Discussion:
tdb database permissions for smbd
(too old to reply)
Amitay Isaacs via samba-technical
2018-05-14 07:21:19 UTC
Permalink
Raw Message
Hi,

Martin and I noticed that some of the databases are opened with mode
0644. These include (but not limited to):

locking.tdb
brlock.tdb
leases.tdb
idmap2.tdb

Is that intentional? Are non-root users supposed to get to them (e.g.
smbstatus)?

In the clustered case, currently all these databases reside by default
in /var/lib/ctdb/volatile and /var/lib/ctdb/persistent directories
with 0700 permissions. So even if the intention is to allow the users
to access them it's not working currently.

There might be a change in CTDB which will install all the database
directories with default permissions (0755). In that case, it will
match the current single-server smbd set up.

Amitay.
Jeremy Allison via samba-technical
2018-05-14 23:25:01 UTC
Permalink
Raw Message
Post by Amitay Isaacs via samba-technical
Hi,
Martin and I noticed that some of the databases are opened with mode
locking.tdb
brlock.tdb
leases.tdb
idmap2.tdb
Is that intentional? Are non-root users supposed to get to them (e.g.
smbstatus)?
Yes, I think this is for smbstatus access.

Jeremy.

Loading...