SAMBA and shared file permissions question
Miroslav Lachman
000.fbsd at quip.cz
Sat Apr 17 02:11:35 PDT 2004
I don't understand your question at all. What's your problem? Owner &
Group, or file modes?
Maybe you need this in your kernel
---------------------
grep -B 13 SUIDDIR /usr/src/sys/i386/conf/LINT
# If you are running a machine just as a fileserver for PC and MAC
# users, using SAMBA or Netatalk, you may consider setting this option
# and keeping all those users' directories on a filesystem that is
# mounted with the suiddir option. This gives new files the same
# ownership as the directory (similar to group). It's a security hole
# if you let these users run programs, so confine it to file-servers
# (but it'll save you lots of headaches in those cases). Root owned
# directories are exempt and X bits are cleared. The suid bit must be
# set on the directory as well; see chmod(1) PC owners can't see/set
# ownerships so they keep getting their toes trodden on. This saves
# you all the support calls as the filesystem it's used on will act as
# they expect: "It's my dir so it must be my file".
#
options SUIDDIR
----------------------
Or you just need another create mask / directory mask / directory
security mask / security mask / inherit permissions
Miroslav Lachman
Anthony carmody wrote:
> Hi,
>
> i have been having problems with a SAMBA shared directory and user
> permissions. My smb.conf file is simple and allows for members of
> 'wwwdev' access the directory, and they can when i test it, but we get
> all kinds of problems with the permissions on various files and
> directories:
>
> //////////////////////////////////////////////////////
> [wwwdev]
> comment = Virtual Web Servers HTTP dirs
> path = /usr/wwwdev
> create mode = 0765
> valid users = @wwwdev
> //////////////////////////////////////////////////////
>
>
> i assume this is a ownership issue on the unix file system side,
> although i have opened up the permissions to 'pants down in public'
> level ....
>
> drwxrwxrwx
> -rwxrwxrwx
> _______________________________________________
> freebsd-fs at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-fs
> To unsubscribe, send any mail to "freebsd-fs-unsubscribe at freebsd.org"
>
--
Miroslav Lachman
Webapplication Developer
More information about the freebsd-fs
mailing list