[Samba] ACLs under Samba 3.3.0

Miguel Medalha miguelmedalha at sapo.pt
Fri Jan 30 22:32:55 GMT 2009

> Volker's changes are correct, in that delete access in POSIX does not
> belong to a file itself, but to the containing directory. So really
> we should remove the DELETE_ACCESS bit from both the file and the
> directory ACL returned.

Without having the deep knowledge you have about this, it seems to me 
that this statement is indeed correct but...
> This unfortunately breaks the fiction of a rwx permission mapping directly into Windows FULL_CONTROL.

I can live with that as long as can can set full permissions for users.
The ideal would be:

'map acl full control = yes' -> do what it describes

'map acl full control = no' -> enable us to set the "Delete" permission 
(and others) separately.

The problem with 3.3.0 is that I cannot set the delete permission and as 
such users with rwx at the filesystem level cannot delete the files.

More information about the samba mailing list