I have set up several shares which our staff will have access to. They
are central repositories where we will be storing things like documents
and drivers, etc. I would like to allow staff to add items into the
shares, but to now be able to remove anything (Except maybe what they put
in..)
I have created a share called drivers:
[drivers]
comment = General Hardware Drivers
path = /data/samba/shares/drivers
browsable = yes
writable = yes
valid users = @staff
force create mode = 0750
force directory mode = 0770
This way if a user creates a directory, it is group writable so that
anyone can drop stuff into it. The problem arises when another user
decides to remove items in that directory that aren't his or hers.
Is it possible to stop users from being able to delete anything, yet still
allow them to create?
Thanks.
--
Mike Oswell
Xcert International Inc
At 07:32 AM 6/11/1999 +1000, you wrote:> > >I have set up several shares which our staff will have access to. They >are central repositories where we will be storing things like documents >and drivers, etc. I would like to allow staff to add items into the >shares, but to now be able to remove anything (Except maybe what they put >in..) > >I have created a share called drivers: > >[drivers] > comment = General Hardware Drivers > path = /data/samba/shares/drivers > browsable = yes > writable = yes > valid users = @staff > force create mode = 0750 > force directory mode = 0770 > >This way if a user creates a directory, it is group writable so that >anyone can drop stuff into it. The problem arises when another user >decides to remove items in that directory that aren't his or hers. > >Is it possible to stop users from being able to delete anything, yet still >allow them to create? > >Thanks. > >-- >Mike Oswell >Xcert International Inc >You could set the "sticky bit" for the directory. Then users can only delete files they create. [drivers] comment = General Hardware Drivers path = /data/samba/shares/drivers browsable = yes writable = yes valid users = @staff force create mode = 1750 force directory mode = 1770 Mikkel --- Do not meddle in the affairs of dragons, for you are crunchy and taste good with ketchup.
I am using samba 2.07 on Solaris 2.7 and this is a piece of my smb.conf file. The directory works but when the main user makes three folders deep under his folder no one can write to it. I have checked the Unix umask in that directory and it is 000. This should allow the other users to write in any directory he creates why is this happening? Oh if I change the permissions on the directory in Unix they can all work in it, but I have to do this to ever folder he creates. [finance] comment = This is for the Finance department path = /export/home/dougg/Finance valid users = dougg alant fernandod devyanik public = no writable = yes printable = no __________________________________________________ Do You Yahoo!? Get personalized email addresses from Yahoo! Mail - only $35 a year! http://personal.mail.yahoo.com/
Create a group for the valid users and look at create mask. Eric Headley Trinidad & Tobago Electricity Commission 63 Frederick Street Port of Spain Trinidad & Tobago West Indies E-mail eric@ttec.co.tt Phone 868-623-2611 ext 2626 Fax 868-625-3759 -----Original Message----- From: Eric Ralston [mailto:ericralston@yahoo.com] Sent: Thursday, February 08, 2001 2:57 PM To: samba@samba.org Subject: Directory permissions I am using samba 2.07 on Solaris 2.7 and this is a piece of my smb.conf file. The directory works but when the main user makes three folders deep under his folder no one can write to it. I have checked the Unix umask in that directory and it is 000. This should allow the other users to write in any directory he creates why is this happening? Oh if I change the permissions on the directory in Unix they can all work in it, but I have to do this to ever folder he creates. [finance] comment = This is for the Finance department path = /export/home/dougg/Finance valid users = dougg alant fernandod devyanik public = no writable = yes printable = no __________________________________________________ Do You Yahoo!? Get personalized email addresses from Yahoo! Mail - only $35 a year! http://personal.mail.yahoo.com/