[Samba] 3.2.4 ACL inheritance trouble

Saddi, Chandra Chandra.Saddi at jamesriverins.com
Tue Nov 11 21:04:34 GMT 2008 

Jeremy,

I am using samba 3.2.4 on CentOS 5.2, configured as a domain member of
windows 2000 active directory and the client is windows XP.

My problem is I am not able to remove any inherited ACL's on the folders
and files from windows XP client. I unchecked "Inherit from parent the
permission entries that apply to child objects. Include these with
entries with explicitly defined here" and selected "Copy" option in the
next dialog box and then I hit apply, it is successful so far and I get
"not inherited" in "inherited from" column. Now when I delete an
inherited ACL entry, it comes back again after I hit apply.  

Linux permissions on the share are 777.

Here is my smb.conf:

workgroup = EXAMPLE
realm = EXAMPLE.COM
server string = %h server  (Samba %v)
password server = RIVER
enable privileges = Yes
use spnego = yes
client use spnego = yes
name resolve order = host wins bcast
winbind use default domain = yes
netbios name = samba-test

security = ADS
encrypt passwords = yes
socket options  = TCP_NODELAY
map to guest = nobody
idmap uid = 16777217-33554431
idmap gid = 16777217-33554431
winbind enum users = yes
winbind enum groups = yes
template shell = /bin/bash

#==== Share Definitions =====#
[Test]
        comment = Share Data
        path = /data/test
        read only = No
        create mask = 0770
        directory mask = 0770
        browsable = Yes
        public = No
        writeable = Yes
        force create mode = 0770
        force directory mode = 0770
        force group = "domain admins"
        guest ok = no
        inherit permissions = yes
        inherit acls = yes
        nt acl support = yes
        map acl inherit = yes



Thank you and I hope this helps.

--Chandra        





-----Original Message-----
From: Jeremy Allison [mailto:jra at samba.org] 
Sent: Tuesday, November 11, 2008 3:30 PM
To: Saddi, Chandra
Cc: Peter Rindfuss; Jeremy Allison; samba
Subject: Re: [Samba] 3.2.4 ACL inheritance trouble

On Wed, Nov 05, 2008 at 05:40:36PM -0500, Saddi, Chandra wrote:
> Hi Jeremy,
> 
> I've checked with version 3.2.2, here I found another problem. The
check
> box for "Inherit from parent the permission entries that apply to
child
> objects. Include these with entries with explicitly defined here"
keeps
> appearing (checked) again after I select "Copy" option and then hit
the
> apply button. I couldn't test further because of this issue.

Can't reproduce this with current samba-3-2-test git code. Can you
give me *exact* steps to reproduce please ?

Jeremy.

More information about the samba mailing list