[mdlug] [Samba]: Permissions Problems

Robert Adkins II radkins at impelind.com
Thu Jul 26 15:22:59 EDT 2012 

I was just thinking...

You probably also want to use the 'force group = groupname' (Where groupname
is whatever group that you are using to secure these files/directories)
Which will tell Samba to always create new files/directories with that Group
ownership.

You may also need to use 'valid users' and 'user' lines in your individual
share as well.

Regards,
Robert Adkins

> -----Original Message-----
> From: mdlug-bounces at mdlug.org 
> [mailto:mdlug-bounces at mdlug.org] On Behalf Of Wojtak, Greg (Superfly)
> Sent: Thursday, July 26, 2012 11:26 AM
> To: MDLUG's Main discussion list
> Subject: [mdlug] [Samba]: Permissions Problems
> 
> I know there are a few people on here that are pretty 
> familiar with samba so I'm hoping I can get some help.
> 
> I have a CentOS 6 server that is running samba 3.5.10 for 
> sharing out home directories.  I can pull up my share, I get 
> disallowed from pulling up others' home directories, I can 
> create files/folders just fine.  I can't delete or rename any 
> files though.  I looked at the permissions from a Windows 
> machine and it says that my account has only special 
> permissions.  I checked the special permissions and 
> everything is checked allow.  In the "normal" permissions, 
> though, nothing is checked (allow or deny) which I'm guessing 
> is my problem.
> 
> Has anyone run into anything like this?  Any ideas on 
> troubleshooting?  Here is my smb.conf that I am using (I've 
> scrubbed some of the info):
> 
> [global]
>    workgroup = DOM
>    password server = dc1.dom.com dc2.dom.com
>    realm = DOM.COM
>    security = ads
>    idmap backend = nss
>    #idmap backend = tdb
>    idmap uid = 500-33554431
>    idmap gid = 500-33554431
>    template shell = /bin/bash
>    template homedir = /home/%U
>    winbind nss info = rfc2307bis
>    winbind use default domain = true
>    winbind offline logon = false
>    idmap config DOM:backend = ad
>    idmap config DOM:default = yes
>    idmap config DOM:range = 500-33554431
>    idmap config DOM:schema_mode = rfc2307bis
>    server string = Samba Server Version %v
>    passdb backend = tdbsam
>    load printers = no
>    printing = bsd
>    printcap = /dev/null
>    disable spoolss = yes
>    client ntlmv2 auth = yes
>    unix extensions = off
> 
> [homes]
>    comment = Home Directories
>    browseable = yes
>    writeable = yes
>    create mask = 0644
>    directory mask = 0755
>    valid users = %U %U-
>    force user = %U
>    write list = %U %U-
> 
> Greg Wojtak
> Sr. Unix Systems Engineer
> Office: (313) 373-4306
> Cell: (734) 718-8472
> 
> _______________________________________________
> mdlug mailing list
> mdlug at mdlug.org
> http://mdlug.org/mailman/listinfo/mdlug
>

More information about the mdlug mailing list