When editing ACLs with the windows XP ACL editor, on applying any new settings the permissions for user, group and Everyone always include read access. This happens with samba versions 3.0.25c and up. I've tested this with very different configs and always seemed to get identical behaviour.
Created attachment 2987 [details] Patch that comments out the code that seems to cause the problem This patch comments out some code in append_parent_acl(), which seems to be called from set_nt_acl() since the change that made posix_acl a vfs object. The cause seems to be a call to the unix_mode() function, which has documentation that states that "everybody gets read bit set". Because of this, whenever a parent acl is added, user, group and world always get read access. The patch might not be correct or appropriate, but it fixes the trouble I have, so at the very least I hope it is helpful in tracking down this problem.
I can provide level 10 debug logs if you need them; just let me know.
Jeremy, Guessing this is related to the ACL propogation changes.
I have the same problem, is there going to be a patch for the nezt release?
This bug is starting to be a real showstopper for me. Is there anything I can do to help?
Might be related to bug # 4929, testing with the patches that fixed it.
I tried 3.0.28 with both patches from bug # 4929 (comments 10 and 11). Those patches fix the problems, so I've closed this one as a duplicate. *** This bug has been marked as a duplicate of 4929 ***
The problem is still here. I also tried the patches with no luck. This problem is not fixed in every situation.