[Samba] acl permissions not staying
Neil Wilson
neilw at dcdata.co.za
Fri Sep 21 09:32:00 GMT 2007
Sorry to repost but I'm getting desperate here.
Neil Wilson wrote:
> Hi guys,
>
> I've got a problem where if I set permissions on a folder(Admin)
> "setfacl -R -d -m u::rwx,g::wrx,o::- Admin/" and "setfacl -m o:- Admin"
>
> I get the following.
>
> mail:/data/samba/shared # getfacl Admin/
> # file: Admin
> # owner: BCP+administrator
> # group: samba
> user::rwx
> user:samba:rwx
> group::rwx
> group:BCP+admin:r-x
> mask::rwx
> other::---
> default:user::rwx
> default:group::rwx
> default:group:BCP+admin:r-x
> default:mask::rwx
> default:other::---
>
> If I then browse to the share through windows and look at the
> permissions for "everyone(other)", they have "none" which is what I want.
> I only want the user and group to have rwx on the folder(recursively)
> and I want everyone to have no access.
>
> If I then go and change any of the permissions through windows eg:
> adding/removing a group/user etc. then suddenly "everyone(other) gets
> the following permissions.
>
> mail:/data/samba/shared # getfacl Admin/
> # file: Admin
> # owner: BCP+administrator
> # group: samba
> user::rwx
> user:samba:rwx
> group::rwx
> group:BCP+admin:r-x
> mask::rwx
> other::r-x
> default:user::rwx
> default:group::rwx
> default:group:BCP+admin:r-x
> default:mask::rwx
> default:other::r--
>
> No matter what I do through windows I cant remove access for "everyone"
> unless I use the setfacl coomand again like above.
>
> Another thing is that the permissions I'm applying aren't being applied
> recursively, even though I'm applying them to recursively.
>
> mail:/data/samba/shared/Admin/Pippa # getfacl Wills/
> # file: Wills
> # owner: BCP+administrator
> # group: samba
> user::rwx
> group::rwx
> other::---
> default:user::rwx
> default:group::rwx
> default:other::---
>
> Please could someone shed some light here as I'm very baffled.
>
> Thanks in advance.
>
> Regards.
>
> Neil
>
--
This email and all contents are subject to the following disclaimer:
http://www.dcdata.co.za/emaildisclaimer.html
More information about the samba
mailing list