Linux - SoftwareThis forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
I have set up a samba machine that acts as a domain controller to replace the current windows 2000 server.
Everything works fine except permission to protect the file. The users could create/save any file under their domain/group. I am trying to find solutions that would allowed the user to create/edit but not deleting the file or folder.
I have tried many ways that i found in google but the result is not successful.
For example, i have one drafting group where all the users in the drafting groups are able to write,edit,create folder or file but do not have permission to delete. Only the manager have the access to delete the file/folder.
hmmm... but i have read somewhere that it can be done... you need to create mask xxxx to make it work... but then i have lost the url link to that site.
The problem would be that the creator of the file can still delete it. Editing requires write permission which would allow deletions.
You have user and group ownerships, read, write, and execute.
You can mask file permissions for certain users and groups but there is no delete in the file systems permissions, only read, write, and execute.
The only thing that makes sense to me for a file server is to mask files to be write for some user or group, and read only for others or for group.
I had a very successful one for some time at work and the groups had access to their specific folders. The creator in most cases should be the only person to have write access. If the file becomes obsolete they can change or delete it.
Then again,
I can't test this for you now but it's worth a try.
use create mask of 400, 440, or 444 whatever applies.
then use ...
write list = someuser
"someuser" being the filservers admin
This will mean the creator cannot edit the file.
Last edited by DavidPhillips; 06-13-2005 at 09:25 PM.
You can set stuff like this in Samba IIRC, but it's a PITA.
My suggestion is for something like this, either pour though the Samba docs (if there are any), or get a really good book on Samba. I've got one on Samba 2.2.x, and it tells how to do ACL's and other such advanced things.
I'll try to post back with what my Samba book has for doing ACL's in a bit, as I've got other stuff to do for now.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
