I just installed a new copy of OMV 1.9 (Kralizec) on all new hardware and enabled the SMB/CIFS service since I'm running a mixed environment of Windows and Linux machines.
I have a user called "taz" that is a member of a group called "nas-admin" that I'm using to manage the OMV shares. What I've noticed is that the permissions for the directories and files are different depending on whether the files were created on a Linux client or a Windows client. I'm using the same OMV credentials ("taz") when accessing the share either through Windows or Linux.
For example, here are the permissions as seen from the OMV CLI:
drwxr-s---+ 2 taz users 4096 Mar 28 18:13 Linux
drwxrws--x+ 2 taz users 4096 Mar 28 18:13 Windows
Here is the file ACL values for the Linux directory:
# file: Linux
# owner: taz
# group: users
# flags: -s-
user::rwx
user:taz:rwx #effective:r-x
group::rw- #effective:r--
group:nas-admin:rwx #effective:r-x
group:nas-users:r-x
mask::r-x
other::---
default:user::rwx
default:user:taz:rwx
default:group::rw-
default:group:nas-admin:rwx
default:group:nas-users:r-x
default:mask::rwx
default:other::---
Alles anzeigen
Here's the file ACL for the Windows directory:
# file: Windows
# owner: taz
# group: users
# flags: -s-
user::rwx
user:taz:rwx
group::rwx
group:nas-admin:rwx
group:nas-users:r-x
mask::rwx
other::--x
default:user::rwx
default:user:taz:rwx
default:group::rw-
default:group:nas-admin:rwx
default:group:nas-users:r-x
default:mask::rwx
default:other::---
Alles anzeigen
Here are the file permissions for the Linux and Windows files repsectively:
-rwxr-x---+ 1 taz users 0 Mar 28 18:20 EmptyDoc.txt
-rwxrwx---+ 1 taz users 0 Mar 28 18:21 EmptyDoc.txt
Here is the file ACL values for the Linux file:
# file: Linux/EmptyDoc.txt
# owner: taz
# group: users
user::rwx
user:taz:rwx #effective:r-x
group::rw- #effective:r--
group:nas-admin:rwx #effective:r-x
group:nas-users:r-x
mask::r-x
other::---
Here is the file ACL values for the Windows file:
# file: Windows/EmptyDoc.txt
# owner: taz
# group: users
user::rwx
user:taz:rwx
group::rw-
group:nas-admin:rwx
group:nas-users:r-x
mask::rwx
other::---
The file permissions and ACL values seen for the directory and file created under the Linux environment are correct in the way the ACL is configured for the share.
Based on my understanding, regardless of the client, the directories/files created would have the same permissions. Why are the files created in the Windows environment allowing file write access to the group and execute access to "others" for the directory?