Solved

samba not sharing according to permissions

Posted on 2009-07-15
7
4,858 Views
Last Modified: 2013-12-09
samba is not sharing according to file permission shares

example

-rwxrwx---   1 user1 everybody 130K Jun 17 11:47 notes1.pdf
-rwxrwx---+  1 user2  everybody  32K Jul 15 15:32 notes2.xls
-rwxrwx---+  1 user1 everybody  44K Jul 15 14:17 notes3.doc

everyone can access notes1
only user2 can access notes2
only user1 can access notes3

I am not exactly sure what that plus symbol means, but I suspect it is a part of the issue.

heres the samba config

[global]
        netbios name = FILE SERVER
        server string = FILE SERVER
        socket options = TCP_NODELAY
        unix password sync = yes
        workgroup = SERVER01
        os level = 20
        encrypt passwords = yes
        wins support = true
        domain master = yes
        map to guest = Bad User
        printcap name = /etc/printcap
        load printers = no
        printing =


[public]
        delete readonly = yes
        writeable = yes
        comment = public
        path = /sharedfolders/public
        force directory mode = 0770
        force group = everybody
        force create mode = 0770
        valid users = @everybody
        create mode = 0770
        directory mode = 0770

0
Comment
Question by:koffea
  • 4
  • 3
7 Comments
 
LVL 23

Expert Comment

by:savone
ID: 24864782
The plus sign in Solaris and other UNIX systems means there is an ACL on the file.  
0
 
LVL 23

Expert Comment

by:savone
ID: 24864788
Try getfacl notes.xls on the command line and see what you get.
0
 
LVL 23

Expert Comment

by:savone
ID: 24864796
Sorry for the multiple posts:

man pages for getfacl and setfacl

GET:
http://pwet.fr/man/linux/commandes/getfacl

SET:
http://pwet.fr/man/linux/commandes/setfacl
0
Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

 

Author Comment

by:koffea
ID: 24864895
this is what i get:

# file: notes2.xls
# owner: user2
# group: everybody
user::rwx
user:user3:rwx
group::---
mask::rwx
other::---

so it is not setting the acl correctly to allow the group?
0
 

Author Comment

by:koffea
ID: 24870645
so basically i have two options?

i could run the following command every 5 minutes:
setfacl -R -m g:everybody:rwx /sharedfolders/public/
 
or i could disable facl.  How do you disable facl?
0
 
LVL 23

Accepted Solution

by:
savone earned 500 total points
ID: 24870710
I am not well versed in ACLs, but I would assume you should be able to remove the ACL on the file and fix your problem.
0
 

Author Closing Comment

by:koffea
ID: 31604019
savone got me on the right track by explaining what the + symbol was, but did not offer a complete solution.
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

In order for businesses to be compliant with certain information security laws in some countries, you need to be able to prove that a user (which user it was becomes important to the business to take action against the user after an event has occurr…
Online collaboration is quickly becoming embedded in the workplace, and its benefits are tangible. See what the current landscape looks like and what the future holds for collaboration tools and the future of work.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

746 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now