[Samba] Weird, sudden 3.4 problem.

Don Krause dkrause at optivus.com
Thu Apr 11 13:31:31 MDT 2013 

On Apr 11, 2013, at 12:23 PM, Jeremy Allison wrote:

> On Thu, Apr 11, 2013 at 12:18:46PM -0700, Don Krause wrote:
>> 
>> On Apr 11, 2013, at 12:08 PM, Jeremy Allison wrote:
>> 
>>> On Thu, Apr 11, 2013 at 12:01:02PM -0700, Don Krause wrote:
>>>> 
>>>> 
>>>> [homes]
>>>>      admin users = %S
>>> 
>>> Having admins users = %S seems strange. Is this what you want ?
>>> 
>>>      admin users (S)
>>> 
>>>          This is a list of users who will be granted administrative privileges on the share. This means that they will do all
>>>          file operations as the super-user (root).
>>> 
>>>          You should use this option very carefully, as any user in this list will be able to do anything they like on the
>>>          share, irrespective of file permissions.
>>> 
>>> 
>>> Jeremy.
>>> 
>> 
>> We had a similar problem when we migrated to Win 7 back in 2010. At that time, shares from [homes] were viewable, but
>> unwritable with "valid users = %S" so we switched to "admin users = %S" and all was well.
>> 
>> We only have this on the [homes] shares. And this is also the affected users u*ix home, they can do what ever they want anyway,
>> so it seemed a reasonable risk.
> 
> Well it means they're accessing everything as root.
> Are you *sure* that's a reasonable risk ? :-).
> 


Well, everything in their own home directory. They can log onto their u*ix account and do as they please to that directory anyway.

It's a small group of engineers, they've been doing things this way since the samba 2 days on SunOS as their homes, no issues so far.

It's not ideal, I'll admit. But it worked, until this morning.

What's odd, this:

[dkrause]
	read only = No
	path = /home/towelie/dkrause

works as expected.

this:

[homes]
	read only = No

(logged on as dkrause, and I still get /home/towelie/dkrause)

does not. In this second case, everything is viewable, openable, but not renamable. I can still create new folders and documents, but
cannot rename or save them. Except .txt files.

Thanks!
--
Don Krause

More information about the samba mailing list