NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
User and group broken permissions
Hi, I am using latest OS 6.5.1 I setup a share called "torrents" I have two groups: users and famille famille group has one user: enfants In SMB Network access: users: r/w - famille: no acces...
So for Samba, a read/only user member of a read/write group gets not the most specific permission but the highest permission? Read/write? This makes the GUI confusing.
The fact that the permissions applied to group "users" even to non-members looks like a bug to me. Either you can't leave the group or you can and shouldn't get its permissions.
In above testing, when the group users don't have any permission, a user with no specific permission does not inherit the read/only permission from its group but does inherit the read/write permission. This is confusing.
The fact that the permissions applied to group "users" even to non-members looks like a bug to me. Either you can't leave the group or you can and shouldn't get its permissions.
In above testing, when the group users don't have any permission, a user with no specific permission does not inherit the read/only permission from its group but does inherit the read/write permission. This is confusing.
omicron_persei8 wrote:
So for Samba, a read/only user member of a read/write group gets not the most specific permission but the highest permission? Read/write? This makes the GUI confusing.
No, as I noted in my above edited post (under Reference), a user always takes precedence over group. A user should never escalate its permissions above what it is assigned by admin. In this case, GUI is admin.
I am not sure about Samba, but I expected it to act like linux permissions in ACL mode.
In my case, if I want to forbid mount rights to a user, I have to uncheck every permission from every group, and don't give the user any permission. owner_user and owner_group must have r/w access, or no one will have access. This suggests that they use it like a no ACL scenario, which is not what we expected from the GUI and from the samba.conf file.
I tested many times and the user won't have access to the share
Basically. I unckeck permissions from groups and only set the permissions per user. Owner user and owner group must have r/w access. This is the actual situation, but maybe there are exceptions, since it is a bug
In anycase, the situation is clearly a bug
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
