search for: delete_access

We're running Samba 3.3.4 on RHEL 5 Linux, using Active Directory authentication. I've noticed that we are able to assign NTFS "Full Control" permissions to directories; however, we are unable to do the same on the files contained within those directories. Is there a default setting that is preventing us from being able to assign them? Note that this happens even at the very

Is behavior of ACLs under Samba 3.3.0 (Sernet) completely different from that under version 3.2.7? The release notes only talks about some "fixes". I installed version 3.3.0 and got completely different result with the same filesystem and the exact same samba configuration. The ACLs behaved strangely and appeared very different under Windows ACL editor. Users were now unable to

...share-ACLs DACL ACL Num ACEs: 2 revision: 2 --- ACE type: ACCESS ALLOWED (0) flags: 0 Specific bits: 0x1ff Permissions: 0x1f01ff: SYNCHRONIZE_ACCESS WRITE_OWNER_ACCESS WRITE_DAC_ACCESS READ_CONTROL_ACCESS DELETE_ACCESS SID: S-1-5-21-977737114-1106802783-817656539-500 ACE type: ACCESS ALLOWED (0) flags: 0 Specific bits: 0x1ff Permissions: 0x1f01ff: SYNCHRONIZE_ACCESS WRITE_OWNER_ACCESS WRITE_DAC_ACCESS READ_CONTROL_ACCESS DELETE_ACCESS...

Hi All, I was checking the access rights and a problem (hence a question) appeared: Who can delete a file through Samba ? Suppose we have the following situation: drwxrwxrwx john finance directory -rw-r--r-- jack finance directory/file Under unix everyone can delete the file. Under Samba, the documentation says (due to the Windows sementic) you also need the write access to the

...trans.c --- samba-3.0.23d/source/smbd/nttrans.c 2006-06-23 08:16:49.000000000 -0500 +++ samba/source/smbd/nttrans.c 2007-01-30 15:00:45.000000000 -0600 @@ -664,7 +664,7 @@ if (lp_acl_check_permissions(SNUM(conn)) && (share_access & FILE_SHARE_DELETE) && (access_mask & DELETE_ACCESS)) { #endif - status = can_delete(conn, fname, file_attributes, bad_path, True); + status = can_delete(conn, fname, file_attributes, bad_path, True, False); /* We're only going to fail here if it's access denied, as that's the only error we care about for "can we delete...

...trans.c --- samba-3.0.23d/source/smbd/nttrans.c 2006-06-23 08:16:49.000000000 -0500 +++ samba/source/smbd/nttrans.c 2007-01-30 15:00:45.000000000 -0600 @@ -664,7 +664,7 @@ if (lp_acl_check_permissions(SNUM(conn)) && (share_access & FILE_SHARE_DELETE) && (access_mask & DELETE_ACCESS)) { #endif - status = can_delete(conn, fname, file_attributes, bad_path, True); + status = can_delete(conn, fname, file_attributes, bad_path, True, False); /* We're only going to fail here if it's access denied, as that's the only error we care about for "can we delete...

We have moved from nt/2000 clients to XP clients and find that now the users cannot delete their own files even though they own them and the permissions are set to 777 on the files. Is this a configuration issue, do I need a newer version, or is this just a way for microsoft to make life difficult? Thanks for the help.

Am 5/9/20 um 3:32 PM schrieb Ralph Boehme via samba: > I have a WIP fix for master, can you give it a whirl? here it is. -slow -- Ralph Boehme, Samba Team https://samba.org/ Samba Developer, SerNet GmbH https://sernet.de/en/samba/ GPG-Fingerprint FAE2C6088A24252051C559E4AA1E9B7126399E46 -------------- next part -------------- A non-text attachment was scrubbed... Name:

...: 0x8004: SEC_DESC_DACL_PRESENT SEC_DESC_SELF_RELATIVE DACL ACL Num ACEs: 1 revision: 2 --- ACE type: ACCESS ALLOWED (0) flags: 0x00 Specific bits: 0x1ff Permissions: 0x1f01ff: SYNCHRONIZE_ACCESS WRITE_OWNER_ACCESS WRITE_DAC_ACCESS READ_CONTROL_ACCESS DELETE_ACCESS SID: S-1-1-0 So S-1-1-0 is "everyone." Is it because the uid/gid is "-1" in the above output causing my grief? Thanks! -aps

...LF_RELATIVE DACL ACL Num ACEs: 3 revision: 2 --- ACE type: ACCESS ALLOWED (0) flags: 0 Specific bits: 0x1ff Permissions: 0x1f01ff: SYNCHRONIZE_ACCESS WRITE_OWNER_ACCESS WRITE_DAC_ACCESS READ_CONTROL_ACCESS DELETE_ACCESS SID: S-1-22-1-0 ACE type: ACCESS ALLOWED (0) flags: 0 Specific bits: 0xa9 Permissions: 0x1200a9: SYNCHRONIZE_ACCESS READ_CONTROL_ACCESS SID: S-1-22-2-0 ACE type: ACCESS ALLOWED (0) flag...

...ate_disposition(401) map_create_disposition: Mapped create_disposition 5 to 12 [2002/05/13 15:40:24, 10] smbd/nttrans.c:get_filename_transact(290) get_filename_transact: data_offset = 53, data_len = 1, fname_len = 36 [2002/05/13 15:40:24, 10] smbd/nttrans.c:map_share_mode(500) map_share_mode: DELETE_ACCESS requested. open_mode = 20001 [2002/05/13 15:40:24, 10] smbd/nttrans.c:map_share_mode(528) map_share_mode: Mapped desired access 130196, share access 3, file attributes 80 to open_mode 20041 [2002/05/13 15:40:24, 5] smbd/filename.c:unix_convert(146) unix_convert called on file "\Lab5Circuit...