10:58
> services.cnf
> -r--rwx---+ 1 mpsfrontpageacct Domain Admins 0 Aug 4 10:58
> uniqperm.cnf
>
>
> # file: frontpg.lck
> # owner: mpsfrontpageacct
> # group: Domain\040Admins
> user::r--
> user:wws01$:rwx
> user:w3svc5175754_anon_xi:rw-
> group::r--
> group:Admins_xil123:rw-
> mask::rwx
> other::---
>
> I'm trying to delete using the account mpsfrontpageacct which has Domain
> \040Admins as default group...
I see the problem. It's actually a bug. The owner has only
'r' access to the file but to store the ACL inheritance EA
we need 'rw'. I'll take a look at it. You can fix this by
temporarily changing the user access to 'rw' then deleting
the file.
Jeremy.
More information about the samba
mailing list