[Samba] permission issues between 3.4.0 & 3.0.3?
In addition to my original post: http://lists.samba.org/archive/samba/2010-May/155924.html In the server side (windows 2k3) with a share "share1" and the following dir structure: c://share1/dir1/dir2/target c:/share1: sharing tab= test_user can read/write; permission tab: test_user has all but full control; dir1/dir2: none of them have any permision to the test_user directly or inherited. target: test_user can read/write ... (all but full control). I tested the same with CentOS 3.X, 4.x, 5.x (none of them could list the share nor create new files) And with Ubuntu 8.04, 9.10, 10.?: with Ubuntu 8.04 can't read the share, but on 9.10 yes. I want to get this working on CentOS, but I still don't know which component has the bug/contraint/missing feature. Maybe samba? samba-client? cifs kernel module? kernel version? I need to identify which component is causing this behaviour in order to patch/upgrade it in a CentOS 4.8. Thanks. -- 3rd Law of Computing: Anything that can go wrSegmentation fault -- core dumped. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Permission issues
Last weekend I changed over to our new file server running Debian Lenny 64Bit Samba version 3.2.5... all seemed to work fine but we are getting the occasional file that ends up with permissions like -r--rwx--- ie the owning user has no write permission. Ive been unable to replicate but am told they are not new files. they seem to all be MS Office documents and the users just get access denied when they try and save the file. Not sure why this is happening but will post more info if I figure out more. Following is an extract of part of my samba config Ive only included the accounts share but its happening on several. [global] load printers = no security = ads workgroup = *** server string = File Store realm = * password server = *** wins server = ** dns proxy = no log file = /var/log/samba/log.%m max log size = 100 log level = 0 panic action = /usr/share/samba/panic-action %d encrypt passwords = true idmap backend = ad passdb backend = tdbsam idmap uid = 100-9 idmap gid = 100-9 winbind cache time = 300 winbind nss info = rfc2307 winbind enum groups = yes winbind enum users = yes winbind use default domain = yes winbind separator = / winbind nested groups = yes template homedir = /home/%U/homedir template shell = /bin/bash debug uid = yes obey pam restrictions = yes idmap alloc backend = tdb idmap alloc config:range = 9-10 [Accounts] comment = Accounts Stuff path = /filestore/accounts guest ok = no browseable = yes valid users = @accounts group writable = yes force create mode = 0660 force directory mode = 0770 fstype = EXT3 hide unreadable = yes dos filemode = yes acl map full control = yes -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] permission issues between 3.4.0 & 3.0.3?
Hi all!! I'm experimenting a set of problems when trying to connect Samba client to windows. I don't have admin rights on the windows side, so I should trust all my winSA admin is telling me. Windows side (server): In the server Side (win2k3), the SA defined a shared resource. The share-permissions tab the "domain users" group has typical permissions, and in the security permissions tab the "domain users" has "read & exec", "show" and "read". In the server the structure is \\w2k3server\share1\dir1\dir2\target the "share" resource maps to c:\share, with the permissions described above. Both folders dir1 and dir2 haven't any permissions to the user I'm using to connect (test-user) "Target" folder has permissions to allow test-user to read, list, write, modify ... all but full control. Linux side (clients) First try with CentOS 4.7 -includes samba 3.0.X-. mount -t cifs //w2k3server/share1 /mnt/smb cd /mnt/smb ls -> OK cd dir1/dir2/target -> "dir1" doens't exists for this client same behaviour if mounting directly as: mount -t cifs //w2k3server/share1/dir1/dir2/target /mnt/smb cd /mnt/smb ls -> "." doesn't exist Second try with Ubuntu -samba 3.4.0- mount -t cifs //w2k3server/share1/dir1/dir2/target /mnt/smb cd /mnt/smb ls -> works fine > testfile1.txt -> works fine But I should use the CentOS box, so I compiled from sources the RPM of 3.4.0, 3.4.1, 3.4.8 ... same results with 3 versions -> identical as the first try. I can't figure out what is failing here, the "bug" is still live with CentOS + samba-common/samba-client 3.4.X, while works properly with Ubuntu + samba-common/client 3.4.0. Should I upgrade the kernel "cifs" module or other component? Any clue will be appreciatted. Thanks. -- 3rd Law of Computing: Anything that can go wrSegmentation fault -- core dumped. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Permission Issues - Email found in subject - Email found in subject - Email found in subject - Email found in subject
Hi, Anyone?, please help!! Thanks, Shaun -- Shaun Martin Systems Administrator Akaza Research smar...@akazaresearch.com www.akazaresearch.com <http://www.akazaresearch.com/> www.openclinica.org <http://www.openclinica.org/> Open Source Platform for Clinical Research > From: Shaun Martin > Date: Wed, 26 Aug 2009 09:12:33 -0400 > To: Jeremy Allison > Cc: > Subject: Re: [Samba] Permission Issues - Email found in subject - Email found > in subject - Email found in subject - Email found in subject > > Hi All, > > Ok I think I have isolated the problem a little more. I did not know the > user in question was using a MAC as she is a remote user I have never seen. > It seems this issue is only happening with MAC's I did not think that could > happen as she is still using the smb protocol. Below is a dir listing of > newly created dir's from win, linux and mac clients all using the smb > protocol. > > drwxrwxr-x 2 bbaumann isovera 48 2009-08-26 09:07 ben --windows > drwxrwxr-x 2 crusso isovera 48 2009-08-26 09:07 chris---linux (ubunutu) > drwxr-xr-x 2 efogel isovera 48 2009-08-26 09:08 erin ---MAC (Newest > Version) > > As you can see the only one not respecting my config of a 775 dir is the mac > client. Has anyone seen this before? Any help is greatly appreciated. > > Thanks, > Shaun > > -- > Shaun Martin > Systems Administrator > Akaza Research > smar...@akazaresearch.com > www.akazaresearch.com <http://www.akazaresearch.com/> > www.openclinica.org <http://www.openclinica.org/> > Open Source Platform for Clinical Research > > >> From: Jeremy Allison >> Reply-To: Jeremy Allison >> Date: Tue, 18 Aug 2009 11:55:03 -0700 >> To: Shaun Martin >> Cc: Adam Williams , >> Subject: Re: [Samba] Permission Issues - Email found in subject - Email found >> in subject - Email found in subject >> >> On Tue, Aug 18, 2009 at 11:38:21AM -0400, Shaun Martin wrote: >>> Hi, >>> >>> Thank you for noticting that, although it did not fix my issue. My current >>> config is below. And below that is ls lah on the new directories I made >>> after I killed and restarted samba. PLEASE HELP :) >>> >>> [shared] >>> delete readonly = yes >>> writeable = yes >>> path = /shared >>> force directory mode = 0775 >>> force create mode = 0775 >>> comment = Shared Files >>> public = no >>> create mask = 0775 >>> directory mask = 0775 >>> force directory security mask = 0775 >>> directory security mask = 0775 >>> force security mode = 0775 >>> security mask = 0775 >>> browseable = yes >>> >>> I created both shaun and the sub-directory new. Still has 755 permissions. I >>> want 775 permissions. >>> >>> root# ls -lah |grep shaun >>> drwxr-xr-x 2 smartin akaza 48 2009-08-18 11:35 shaun >>> root# ls -lah shaun/ >>> total 1.0K >>> drwxr-xr-x 3 smartin akaza 72 2009-08-18 11:35 . >>> drwxrwx--- 21 smartin isovera 1.3K 2009-08-18 11:35 .. >>> drwxr-xr-x 2 smartin akaza 48 2009-08-18 11:35 new >> >> I just tested this using the latest released 3.4.0 code >> and it works fine. I suggest you upgrade to the latest >> version from 3.2.0. >> >> Jeremy. > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > rg/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Permission Issues - Email found in subject - Email found in subject - Email found in subject
Hi All, Ok I think I have isolated the problem a little more. I did not know the user in question was using a MAC as she is a remote user I have never seen. It seems this issue is only happening with MAC's I did not think that could happen as she is still using the smb protocol. Below is a dir listing of newly created dir's from win, linux and mac clients all using the smb protocol. drwxrwxr-x 2 bbaumann isovera 48 2009-08-26 09:07 ben --windows drwxrwxr-x 2 crusso isovera 48 2009-08-26 09:07 chris---linux (ubunutu) drwxr-xr-x 2 efogel isovera 48 2009-08-26 09:08 erin ---MAC (Newest Version) As you can see the only one not respecting my config of a 775 dir is the mac client. Has anyone seen this before? Any help is greatly appreciated. Thanks, Shaun -- Shaun Martin Systems Administrator Akaza Research smar...@akazaresearch.com www.akazaresearch.com <http://www.akazaresearch.com/> www.openclinica.org <http://www.openclinica.org/> Open Source Platform for Clinical Research > From: Jeremy Allison > Reply-To: Jeremy Allison > Date: Tue, 18 Aug 2009 11:55:03 -0700 > To: Shaun Martin > Cc: Adam Williams , > Subject: Re: [Samba] Permission Issues - Email found in subject - Email found > in subject - Email found in subject > > On Tue, Aug 18, 2009 at 11:38:21AM -0400, Shaun Martin wrote: >> Hi, >> >> Thank you for noticting that, although it did not fix my issue. My current >> config is below. And below that is ls lah on the new directories I made >> after I killed and restarted samba. PLEASE HELP :) >> >> [shared] >> delete readonly = yes >> writeable = yes >> path = /shared >> force directory mode = 0775 >> force create mode = 0775 >> comment = Shared Files >> public = no >> create mask = 0775 >> directory mask = 0775 >> force directory security mask = 0775 >> directory security mask = 0775 >> force security mode = 0775 >> security mask = 0775 >> browseable = yes >> >> I created both shaun and the sub-directory new. Still has 755 permissions. I >> want 775 permissions. >> >> root# ls -lah |grep shaun >> drwxr-xr-x 2 smartin akaza 48 2009-08-18 11:35 shaun >> root# ls -lah shaun/ >> total 1.0K >> drwxr-xr-x 3 smartin akaza 72 2009-08-18 11:35 . >> drwxrwx--- 21 smartin isovera 1.3K 2009-08-18 11:35 .. >> drwxr-xr-x 2 smartin akaza 48 2009-08-18 11:35 new > > I just tested this using the latest released 3.4.0 code > and it works fine. I suggest you upgrade to the latest > version from 3.2.0. > > Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Permission Issues - Email found in subject - Email found in subject - Email found in subject
