Thanks for taking the time and explaining the behavior, appreciated.

Krishna Harathi

On Fri, Nov 21, 2014 at 2:59 PM, <> wrote:

Jeremy Allison <> changed:

           What    |Removed                     |Added
             Status|NEW                         |RESOLVED
         Resolution|---                         |WORKSFORME

--- Comment #1 from Jeremy Allison <> ---
This is actually working as designed - just the documentation sucks on it :-).

access based share enum

causes smbd to look at the share *security descriptor*, which is stored inside
the share_info.tdb, not the listed permissions on the share in the smb.conf.

You need to use the Windows share admin tool to set a security descriptor on
the share, not the permissions in the smb.conf.

The reason for this is that it's actually quite hard to determine if a user
would have access to a share at enumeration time, due to things like "force
user" etc. on a share definition. So currently this only checks the SD stored
for the share, not the text based perms.


You are receiving this mail because:
You reported the bug.