Gary Casterline
2010-Jul-14 19:49 UTC
[Samba] cannot delete or rename after upgrade to 3.5.4
After upgrading samba from 3.4.8 to 3.5.4, we find that for some of our
shares, we cannot delete or rename files or folders.
Windows mappings to the [home] share can create new folders and files
but when we try to delete or rename we get an error messages like:
You need permission to perform this action
You require permission from
S-1-5-21-xxxxxxx-yyyyyyyyyy-zzzzzzzzzz-www
to make changes to this file
The same actions work fine for other shares like [cs] below.
Here are parts of our smb.conf:
# Global parameters
[global]
workgroup = DOM
netbios name = NBNAME
server string = nbname (Samba %v)
security = domain
passdb backend = ldapsam:"ldap://localhost ldap://xxx.xxx.xxx.69
ldap://xxx.xxx.xxx.187"
ldap debug level = 257
interfaces = ce0 xxx.xxx.xxx.201
encrypt passwords = yes
syslog = 0
log file = /var/log/samba/log.%m
log level = 2
max log size = 200
dns proxy = No
wins support = yes
name resolve order = wins host lmhosts
domain master = no
local master = no
preferred master = no
os level = 65
domain logons = no
guest account = ftp
guest ok = Yes
hide unreadable = Yes
ldap admin dn = cn=samba,ou=DSA,dc=cnr,dc=berkeley,dc=edu
ldap group suffix = ou=Groups
ldap idmap suffix = ou=Idmap
ldap machine suffix = ou=Computers
ldap suffix = dc=cnr,dc=berkeley,dc=edu
ldap ssl = start tls
ldap timeout = 30
ldap user suffix = ou=People
passdb expand explicit = no
idmap backend = ldap://localhost
idmap uid = 1000-30000
idmap gid = 1000-30000
; unix extensions = no
; wide links = yes
hosts allow = \
xxx.xxx.xxx.0/255.255.255.128, \
(more subnets here) \
; can create new files and folders,
; but cannot delete or rename in [home] shares
[homes]
comment = Home Directories
read only = no
writeable = yes
browseable = yes
public = no
inherit permissions = yes
user = %U
hide unreadable = Yes
force create mode = 0664
force directory mode = 2775
hosts allow = \
xxx.xxx.xxx.0/255.255.255.128, \
(more subnets here), \
; create; delete; rename -- all work fine for [cs]
[cs]
comment = cs share
path = /sdrives/cs
user = %U
writeable = yes
force create mode = 0664
force directory mode = 2775
hide unreadable = Yes