[Samba] Excel permission in samba

Andrew Masterson Andrew.Masterson at nuvistaenergy.com
Wed Jan 7 14:46:32 GMT 2009 

Inherit permissions = yes
Inherit owner = yes

> -----Original Message-----
> From: samba-bounces+andrew.masterson=nuvistaenergy.com at lists.samba.org
>
[mailto:samba-bounces+andrew.masterson=nuvistaenergy.com at lists.samba.org
]
> On Behalf Of Mario Remy Almeida
> Sent: Wednesday, January 07, 2009 7:05 AM
> To: Samba Users
> Subject: [Samba] Excel permission in samba
> 
> Hi All,
> 
> Recently Moved from windows file server to samba file server
> 
> but still users are authenticating from windows ADS 2003 server
> 
> I have a strange problem.
> 
> smb.conf file config is bellow
> ############### START smb.conf file ###################
> [global]
>         netbios name = AA-FTP
>         workgroup = airarabia
>         realm = airarabia.com
>         server string = Samba File Server
>         encrypt passwords = yes
>         security = ADS
>         password server = 10.200.2.22
>         log level = 3
>         log file = /var/log/samba/%m.log
>         max log size = 50
>         socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
>         printcap name = /etc/printcap
>         preferred master = No
>         passdb backend = tdbsam
>         domain master = no
>         dns proxy = yes
>         ldap ssl = no
>         idmap uid = 10000-20000
>         idmap gid = 10000-20000
>         winbind separator = +
>         winbind use default domain = yes
>         cups options = raw
>         vfs object = vscan-clamav
>         force create mode = 0660
>         force directory mode = 0770
>         vscan-clamav: config-file = /etc/samba/vscan-clamav.conf
> 
> [I T]
>         comment = IT
>         path = /home/IT
>         browseable = yes
>         writeable = yes
>         preserve case = yes
>         short preserve case = yes
>         force security mode = 0600
>         inherit acls = yes
> 
> ### END OF smb.conf file ##########################
> 
> Parent directory is "IP Addresses"
> ls -al
> drwxrws---+  2 root     root            4096 Jan  7 17:13 IP Addresses
> 
> getfacl result
> 
> # file: IP\040Addresses
> # owner: root
> # group: root
> user::rwx
> user:clamav:rwx
> user:aalsaadi:rwx
> user:isa_mario:rwx
> user:skoirala:rwx
> user:ahussain:rwx
> user:rskendar:rwx
> user:adelali:rwx
> user:malbadri:rwx
> group::r-x
> mask::rwx
> other::---
> 
> 
> Observations 1
> 
> getfacl before modification
> 
> # file: Switches\040IP\040Addresses.xls
> # owner: root
> # group: root
> user::rw-
> user:root:rwx
> user:clamav:rwx
> user:aalsaadi:rwx
> user:isa_mario:rw-
> user:skoirala:rwx
> user:ahussain:rwx
> user:rskendar:rwx
> user:adelali:rwx
> user:malbadri:rwx
> group::r--
> mask::rwx
> other::---
> 
> User isa_mario modifies and save the file
> getfacl after modification
> 
> # file: Switches\040IP\040Addresses.xls
> # owner: isa_mario
> # group: root
> user::rwx
> user:root:rw-
> user:clamav:rwx
> user:aalsaadi:rwx
> user:skoirala:rwx
> user:ahussain:rwx
> user:rskendar:rwx
> user:adelali:rwx
> user:malbadri:rwx
> group::rw-
> mask::rwx
> other::---
> 
> The owner of the file is changed to isa_mario instead of root
> 
> Observation 2
> changed the owner manually back to root
> 
> getfacl before modification
> 
> # file: Switches\040IP\040Addresses.xls
> # owner: root
> # group: root
> user::rwx
> user:root:rw-
> user:clamav:rwx
> user:aalsaadi:rwx
> user:skoirala:rwx
> user:ahussain:rwx
> user:rskendar:rwx
> user:adelali:rwx
> user:malbadri:rwx
> group::rw-
> mask::rwx
> other::---
> 
> User rskendar modifies and save the file
> getfacl after modification
> 
> # file: Switches\040IP\040Addresses.xls
> # owner: root
> # group: root
> user::rwx
> user:root:rwx
> user:clamav:rwx
> user:aalsaadi:rwx
> user:skoirala:rwx
> user:ahussain:rwx
> user:adelali:rwx
> user:malbadri:rwx
> group::rw-
> mask::rwx
> other::---
> 
> Now here the Owner is not changed owner remains the same as root
> 
> As soon as the use saves the file (Crt s) error message file is
readonly
> option is to click ok and then another messsage the file was
> successfully save but failed to reopen the file
> 
> In both the observations respected saving users are not show in the
acl
> (isa_mario and rskendar)
> 
> Because of this the user was not able to open and save the file next
> time
> 
> In order to give temp solution had to change the parent folder
> permission to chmod g+s
> 
> what could be the problem, what am I missing in the conf file?
> 
> Need help very urgent.
> 
> //Remy
> 
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/listinfo/samba

More information about the samba mailing list