If a user is permitted access to a directory based on a user entry in an ACL list, he will not be able to see the directory in the dirlist from the client, even if given full control, the directory is still kept hidden from him... I cannot reproduce this behaviour on intel linux. F.eks. logged in as user test, this dir is hidden: (The user test is NOT a member of the testgrp group) # file: dir3 # owner: root # group: root user::--- user:test:rwx group::--- group:users:--- group:testgrp:rwx mask::rwx other::--- default:user::--- default:user:test:rwx default:group::--- default:group:testgrp:rwx default:mask::rwx default:other::---
This is due to a problem in constructing the NT token...the user and group sids are from the local server instead of the domain. This is likely due to a winbind issue. Traces from this customer have shown that local smbclient connection works correctly (and the SIDs are the domain-based SIDs that are expected), while connection from a Windows client does not work. It may be realted to bug #1315
This is s390 right ?
I have the same problem on x86 machine (AMD Duron), RedHat 8.0, kernel 2.4.27 with ACL support on ext3, samba 3.06 with ACL support and local user database.
taking this one over.
Updating version since it has been reported at least a couple of times against 3.0.6
The NT token creating code has changed dramatically post-3.0.22 for 3.0.23. If anybody is still interested in this bug, please retest against current 3_0. Volker
closing