[Samba] write list vs read list

Luca Ferrari fluca1978 at infinito.it
Wed Apr 9 07:54:10 GMT 2008

I'd like to set a share as writable for a specific users' group, and only 
readable for another, so I did the following:

netbios name      = SEDELDAP
workgroup = LDAP
security = user
passdb backend = ldapsam:ldap://localhost/
obey pam restrictions = no
ldap admin dn = cn=admin,dc=MyHost,dc=com
ldap suffix = dc=MyHost,dc=com
ldap group suffix = ou=Group
ldap user suffix = ou=People
ldap machine suffix = ou=Computers
ldap idmap suffix = ou=Users
ldap ssl = off
domain logons = yes
follow symlinks = yes
wide links = yes
unix extensions = no
map to guest = Bad User
guest account = guest.samba

        comment           = Cartella privata Laboratorio
        path              = /mnt/samba/lab_smb
        browsable         = yes
        available         = yes
        valid users       = @laboratorio @estero
        write list        = @laboratorio
        read list         = @estero
        writable          = yes
        printable         = no
        force group       = laboratorio

However, the @estero group cannot access the share at all 
(NT_STATUS_ACCESS_DENIED). What am I doing wrong?


More information about the samba mailing list