Created attachment 6339 [details] Backport Patches for v3-5-test On a Samba server the owner of a file can always delete a file, even if the ACL (provided by the acl_xattr module) doesn't grant SEC_STD_DELETE on the file and also not FILE_DELETE_CHILD on the parent directory. A Windows Server rejects the delete operation with ACCESS_DENIED in that case. That also matches [MS-DTYP] 2.5.3.2 Access Check Algorithm Pseudocode.
Comment on attachment 6339 [details] Backport Patches for v3-5-test Looks good to me ! An OEM also tested and confirmed good. Jeremy.
Re-assigning to Karolin for inclusion in 3.5.next. Jeremy.
Pushed to v3-5-test. Closing out bug report. Thanks!