On Tue, Aug 18, 2009 at 11:38:21AM -0400, Shaun Martin wrote: > Hi, > > Thank you for noticting that, although it did not fix my issue. My current > config is below. And below that is ls lah on the new directories I made > after I killed and restarted samba. PLEASE HELP :) > > [shared] > delete readonly = yes > writeable = yes > path = /shared > force directory mode = 0775 > force create mode = 0775 > comment = Shared Files > public = no > create mask = 0775 > directory mask = 0775 > force directory security mask = 0775 > directory security mask = 0775 > force security mode = 0775 > security mask = 0775 > browseable = yes > > I created both shaun and the sub-directory new. Still has 755 permissions. I > want 775 permissions. > > root# ls -lah |grep shaun > drwxr-xr-x 2 smartin akaza 48 2009-08-18 11:35 shaun > root# ls -lah shaun/ > total 1.0K > drwxr-xr-x 3 smartin akaza 72 2009-08-18 11:35 . > drwxrwx--- 21 smartin isovera 1.3K 2009-08-18 11:35 .. > drwxr-xr-x 2 smartin akaza 48 2009-08-18 11:35 new I just tested this using the latest released 3.4.0 code and it works fine. I suggest you upgrade to the latest version from 3.2.0. Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Permission Issues - Email found in subject - Email found in subject - Email found in subject
i dunno, here's what I have on a share on my server and it works, i'm doing 777 however. [exec] path = /samba/executive force directory mode = 0777 browseable = Yes create mask = 0777 force create mode = 0777 directory mask = 0777 writeable = Yes force group = @ADMIN\executive inherit permissions = yes valid users = @executive write list = @ADMIN\executive csc policy = disable nt acl support = no force security mode = 777 msdfs root = yes Shaun Martin wrote: Hi, Thank you for noticting that, although it did not fix my issue. My current config is below. And below that is ls --lah on the new directories I made after I killed and restarted samba. PLEASE HELP :) [shared] delete readonly = yes writeable = yes path = /shared force directory mode = 0775 force create mode = 0775 comment = Shared Files public = no create mask = 0775 directory mask = 0775 force directory security mask = 0775 directory security mask = 0775 force security mode = 0775 security mask = 0775 browseable = yes I created both shaun and the sub-directory new. Still has 755 permissions. I want 775 permissions. root# ls -lah |grep shaun drwxr-xr-x 2 smartin akaza 48 2009-08-18 11:35 shaun root# ls -lah shaun/ total 1.0K drwxr-xr-x 3 smartin akaza 72 2009-08-18 11:35 . drwxrwx--- 21 smartin isovera 1.3K 2009-08-18 11:35 .. drwxr-xr-x 2 smartin akaza 48 2009-08-18 11:35 new Thanks, Shaun *From: *Adam Williams *Date: *Tue, 18 Aug 2009 09:28:02 -0500 *To: *Shaun Martin *Cc: * *Subject: *Re: [Samba] Permission Issues - Email found in subject - Email found in subject - Email found in subject did you notice you still have: security mask = 0755 shouldn't that be 0775? Shaun Martin wrote: Hi All, Anyone know why I am getting this issue? Thanks, Shaun From: Shaun Martin <mailto:smar...@akazaresearch.com> Date: Mon, 17 Aug 2009 09:14:40 -0400 To: Jeremy Allison <mailto:j...@samba.org> Cc: <mailto:samba@lists.samba.org> Subject: Re: [Samba] Permission Issues - Email found in subject - Email found in subject Hi All, Here is the version number. r...@akaza-fs:/usr/local/samba/sbin# ./smbd --version Version 3.2.0 r...@akaza-fs:/usr/local/samba/sbin# ./nmbd --version Version 3.2.0 Thanks, Shaun From: Jeremy Allison <mailto:j...@samba.org> Reply-To: Jeremy Allison <mailto:j...@samba.org> Date: Fri, 14 Aug 2009 14:46:57 -0700 To: Shaun Martin <mailto:smar...@akazaresearch.com> Cc: <mailto:samba@lists.samba.org> Subject: Re: [Samba] Permission Issues - Email found in subject On Fri, Aug 14, 2009 at 04:22:22PM -0400, Shaun Martin wrote: Hi All, I am trying to achieve something pretty simple. I have a samba share and I would like all new directories and files within that share to have 775 permissions. My config for that share is below. Whenever I create a dir I get 755 permissions. I have set every force permission their is. Both configs below produced the same directory. I feel like this should be very easy and my settings are correct. I have been managing samba server for years and have never run into this issue before. PLEASE HELP!! Thanks, Shaun ls of newly created dir drwxr-xr-x 2 smartin akaza 48 2009-08-14 16:15 shaun Orig Config: delete readonly = yes writeable = yes path = /shared force directory mode = 0775 force create mode = 0775 comment = Shared Files public = no create mask = 0775 directory mask = 0775 browseable = yes Crazy Config setting every force option: delete readonly = yes writeable = yes path = /shared force directory mode = 0775 force create mode = 0775 comment = Shared Files public = no create mask = 0775 directory mask = 0775 force directory security mask = 0775 directory secur
Re: [Samba] Permission Issues - Email found in subject - Email found in subject - Email found in subject
