On 01/09/2010 05:06 AM, Corinna Vinschen wrote: > On Jan 9 01:00, Raman Gupta wrote: >> Reference this mailing list discussion back in 2000: >> >> http://sources.redhat.com/ml/cygwin/2000-12/msg00546.html >> >> It appears this discussion is actually what led Corinna to add the >> smbntsec mount option. The issues are summarized well in this mail >> from Charles Wilson: >> >> http://sources.redhat.com/ml/cygwin/2000-12/msg00756.html > > The problems are mostely fixed. I'm using this setting for a long > while now. The ownership is the one of the UNIX user and group, > but that doesn't change the fact that you can read and change the > permissions. You can even fetch the user and groups from the Samba > server using mkpasswd and mkgroup. Looks like this in my environment: > > $ mkpasswd -L calimero -S_ -U root,corinna > Unix User_root:unused:10000:99999:,S-1-22-1-0:: > Unix User_corinna:unused:10500:99999:,S-1-22-1-500:: > > $ mkgroup -L calimero -S_ -U root,users > Unix Group_root:S-1-22-2-0:10000: > Unix Group_users:S-1-22-2-100:10100:
I've tried this but I get, for example, permission denied when trying to change permissions on files. Here is an example: $ ls -l -rw-r--r-- 1 Unix User_root Unix Group_agroup 0 2010-01-09 09:54 bar -rw-r--r-- 1 SERVER_raman Unix Group_agroup 0 2010-01-09 09:50 foo $ id uid=1004(Raman Gupta) gid=513(None) groups=0(root),544(Administrators),545(Users),513(None) $ chmod 444 foo chmod: changing permissions of `foo': Permission denied One thing I'm not certain about is why mkpasswd returns my username twice, once with a "Unix User" prefix and once with "SERVER" prefix -- I note your example does not do that: $ mkpasswd -L server -S_ -U root,raman Unix User_root:unused:10000:99999:,S-1-22-1-0:: Unix User_raman:unused:10500:99999:,S-1-22-1-500:: SERVER_raman:unused:11000:10513:Raman Gupta,U-SERVER\raman,S-1-5-21-903485053-2526882046-1379677160-1000://server/raman:/bin/bash I also note that the file ownership is shown with the "SERVER" prefix and not the "Unix User" prefix -- perhaps that is the problem with chmod? Lastly, note I am using WinXP Home edition -- which has limited user admin/acl features. For example, the Security tab in file properties is missing (though I can add that via a download from Microsoft). But it seems to have limited ability to add users to groups and so forth, so the Security tab seems to have marginal value anyway. Cheers, Raman -- Problem reports: http://cygwin.com/problems.html FAQ: http://cygwin.com/faq/ Documentation: http://cygwin.com/docs.html Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple