[Samba] permission issue?
Rowland penny
rpenny at samba.org
Fri Mar 19 09:16:14 UTC 2021
On 19/03/2021 06:28, Maurizio Caloro via samba wrote:
> Hallo
>
> if user "a" create one file in this structure, the other user can
>
> open this file, but arnt possible to overwrite. what i need to
>
> change that all user can overwrite also file.
>
> regards
>
> Mauri
>
>
> Samba AD Server Version 4.13.2
>
> Samba Server with Share Version 4.9.5-Debian
>
>
>
> # For ACL support on domain member
>
> vfs objects = acl_xattr
>
> map acl inherit = Yes
>
> store dos attributes = Yes
>
>
>
> [DATA]
>
> path = /shares/data
>
> writable = yes
>
> read only = no
You do not need both of those lines, if something is set 'read only =
no' it is 'writable'
>
> force create mode = 0600
>
> force directory mode = 0700
Do not use those lines, set the permissions from Windows, see here:
https://wiki.samba.org/index.php/Setting_up_a_Share_Using_Windows_ACLs
>
>
>
>
>
> Domain User = all user that are allowed to write.
>
> smbadmin = domainadmin for Backup
>
>
>
> "shares/data"
>
> drwxrwxrwx 3 smbadmin domain users 4096 Mar 19 06:53 Bk-12
>
> drwxrwxrwx 3 smbadmin domain users 4096 Mar 19 06:53 Bk-13
>
> drwxrwxrwx 3 smbadmin domain users 4096 Mar 19 06:53 Bk-14
Those show that you are relying on Unix acl's (ugo), this isn't enough.
Rowland
More information about the samba
mailing list