Hi, Thank you for noticting that, although it did not fix my issue. My current config is below. And below that is ls lah on the new directories I made after I killed and restarted samba. PLEASE HELP :) [shared] delete readonly = yes writeable = yes path = /shared force directory mode = 0775 force create mode = 0775 comment = Shared Files public = no create mask = 0775 directory mask = 0775 force directory security mask = 0775 directory security mask = 0775 force security mode = 0775 security mask = 0775 browseable = yes I created both shaun and the sub-directory new. Still has 755 permissions. I want 775 permissions. root# ls -lah |grep shaun drwxr-xr-x 2 smartin akaza 48 2009-08-18 11:35 shaun root# ls -lah shaun/ total 1.0K drwxr-xr-x 3 smartin akaza 72 2009-08-18 11:35 . drwxrwx--- 21 smartin isovera 1.3K 2009-08-18 11:35 .. drwxr-xr-x 2 smartin akaza 48 2009-08-18 11:35 new Thanks, Shaun From: Adam Williams Date: Tue, 18 Aug 2009 09:28:02 -0500 To: Shaun Martin Cc: Subject: Re: [Samba] Permission Issues - Email found in subject - Email found in subject - Email found in subject did you notice you still have: security mask = 0755 shouldn't that be 0775? Shaun Martin wrote: > > Hi All, > > Anyone know why I am getting this issue? > > Thanks, > Shaun > > > > >> >> From: Shaun Martin >> <mailto:smar...@akazaresearch.com> >> Date: Mon, 17 Aug 2009 09:14:40 -0400 >> To: Jeremy Allison <mailto:j...@samba.org> >> Cc: <mailto:samba@lists.samba.org> >> Subject: Re: [Samba] Permission Issues - Email found in subject - Email found >> in subject >> >> Hi All, >> >> Here is the version number. >> >> r...@akaza-fs:/usr/local/samba/sbin# ./smbd --version >> Version 3.2.0 >> r...@akaza-fs:/usr/local/samba/sbin# ./nmbd --version >> Version 3.2.0 >> >> Thanks, >> Shaun >> >> >> >> >> >>> >>> From: Jeremy Allison <mailto:j...@samba.org> >>> Reply-To: Jeremy Allison <mailto:j...@samba.org> >>> Date: Fri, 14 Aug 2009 14:46:57 -0700 >>> To: Shaun Martin >>> <mailto:smar...@akazaresearch.com> >>> Cc: <mailto:samba@lists.samba.org> >>> Subject: Re: [Samba] Permission Issues - Email found in subject >>> >>> On Fri, Aug 14, 2009 at 04:22:22PM -0400, Shaun Martin wrote: >>> >>> >>>> >>>> Hi All, >>>> >>>> I am trying to achieve something pretty simple. I have a samba share and I >>>> would like all new directories and files within that share to have 775 >>>> permissions. My config for that share is below. Whenever I create a dir I >>>> get 755 permissions. I have set every force permission their is. Both >>>> configs below produced the same directory. I feel like this should be very >>>> easy and my settings are correct. I have been managing samba server for >>>> years and have never run into this issue before. PLEASE HELP!! >>>> >>>> Thanks, >>>> Shaun >>>> >>>> ls of newly created dir >>>> drwxr-xr-x 2 smartin akaza 48 2009-08-14 16:15 shaun >>>> >>>> >>>> Orig Config: >>>> >>>> delete readonly = yes >>>> writeable = yes >>>> path = /shared >>>> force directory mode = 0775 >>>> force create mode = 0775 >>>> comment = Shared Files >>>> public = no >>>> create mask = 0775 >>>> directory mask = 0775 >>>> browseable = yes >>>> >>>> Crazy Config setting every force option: >>>> >>>> delete readonly = yes >>>> writeable = yes >>>> path = /shared >>>> force directory mode = 0775 >>>> force create mode = 0775 >>>> comment = Shared Files >>>> public = no >>>> create mask = 0775 >>>> directory mask = 0775 >>>> force directory security mask = 0775 >>>> directory security mask = 0775 >>>> force security mode = 775 >>>> security mask = 0755 >>>> browseable = yes >>>> >>>> >>> >>> That should work. What version of Samba ? >>> >>> Jeremy. >>> >>> >> >> -- >> To unsubscribe from this list go to the following URL and read the >> instructions: https://lists.samba.org/mailman/options/samba >> >> > > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Permission Issues - Email found in subject - Email found in subject
did you notice you still have: security mask = 0755 shouldn't that be 0775? Shaun Martin wrote: Hi All, Anyone know why I am getting this issue? Thanks, Shaun From: Shaun Martin Date: Mon, 17 Aug 2009 09:14:40 -0400 To: Jeremy Allison Cc: Subject: Re: [Samba] Permission Issues - Email found in subject - Email found in subject Hi All, Here is the version number. r...@akaza-fs:/usr/local/samba/sbin# ./smbd --version Version 3.2.0 r...@akaza-fs:/usr/local/samba/sbin# ./nmbd --version Version 3.2.0 Thanks, Shaun From: Jeremy Allison Reply-To: Jeremy Allison Date: Fri, 14 Aug 2009 14:46:57 -0700 To: Shaun Martin Cc: Subject: Re: [Samba] Permission Issues - Email found in subject On Fri, Aug 14, 2009 at 04:22:22PM -0400, Shaun Martin wrote: Hi All, I am trying to achieve something pretty simple. I have a samba share and I would like all new directories and files within that share to have 775 permissions. My config for that share is below. Whenever I create a dir I get 755 permissions. I have set every force permission their is. Both configs below produced the same directory. I feel like this should be very easy and my settings are correct. I have been managing samba server for years and have never run into this issue before. PLEASE HELP!! Thanks, Shaun ls of newly created dir drwxr-xr-x 2 smartin akaza 48 2009-08-14 16:15 shaun Orig Config: delete readonly = yes writeable = yes path = /shared force directory mode = 0775 force create mode = 0775 comment = Shared Files public = no create mask = 0775 directory mask = 0775 browseable = yes Crazy Config setting every force option: delete readonly = yes writeable = yes path = /shared force directory mode = 0775 force create mode = 0775 comment = Shared Files public = no create mask = 0775 directory mask = 0775 force directory security mask = 0775 directory security mask = 0775 force security mode = 775 security mask = 0755 browseable = yes That should work. What version of Samba ? Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Permission Issues - Email found in subject - Email found in subject
