Hello there,
I am currently observing a strange behaviour of an OMV6 that was previously OMV4. Upgrade error my arse: I have already made a fresh test installation of OMV6, where Samba behaves identically when creating new files.
After the upgrade from OMV4 to OMV6, users reported problems with the permissions of new files in folders. Although neither the configuration of Samba nor the ACLs at command level had changed, SAMBA now creates files that only have write permissions for the group, but no longer have read permissions. In the SMB shares, "Inherit ACLs" and "Inherit Permissions" are activated and ACLs are used. This may be suboptimal, but it has always worked without any problems on OMV4.
Has anyone here ever observed this phenomenon? I suspect that Samba's behaviour has changed, but I can't quite understand why it is like this now. Of course, the original behaviour would be desirable. I cannot find any explanation why the file only gets Write for the group "testgroup".
Here are the steps to reproduce the behaviour:
Testfolder: "testfolder"
Testgruppe: "testgroup"
Testuser: "tna"
1. Storage > Shared Folders > Create > "testfolder" (Administrator: read/write, Users: no access, Others: no access)
2. Users > Groups > "testgroup" - member: tna
3. Services > SMB/CIFS > Shares "testfolder" with Inherit ACLs X and Inherit Permissions X, everything else ist default.
4. Storage > Shared Folders > Persmission > Read/Write für "tna"-User and "testgroup"
Some more details:
root@omv6test:/srv/dev-disk-by-uuid-5324294a-2f0e-44a7-b35a-861f808afdc8/testfolder# getfacl .
# file: .
# owner: root
# group: users
# flags: -s-
user::rwx
group::---
group:testgroup:rwx
mask::rwx
other::---
default:user::rwx
default:group::---
default:group:testgroup:rwx
default:mask::rwx
default:other::---
Alles anzeigen
root@omv6test:/srv/dev-disk-by-uuid-5324294a-2f0e-44a7-b35a-861f808afdc8/testfolder# ls -la
insgesamt 8
drwxrws---+ 2 root users 4096 11. Dez 22:34 .
drwxr-xr-x 4 root root 4096 11. Dez 21:44 ..
-rw--w----+ 1 tna users 0 11. Dez 22:34 456.txt
root@omv6test:/srv/dev-disk-by-uuid-5324294a-2f0e-44a7-b35a-861f808afdc8/testfolder# getfacl 456.txt
# file: 456.txt
# owner: tna
# group: users
user::rw-
group::---
group:testgroup:rwx #effective:-w-
mask::-w-
other::---
# This file is auto-generated by openmediavault (https://www.openmediavault.org)
# WARNING: Do not edit this file, your changes will get lost.
#======================= Global Settings =======================
[global]
workgroup = WORKGROUP
server string = %h server
dns proxy = no
log level = 0
log file = /var/log/samba/log.%m
max log size = 1000
logging = syslog
panic action = /usr/share/samba/panic-action %d
passdb backend = tdbsam
obey pam restrictions = no
unix password sync = no
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
pam password change = yes
socket options = TCP_NODELAY IPTOS_LOWDELAY
guest account = nobody
load printers = no
disable spoolss = yes
printing = bsd
printcap name = /dev/null
unix extensions = yes
wide links = no
create mask = 0777
directory mask = 0777
use sendfile = yes
aio read size = 1
aio write size = 1
time server = no
wins support = no
disable netbios = yes
multicast dns register = no
# Special configuration for Apple's Time Machine
fruit:aapl = yes
fruit:copyfile = yes
fruit:nfs_aces = no
#======================= Share Definitions =======================
[testfolder]
path = /srv/dev-disk-by-uuid-5324294a-2f0e-44a7-b35a-861f808afdc8/testfolder/
guest ok = no
guest only = no
read only = no
browseable = yes
inherit acls = yes
inherit permissions = yes
ea support = no
store dos attributes = no
vfs objects =
printable = no
create mask = 0664
force create mode = 0664
directory mask = 0775
force directory mode = 0775
hide special files = yes
follow symlinks = yes
hide dot files = yes
valid users = "tna",@"testgroup"
invalid users =
read list =
write list = "tna",@"testgroup"
Alles anzeigen