[Samba] group permissions broken after upgrade 3.2.5 -> 3.4.8: deleting of files denied

Marc Schiffbauer marc at schiffbauer.net
Sun Jun 13 16:59:54 MDT 2010 

Hi,

I am having a problem with group permissions after Samba upgrade.

On one share there are several directorries owned by different
users.

No posix acl or user_xattr on the filesystem so far.

Samba is configured so that directory permission is always 0770 and
file permission is always 0660: any user in the domain can do
anything with the files and directories (all users have the same
primary group which is the same as the file and dir group).

That worked very well until the upgrade. Users could do anything
within the share: create, modify and delete files and directories.

Now after the upgrade delete operations on files do not work anymore 
until a user owns the parent directory or has world write access to
it (windows client (XP SP2) gets a permission denied error).

This is strange because a user can still create files within a dir
that he does not own, so this can only be permitted by group permission, 
but deleting the same file gives a permission denied.

What might cause this? Is this a known bug in samba 3.4.8?

Any idea someone?

TIA
-Marc

PS: some details:

share:

--------------------------
[userdata]
        comment = User Data
        path = /home/userdata
        read only = No
        create mode = 0660
        directory mode = 0770
        force create mode = 0660
        force directory mode = 0770
--------------------------

filesystem:
samba-server:/home/userdata/Temp# ls -la
total 68
drwxrwx---  4 user1  domusr  4096 2010-06-13 19:28 .
drwxrwxr-x 10 root   domusr  4096 2010-06-11 11:36 ..
-rw-rw----  1 user2  domusr 24064 2010-06-10 15:39 Liste.doc
-rw-rw----  1 user2  domusr     0 2010-06-12 14:32 Liste mit Preisen.doc
drwxrwx---  2 user1  domusr  4096 2010-06-12 02:47 Neuer Ordner
-rw-rw----  1 user1  domusr 20480 2010-06-11 17:44 Rechnungen.doc
drwxrwx---  2 user3  domusr  8192 2010-05-31 21:20 Schriftarten

(here user2 cannot delete "Liste.doc" for example although he could create it)

-- 
8AAC 5F46 83B4 DB70 8317  3723 296C 6CCA 35A6 4134

More information about the samba mailing list