Hi All, Anyone know why I am getting this issue? Thanks, Shaun > From: Shaun Martin > Date: Mon, 17 Aug 2009 09:14:40 -0400 > To: Jeremy Allison > Cc: > Subject: Re: [Samba] Permission Issues - Email found in subject - Email found > in subject > > Hi All, > > Here is the version number. > > r...@akaza-fs:/usr/local/samba/sbin# ./smbd --version > Version 3.2.0 > r...@akaza-fs:/usr/local/samba/sbin# ./nmbd --version > Version 3.2.0 > > Thanks, > Shaun > > > >> From: Jeremy Allison >> Reply-To: Jeremy Allison >> Date: Fri, 14 Aug 2009 14:46:57 -0700 >> To: Shaun Martin >> Cc: >> Subject: Re: [Samba] Permission Issues - Email found in subject >> >> On Fri, Aug 14, 2009 at 04:22:22PM -0400, Shaun Martin wrote: >>> Hi All, >>> >>> I am trying to achieve something pretty simple. I have a samba share and I >>> would like all new directories and files within that share to have 775 >>> permissions. My config for that share is below. Whenever I create a dir I >>> get 755 permissions. I have set every force permission their is. Both >>> configs below produced the same directory. I feel like this should be very >>> easy and my settings are correct. I have been managing samba server for >>> years and have never run into this issue before. PLEASE HELP!! >>> >>> Thanks, >>> Shaun >>> >>> ls of newly created dir >>> drwxr-xr-x 2 smartin akaza 48 2009-08-14 16:15 shaun >>> >>> >>> Orig Config: >>> >>> delete readonly = yes >>> writeable = yes >>> path = /shared >>> force directory mode = 0775 >>> force create mode = 0775 >>> comment = Shared Files >>> public = no >>> create mask = 0775 >>> directory mask = 0775 >>> browseable = yes >>> >>> Crazy Config setting every force option: >>> >>> delete readonly = yes >>> writeable = yes >>> path = /shared >>> force directory mode = 0775 >>> force create mode = 0775 >>> comment = Shared Files >>> public = no >>> create mask = 0775 >>> directory mask = 0775 >>> force directory security mask = 0775 >>> directory security mask = 0775 >>> force security mode = 775 >>> security mask = 0755 >>> browseable = yes >> >> That should work. What version of Samba ? >> >> Jeremy. > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Permission Issues - Email found in subject
Hi All, Here is the version number. r...@akaza-fs:/usr/local/samba/sbin# ./smbd --version Version 3.2.0 r...@akaza-fs:/usr/local/samba/sbin# ./nmbd --version Version 3.2.0 Thanks, Shaun > From: Jeremy Allison > Reply-To: Jeremy Allison > Date: Fri, 14 Aug 2009 14:46:57 -0700 > To: Shaun Martin > Cc: > Subject: Re: [Samba] Permission Issues - Email found in subject > > On Fri, Aug 14, 2009 at 04:22:22PM -0400, Shaun Martin wrote: >> Hi All, >> >> I am trying to achieve something pretty simple. I have a samba share and I >> would like all new directories and files within that share to have 775 >> permissions. My config for that share is below. Whenever I create a dir I >> get 755 permissions. I have set every force permission their is. Both >> configs below produced the same directory. I feel like this should be very >> easy and my settings are correct. I have been managing samba server for >> years and have never run into this issue before. PLEASE HELP!! >> >> Thanks, >> Shaun >> >> ls of newly created dir >> drwxr-xr-x 2 smartin akaza 48 2009-08-14 16:15 shaun >> >> >> Orig Config: >> >> delete readonly = yes >> writeable = yes >> path = /shared >> force directory mode = 0775 >> force create mode = 0775 >> comment = Shared Files >> public = no >> create mask = 0775 >> directory mask = 0775 >> browseable = yes >> >> Crazy Config setting every force option: >> >> delete readonly = yes >> writeable = yes >> path = /shared >> force directory mode = 0775 >> force create mode = 0775 >> comment = Shared Files >> public = no >> create mask = 0775 >> directory mask = 0775 >> force directory security mask = 0775 >> directory security mask = 0775 >> force security mode = 775 >> security mask = 0755 >> browseable = yes > > That should work. What version of Samba ? > > Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Permission Issues
On Fri, Aug 14, 2009 at 04:22:22PM -0400, Shaun Martin wrote: > Hi All, > > I am trying to achieve something pretty simple. I have a samba share and I > would like all new directories and files within that share to have 775 > permissions. My config for that share is below. Whenever I create a dir I > get 755 permissions. I have set every force permission their is. Both > configs below produced the same directory. I feel like this should be very > easy and my settings are correct. I have been managing samba server for > years and have never run into this issue before. PLEASE HELP!! > > Thanks, > Shaun > > ls of newly created dir > drwxr-xr-x 2 smartin akaza 48 2009-08-14 16:15 shaun > > > Orig Config: > > delete readonly = yes > writeable = yes > path = /shared > force directory mode = 0775 > force create mode = 0775 > comment = Shared Files > public = no > create mask = 0775 > directory mask = 0775 > browseable = yes > > Crazy Config setting every force option: > > delete readonly = yes > writeable = yes > path = /shared > force directory mode = 0775 > force create mode = 0775 > comment = Shared Files > public = no > create mask = 0775 > directory mask = 0775 > force directory security mask = 0775 > directory security mask = 0775 > force security mode = 775 > security mask = 0755 > browseable = yes That should work. What version of Samba ? Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Permission Issues
