[Samba] valid users and file permissions

John Drescher drescherjm at gmail.com
Mon Oct 20 21:45:30 GMT 2008

On Mon, Oct 20, 2008 at 5:37 PM, Kyle <kl at attitia.com> wrote:
> Hi people,
> I'd like to understand valid users and file permissions better. I have a
> share which is not behaving as I expect.
> [family]
> path = /home/shares/family
> create mask = 0664
> directory mask = 0775
> force group = parental
> guest ok = No
> valid users = @parental, @family
> writeable = Yes
> in Group parental are mum & dad; in group family are mum, dad and offspring.
> With file permissions of 0664 and force group parental, I would expect  the
> offspring to be able to browse the share but not write to or delete from it.
> Unfortunately, they can both write and delete.
Since you are using the force group, I believe that means that
everyone who connects to the share does that as the parental group so
they get read and write permissions.

> How do I achieve this please?
I would get rid of the force group and use acls on the *nux filesystem


More information about the samba mailing list