diff options
author | Alexander Werth <alexander.werth@de.ibm.com> | 2013-05-02 17:45:23 +0200 |
---|---|---|
committer | Andrew Bartlett <abartlet@samba.org> | 2013-05-09 06:18:21 +0200 |
commit | dae5f1943e321f3ba9c8b25a0d49a7323eeae25d (patch) | |
tree | 0cb76f60b4635c38420e5d398b025a950eca9af7 | |
parent | a9f75bd3b7e86090eb95ae3d9c3dce787befcfc1 (diff) | |
download | samba-dae5f1943e321f3ba9c8b25a0d49a7323eeae25d.tar.gz samba-dae5f1943e321f3ba9c8b25a0d49a7323eeae25d.tar.bz2 samba-dae5f1943e321f3ba9c8b25a0d49a7323eeae25d.zip |
s3: Update README.nfs4acls.txt
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
Reviewed-by: Jeremy Allison <jra@samba.org>
-rw-r--r-- | source3/modules/README.nfs4acls.txt | 23 |
1 files changed, 15 insertions, 8 deletions
diff --git a/source3/modules/README.nfs4acls.txt b/source3/modules/README.nfs4acls.txt index 1cb08877d3..3594aafee8 100644 --- a/source3/modules/README.nfs4acls.txt +++ b/source3/modules/README.nfs4acls.txt @@ -1,7 +1,7 @@ Configuring NFS4 ACLs in Samba3 =============================== Created: Peter Somogyi, 2006-JUN-06 -Last modified: Peter Somogyi, 2006-JUL-20 +Last modified: Alexander Werth, 2013-MAY-02 Revision no.: 4 ------------------------------- @@ -13,13 +13,20 @@ Each parameter must have a prefix "nfs4:". Each one affects the behaviour only when _setting_ an acl on a file/dir: mode = [simple|special] -- simple: don't use OWNER@ and GROUP@ special IDs in ACEs. - default -- special: use OWNER@ and GROUP@ special IDs in ACEs instead of simple user&group ids. -Note: EVERYONE@ is always processed (if found such an ACE). -Note2: special mode will have side effect when _only_ chown is performed. Later this may be worked out. - -Use "simple" mode when the share is used mainly by windows users and unix side is not significant. You will loose unix bits in this case. -It's strongly advised setting "store dos attributes = yes" in smb.conf. +- simple: Use OWNER@ and GROUP@ special IDs for non inheriting ACEs only. + This mode is the default. +- special: use OWNER@ and GROUP@ special IDs in ACEs instead of simple + user&group ids. This mode is deprecated. + +Note1: EVERYONE@ is always processed (if found such an ACE). +Note2: There is a side effect when _only_ chown is performed. + Later this may be worked out. +Note3: Mode special inherits incorrect ACL entries when the user creating + a file is different from the owner of the caurrent folder. +Note4: Mode simple uses inheriting OWNER@ and GROUP@ special IDs to + support Creator Owner and Creator Group. + +It's strongly advised to set "store dos attributes = yes" in smb.conf. chown = [true|false] - true => enable changing owner and group - default. |