Hi All, I am trying to achieve something pretty simple. I have a samba share and I would like all new directories and files within that share to have 775 permissions. My config for that share is below. Whenever I create a dir I get 755 permissions. I have set every force permission their is. Both configs below produced the same directory. I feel like this should be very easy and my settings are correct. I have been managing samba server for years and have never run into this issue before. PLEASE HELP!! Thanks, Shaun ls of newly created dir drwxr-xr-x 2 smartin akaza 48 2009-08-14 16:15 shaun Orig Config: delete readonly = yes writeable = yes path = /shared force directory mode = 0775 force create mode = 0775 comment = Shared Files public = no create mask = 0775 directory mask = 0775 browseable = yes Crazy Config setting every force option: delete readonly = yes writeable = yes path = /shared force directory mode = 0775 force create mode = 0775 comment = Shared Files public = no create mask = 0775 directory mask = 0775 force directory security mask = 0775 directory security mask = 0775 force security mode = 775 security mask = 0755 browseable = yes -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Permission Issues
Hi, Not to sound jonny come lately, but you should have security = user as accounts in passwd as well as smbpasswd. With the appropriate uid/giu and force create statements, you will have an elegant security solution. I havn't messed with ACL feature in Samba yet but I understand its also elegant. It takes some work but in the long run you will be happy. Bri- PS I can supply you with a sample .conf if you like to get this going. __ Do you Yahoo!? Yahoo! Web Hosting - establish your business online http://webhosting.yahoo.com -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Permission Issues
Thank You ... that worked but I still have a problem with the file permission being 777 to access the mount points security = share. If I change this to user will that mean I have to create an account for everyone who uses it ans well as do smbpasswd? thanks for your help --- [EMAIL PROTECTED] wrote: > use 'force user = ', or 'force group = > > Also check the 'create mask' and 'directory mask' > parameters. > > Ries > > Citeren Ben Bays <[EMAIL PROTECTED]>: > > > Hi All, > > Files that I create from win are assigned user > nobody > > how can I change that to a valid unix name .. > Thanks > > > > --- Ben Bays <[EMAIL PROTECTED]> wrote: > > > Hi All, > > > I set up a samba server to talk to various wint > NT > > > clients so they can access data off the serever. > its > > > a > > > Solaris 8 server.As you can see from the > smb.conf > > > below I have Security = share but the only way > to > > > access it is to make the share " wide open 777" > and > > > that is not good. > > > > > > > > > > > > Any advice ass to what I can change. > > > Thank You from newbie Ben > > > > > > # Global parameters > > > [global] > > > coding system = > > > client code page = 850 > > > code page directory = > > > /usr/local/samba/lib/codepages > > > workgroup = DAVE > > > netbios name = LANCELOT > > > netbios aliases = > > > netbios scope = > > > server string = Lancelot Samba Server > > > interfaces = > > > bind interfaces only = No > > > security = SHARE > > > encrypt passwords = Yes > > > update encrypted = No > > > allow trusted domains = Yes > > > hosts equiv = > > > min passwd length = 5 > > > map to guest = Never > > > null passwords = No > > > obey pam restrictions = No > > > password server = lancelot > > > smb passwd file = > > > /usr/local/samba/private/smbpasswd > > > root directory = > > > pam password change = No > > > passwd program = /usr/bin/passwd > > > > > > passwd chat = *new*password* %n\n > *new*password* > > > %n\n > > > *changed* > > > passwd chat debug = No > > > username map = > > > password level = 0 > > > username level = 0 > > > unix password sync = No > > > restrict anonymous = Yes > > > lanman auth = Yes > > > use rhosts = No > > > admin log = No > > > log level = 0 > > > syslog = 1 > > > syslog only = No > > > log file = /var/log/samba.log > > > max log size = 50 > > > timestamp logs = Yes > > > debug hires timestamp = No > > > debug pid = No > > > debug uid = No > > > protocol = NT1 > > > large readwrite = Yes > > > max protocol = NT1 > > > min protocol read bmpx = No > > > read raw = Yes > > > write raw = Yes > > > nt smb support = Yes > > > nt pipe support = Yes > > > nt status support = Yes > > > announce version = 4.9 > > > announce as = NT > > > max mux = 50 > > > max xmit = 16644 > > > name resolve order = lmhosts host wins > bcast > > > max ttl = 259200 > > > max wins ttl = 518400 > > > min wins ttl = 21600 > > > time server = No > > > unix extensions = No > > > change notify timeout = 60 > > > deadtime = 0 > > > getwd cache = Yes > > > keepalive = 300 > > > lpq cache time = 10 > > > max smbd processes = 0 > > > max disk size = 0 > > > max open files = 1 > > > name cache timeout = 660 > > > read size = 16384 > > > socket options = TCP_NODELAY > > > stat cache size = 50 > > > use mmap = Yes > > > total print jobs = 0 > > > load printers = Yes > > > printcap name = lpstat > > > disable spoolss = No > > > enumports command = > > > addprinter command = > > > deleteprinter command = > > > show add printer wizard = Yes > > > os2 driver map = > > > strip dot = No > > > mangling method = hash > > > character set = > > > mangled stack = 50 > > > stat cache = Yes > > > domain admin group = > > > domain guest group = > > > machine password timeout = 604800 > > > add user script = > > > delete user script = > > > logon script = > > > logon path = \\%N\%U\profile > > > logon drive = > > > logon home = \\%N\%U > > > domain logons = No > > > os level = 0 > > > lm announce = Auto > > > lm interval = 60 > > > preferred master = Auto > > > local master = No > > > domain master = No > > > browse list = Yes > > > enhanced browsing = Yes > > > dns proxy =
