Hello There
I have an issue in file permission,I have configured an samba share drive,
created user and then shared it with other network computer(WINDOWS 7)
whenever an user creates an folder or file (like Excel) it shows up in read only mode..
I have ran the command :- chmod -R 777 <sharedFolder>
still when the users create a new folder, other cannot edit or modify the file
need help
OK this is kinda long, so I will shorten it as much as I can, as to not be long-winded.
My current network at home:
1 - CentOS 7 desktop (server)
1 - Ubuntu 14.04 desktop
1 - Fedora 21 laptop
2 - Windows 7 desktops
some other various windows boxes also that don't get used regularly, but are on the network.
My 2 Linux desktops (which I use as servers, but they really aren't) have shared folders on them, which I share to the network via Samba (CIFS). I use Samba because Linux is smarter than Windows and Windows won't read NFS, so I share them as Samba so all devices can see them.
Generally speaking, if I share the folders on each box as 0777, I have no issues. But lately I have been wanting to implement some better security, so I wanted to SETGID and chown the shared folders from the local machine to a specific group, then change the folders to 2774.
My problem is that I keep getting permissions errors when trying to connect from the other Linux machines, and sometimes the Windows machines also. My main question is: do I CHMOD 2774 the local mount-point before mounting it? Or so I CHMOD 2774 the shared folder on the other server, then mount it locally to a folder whose permissions are different? Or do I CHMOD both of them the same?
basically the uis and gid ownerships change on a local folder when I mount a shared drive to that folder, so when I try to write or sometimes read that local folder, I get permissions errors.
I can provide any additional info needed.
I am writing a script to check the log file in /var/log , some files are only read by root , but the script use general user to access the system ( as the system do not accept root to ssh directly ) , therefore , it could not read such files .
Would advise what is the best method to solve this problem , copy the file to a special folder ? allow root to ssh ? create a user with root permission ?
very thanks
I tried adding two users in apache group and given 775 permission to Document root but user is not able to write into files in DocumentRoot
Tried adding user and DocumentRoot Folder in sudo file but not able to do it recursively
please help
Thanks for reply,
I have already given chmod 775 -R DocumentRoot - for recursively writting permission
You have told to add user in www-data group and chmod 775 -R to DocumentRoot
usermod -a -G www-data <user1>
How can users in www-data can able to write in DocumentRoot which has apache:apache owner and group
please clarify...
Done below steps to solve this:
1) I have created a new group webdata and added required users in this group
2) set sticky bit to document root with below command
setfacl -m g:webdata:rwx -R /path/to/documentroot/
this command will set rwx permission to DocumentRoot so that members in webdata can have full access but still DocumentRoot user and group will be apache
Changing umask value for files and directories take effect after reload:
/etc/profile
/etc/bashrc
default permission for all users:
-rw-r--r--
above permission is edited to:
-rw-rw-r--
If a specific user in group having only read permission to a file/directory is created before reload,and Linux server reloads, that user gets rw permission to that file/directory. what is the alternative of securing:
/etc/profile
/etc/bashrc
apart from giving the two files access to root user only, and locking out all other users?
I'm not sure if this should be in the newbie section, but I am somewhat of a newbie, so here goes:
In a home network, I have an Xubuntu file server with a Samba share that has me as the owner and authorizes me to access the share.
On another computer, I have Mint running and providing various services, including webdav on Apache with SSL. In the var/www/webdav directory of the Mint computer, I have the Xubuntu Samba share mounted. This is supposed to allow me to access the Samba share from the public internet.
Everything works fine except for one big problem: Apache requires the owner of the webdav directory to be user "www-data," and I can't figure out how to give www-data access to the Samba share, since www-data is not a user on the Xubuntu computer, and moreover I don't know the password for user www-data.
Can anyone figure out how to get around this problem? In particular, is there a way to configure the Samba share on the Xubuntu computer so that user www-data on the Mint computer can have access to it?
(Incidentally, I have my reasons for using two computers, one as a file server and one as a web server. Also, I am thinking about switching to NFS instead of Samba, but I'm not sure if even that would solve my problem.)
System Info:
I have normal user in CentOS 7 whose name is "mostafa" (the name of the account).
I naturally have another user called root with all privileges. User "mostafa" is put into sudoers file, too.
The OS is installed in VmWare, so the system is all mine.
Problem:
Now I create a file with touch file.sh and put a command in it, but when I want to run it with
Code:
sudo ./file.sh
, an error is shown that the command
Code:
./file.sh
does not exist. But if I
Code:
sudo chmod 777 ./file.sh
then it gets run. My question is that, why should I use
Code:
chmod 777
when I myself have created the file, and I am in sudoers.
Can anyone explain me why shuold I still use
Code:
sudo chmod 777
when the creator of the file is me.
Hi guys,
Need help configuring my samba file server, i have 3 folders
[global]
workgroup = WORKGROUP
server string = Samba Server Version %v
map to guest = Bad User
hosts allow = 127. 192.
log file = /var/log/samba/log.%m
max log size = 50
security = share
load printers = no
cups options = raw
printing = bsd
printcap name = /dev/null
disable spoolss = yes
[homes]
comment = Home Directories
browseable = no
writable = yes
valid users = %S
; valid users = MYDOMAIN\%S
;[printers]
; comment = All Printers
; path = /var/spool/samba
; browseable = no
; guest ok = no
; writable = no
; printable = yes
[BIP]
path = /home/BIP
writable = yes
browseable = yes
guest ok = yes
guest only = yes
create mode = 0777
directory mode = 0777
share modes = yes
[Surya Kapuas Perkasa]
path = /home/suryakapuasperkasa
writable = yes
browseable = yes
guest ok = yes
guest only = yes
create mode = 0777
directory mode = 0777
share modes = yes
[Misc]
path = /home/Miscelaneous
writable = yes
browseable = yes
guest ok = yes
guest only = yes
create mode = 0777
directory mode = 0777
share modes = yes
read only = no
The BIP and Surya Kapuas Perkasa can be accessed by windows users, but the Misc, cannot, can somebody help me with solution pls, thanks
I want to copy a folder and have the same permission as a existing folder , I tried cp -r -p may copy permission but it also copy everything includes sub-directory and files to new folder , would advise the way how to create a folder with copying all files to new created folder ? thanks
I have set up a SFTP which I can connect to, go to the right directory and read/write files to.
The full path is home/sftpuser/SFTP/Customer
The user "sftpuser" I am connecting with is in the group "ftpusers" which has read/write access.
That works fine.
Here is my sshd_config:
Code:
Match Group ftpusers ChrootDirectory /home/%u/
ForceCommand internal-sftp
AllowAgentForwarding no
AllowTcpForwarding no
X11Forwarding no
However, I made a samba share of the folder Customer, when I go to the IP adress on a Windows machine "\\10.0.0.1\" I can see the folder Customer, when entering it requests user/pass and afterwards gives an error: you have not the right permissions.
In Webmin:
Customer /home/sftpuser/SFTP/Customer Read/write to everyone
My smb.conf:
Code:
[global]
syslog = 0
log file = /var/log/samba/log.%m
read raw = no
write raw = no
passdb backend = tdbsam
workgroup = DOMAIN
usershare allow guests = yes
socket options = TCP_NODELAY
pam password change = yes
passwd program = /usr/bin/passwd %u
unix password sync = yes
obey pam restrictions = yes
passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
server role = standalone server
server string = %h server (Samba, Ubuntu)
max log size = 1000
map to guest = bad user
panic action = /usr/share/samba/panic-action %d
dns proxy = no
[Customer]
force create mode = 755
browsable = yes
public = yes
path = /home/sftpuser/SFTP/Customer
force directory mode = 755
writeable = yes
valid users = @ftpusers
force group = ftpusers
write list = @ftpusers
I have been struggling for 3 days and am totally out of ideas.
LS -L for the folder:
Code:
total 4
drwxrwx---+ 2 sftpuser ftpusers 4096 Apr 9 11:35 Customer
- I have samba server and ldap server both on different machine. I want to authenticate all the ldap user on samba share to giving access permission for user's on share. I have refer too many document for that but I am unable to access share with ldap user's username and password. I have referred below link
https://wiki.samba.org/index.php/Samba_&_LDAP
http://www.unixmen.com/setup-samba-d...-ubuntu-13-04/
How to troubleshoot for user authentication on samba share?