Thanks, donna, but I actually created the file via the shell.
Raymond Shahan
Computer Programmer
REPUBLIC TITLE OF TEXAS, INC.
2701 W Plano Parkway
Plano, TX 75075
direct 214.556.0202
main 972.578.8611
fax 972.424.5621
www.republictitle.com
[log in to unmask]
-----Original Message-----
From: HP-3000 Systems Discussion [mailto:[log in to unmask]] On
Behalf Of donna hofmeister
Sent: Saturday, November 04, 2006 10:30 AM
To: [log in to unmask]
Subject: Re: [HP3000-L] The ACD thing sucks
ray did exactly say...but if the problem is coming courtesy of
samba...there is a 'create mask' option that may help. here's an
example: create mask = 0766
here's the smb.conf help text:
A synonym for this parameter is create mode .
When a file is created, the necessary permissions are calculated
according to the mapping from DOS modes to UNIX permissions, and the
resulting UNIX mode is then bit-wise 'AND'ed with this parameter. This
parameter may be thought of as a bit-wise MASK for the UNIX modes of a
file. Any bit not set here will be removed from the modes set on a file
when it is created.
The default value of this parameter removes the 'group' and 'other'
write and execute bits from the UNIX modes.
Following this Samba will bit-wise 'OR' the UNIX mode created from this
parameter with the value of the force create mode parameter which is set
to 000 by default.
This parameter does not affect directory modes. See the parameter
directory mode for details.
See also the force create mode parameter for forcing particular mode
bits to be set on created files. See also the directory mode parameter
for masking mode bits on created directories. See also the inherit
permissions parameter.
Note that this parameter does not apply to permissions set by Windows
NT/2000 ACL editors. If the administrator wishes to enforce a mask on
access control lists also, they need to set the security mask.
Default: create mask = 0744
Example: create mask = 0775
hth - d
---
Donna Hofmeister, HP-CSA Sr. System Programmer
dgarverick -at- longs -dot- com
925-210-6631 Longs Drug Stores
>>>MY opinions, not Longs Drug Stores'<<
----- Original Message ----
From: "Vance, Jeff H (Cupertino)" <[log in to unmask]>
To: [log in to unmask]
Sent: Friday, November 3, 2006 2:01:03 PM
Subject: Re: [HP3000-L] The ACD thing sucks
Hi Ray,
I tried to dup this and couldn't. Here's what I did:
1. log on as ordinary user:
:showvar hp@capf
HPACCTCAPF =
SM,AM,AL,GL,DI,OP,CV,UV,LG,PS,NA,NM,CS,ND,SF,BA,IA,PM,MR,DS,PH
HPGROUPCAPF = BA,IA
HPUSERCAPF = ND,SF,BA,IA
(note: minimal user caps)
2. go into shell and create a new file named "foo"
MPE/iX Shell and Utilities (A.50.02)
COPYRIGHT (c) Hewlett-Packard Company 1992, All Rights Reserved.
########################################################################
shell/iX> touch foo
shell/iX> ll foo
-rw-rw---- 1 USER1.VANCE VANCE 0 Nov 3 16:46 foo
shell/iX> echo Line 1 >foo
shell/iX> cat foo
Line 1
shell/iX>
3. listf same file in CI:
:listfile ./foo,4
*****************************************
FILE: /VANCE/TEST/foo
ACCOUNT ------ READ : ANY
WRITE : AC
APPEND : AC
LOCK : ANY
EXECUTE : ANY
GROUP -------- READ : GU
WRITE : GU
APPEND : GU
LOCK : GU
EXECUTE : GU
SAVE : GU
FILE --------- READ : ANY FCODE: 0
WRITE : ANY **SECURITY IS ON
APPEND : ANY ACD EXISTS
LOCK : ANY
EXECUTE : ANY
FOR USER1.VANCE: READ, WRITE, RACD
and:
:listfile ./foo,-2
PATH= /VANCE/TEST/
------------ACD ENTRIES-------------- FILENAME
$OWNER : R,W,RACD foo
$GROUP_MASK : R,W,RACD
$GROUP : R,W,RACD
@.@
4. print file in CI:
:print ./foo
Line 1
5. copy file in CI:
:copy ./foo ./foo1
:print ./foo1
Line 1
etc...
Jeff Vance, vCSY
> -----Original Message-----
> Really, I mean, how much more frustrating can we make this -
> we have the
> MPE security, then the POSIX permissions and the MPE ACD
> mess. Growl!!
>
> I created a file in POSIX using touch (wow, what genius came up with
> 'touch' as the verb to use for building a file?), but the
> ACD's created
> for the file won't allow me access in MPE, yet the POSIX permissions
> show rw for everyone/everything...I'm one frustrated
> newbie...I'm going
> to lunch - some liquefied hops and barley should help clear this up.
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
> <http://www.republictitle.com/>
>
> Raymond Shahan
>
> Computer Programmer
> REPUBLIC TITLE OF TEXAS, INC. <http://www.republictitle.com/>
> 2701 W Plano Parkway
> <http://maps.yahoo.com/maps_result?addr=2701+w+plano+parkway&c
> sz=75075&c
> ountry=us&new=1&name=&qty=>
> Plano, TX 75075
>
>
>
>
> direct 214.556.0202
> main 972.578.8611
> fax 972.424.5621
>
> www.republictitle.com <http://www.republictitle.com/>
>
> [log in to unmask]
>
>
>
>
>
>
> * To join/leave the list, search archives, change list settings, *
> * etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
>
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
|
