e the same request while connected to a share
on a Windows server, the response is NT_STATUS_OK.
Is there a Samba server configuration change I could make that would affect
the behavior? Is there any setup work to do prior to sending the SMB2
CREATE request (for example, adding a privilege)?
Thanks,
Can anybody provide the expected response to an SMB2 CREATE request
that includes
ACCESS_SYSTEM_SECURITY in the DesiredAccess mask? I’m particularly interested in
cases where the SMB client is connected as an authenticated user with
administrative
(superuser) privileges on the share, and has made t
Jeremy Allison samba.org> writes:
>
> On Tue, Dec 18, 2012 at 12:24:04PM -0600, Steve Tice wrote:
> > Can anybody provide the expected response to an SMB2 CREATE request that
> > includes ACCESS_SYSTEM_SECURITY in the DesiredAccess mask? I’m particularly
> > intere
> > On Tue, Dec 18, 2012 at 12:24:04PM -0600, Steve Tice wrote:
> > > Can anybody provide the expected response to an SMB2 CREATE request that
> > > includes ACCESS_SYSTEM_SECURITY in the DesiredAccess mask? I’m
particularly
> > > interested in cases where
My organization is in the position of having to support full
Windows ACLs on CIFS shares. We've been successfully utilizing
Samba 3.5.10-125 and vfs_acl_tdb to accomplish that. However,
the size of the resulting
/var/lib/samba/state/file_ntacls.tdb[.unique-extension] file(s)
has introduced some new
That Subject line should read
Switching between vfs_acl_tdb and vfs_acl_attr
I'm guessing double quotes are a no-no in the Subject field.
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Jeremy Allison samba.org> writes:
>
> There's no code in Samba to do this unless you're doing it
> via a client.
>
> You could write custom code to pull the data out of the tdb
> and re-store as EA's on the files, but that's outside the scope
> of the tools we provide.
>
> Jeremy.
Thanks Jere
Jeremy Allison samba.org> writes:
>
> No, this is all in the source code and that's where you'll
> have to look I'm afraid. The tdb library documentation will
> tell you how to fetch the tdb records - the tdb key will be
> hashed device/inode number.
>
> Jeremy.
Thanks again Jeremy. I'm sure t
Andrew Bartlett samba.org> writes:
>
> Using Samba 4.0.0, the python bindings or even samba-tool ntacl get/set
> would be quite a good choice here. We can read directly the NT ACL from
> the tdb and then set it using the xattr code.
>
Wow - assuming the extended attributes produced by the Sam
Andrew Bartlett samba.org> writes:
>
> Using Samba 4.0.0, the python bindings or even samba-tool ntacl get/set
> would be quite a good choice here. We can read directly the NT ACL from
> the tdb and then set it using the xattr code.
>
> I'm very happy to help out if you have any more questions
Steve Tice gmail.com> writes:
>
> I look forward to testing the proposal above and reporting back here
> with results.
>
Motivated by a desire to stay employed, I have now accomplished what I set
out to do. Using the tdb API, reading records from file_ntacls.tdb was a
bit easie
nks for reading.
Sincerely,
Steve Tice
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
On Fri, Mar 30, 2012 at 5:25 PM, Chris Weisswrote:
> the quick and dirty hack is to use smbstatus to get the clients PID and kill
>it.
Yes, that's the sort of active revokation I'm looking for. Thanks for the
suggestion. More difficult is the art of detecting that a connection should be
torn d
13 matches
Mail list logo
