User profile for user: plarusa
plarusa Author
User level: Level 1
0 points

Can't change SMB share file attributes from Windows

I am unable to change the file attributes on a SMB 10.5 server shared directory. I am attempting to change these attributes from a Windows box which mounts the share. I tried both the Windows explorer and the dos attrib command. There are are visible error(s) reports.

See bellow,

W:\brcm\mainline\drivers\ndis3-5>attrib +R sources
W:\brcm\mainline\drivers\ndis3-5>attrib sources
A W:\brcm\mainline\drivers\ndis3-5\sources

The same command on the local Windows drive,

C:\brcm\mainline\drivers\ndis3-5>attrib +r sources
C:\brcm\mainline\drivers\ndis3-5>attrib sources
A R C:\brcm\mainline\drivers\ndis3-5\sources


The R attribute is not set!

Mac OS X (10.5)

Posted on Nov 13, 2007 12:53 PM

Reply
5 replies
User profile for user: Gerrit DeWitt
Gerrit DeWitt
User level: Level 4
3,900 points

Nov 20, 2007 11:02 AM in response to plarusa

OK, first you have to enable Access Control Lists on the volume which houses this share point. Then, you have to make sure that the share point has proper effective permissions for the user who is connecting.

Here's an example:

Let's say you're sharing /Volumes/Data-Disk/Windows-Share, and Data-Disk already has ACLs turned on. Let's also say that "windowsbuddy" is the user who is connecting, and he needs read/write permissions for all of Windows-Share. To grant windowsbuddy the correct effective permissions, you can add an ACL allow entry for him, as shown below via Terminal on your server:

sudo chmod -R +a "windowsbuddy allow readattr,readextattr,readsecurity,list,search,read,execute,\
writeattr,writeextattr,delete,delete child,add_file,addsubdirectory,write,append,\
file inherit,directoryinherit" /Volumes/Data-Disk/Windows-Share

Note that we have the readattr, writeattr, readextattr, and writeextattr attributes allowed. We also have readsecurity enabled, which allows listing of permissions in Finder Info windows and in the Properties/Security window in Explorer.

If windowsbuddy needs to be able to adjust permissions - Full Control as Windows calls it - add these two ACL controls to the above ACE:

chown - take ownership

writesecurity - change permissions

Hope this helps.

--Gerrit
Reply
User profile for user: pierrel
pierrel
User level: Level 1
0 points

Feb 23, 2008 5:02 PM in response to DLR

As a matter of fact, I do expect Apple to monitor this forum, and offer technical help.

Anyway, this problem persists with 10.5.2 update. Just to be clear, I would like the Windows program to change the read only attribute on a SMB share. I am not trying to do this from the MAC side, so I am not sure the ACL description posted here is relevant.
Reply
User profile for user: pierrel
pierrel
User level: Level 1
0 points

Feb 23, 2008 5:39 PM in response to pierrel

I tried using fsaclctl to enable ACL on the volume being shared, and then used chmod with the many options above. Though the commands appear to have succeeded, I still cannot change permissions from the Windows side(from the explorer, or from command line attrib utility). Intuitively, it seems like ACL should not need to be needed to support the basic Windows permissions (Read, Write). This used to work without fuss in Tiger.
Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

Can't change SMB share file attributes from Windows

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up