[Samba] Some questions about sharing and permission.

Jason Long hack3rcon at yahoo.com
Fri May 14 14:21:28 UTC 2021 

Thanks.
Can you tell me how can I use "chmod" for it?

I have a "login1" group with below members:

# samba-tool group listmembers login1
user3
user2

I used "setfacl" as below:

# setfacl -R -m g:login1:r share/

And "getfacl" show me:

# getfacl share/
# file: share/
# owner: root
# group: MYDOMAIN\\login2
user::rwx
group::rwx
group:MYDOMAIN\\login1:r--
mask::rwx
other::---


I reloaded the Samba configuration and Logged off and Login Windows client again, but I can't open that share file. Samba logs tell me:

# cat /var/log/samba/192.168.56.8.log 
[2021/05/14 18:38:11.875709,  0] ../../source3/smbd/service.c:167(chdir_current_service)
  chdir_current_service: vfs_ChDir(/home/share) failed: Permission denied. Current token: uid=3000021, gid=100, 9 groups: 3000021 100 3000025 3000014 3000015 3000003 3000016 3000009 3000017
[2021/05/14 18:38:12.093263,  0] ../../source3/smbd/service.c:167(chdir_current_service)
  chdir_current_service: vfs_ChDir(/home/share) failed: Permission denied. Current token: uid=3000021, gid=100, 9 groups: 3000021 100 3000025 3000014 3000015 3000003 3000016 3000009 3000017
[2021/05/14 18:38:12.095973,  0] ../../source3/smbd/service.c:167(chdir_current_service)
  chdir_current_service: vfs_ChDir(/home/share) failed: Permission denied. Current token: uid=3000021, gid=100, 9 groups: 3000021 100 3000025 3000014 3000015 3000003 3000016 3000009 3000017
[2021/05/14 18:38:12.096731,  0] ../../source3/smbd/service.c:167(chdir_current_service)
  chdir_current_service: vfs_ChDir(/home/share) failed: Permission denied. Current token: uid=3000021, gid=100, 9 groups: 3000021 100 3000025 3000014 3000015 3000003 3000016 3000009 3000017
[2021/05/14 18:38:12.097405,  0] ../../source3/smbd/service.c:167(chdir_current_service)
  chdir_current_service: vfs_ChDir(/home/share) failed: Permission denied. Current token: uid=3000021, gid=100, 9 groups: 3000021 100 3000025 3000014 3000015 3000003 3000016 3000009 3000017
[2021/05/14 18:38:12.099042,  0] ../../source3/smbd/service.c:167(chdir_current_service)
  chdir_current_service: vfs_ChDir(/home/share) failed: Permission denied. Current token: uid=3000021, gid=100, 9 groups: 3000021 100 3000025 3000014 3000015 3000003 3000016 3000009 3000017
[2021/05/14 18:38:12.099692,  0] ../../source3/smbd/service.c:167(chdir_current_service)
  chdir_current_service: vfs_ChDir(/home/share) failed: Permission denied. Current token: uid=3000021, gid=100, 9 groups: 3000021 100 3000025 3000014 3000015 3000003 3000016 3000009 3000017
[2021/05/14 18:38:13.430913,  0] ../../source3/smbd/service.c:167(chdir_current_service)
  chdir_current_service: vfs_ChDir(/home/share) failed: Permission denied. Current token: uid=3000021, gid=100, 9 groups: 3000021 100 3000025 3000014 3000015 3000003 3000016 3000009 3000017

Why?






On Friday, May 14, 2021, 05:34:24 PM GMT+4:30, Rowland penny via samba <samba at lists.samba.org> wrote: 





On 14/05/2021 13:57, Jason Long wrote:
> Thank you.
> I can't use "chown"?


Yes and no, for a start I think you mean 'chmod' (chown changes 
ownership) and  'acl_xattr:ignore system acl = yes' means exactly that, 
ignore the normal (ugo) acl's set by chmod.

I am fairly sure that I have said this at least once, forget the old way 
of doing things, you need to learn the AD way of doing things, 
especially if you are using a DC as a fileserver (which is not recommended).


Rowland


-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

More information about the samba mailing list