Jim Klimov <[email protected]> wrote:
Okay, I think I've got it after a few restarts of idmap and smb/server.
At least for the past few days I haven't seen other users' shares :)
New questions spin off, though:
1) Is it possible to make an invisible share *not* by the way of
smbautohome?
For example, to make some service directories not getting listed in the
server
shares browse list? Like SAMBA's "browseable = no" option, or Windows'
"dollar-shares"? Can this behavior be implemented with ACLs or sharesmb
options?
Yes, use sharemgr or Computer Manager to create shares with names that
end in $: C$, ADMIN$, whatever$ etc.
2) A yes-no question: Is it possible/supported to predefine the CIFS ACL (as
the
ZFS ACL for the file ~user/.zfs/shares/user) for smbautohomes? The salt of
the
question is: would this ACL file get removed when the share is automatically
un-shared? Or when any share is unshared manually, for that matter? Is there
some fixed commitment (PSARC?) to always do this in some certain manner?
We currently don't support ACLs on transient (smbautohome) shares,
although you do have control via the directory ACL. Do you see a need
for share ACLs for smbautohome shares, i.e. do you see a need to have
different protection on remote access versus local access for these shares?
Note that, if we did this, the ACL would probably be per rule and it would
not appear in .zfs/shares since the shares are not persistent.
Alan
_______________________________________________
cifs-discuss mailing list
[email protected]
http://mail.opensolaris.org/mailman/listinfo/cifs-discuss
