Re: [cifs-discuss] Opensolaris/ZFS as a file server in a Windows domain

Mon, 23 Nov 2009 16:27:28 -0800 

Thanassis Tsiodras wrote:

Perfect, thanks - that puts my mind at ease :-)

A relevant question, for backups of the file server:
Besides "zfs send | ssh ... ", are there any other backup mechanisms that store these "special" smb-generated ACLs? 

There are no special smb-generated ACLs.  ZFS has only one
ACL format.  Anything that can backup/restore ZFS will work
correctly.
Preferably, some that offer individual file retrieval possibility (like tar - which again according to Google, doesn't save them for ZFS)? 

NDMP

I haven't checked but Nevada tar and pax may store/restore ZFS
ACLs using extended tar headers, similar to the way that ndmpd
on Nevada does.

Alan


Thanassis.
On Mon, Nov 23, 2009 at 11:10 AM, Jordan Brown <[email protected] <mailto:[email protected]>> wrote: 

    Thanassis Tsiodras wrote:

        If I use the share from a Windows PC, where a domain user has
        logged in, the generated folders/files indeed seem to belong to
        the same user (when reviewed from another machine). The ACLs
        appear to survive reboots...

        Do they? i.e. is this guaranteed?


    Yes, it is guaranteed.


        The idmap documentation I read seems to suggest that even though
        idmap attempts to retain the same ephemeral UID for the same
        Windows SID, this is not guaranteed... the UID might change
        after a reboot of OpenSolaris.


    It actually makes no attempt whatsoever to retain the same ephemeral
    UID across reboots.  The ephemeral UID is unimportant... ephemeral.
     It is never, ever written to disk.  What's stored on the disk is
    the Windows-style SID for the user, not a UNIX-style UID.  The
    ephemeral ID is used only momentarily, as the user's identity is
    passed up and down through layers that know only how to handle UIDs.

    I'm sure there's a white paper or blog entry somewhere describing
    the whole architecture, but I don't immediately know where.  If
    you're interested I'll see if I can dig it up.




--
What I gave, I have; what I spent, I had; what I kept, I lost. -Old Epitaph


------------------------------------------------------------------------

_______________________________________________
cifs-discuss mailing list
[email protected]
http://mail.opensolaris.org/mailman/listinfo/cifs-discuss


_______________________________________________
cifs-discuss mailing list
[email protected]
http://mail.opensolaris.org/mailman/listinfo/cifs-discuss

Reply via email to