Shared home dir, samba, and workgroups

Wes Barris wes.barris@csiro.au
Wed Mar 10 04:21:00 GMT 2010 

Marco Atzeri wrote:
> --- Mar 9/3/10, Wes Barris  ha scritto:
> 
>> Marco Atzeri wrote:
>>> --- Mar 9/3/10, Wes Barris ha scritto:
>>>
>>>> Wes Barris wrote:
>>>>> I use Cygwin 1.7 on my XP desktop system at
>>>> work.  I like having the
>>>>> same home directory on this Windows XP system
>> as I do
>>>> on our Unix
>>>>> server.  The Windows XP system is a
>> member of a
>>>> domain.  The Unix
>>>>> server is not.  The Unix server is
>> running Samba
>>>> and is configured
>>>>> with a workgroup name.  My home directory
>> on the
>>>> Unix server is
>>>>> mounted as a mapped network drive on the
>> Windows XP
>>>> system.
>>>>> Everything in the above setup is working
>>>>> properly from the Unix server side and from
>> the
>>>> Windows side when
>>>>> working with Windows Explorer.  I can
>> create and
>>>> delete files via
>>>>> Windows Explorer and they show up on the Unix
>> side
>>>> with proper
>>>>> ownership and permissions (as controlled by
>>>> Samba).  Conversely,
>>>>> I can create and delete files under Unix and
>> access
>>>> these files
>>>>> from Windows Explorer.
>>>>>
>>>>> The problem is when I look at my mapped
>> network home
>>>> directory
>>>>> with Cygwin, my home directory files are owned
>> by
>>>> nobody ('????????')
>>>>> and have a group of nobody.  I am
>> guessing that
>>>> this is because my
>>>>> Windows SID in /etc/passwd is the SID of my
>> domain
>>>> user and since
>>>>> the Samba server is not part of this domain
>> the files
>>>> look like they
>>>>> are from an unknown user.
>>>>>
>>>>> In our Samba server there is a file (usermap)
>> that
>>>> maps unix usernames
>>>>> to windows usernames.  This appears to be
>> working
>>>> when working with
>>>>> Windows Explorer.  Why doesn't this work
>> with
>>>> Cygwin?  What is the
>>>>> way to fix this?  Do I somehow need to
>> map my
>>>> unix username to a
>>>>> windows SID?  Do I need to turn off
>> ntsec? 
>>> you need to map the WINDOWS SID to the UNIX username
>>>
>>> so you need to add on /etc/passwd and etc/group
>>> the right references.
>>>
>>> see:
>>> http://cygwin.com/cygwin-ug-net/using-utils.html#mkpasswd
>>> http://cygwin.com/cygwin-ug-net/ntsec.html
>> I've read both of those pages many times.  They don't
>> appear
>> to apply to my situation.  What mkpasswd option(s)
>> would you
>> suggest?  --local doesn't help map the Windows SID to
>> the UNIX
>> username, --domain doesn't do it.
> 
> Web,
> if mkpasswd can not help you to identify the SID, than
> you can try Setacl
> http://setacl.sourceforge.net/
> 
> using as:
> $ SetACL.exe -on $(cygpath -aw YOUR_FILE) -ot file -actn list -lst "f:sddl;w:o,g,s,d"
> 
> will provide the full list of SID and ACL of the file 
> or directory. The answer is a bit cryptic but it is very detailed. 
> 
> After that you can create,by hand, the right reference in
> your 
> /etc/passwd and /etc/group 

Thanks Marco.  I was a bit skeptical having already worked so hard
on resolving this.  Using setacl.exe I was able to determine both
the owner and group SIDs:

W:\>SetACL.exe -on wesbarris.pdf -ot file -actn list -lst "f:tab;w:o"
wesbarris.pdf

    Owner: S-1-5-21-290311034-2557831423-1240041065-5424

    DACL(protected):
    S-1-5-21-290311034-2557831423-1240041065-5424   full   allow   no_inheritance

    S-1-22-2-200   read   allow   no_inheritance
    Everyone   read   allow   no_inheritance

Using this information I modified my /etc/passwd and /etc/group files.
The passwd file now contains a line for my domain user and a line
for the owner of the files from my home directory server.  It's a
bit confusing (having a different user owning my home directory
files) but everything appears to be working properly now.

Thank you very much!

>>>> Do I need to change
>>>>> the mount options for /cygdrive?
>>>> Should I assume from the lack of any response that
>> there is
>>>> no fix
>>>> for this?
>>>>
>>>> -- Wes Barris
>>> I should say no
>>> Marco
>> -- Wes Barris
> 
> Marco
> 
> 
>       
> 


-- 
Wes Barris

--
Problem reports:       http://cygwin.com/problems.html
FAQ:                   http://cygwin.com/faq/
Documentation:         http://cygwin.com/docs.html
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple

More information about the Cygwin mailing list