I have a remote file server running Ubuntu 10.04 but really and (I mean REALLY) struggling in getting the permissions set correctly..
I have users A,B,C,D.
User A is in groups admin and lxusers.
Users B,C,D are in the group lxusers.
I have a root share called 'Shared Folder' currently owner root & group is admin. I want users to be able to create sub folders and files inside 'Shared Folder'. The user that creates folders and files will be the owner and those folders and files they create will inherit the parents group of admin. I only want the owner & members of the admin group to be able to delete any of the folders or files created, I am happy enough for any of the lxusers group to read anything thats created by any user.
This so far appears to be working to a point, but I do have one problem that is causing me real grief. If any user in the lxusers group creates a folder then files inside that folder, other users can delete the files but not the folder.. Just can't work out where I have gone wrong, advice to resolve would be appreciated..
Entry in smb.conf:-
[Shared Folder]
browseable = yes
writeable = yes
invalid users = root
path = /mnt/raid/Shared
comment = Shared folder for All Users
valid users = @admin,@lxusers
create mode = 0774
directory mode = 0774
force group = admin
Arnold, I have now installed acl. Here I post the output of getfacl Shared.
I have done as you suggested, setup a new share to play with. If I do not hear any more from you. Happy New Year .....
John putty.log
mrmad1966
ASKER
Arnold, The new share I created to play with is called NewSharedFolder.
UserA (thats me) is a member of the admin group I can confirm I can access the folder just fine. Users B,C,D do not now have access to the folder..
I post another result of getfacl for the NewSharedFolder..
Thank you Arnold. I have implemented this but one problem, the lxuser group can now indeed write folders and files to this NewSharedFolder but there seems to be no sticky set ie any member of the lxusers group can delete any other users folder/files. I wish only the owner AND a member of the admin group be allowed to delete folders and files.
The result of ls -l on the Shared folder is:-
drwxrwsr-T 45 root admin 4096 2012-12-31 13:48 Shared
HTH