Adam Nielsen
2005-Dec-22 00:42 UTC
[Samba] Getting Samba to only use filesystem permission checks
Hi everyone, Does anyone know whether it's possible to get Samba to skip doing its internal permission checks and instead rely on the OS for this? The reason I ask is that I have a single share called "web" which contains three folders. Each of these folders is a remote CIFS mount from another Samba server. The problem is that UNIX extensions are enabled for all of these mounts, so all the files are owned by UIDs and GIDs which don't make sense on my local system. I don't want to disable the UNIX extensions as I like the ability to use "chmod", so instead I mounted each remote share with the "noperm" option to disable permission checking at the local filesystem. This works perfectly in that all local users have full access to the mounted share, even though they don't own the files or belong to any file's group. The problem is that Samba still checks the UID and GID and denies remote requests based on these, even though the same user would be able to perform the operation locally thanks to the "noperm" mount option. Is there any way to disable Samba's built in checks? I'm hoping that doing so would mean Samba would always try to read/write/delete/whatever and it would be up to the underlying filesystem to return success or failure depending on its idea of permissions. Thanks, Adam.
Gerald (Jerry) Carter
2006-Jan-04 16:05 UTC
[Samba] Getting Samba to only use filesystem permission checks
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Adam Nielsen wrote:> Is there any way to disable Samba's built in checks? I'm hoping that > doing so would mean Samba would always try to > read/write/delete/whatever and it would be up to the underlying > filesystem to return success or failure depending on its idea of > permissions.Sounds like you want NFS. :-) cheers, jerry ====================================================================Alleviating the pain of Windows(tm) ------- http://www.samba.org Centeris ----------- http://www.centeris.com "There's an anonymous coward in all of us." --anonymous -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFDu+9hIR7qMdg1EfYRAmhCAJ9p5JOhtpsa8W/+FV2EeCqcNrtg3ACdF2HR J616x45pX7bjXCzTJ71KWGs=jknQ -----END PGP SIGNATURE-----