Beiträge von Arne

Thanks, I put a report here: http://bugtracker.openmediavault.org/view.php?id=1005

Hmm no, unfortunately no real difference in smb.conf files. Of course, with recycle bin enabled, the addition lines in share definitions are

vfs objects = recycle
recycle:repository = .recycle/%U
recycle:keeptree = yes
recycle:versions = yes
recycle:touch = yes
recycle:directory_mode = 0777
recycle:subdir_mode = 0700
recycle:exclude = 
recycle:exclude_dir = 
recycle:maxsize = 0

However, no change in the global settings. In the meantime, I have also changed the samba log level from none to full - no difference.
Interestingly, there is an automatic file saving script running for a file on the share, which was started before I activated the recycle bin today. This event is logged as it should.

Thanks for the link! I managed to configure full_audit, also following a short tutorial here http://moiristo.wordpress.com/…ba-logging-user-activity/ as a first step.
Logging into syslog works now for SMB shares. Curiously, for any pwrite activities (moving a file to the share), I sometimes get up to ten entries for that single file and action, giving all the same information. For other files, this does not happen. Any hints?

I furthermore found that with these entries

vfs object = full_audit
full_audit:prefix = %u|%I|%m: %S
full_audit:success = mkdir pwrite rename unlink rmdir
full_audit:failure = none
full_audit:priority = NOTICE

logging is only active if the recycle bin is not enabled for a share. Even file creation and renaming is not logged when using the recycle bin. However I'd like to have both: recycle bin and logging.

I just recognized that SMB user activities are shown in the OMV gui under System Logs/Syslog. Logs are however a bit strange: If I open and close a file on the server (Windows SMB network connection), I get 48 entries (half/half) for opening and closing that single file once.
When I delete that file on the server, this is again logged as opening/closing with the same amount of entries, erasing (as word "erasing" or similar) itself is however not logged as such.

Hi there,

we are running a file server with OMV and roughly twenty users. Unfortunately, one of our users seem to have started a deletion process and we therefore lost couply of TB on data. Luckily, the last backup was just a few days ago, so I'm currently restoring data. In the process of figuring out what exactly happened here, I found that I unfortunately did not set any logging for samba shares so far.

In order to track all user activities regarding file handling (copy, move, erase processes), I set the SMB/CIFS log level to "full" now. This has been written to the /etc/samba/smb.conf file as well (log level = 3, syslog = 3). Log files are written for each machine (log file = /var/log/samba/log.%m). However, all these files are empty.
During any file handling process, the OMV gui itself lists all user activities under Diagnostics/Services/SMB/CIFS, giving logged users, services and locked files. Especially the latter ist what I'm interested in and what I'd like to log into the user files. Any suggestions how to do this?

Furthermore, I think that SMB/CIFS logs do not log any activities when users are connected to the server via SSH (terminal) and mount folders via SSHFS. How do I track these activities?

Thanks,
Arne

Thanks, I will have a closer look on it.

Hi, after creating my post, I realized that you have/had the same question.
Here is the link: http://forums.openmediavault.org/viewtopic.php?f=16&t=3467 inlcuding some final conclusions about this.

Arne

Thanks guys, that already helped a lot. Let's see whether it is a kind of bug or not.

Just not to make a double post, I'm referring to this thread: http://forums.openmediavault.org/viewtopic.php?f=16&t=3025.
Please have a look at the "1" set for users and others permission. This happens in case of SMB-created folders (...x) in the end, see my first post. It however can't be selected via GUI in OMV directly (you can only chose standard read, write, no permission) , so I'm not sure if it is really meant to be like this - or if it is a bug.

Arne

Ok. So there is no security issue?

I'm just wondering why it gives a "1" in the folder permission OMV gui mask. I would not call it a "bug", but why is there no option directly selecting this via the gui - and therefore giving "1" instead?

Arne

I just noticed that this may exactly be the same as given here: http://forums.openmediavault.org/viewtopic.php?f=16&t=3025 as I have a "1" for those folders created via SMB as well.

Hey there,

I'm currently setting up a file server with 18TB space (XFS) as RAID6 as an upgrade of our old Solaris system. I use the latest 0.5. OMV version.
Up to approx. 20 users wil have access to that server, for which reason I'm right now testing folder and file permissions. Users connect to the server via SMB (Windows), SSH (Ubuntu, Kubuntu) and ssfs on Linux machines. I'm getting different permissions when creating folders in different ways and would like to figure out why:

- Connected via SMB on Windows: New folder gets "drwxrws--x" (x in the end)
- Connected via SHH (terminal), Ubuntu: New folder gets "drwxrws---" (so no x in the end)
- Connected via sshfs, Ubuntu: New folder gets "drwxrws---" (so no x in the end)

When creating a textfile within each of the folders, permissions are "-rwxrwx---" (so no x in the end) in all cases.

Can someone explain to me the difference, the reason and what is "better"?

Furthermore, a more general question: When creating a folder in both Windows (SMB) and Ubuntu (via Virtualbox), new folders have the username as owner in case I connected to the fileserver with the same username as on my machine. In case I connect to the fileserver with a different user, new folders get "1001" as owner.

Arne