[Samba] Users, home directories and profiles

L.P.H. van Belle belle at bazuin.nl
Wed Jul 1 11:27:58 UTC 2020 

PS. This my output. 

Im not that info reading the SSDL outputs.. It might help Rowland in analyzing it. 

O:S-1-22-1-0G:S-1-22-2-0D:AI(A;OICI;0x001f01ff;;;S-1-22-1-0)(A;OICI;0x001f01ff;;;DA)(A;OICI;0x001f01ff;;;SY)(A;OICI;;;;S-1-22-2-0)(A;;;;;S-1-22-2-0)(A;;0x001200a9;;;DU)(A;;0x001200a9;;;AU)(A;;0x001f01ff;;;S-1-22-1-0)(A;;0x001f01ff;;;WD)(A;OICIIO;0x001f01ff;;;CO)(A;OICIIO;;;;CG)(A;OICIIO;;;;WD) 

getfacl /home/samba/users
getfacl: Removing leading '/' from absolute path names
# file: home/samba/users
# owner: root
# group: root
user::rwx
user:root:rwx
group::---
group:root:---
group:2004:r-x
group:2005:rwx
group:domain\040users:r-x
group:domain\040admins:rwx
mask::rwx
other::rwx
default:user::rwx
default:user:root:rwx
default:group::---
default:group:root:---
default:group:2005:rwx
default:group:domain\040admins:rwx
default:mask::rwx
default:other::---

2005 = SYSTEM
2004 = Authenticated Users


Greetz, 

Louis


> -----Oorspronkelijk bericht-----
> Van: samba [mailto:samba-bounces at lists.samba.org] Namens 
> Robi. T. Wagner via samba
> Verzonden: woensdag 1 juli 2020 13:16
> Aan: samba at lists.samba.org
> Onderwerp: Re: [Samba] Users, home directories and profiles
> 
> > root at localhost:~# getfacl /home/samba/users/
> > getfacl: Removing leading '/' from absolute path names
> > # file: home/samba/users/
> > # owner: root
> > # group: root
> > user::rwx
> > group::rwx
> > other::rwx
> 
> > root at localhost:~# samba-tool ntacl get /home/samba/users --as-sddl
> > 
> O:LAG:S-1-22-2-0D:(A;;0x001f01ff;;;LA)(A;;0x001f01ff;;;S-1-22-
> 2-0)(A;;0x001f01ff;;;WD)(A;OICIIO;0x001f01ff;;;CO)(A;OICIIO;0x
> 001200a9;;;CG)(A;OICIIO;0x001200a9;;;WD)
> 
> --------------------------------------------------------------
> ------------------------------------------------------
> Sorry for the bad format....I am fighting to get 
> lists.samba.org into a newsreader without success (bloody 
> Austrian A1 doesn't have a news server anymore and I couldn't 
> find a nntp server with samba lists)
>   
> If you change the file/directory owner to a unix user, 
> windows explorer is crashing immediately in the security tab. 
> The only exception is the user root, because it mapped to 
> Administrator.
> 
> 
> Mani
> -- 
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
> 
>

More information about the samba mailing list