RE: [Samba] Permission Issues
> Hi All, > Files that I create from win are assigned user nobody > how can I change that to a valid unix name .. Thanks On most systems, nobody is a perfectly valid unix name Does $ id nobody return a uid/gid? Or does it say no such user? You probably want to do a man smb.conf, and from there type /SECURITY followed by enter. That'll get you to the part explaining SECURITY = SHARE, which should be beneficial for you. ~ Daniel --- This message is the property of Time Inc. or its affiliates. It may be legally privileged and/or confidential and is intended only for the use of the addressee(s). No addressee should forward, print, copy, or otherwise reproduce this message in any manner that would allow it to be viewed by any individual not originally listed as a recipient. If the reader of this message is not the intended recipient, you are hereby notified that any unauthorized disclosure, dissemination, distribution, copying or the taking of any action in reliance on the information herein is strictly prohibited. If you have received this communication in error, please immediately notify the sender and delete this message. Thank you. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Permission Issues
Hi All, Files that I create from win are assigned user nobody how can I change that to a valid unix name .. Thanks --- Ben Bays <[EMAIL PROTECTED]> wrote: > Hi All, > I set up a samba server to talk to various wint NT > clients so they can access data off the serever. its > a > Solaris 8 server.As you can see from the smb.conf > below I have Security = share but the only way to > access it is to make the share " wide open 777" and > that is not good. > > > > Any advice ass to what I can change. > Thank You from newbie Ben > > # Global parameters > [global] > coding system = > client code page = 850 > code page directory = > /usr/local/samba/lib/codepages > workgroup = DAVE > netbios name = LANCELOT > netbios aliases = > netbios scope = > server string = Lancelot Samba Server > interfaces = > bind interfaces only = No > security = SHARE > encrypt passwords = Yes > update encrypted = No > allow trusted domains = Yes > hosts equiv = > min passwd length = 5 > map to guest = Never > null passwords = No > obey pam restrictions = No > password server = lancelot > smb passwd file = > /usr/local/samba/private/smbpasswd > root directory = > pam password change = No > passwd program = /usr/bin/passwd > > passwd chat = *new*password* %n\n *new*password* > %n\n > *changed* > passwd chat debug = No > username map = > password level = 0 > username level = 0 > unix password sync = No > restrict anonymous = Yes > lanman auth = Yes > use rhosts = No > admin log = No > log level = 0 > syslog = 1 > syslog only = No > log file = /var/log/samba.log > max log size = 50 > timestamp logs = Yes > debug hires timestamp = No > debug pid = No > debug uid = No > protocol = NT1 > large readwrite = Yes > max protocol = NT1 > min protocol read bmpx = No > read raw = Yes > write raw = Yes > nt smb support = Yes > nt pipe support = Yes > nt status support = Yes > announce version = 4.9 > announce as = NT > max mux = 50 > max xmit = 16644 > name resolve order = lmhosts host wins bcast > max ttl = 259200 > max wins ttl = 518400 > min wins ttl = 21600 > time server = No > unix extensions = No > change notify timeout = 60 > deadtime = 0 > getwd cache = Yes > keepalive = 300 > lpq cache time = 10 > max smbd processes = 0 > max disk size = 0 > max open files = 1 > name cache timeout = 660 > read size = 16384 > socket options = TCP_NODELAY > stat cache size = 50 > use mmap = Yes > total print jobs = 0 > load printers = Yes > printcap name = lpstat > disable spoolss = No > enumports command = > addprinter command = > deleteprinter command = > show add printer wizard = Yes > os2 driver map = > strip dot = No > mangling method = hash > character set = > mangled stack = 50 > stat cache = Yes > domain admin group = > domain guest group = > machine password timeout = 604800 > add user script = > delete user script = > logon script = > logon path = \\%N\%U\profile > logon drive = > logon home = \\%N\%U > domain logons = No > os level = 0 > lm announce = Auto > lm interval = 60 > preferred master = Auto > local master = No > domain master = No > browse list = Yes > enhanced browsing = Yes > dns proxy = Yes > wins proxy = No > wins server = 157.199.5.25 > wins support = No > wins hook = > kernel oplocks = Yes > lock spin count = 3 > lock spin time = 10 > oplock break wait time = 0 > add share command = > change share command = > delete share command = > config file = > preload = > lock dir = /usr/local/samba/var/locks > pid directory = /usr/local/samba/var/locks > default service = > message command = > dfree command = > valid chars = > remote announce = > remote browse sync = > socket address = 0.0.0.0 > homedir map = > time offset = 0 > NIS homedir = No > source environment = > panic action = > hide local users = No > winbind uid = > winbind gid = > template homedir = /home/%D/%U > template shell = /bin/false > winbind separator = \ > winbind cach
