-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 John Andersen wrote:

On Tue, May 6, 2008 at 11:26 AM, James D. Parra wrote:

...

Hello,

<snip> //sambahost/ftp /mnt/ftp cifs credentials=/etc/cifsusers/user1,domain=sales,file_mode=0777,dir_mode=0777,r w 0 0 *****premission denied errors with cifs*****

//sambahost/ftp /mnt/ftp smbfs workgroup=sales,username=user1,password=aword,fmask=777,dmask=777 0 0 *****everything works with smbfs***** <snip>

I would prefer to use cifs and utilize the credentials files. When connecting via cifs, the user in the credentials file also gets the permission denied error.

How can I get cifs mounts to work with a Samba share?

Thank you in advance.

As Peter responded, you need noacl, noperm in the client machine fstab.

<snip>

The noacl, noperm parameters tells the client side to let the server side handle setting/checking of permissions and ownership, which is what you want for a samba server, the way its always been, and the only way that really works for most environments.

I would suggest a closer look at the 'man mount.cifs' comments for noperm, as this could be a security issue in a multiuser environment. Though giving access via fstab does kind of make things global on the client. (For a per user option there is pam.mount). I have being using the uid and guid option with setuids for some time without issues (except a possible latency issue). In my case uid and gid are probably redundant but setuids sets up a form of dynamic local permission cache. Look at man mount.cifs again for more info... and http://pserver.samba.org/samba/ftp/cifs-cvs/linux-cifs-client-guide.pdf may help...

- -- ============================================================================== I have always wished that my computer would be as easy to use as my telephone. My wish has come true. I no longer know how to use my telephone. Bjarne Stroustrup ============================================================================== -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFIIWyXasN0sSnLmgIRAtSIAJ9bgrkIux/8UPDgGqPtIMRTC5RYKQCeMfSd 8PvgWAwPPBwveMjz5AS1Mig= =eEcv -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org

G T Smith wrote:

John Andersen wrote:

...

On Tue, May 6, 2008 at 11:26 AM, James D. Parra wrote:

...

Hello,

<snip> //sambahost/ftp /mnt/ftp cifs credentials=/etc/cifsusers/user1,domain=sales,file_mode=0777,dir_mode=0777,r w 0 0 *****premission denied errors with cifs*****

//sambahost/ftp /mnt/ftp smbfs workgroup=sales,username=user1,password=aword,fmask=777,dmask=777 0 0 *****everything works with smbfs***** <snip>

I would prefer to use cifs and utilize the credentials files. When connecting via cifs, the user in the credentials file also gets the permission denied error.

How can I get cifs mounts to work with a Samba share?

Thank you in advance. As Peter responded, you need noacl, noperm in the client machine fstab.

<snip>

...

The noacl, noperm parameters tells the client side to let the server side handle setting/checking of permissions and ownership, which is what you want for a samba server, the way its always been, and the only way that really works for most environments.

I would suggest a closer look at the 'man mount.cifs' comments for noperm, as this could be a security issue in a multiuser environment. Though giving access via fstab does kind of make things global on the client. (For a per user option there is pam.mount).

I have being using the uid and guid option with setuids for some time without issues (except a possible latency issue). In my case uid and gid are probably redundant but setuids sets up a form of dynamic local permission cache.

Look at man mount.cifs again for more info...

and

http://pserver.samba.org/samba/ftp/cifs-cvs/linux-cifs-client-guide.pdf

may help...

WARNING, WARNING, the use of ,noperm will give root access to all cifs mounted shares mounted with the ,noperm options. A stray chmod -R or the like above the mount point will work all the way down the mounted client as well... -- David C. Rankin, J.D., P.E. Rankin Law Firm, PLLC 510 Ochiltree Street Nacogdoches, Texas 75961 Telephone: (936) 715-9333 Facsimile: (936) 715-9339 www.rankinlawfirm.com -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org