Gianluca Culot
2007-Jul-06 07:33 UTC
[Samba] problem with directory permission and access from windows
Hello list
I've a problem giving exclusive access to home directory to the user owning
it via Samba 3.0.24
I've setup access and user authentication and setup the share as follow
[Home]
path = /home
# valid users = %S
valid users = "@DMSWARE\domain users"
Each home directory is owned by the AD user
Drwx------ 4 gianlucaculot domain users 512 Jul 5 15:47
gianlucaculot
If I set "valid users= "@DMSWARE\domain users"
I can get read only access to Home Directory, BUT NOT to the user directory,
Not even my own directory
If I set " valid users = %S " I cannot get access to the Home Share.
The ONLY way to read (and write) the home directory is to set
Drwxr-xr-x 4 gianlucaculot domain users 512 Jul 5 15:47
gianlucaculot
valid users = "@DMSWARE\domain users"
But this is quite odd.....
Please can any bodyu give me a hint ....
I'd like to give Exclusive access to eah owner to the Home Directory
----------------------------------------------
Gianluca Culot
DMS Multimedia
Via delle Arti e dei Mestieri, 6
20050 Sulbiate (Mi) - Italy
Tel: +39 039 5968925
Fax: +39 039 3309813
<mailto:gianlucaculot@dmsware.com>
www.dmsware.com <http://www.dmsware.com/>
Ai sensi del D.Lgs. 196/2003 si precisa che le informazioni contenute in
questo messaggio sono riservate ed a uso esclusivo del destinatario. Qualora
il messaggio Le fosse pervenuto per errore, La invitiamo ad eliminarlo senza
copiarlo e a non inoltrarlo a terzi, dandocene gentilmente comunicazione. Il
mittente comunica che il presente messaggio ed ogni suo allegato, al momento
dell?invio, era esente da ogni tipo di virus, worm, trojan e/o ogni altri
tipo di codice software dannoso. Questo messaggio e i suoi allegati
potrebbero essere stati infettati durante la trasmissione. Leggendo il
messaggio e/o aprendo gli allegati, il Destinatario si prende la piena
responsabilit? nei confronti di ogni azione protettiva o di rimedio per la
rimozione di virus ed altri difetti. DMS Multimedia non potr? essere
considerata responsabile per qualsivoglia danno o perdita derivata qualunque
modo da questo messaggio o dai suoi allegati.
The information in this electronic mail message, including any attachments,
is confidential and may be legally privileged. It is intended solely for the
addressee(s). Access to this Internet electronic mail message by anyone else
is unauthorised. If you are not the intended recipient, any disclosure,
copying, distribution or action taken or omitted to be taken in reliance on
it is prohibited and may be unlawful. The sender believes that this E-mail
and any attachments were free of any virus, worm, Trojan horse, and/or
malicious code when sent. This message and its attachments could have been
infected during transmission. By reading the message and opening the
attachments, the recipient accepts full responsibility for taking protective
and remedial action about viruses and other defects.DMS Multimedia is not
liable for any loss or damage arising in any way from this message or its
attachments
Dale Schroeder
2007-Jul-06 16:56 UTC
[Samba] problem with directory permission and access from windows
Gianluca, What happens if you use valid users = DMSWARE\%S In my setup I have set posix directory permissions to 740, owned by DOMAIN\<username>:DOMAIN\"Domain Users", and set valid users as shown above. Dale Gianluca Culot wrote:> Hello list > > I've a problem giving exclusive access to home directory to the user owning > it via Samba 3.0.24 > > I've setup access and user authentication and setup the share as follow > > [Home] > path = /home > # valid users = %S > valid users = "@DMSWARE\domain users" > > Each home directory is owned by the AD user > > Drwx------ 4 gianlucaculot domain users 512 Jul 5 15:47 > gianlucaculot > > If I set "valid users= "@DMSWARE\domain users" > I can get read only access to Home Directory, BUT NOT to the user directory, > Not even my own directory > > If I set " valid users = %S " I cannot get access to the Home Share. > > The ONLY way to read (and write) the home directory is to set > Drwxr-xr-x 4 gianlucaculot domain users 512 Jul 5 15:47 > gianlucaculot > valid users = "@DMSWARE\domain users" > > But this is quite odd..... > > Please can any bodyu give me a hint .... > I'd like to give Exclusive access to eah owner to the Home Directory > > > ---------------------------------------------- > Gianluca Culot > DMS Multimedia > Via delle Arti e dei Mestieri, 6 > 20050 Sulbiate (Mi) - Italy > Tel: +39 039 5968925 > Fax: +39 039 3309813 > <mailto:gianlucaculot@dmsware.com> > www.dmsware.com <http://www.dmsware.com/> > > Ai sensi del D.Lgs. 196/2003 si precisa che le informazioni contenute in > questo messaggio sono riservate ed a uso esclusivo del destinatario. Qualora > il messaggio Le fosse pervenuto per errore, La invitiamo ad eliminarlo senza > copiarlo e a non inoltrarlo a terzi, dandocene gentilmente comunicazione. Il > mittente comunica che il presente messaggio ed ogni suo allegato, al momento > dell?invio, era esente da ogni tipo di virus, worm, trojan e/o ogni altri > tipo di codice software dannoso. Questo messaggio e i suoi allegati > potrebbero essere stati infettati durante la trasmissione. Leggendo il > messaggio e/o aprendo gli allegati, il Destinatario si prende la piena > responsabilit? nei confronti di ogni azione protettiva o di rimedio per la > rimozione di virus ed altri difetti. DMS Multimedia non potr? essere > considerata responsabile per qualsivoglia danno o perdita derivata qualunque > modo da questo messaggio o dai suoi allegati. > > The information in this electronic mail message, including any attachments, > is confidential and may be legally privileged. It is intended solely for the > addressee(s). Access to this Internet electronic mail message by anyone else > is unauthorised. If you are not the intended recipient, any disclosure, > copying, distribution or action taken or omitted to be taken in reliance on > it is prohibited and may be unlawful. The sender believes that this E-mail > and any attachments were free of any virus, worm, Trojan horse, and/or > malicious code when sent. This message and its attachments could have been > infected during transmission. By reading the message and opening the > attachments, the recipient accepts full responsibility for taking protective > and remedial action about viruses and other defects.DMS Multimedia is not > liable for any loss or damage arising in any way from this message or its > attachments > > > >