[Samba] Root cannot delete files through samba share
Dale Schroeder
dale at BriannasSaladDressing.com
Tue Nov 13 11:37:59 MST 2012
Amanda,
You can elevate a user's privileges by using the "admin users"
parameter, e.g., "admin users = user1, @group2"
Also, I believe the syntax in your second option should be ==> "force
group = supervisors" if you wish to go that route.
Dale
On 11/12/2012 3:44 PM, Amanda Gomes wrote:
> Dear,
>
>
> We are integrating Samba with Active Directory in the company. The goal
> is to provide a samba share to users of AD. In this case, we need all users
> to write on the share, but nobody modify or delete any files. Even the user
> who owns it.
> With this, we would create only one AD user, if necessary with root
> powers, which could erase everything.
> For this, we test several lines, such as the samba permissions, acls,
> sticky bit, but nothing met our needs.
> I am now trying to make that an AD user has the same root privileges.
> Working with the following configuration:
>
>
> [MEDIA]
> path = / mnt / storage / MEDIA
> browseable = yes
> writable = yes
> create mask = 0555
>
> After writing the share, no one can erase. But not even the root logging
> via samba, can erase. Only the machine itself. Anyone can explain why?
>
> Another option would be:
>
>
> [MEDIA]
> path = / mnt / storage / MEDIA
> browseable = yes
> writable = yes
> group = force "supervisors"
> create mask = 0570
>
> With this setting, the goal would be that users write in the share and
> the files were to become the group supervisors, and only users belonging to
> this group be able to erase. But this setup also failed.
>
> Does anyone know how I could implement this? The why these settings do
> not work out?
>
>
> Thank you!
> Amanda Gomes.
More information about the samba
mailing list