> -----Original Message----- > From: BeavieS [mailto:beav...@gmail.com] > Sent: 24 May 2012 14:31 > > Hello, i've seen this error on the mailing list but no solutions. > > Problem: No user can execute an .exe file from a group share under any > windows version (wXP til Windows 7). > > Permisions: Every user can read, write, delete, etc in that share. > I've chmoded 777 the file but for nothing. The user can copy the .exe > file to another location like desktop and then can execute it (is a > portable aplication) with no problems. > > Strange behaviour: The most strange is that if an user copies the .exe > file to their 'home' (his private share on the samba server) then they > CAN run it!. > > Another clue: the admin users of the share CAN execute the .exe file > > CONFIGUTARION > It's an standalone server joined on a Windows 2003 domain > > [global] > workgroup = HCG > realm = SOME.ACTIVEDIRECTORY.DOMAIN > server string = Servidor de Datos > security = ADS > map to guest = Bad User > obey pam restrictions = Yes > syslog = 0 > log file = /var/log/samba/log.%m > max log size = 1000 > load printers = No > printcap name = /dev/null > disable spoolss = Yes > domain master = No > dns proxy = No > panic action = /usr/share/samba/panic-action %d > template shell = /bin/bash > winbind separator = / > winbind enum users = Yes > winbind enum groups = Yes > winbind use default domain = Yes > idmap config * : range = 10000-20000 > idmap config * : backend = tdb > printing = bsd > > [homes] > comment = Directorio personal > path = /home/%S > valid users = %S > force group = users > read only = No > create mask = 0600 > directory mask = 0700 > browseable = No > > [administracio] > path = /home/administracio > valid users = @administracio > admin users = ds > read only = No > create mask = 0660 > directory mask = 0770 > inherit acls = Yes > inherit owner = Yes > vfs objects = acl_xattr, full_audit > full_audit:priority = notice > full_audit:facility = local7 > full_audit:failure = connect > full_audit:success = rmdir rename unlink > full_audit:prefix = Administracio|%u|%m > > So an user of @administracio group can execute .exe files in its home > share but NOT the same .exe file in [administracio] share. Except user > 'ds' that it is an admin user of the share. > > ls -l /home/administracio/program.exe > -rwxrwxrwx 1 administrador administracio 582656 may 23 13:26 > /home/administracio/program.exe > > ls -l /home > drwxrws--- 56 administrador administracio 4096 may 24 15:01 > administracio > > (althought chmodig 777 /home/administracio don't work). > > Samba version 3.6.3
I'm sure I saw this problem a long time ago - now to see if I can remember the solution... Windows security settings? It identifies the file as being "remote" (or possibly "Local-intranet") and Windows is set to not trust remote files. Moray. "To err is human; to purr, feline." -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba