SAMBA and Symlinks
by LinuGeek from LinuxQuestions.org on (#54HJ2)
Hello Experts,
this is regarding SAMBA running on SuSE Linux 12. We wish to restrict one UNIX user
to only his home directory. But at the same time he should be able to pull/copy files from some other directories present on the system. So the solution what we are thinking is SAMBA. The user will connect to his UNIX Home directory via SAMBA.
So that he would be restricted to his home directory. And then via Symlinks he would be able to copy the files from defined directories.
This approach works until the Symlinks part. I have already enabled following parameters in SAMBA Global section to be able to enable Symlink access.
Quote:
I am able to see Symlinks created in his home directory when accessed using SAMBA.
But the Symlinks are empty. So the contents are not visible. I could only see the contents of one of the symlink where the target directory has full access 777 to all.
So obviously its the case of File/Directory permissions. But then how do you solve this. Ofcourse the other target directories are owned by eithr root or someother user. But in UNIX environment, atleast the contents of these directories are visible (readable) to every unix user and as well able to copy its contents. But this logic does not apply to SAMBA connections. Or am I missing something. Any pointers will be helpful.
Thanks.
this is regarding SAMBA running on SuSE Linux 12. We wish to restrict one UNIX user
to only his home directory. But at the same time he should be able to pull/copy files from some other directories present on the system. So the solution what we are thinking is SAMBA. The user will connect to his UNIX Home directory via SAMBA.
So that he would be restricted to his home directory. And then via Symlinks he would be able to copy the files from defined directories.
This approach works until the Symlinks part. I have already enabled following parameters in SAMBA Global section to be able to enable Symlink access.
Quote:
| Global: allow insecure wide links = yes follow symlinks=yes unix extensions = no |
But the Symlinks are empty. So the contents are not visible. I could only see the contents of one of the symlink where the target directory has full access 777 to all.
So obviously its the case of File/Directory permissions. But then how do you solve this. Ofcourse the other target directories are owned by eithr root or someother user. But in UNIX environment, atleast the contents of these directories are visible (readable) to every unix user and as well able to copy its contents. But this logic does not apply to SAMBA connections. Or am I missing something. Any pointers will be helpful.
Thanks.