[Samba] Samba4, file permissions not respected

Daniel Müller mueller at tropenklinik.de
Fri Sep 10 05:51:42 MDT 2010


On Thu, 9 Sep 2010 23:46:29 -0500, "Philip M. White" <pmw at qnan.org> wrote:
> Hi, all,
> 
> I run the latest Samba4 with Windows 7 clients.
> 
> I have a share that I created in smb.conf like so:
> [common]
>    path = /home/pmw/installed/samba/common-share
>    csc policy = manual
>    read only = no
> 
> Within it, I created a file using a regular user.  That file has
> fine-looking security: that user has full permissions, Everyone has
from your windows client login to your domain as administrator.
choose the share go to properties security advanced give the group and
users permissions.
It should work.

> read-only permissions.
> 
> 'getfattr' on that file results in this:
>
user.DosAttrib=0sAQABACAAAAAEAAAAAAAAAAAAAAAAAgAAAAAAAAB0zSuiUMsBAHTNK6JQywE=
> 
> However, another user is able to modify that file -- but not delete it.
> When that other user tries to delete that file, Samba says:
> ../ntvfs/posix/pvfs_acl.c:567 denied access to
> '/home/pmw/installed/samba/common-share/philip-file.txt' - wanted
> 0x01000000 but got 0x001201ff (missing 0x01000000)
> 
> ...but no such message appears when the other user changes the file.
> 
> Right now, it appears that Samba does not respect Windows' ACLs.
> 
> I'd like only the originating user to have write access to that file.
> Am I doing something wrong?
> 
> -- 
> Philip


More information about the samba mailing list