NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
User and group broken permissions
Hi, I am using latest OS 6.5.1 I setup a share called "torrents" I have two groups: users and famille famille group has one user: enfants In SMB Network access: users: r/w - famille: no acces...
Can you clarify which one of my expectations you disagree with please (the effective permissions sections in long post)?
In some situations, I have found that a read/only user member of a read/write group gets read/write access and at the same time a user with no specific permission member of a read/only group gets no access.
In some situations, I have found that a read/only user member of a read/write group gets read/write access and at the same time a user with no specific permission member of a read/only group gets no access.
omicron_persei8 wrote:
Can you clarify which one of my expectations you disagree with please (the effective permissions sections in long post)?
In some situations, I have found that a read/only user member of a read/write group gets read/write access and at the same time a user with no specific permission member of a read/only group gets no access.- read/only user member of a read/write group gets read/write access: should never occur as user privileges should be considered before group. This is something like escalating permissions
- a user with no specific permission member of a read/only group gets no access: this should be expected. We need however an "inherit permissions from group" as default to avoid a no access at all for any new user or a r/w access by default for every new user
Basically, things need to be clarified and made without any confusion + fixing the users escalating permissions depending on scrambled group issues for now.
As I posted above, here's what coud be done:Answer these 2 questions:
- what is the meaning of being able to setup separately the permissions of owner_user + the corresponding user and owner_group + corresponding group ? Which one will have the priority if we setup owner_user and the corresponding user differently ?
- what is the point of setting up group permissions if users of the actual group will have by default no read and no write access ?
Implement the following fixes:
- fix the current bugs of users / groups
- remove the unclear and redundant way allowing to set up two different access permissions for the same members/groups as in point 1
- in addition to the ro and rw options, add an option "inherit group permissions". That way, it is clear that:
- nothing is checked gives no mount access
- ro or rw if we need exceptions for the user. Else, "inherit group permissions" set by default for new users of a given group
- if we modify an existing group permissions, ask if we want to modify permissions for all its existing members or not (across all shares)
- if we modify the group for a given a user, ask if the user permissions should be changed to inherit the new group permissions, for all the shares
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