[Samba] Permission Issues
Hi All, I set up a samba server to talk to various wint NT clients so they can access data off the serever. its a Solaris 8 server.As you can see from the smb.conf below I have Security = share but the only way to access it is to make the share " wide open 777" and that is not good. Any advice ass to what I can change. Thank You from newbie Ben # Global parameters [global] coding system = client code page = 850 code page directory = /usr/local/samba/lib/codepages workgroup = DAVE netbios name = LANCELOT netbios aliases = netbios scope = server string = Lancelot Samba Server interfaces = bind interfaces only = No security = SHARE encrypt passwords = Yes update encrypted = No allow trusted domains = Yes hosts equiv = min passwd length = 5 map to guest = Never null passwords = No obey pam restrictions = No password server = lancelot smb passwd file = /usr/local/samba/private/smbpasswd root directory = pam password change = No passwd program = /usr/bin/passwd passwd chat = *new*password* %n\n *new*password* %n\n *changed* passwd chat debug = No username map = password level = 0 username level = 0 unix password sync = No restrict anonymous = Yes lanman auth = Yes use rhosts = No admin log = No log level = 0 syslog = 1 syslog only = No log file = /var/log/samba.log max log size = 50 timestamp logs = Yes debug hires timestamp = No debug pid = No debug uid = No protocol = NT1 large readwrite = Yes max protocol = NT1 min protocol read bmpx = No read raw = Yes write raw = Yes nt smb support = Yes nt pipe support = Yes nt status support = Yes announce version = 4.9 announce as = NT max mux = 50 max xmit = 16644 name resolve order = lmhosts host wins bcast max ttl = 259200 max wins ttl = 518400 min wins ttl = 21600 time server = No unix extensions = No change notify timeout = 60 deadtime = 0 getwd cache = Yes keepalive = 300 lpq cache time = 10 max smbd processes = 0 max disk size = 0 max open files = 1 name cache timeout = 660 read size = 16384 socket options = TCP_NODELAY stat cache size = 50 use mmap = Yes total print jobs = 0 load printers = Yes printcap name = lpstat disable spoolss = No enumports command = addprinter command = deleteprinter command = show add printer wizard = Yes os2 driver map = strip dot = No mangling method = hash character set = mangled stack = 50 stat cache = Yes domain admin group = domain guest group = machine password timeout = 604800 add user script = delete user script = logon script = logon path = \\%N\%U\profile logon drive = logon home = \\%N\%U domain logons = No os level = 0 lm announce = Auto lm interval = 60 preferred master = Auto local master = No domain master = No browse list = Yes enhanced browsing = Yes dns proxy = Yes wins proxy = No wins server = 157.199.5.25 wins support = No wins hook = kernel oplocks = Yes lock spin count = 3 lock spin time = 10 oplock break wait time = 0 add share command = change share command = delete share command = config file = preload = lock dir = /usr/local/samba/var/locks pid directory = /usr/local/samba/var/locks default service = message command = dfree command = valid chars = remote announce = remote browse sync = socket address = 0.0.0.0 homedir map = time offset = 0 NIS homedir = No source environment = panic action = hide local users = No winbind uid = winbind gid = template homedir = /home/%D/%U template shell = /bin/false winbind separator = \ winbind cache time = 15 winbind enum users = Yes winbind enum groups = Yes winbind use default domain = No comment = path = alternate permissions = No username = guest account = nobody invalid users = valid users = admin users = read list = printer admin = force user = force group = read only = Yes create mask = 0744 force create mode = 00 securit
Re: [Samba] permission issues
> How can I setup the share so only > the group owns it no > matter what user in the group adds to the share the > group maintains the > permissions under shares do; force group = Bri- __ Do you Yahoo!? Yahoo! Shopping - Send Flowers for Valentine's Day http://shopping.yahoo.com -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] permission issues
Here is the situation. I have setup a samba server to authenticate against Active Directory. I have created a group under my Linux server and created all the accounts that need to access the share and placed them in the Linux group on the samba server. I gave the group full rights to the samba share, but when a user from the group adds to the samba share a file or directory he or she now owns the file or new directory, and if another user tries to add to the file or create a file or another directory under the new created file or directory the user gets permission denied and I have to re-apply the permissions from the root of the samba share so the group owns everything again and not individual users. How can I setup the share so only the group owns it no matter what user in the group adds to the share the group maintains the permissions and not the individual users. Thank you, Juan -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba