| 1 |
On Wed, Apr 1, 2009 at 12:31 PM, Steven Lembark <lembark@×××××××.com> wrote: |
| 2 |
> That was the idea, RH did it that way a dozen |
| 3 |
> years ago for exactly the reason you mention: |
| 4 |
> dir mods of 02770 make it easy to share files |
| 5 |
> but require 002 umask. Fix was to set the |
| 6 |
> per-user group, allowing private dir's (largely |
| 7 |
> $HOME) to have tighter mods with files below |
| 8 |
> them "group readable" by a single-user group. |
| 9 |
|
| 10 |
Hey, I use 2770 for directories too, but I notice there's one problem |
| 11 |
with that setup. If a user moves or copies a directory to a share that |
| 12 |
with 2770 mods, the files under moved directory retain their old |
| 13 |
group. |
| 14 |
|
| 15 |
Which is technically correct: small, tightly managed shares (I'm |
| 16 |
thinking programmers and code) probably need user-intervention for |
| 17 |
keeping permissions in check. But I'm doing a bunch of really large |
| 18 |
data shares on the order of several thousand pictures, sounds, clips, |
| 19 |
etc that are meant to have essentially free-for-all permissions, and |
| 20 |
having to manually have all users change the group of copied/moved |
| 21 |
files to the shared group wasn't acceptable. So I did a workaround for |
| 22 |
it so that files under my shares are correctly group-owned after |
| 23 |
default copy/move operations. |
| 24 |
|
| 25 |
The workaround I did? The "real" share is under /store, but the shares |
| 26 |
being directly accessed by the users are actually samba exports which |
| 27 |
force the user and group permissions to be correct for sharing via |
| 28 |
force user mask and friends. |
| 29 |
|
| 30 |
Unfortunately, this workaround doesn't help with a shared winedrive (I |
| 31 |
figure wine does weird things with opening files multiple times or |
| 32 |
something, which makes sense, it's a bunch of programs/libraries). |
| 33 |
What does work though, is to create a shared winedrive under an NTFS |
| 34 |
partition and to mount that using the users group. I'm not too |
| 35 |
amenable to creating a shared NTFS drive for everything else though! |
| 36 |
It's ext3 for me. |
| 37 |
|
| 38 |
Does that sound like an overly roundabout way to do things? My smbd's |
| 39 |
system use doesn't bother me. The "there must be a better way to do |
| 40 |
it" voice at the back of my head sometimes does, though. |
Archives