Hi, I have a strange problem with some folders shared by Samba.

In my home directory (share by samba) I have these files with this
permissions (only samples, it also happens with folders):

-rw-r----- 1 mark Domain Users 0 2010-11-24 14:30 a
-rw------- 1 mark Domain Users 0 2010-11-24 14:30 b

When I connect to USER Share (home) from any host (Windows or
Samba/Linux) as the correct user:

Samba version 3.2.5
PID     Username      Group         Machine                        
20557     mark          Domain Users  nexus

Service      pid     machine       Connected at
mark         20557   nexus         Wed Nov 24 14:30:47 2010

I only can see the 'a' file (the one which has read permission for the
group). I change the group to another one I cannot see the file in the
directory list despite being the owner.

Only if the file is owned by my group and has read permission for the
group the file appears in the share. Despite being hidden I can read the
file (or enter the folder) if I write the full path to it.

I don't know if is a misconfiguration (I attach smb.conf file). I
reviewed it and I havent found anything strange, and the /home/
filesystem is mounted without ACLs or strange things.

As you can see in the configuration I use LDAP in both severs and
clients to do the mapping between UNIX users and Samba Users. (Despite
the Domain Users name I'm not in a NT Domain, it is a single WorkGroup).

Any suggestions?

Marc Franquesa
Lady 3Jane http://www.l3jane.net/

### SAMBA general config

## Global Settings
workgroup           = HAKNAM
server string       = %h Samba Server
name resolve order  = host wins bcast
local master        = yes
enhanced browsing   = yes
security            = user

# Logging
log level = 3
syslog = 2
max log size = 8192
panic action = /usr/local/lib/smb/panic-action.sh

# Authentication and authorization
encrypt passwords = true
passdb backend    = ldapsam:ldap://ldap.l3jane.net
enable privileges = yes

# LDAP configuration
ldap ssl            = off
ldap admin dn       = cn=Samba,ou=DSA,dc=l3jane,dc=net
ldap suffix         = dc=l3jane,dc=net
ldap user suffix    = ou=Users
ldap group suffix   = ou=Groups
ldap machine suffix = ou=Computers
ldap idmap suffix   = ou=Idmap
ldap passwd sync    = yes
ldapsam:editposix   = no
ldapsam:trusted     = no

# LDAP management
add user script               = /usr/sbin/smbldap-useradd -a -n %u
add group script              = /usr/sbin/smbldap-groupadd
add machine script            = /usr/sbin/smbldap-useradd -w -i %u
add user to group script      = /usr/sbin/smbldap-groupmod -m %u %g
delete user script            = /usr/sbin/smbldap-userdel
delete group script           = /usr/sbin/smbldap-groupdel
delete user from group script = /usr/sbin/smbldap-groupmod -x %u %g

template homedir = /home/%U
guest account = nobody

# Network options
hosts deny = ALL
hosts allow =,,
socket options = TCP_NODELAY, SO_RCVBUF=8192 SO_SNDBUF=8192
deadtime = 5

# Limits
max smbd processes = 100

# Print Server
load printers = yes
printing = cups
printcap name = cups

# Master Browser
domain master = no
local master = yes
os level = 48

# Wins
wins server =

### Default SHARE Configuration

# Default Share Config
fstype = SMBFS
browseable = yes
guest ok = no
max connections = 10
admin users = root
vfs objects = audit
host msdfs = no

# Filename Case 
case sensitive = auto
default case = lower
preserve case = yes
short preserve case = yes

# Links
follow symlinks = yes
wide links = no

# File permissions
create mask = 0644
force create mode = 0400

directory mask = 0755
directory security mask = 0777

# Directory permissions

force directory mode = 0500

inherit owner = no
inherit permissions = no

# File browsing
hide dot files = yes
hide files = lost+found
hide special files = yes
hide unreadable = yes
veto files = lost+found

# Printer Shares
   comment = CUPS Printers
   path = /var/spool/samba
   browseable = yes
   public = yes
   guest ok = no
   writable = yes
   printable = yes 
   printer admin = root, @adm

    comment = Printer Drivers
    path = /etc/samba/drivers
    browseable = yes
    guest ok = no
    write list = root, @adm

# Server Shares
   comment = Art Design
   volume = ArtDesign
   path = /srv/art
   browseable = yes
   writable = yes

   comment = PhotoImage
   volume = PhotoImage
   path = /srv/images
   browseable = yes
   writable = yes

   comment = User HomeNet Directories
   volume = HomeNet
   path = /home/%U
   writable = yes
   guest ok = no
   create mask = 0600
   directory mask = 0700

To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Reply via email to