On 07/01/09 02:22, Jim Klimov wrote:
One other scenario suggested by our use of Samba shares to maintain a repository
of vendor documentation files, distros and source tarballs, etc. involved making
two Samba shares of the same directory.
For example, \\server\pub would be a read-only share available to anyone, and
\\server\pub$ would be a read-write share available to the share's admins (limited
by login names or groups, and/or IP addresses).
One point of this would be that even an admin accessing the resource shared as
\\server\pub would not be able to modify the data in it anyhow, including
accidents like a cat jumping onto the DEL key, a mouse misbehaving during
drag-and-drop, rampaging virus, etc.
You can do this with share level ACLs. You can manage them using
local Solaris commands (See "ACLs on Shares" on Doug's blog:
http://blogs.sun.com/dougm/) or using Computer Manager.
Is this scenario possible with Solaris kernel CIFS shares (I'm interested in
both
sharectl/sharemgr and zfs dataset property variants)?
While I'm at it, is it correct to assume that I can limit the admins' logins
and IP
addresses by access list on a share for CIFS as well as for NFS?
Yes, the same ro=access-list and rw=access-list properties are available
on SMB shares. See "New properties available for SMB", also on Doug's
blog.
Alan
_______________________________________________
cifs-discuss mailing list
[email protected]
http://mail.opensolaris.org/mailman/listinfo/cifs-discuss
