From owner-freebsd-fs@FreeBSD.ORG Sat Apr 17 00:38:35 2004 Return-Path: Delivered-To: freebsd-fs@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5601716A4CE for ; Sat, 17 Apr 2004 00:38:35 -0700 (PDT) Received: from mailout2.pacific.net.au (mailout2.pacific.net.au [61.8.0.85]) by mx1.FreeBSD.org (Postfix) with ESMTP id BB01E43D41 for ; Sat, 17 Apr 2004 00:38:34 -0700 (PDT) (envelope-from anthony@carmoda.com) Received: from mailproxy2.pacific.net.au (mailproxy2.pacific.net.au [61.8.0.87])i3H7cY5v003666 for ; Sat, 17 Apr 2004 17:38:34 +1000 Received: from carmoda.com (ppp1E95.dsl.pacific.net.au [203.143.244.149]) i3H7cXHV010994 for ; Sat, 17 Apr 2004 17:38:33 +1000 Message-ID: <4080E0E7.1020307@carmoda.com> Date: Sat, 17 Apr 2004 17:46:47 +1000 From: Anthony carmody User-Agent: Mozilla Thunderbird 0.5 (Windows/20040207) X-Accept-Language: en-us, en MIME-Version: 1.0 To: freebsd-fs@freebsd.org Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Subject: SAMBA and shared file permissions question X-BeenThere: freebsd-fs@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Filesystems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 17 Apr 2004 07:38:35 -0000 Hi, i have been having problems with a SAMBA shared directory and user permissions. My smb.conf file is simple and allows for members of 'wwwdev' access the directory, and they can when i test it, but we get all kinds of problems with the permissions on various files and directories: ////////////////////////////////////////////////////// [wwwdev] comment = Virtual Web Servers HTTP dirs path = /usr/wwwdev create mode = 0765 valid users = @wwwdev ////////////////////////////////////////////////////// i assume this is a ownership issue on the unix file system side, although i have opened up the permissions to 'pants down in public' level .... drwxrwxrwx -rwxrwxrwx From owner-freebsd-fs@FreeBSD.ORG Sat Apr 17 02:11:35 2004 Return-Path: Delivered-To: freebsd-fs@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id CBB6B16A4CE for ; Sat, 17 Apr 2004 02:11:35 -0700 (PDT) Received: from quip.cz (r3ar5.mistral.cz [213.220.235.5]) by mx1.FreeBSD.org (Postfix) with ESMTP id 20FF043D2F for ; Sat, 17 Apr 2004 02:11:35 -0700 (PDT) (envelope-from 000.fbsd@quip.cz) Received: from quip.cz (qwork.quip.test [192.168.1.2]) by quip.cz (QuipMail) with ESMTP id 207E7323A8 for ; Sat, 17 Apr 2004 11:11:33 +0200 (CEST) Message-ID: <4080F4C5.3020208@quip.cz> Date: Sat, 17 Apr 2004 11:11:33 +0200 From: Miroslav Lachman <000.fbsd@quip.cz> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.7b) Gecko/20040316 X-Accept-Language: cs, cz, en, en-us MIME-Version: 1.0 To: freebsd-fs@freebsd.org References: <4080E0E7.1020307@carmoda.com> In-Reply-To: <4080E0E7.1020307@carmoda.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: SAMBA and shared file permissions question X-BeenThere: freebsd-fs@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Filesystems List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 17 Apr 2004 09:11:35 -0000 I don't understand your question at all. What's your problem? Owner & Group, or file modes? Maybe you need this in your kernel --------------------- grep -B 13 SUIDDIR /usr/src/sys/i386/conf/LINT # If you are running a machine just as a fileserver for PC and MAC # users, using SAMBA or Netatalk, you may consider setting this option # and keeping all those users' directories on a filesystem that is # mounted with the suiddir option. This gives new files the same # ownership as the directory (similar to group). It's a security hole # if you let these users run programs, so confine it to file-servers # (but it'll save you lots of headaches in those cases). Root owned # directories are exempt and X bits are cleared. The suid bit must be # set on the directory as well; see chmod(1) PC owners can't see/set # ownerships so they keep getting their toes trodden on. This saves # you all the support calls as the filesystem it's used on will act as # they expect: "It's my dir so it must be my file". # options SUIDDIR ---------------------- Or you just need another create mask / directory mask / directory security mask / security mask / inherit permissions Miroslav Lachman Anthony carmody wrote: > Hi, > > i have been having problems with a SAMBA shared directory and user > permissions. My smb.conf file is simple and allows for members of > 'wwwdev' access the directory, and they can when i test it, but we get > all kinds of problems with the permissions on various files and > directories: > > ////////////////////////////////////////////////////// > [wwwdev] > comment = Virtual Web Servers HTTP dirs > path = /usr/wwwdev > create mode = 0765 > valid users = @wwwdev > ////////////////////////////////////////////////////// > > > i assume this is a ownership issue on the unix file system side, > although i have opened up the permissions to 'pants down in public' > level .... > > drwxrwxrwx > -rwxrwxrwx > _______________________________________________ > freebsd-fs@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-fs > To unsubscribe, send any mail to "freebsd-fs-unsubscribe@freebsd.org" > -- Miroslav Lachman Webapplication Developer