LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 03-12-2008, 10:45 AM   #1
magiconexxx
LQ Newbie
 
Registered: Nov 2004
Posts: 4

Rep: Reputation: 0
Question folder permissions/acl's set correctly, vmware console is ignoring them?


Hi all,

I'm trying to setup a vmware server running on SLES 10.1 that is a windows domain member. I have a folder called "/virtual", where all of the virtual machines are stored. I would like to share this folder out with write permissions to a vmwareadmin group, so they can manage and create new virtual machines. I have set the permissions on the folder (with ACL's) as such:

getfacl virtual/

# file: virtual
# owner: root
# group: DOMAIN\134vmwareadmins
user::rwx
group::rwx
mask::rwx
other::r-x
default::user::rwx
default::group::rwx
default::mask::rwx
default:ther:r-x

ls -l
drwxrwxrwx+ root DOMAIN\vmwareadmins

If I log in as a user, who is a member of DOMAIN\vmwareadmins, and create a folder, the folder properly inherits the rights of the parent directory. However, if I use the VMWare console as that user and create a new virtual machine, the folder that gets created does not have the proper permissions:

getfacl virtual/Red\ Hat\ Linux

#file: virtual/Red\40Hat\40Linux
#owner: DOMAIN\134testuser
#group: DOMAIN\134vmwareadmins
user::rwx
group::rwx #effective:r-x
mask::r-x
other::r-x
default::user::rwx
default::group::rwx
default::mask::rwx
default:ther::r-x

ls -l
drwxr-xr-x+ DOMAIN\testuser1 DOMAIN\vmwareadmins

As you can see, the mask that gets created for that folder is incorrect. It should be rwx, not r-x, so the effective permissions for the group is incorrect. It's as if VMWare console is ignoring folder permissions and creating its own mask. Note that I have tried unchecking the "make virtual machines private" option when creating a new virtual machine.

Any ideas on what might be causing this?

Last edited by magiconexxx; 03-12-2008 at 10:46 AM.
 
Old 03-13-2008, 05:21 AM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 29,415
Blog Entries: 55

Rep: Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594Reputation: 3594
No idea but if VMware is the only app exhibiting this behaviour I'd say it's one for VMwares bug tracker.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Automatically set permissions of new files created within a specific folder Lorian Linux - Desktop 2 03-03-2007 03:17 PM
cannot execute binary file, though ownership and permissions are set correctly :( rahmmandel Linux - Software 6 01-11-2007 08:45 AM
How to set folder permissions to allow 777 for all files s0n|k Linux - Newbie 3 11-08-2006 09:26 AM
permissions difference between /home/..../folder and /root/folder darkleaf Linux - General 3 07-21-2005 05:23 PM
Samba ignoring read/write permissions? GT3NE1 Linux - Software 0 08-30-2004 05:23 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 03:53 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration