[Samba] Excel permission in samba
Mario Remy Almeida
malmeida at isaaviation.ae
Wed Jan 7 14:04:52 GMT 2009
Hi All,
Recently Moved from windows file server to samba file server
but still users are authenticating from windows ADS 2003 server
I have a strange problem.
smb.conf file config is bellow
############### START smb.conf file ###################
[global]
netbios name = AA-FTP
workgroup = airarabia
realm = airarabia.com
server string = Samba File Server
encrypt passwords = yes
security = ADS
password server = 10.200.2.22
log level = 3
log file = /var/log/samba/%m.log
max log size = 50
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
printcap name = /etc/printcap
preferred master = No
passdb backend = tdbsam
domain master = no
dns proxy = yes
ldap ssl = no
idmap uid = 10000-20000
idmap gid = 10000-20000
winbind separator = +
winbind use default domain = yes
cups options = raw
vfs object = vscan-clamav
force create mode = 0660
force directory mode = 0770
vscan-clamav: config-file = /etc/samba/vscan-clamav.conf
[I T]
comment = IT
path = /home/IT
browseable = yes
writeable = yes
preserve case = yes
short preserve case = yes
force security mode = 0600
inherit acls = yes
### END OF smb.conf file ##########################
Parent directory is "IP Addresses"
ls -al
drwxrws---+ 2 root root 4096 Jan 7 17:13 IP Addresses
getfacl result
# file: IP\040Addresses
# owner: root
# group: root
user::rwx
user:clamav:rwx
user:aalsaadi:rwx
user:isa_mario:rwx
user:skoirala:rwx
user:ahussain:rwx
user:rskendar:rwx
user:adelali:rwx
user:malbadri:rwx
group::r-x
mask::rwx
other::---
Observations 1
getfacl before modification
# file: Switches\040IP\040Addresses.xls
# owner: root
# group: root
user::rw-
user:root:rwx
user:clamav:rwx
user:aalsaadi:rwx
user:isa_mario:rw-
user:skoirala:rwx
user:ahussain:rwx
user:rskendar:rwx
user:adelali:rwx
user:malbadri:rwx
group::r--
mask::rwx
other::---
User isa_mario modifies and save the file
getfacl after modification
# file: Switches\040IP\040Addresses.xls
# owner: isa_mario
# group: root
user::rwx
user:root:rw-
user:clamav:rwx
user:aalsaadi:rwx
user:skoirala:rwx
user:ahussain:rwx
user:rskendar:rwx
user:adelali:rwx
user:malbadri:rwx
group::rw-
mask::rwx
other::---
The owner of the file is changed to isa_mario instead of root
Observation 2
changed the owner manually back to root
getfacl before modification
# file: Switches\040IP\040Addresses.xls
# owner: root
# group: root
user::rwx
user:root:rw-
user:clamav:rwx
user:aalsaadi:rwx
user:skoirala:rwx
user:ahussain:rwx
user:rskendar:rwx
user:adelali:rwx
user:malbadri:rwx
group::rw-
mask::rwx
other::---
User rskendar modifies and save the file
getfacl after modification
# file: Switches\040IP\040Addresses.xls
# owner: root
# group: root
user::rwx
user:root:rwx
user:clamav:rwx
user:aalsaadi:rwx
user:skoirala:rwx
user:ahussain:rwx
user:adelali:rwx
user:malbadri:rwx
group::rw-
mask::rwx
other::---
Now here the Owner is not changed owner remains the same as root
As soon as the use saves the file (Crt s) error message file is readonly
option is to click ok and then another messsage the file was
successfully save but failed to reopen the file
In both the observations respected saving users are not show in the acl
(isa_mario and rskendar)
Because of this the user was not able to open and save the file next
time
In order to give temp solution had to change the parent folder
permission to chmod g+s
what could be the problem, what am I missing in the conf file?
Need help very urgent.
//Remy
More information about the samba
mailing list