From owner-freebsd-questions@FreeBSD.ORG Wed Apr 1 00:53:11 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 2515F106567F for ; Wed, 1 Apr 2009 00:53:11 +0000 (UTC) (envelope-from jgimer@gmail.com) Received: from mail-qy0-f134.google.com (mail-qy0-f134.google.com [209.85.221.134]) by mx1.freebsd.org (Postfix) with ESMTP id BCE208FC0C for ; Wed, 1 Apr 2009 00:53:10 +0000 (UTC) (envelope-from jgimer@gmail.com) Received: by qyk40 with SMTP id 40so5424234qyk.3 for ; Tue, 31 Mar 2009 17:53:10 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:in-reply-to:references :date:message-id:subject:from:to:cc:content-type :content-transfer-encoding; bh=OUZaUL1UnxjPFOE4szXd86YclkxzxJiZbIqtRVl6l08=; b=BQhlo9Tv3VXxeg5Cb2Vn9dXPJ7M0JGFhqcvTeA0Bqh9+Oyg5tD92ac/4i8+lu5Fg78 97IqZ/tqwrB30BVFP4KRKWh2Sr6MtEgUgKIBeEyvLm6EGaHMXI45OKbA7NK6fvQiBU0s vGEYXmjxZKO4Ynkht5t+E3jepuGuyvdyHVx3Y= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; b=x25KEm2ltS8IpbmxW+Dzm/Mqnh+EgcE6lwQRtoyiVu80eZ14AoQMc5Rkpa0YAYvdZe 0l4QcVrbcVRb9+7q5Qbky0fT4b2GRFOHSPr6LTse2D9cMqpG/91smnV7BcH2yHxYuivy KP817wcZH4cIFtc6n8eGQpDTocqbukH26lxaM= MIME-Version: 1.0 Received: by 10.229.85.21 with SMTP id m21mr2937884qcl.9.1238547189972; Tue, 31 Mar 2009 17:53:09 -0700 (PDT) In-Reply-To: References: Date: Tue, 31 Mar 2009 18:53:09 -0600 Message-ID: From: Joshua Gimer To: "Vasadi I. Claudiu Florin" Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: "freebsd-questions@freebsd.org" Subject: Re: ftp with .... ? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 01 Apr 2009 00:53:11 -0000 Are you sure that the suid bit will not provide the functionality that you require? I would make sure that the proper user owns the directory and then set its suid bit (chmod u+s /mnt/) If I am missing something please let me know. On Tue, Mar 31, 2009 at 3:13 PM, Vasadi I. Claudiu Florin wrote: > > Hello guys, > > Here's the deal: > I have a samba server on a FreeBSD 7.1-STABLE running with mod-acl (or > whatever it's called). The folder it is connected to (let's call it "share") > has acl enabled. Thus all data written with samba (from my xp box) > automagicly inharits permision of parent folder (root:wheel). Perfect till > now. > > This is were the catch catches up. I also want ftp access to that folder (a > master ftp account that only I will know) but also want it with acl > "features"; I mean all files written by/through ftp will (or must) have > inherited parent directory permisions, leaving samba full permisions over > files/folder in that directory (as stated by acl). > > Here's the curent setup > the "share" folder (actually "/mnt") > # file: /mnt/ > # owner: root > # group: wheel > user::rwx > user:smbadmin:rwx > user:ftpadmin:rwx > group::--- > mask::rwx > other::--- > > As you can see, the owner is root:wheel. The samba master acount is > "smbadmin" with rwx privileges. > Now, I wish to employ another username, also with rwx privileges, for a > master ftp account (say "ftpadmin"), but all files writen by this user > *will* eventually end up on disk as root:wheel, not ftpadmin:group. > > What I've done so far. > Read a bit about chmod +s and by "chmod g+s" managed to ensure that whoever > writes files to that folder, end up belonging to wheel group. Didn't manage > on the other hand to employ the same thing for the user. Files are owned by > "ftpadmin" > > Of course I could add these accounts into one big group, but then, were > would all the fun be ? :) > And also, I would have a terrible time when say another ftp user would be > required to have some sort or acces but diferent from that group I > previously mentioned (say r--). > > Now, from what I tinkered about I need some sort of control "agent" between > the actual ftp and the disk (something similar to mod-acl of samba maybe?) > or force the files that are to be written to disk to change theyre usr:group > by some chmod-similar manner. > > > Please point me in the right direction. A link, an ideea ... something. Am > capable of doing it myself, no need for "please do this for me"..nono. > > So ? > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > -- Thx Joshua Gimer