Well I've managed to figure this out myself. Here is the solution for anyone reading this later on.
SAMBA : specify a default umask per share in /etc/samba/smb.conf
ie - I added
create mode = 0660
directory mode = 0770
to my share template.
netatalk : The version of Netatalk I was using was broken, upgrading to 1.5.3-1 solved my prolbems. A helpfull guy also pointed me here to created a custom umask
quote : "You might want to have a look at afpd's -m switch to force an umask? This is one of the switches currently documented nowhere except the sources:
http://www.geocrawler.com/lists/3/So...15/75/8350642/
ftp : for wu-ftp on redhat 7.2 you specify a default umask for all users in /etc/ftpaccess. This is the same as using the -u argument in /etc/xinetd.d/wu-ftpd.
Just add
defumask 0007 (in my case)
This will be overridden by any other defumask commands for specific groups/users and also any upload directives.