FAQ SearchLogin
Tuxera Home
View unanswered posts | View active topics It is currently Wed Nov 25, 2020 10:47



Post new topic Reply to topic  [ 17 posts ] 
How to apply access to E:\Users\Public for all Linux acounts 
Author Message

Joined: Mon Mar 31, 2014 13:43
Posts: 113
Post How to apply access to E:\Users\Public for all Linux acounts
On my Ubuntu system I get:
Code:
katrin@HP-Compaq:~$ id
uid=1000(katrin) gid=1000(katrin) Gruppen=1000(katrin),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),112(lpadmin),124(sambashare)

I created UserMapping with:
Code:
F:\Software\Linux\TuxeraTools>usermap C: E:

This tool will help you to build a mapping of Windows users
to Linux users.
Be prepared to give Linux user id (uid) and group id (gid)
for owners of files which will be selected.
Your current user name is Administrator
Your account domain is Dobler-PC

* Scanning "C:" (two levels)

Under Windows login "Administrator"
   file "AppData" has no mapped group
By which Linux login should this file be owned ?
Enter gid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom

Group : sudo

Under Windows login "All Users"
   file "eHome" has no mapped group
By which Linux login should this file be owned ?
Enter gid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom

Group :

Under Windows login "Default"
   file "Media Center Programs" has no mapped group
By which Linux login should this file be owned ?
Enter gid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom

Group :

   file "S-1-5-21-2869643010-2844629126-3994450086-1005" has no mapped owner
By which Linux login should this file be owned ?
Enter uid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom

User : jakob

   file "S-1-5-21-2869643010-2844629126-3994450086-1006" has no mapped owner
By which Linux login should this file be owned ?
Enter uid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom

User : lasse

   file "S-1-5-21-2869643010-2844629126-3994450086-1007" has no mapped owner
By which Linux login should this file be owned ?
Enter uid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom

User : katrin

   file "$RWX9LVZ" has no mapped owner
By which Linux login should this file be owned ?
Enter uid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom

User :

   file "{F750E6C3-38EE-11D1-85E5-00C04FC295EE}" has no mapped group
By which Linux login should this file be owned ?
Enter gid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom

Group :

* Scanning "E:" (two levels)

Under Windows login "Public"
   file "Recorded TV" has no mapped group
By which Linux login should this file be owned ?
Enter gid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom

Group :

* Old mapping file moved to E:\.NTFS-3G\UserMapping.bak
* Creating file E:\.NTFS-3G\UserMapping
# Generated by usermap for Windows, v 1.1.2
:sudo:S-1-5-21-2869643010-2844629126-3994450086-513
jakob:jakob:S-1-5-21-2869643010-2844629126-3994450086-1005
lasse:lasse:S-1-5-21-2869643010-2844629126-3994450086-1006
katrin:katrin:S-1-5-21-2869643010-2844629126-3994450086-1007
Undecided :
   S-1-5-21-561645723-1598288805-1625568065-513
   S-1-5-21-2869643010-2844629126-3994450086-1003
   S-1-5-21-397955417-626881126-188441444-513

When running Nautilus from katrin I successfully can look into /media/Daten/Users/Katrin, but I'm not able to look into /media/Daten/Users/Public.
I only can look into it, when I run nautilus with sudo.

Maybe I should make root, jakob, lasse and katrin members of group users(100) and then map S-1-5-21-2869643010-2844629126-3994450086-513 to users(100).
What do you think?


Mon Mar 31, 2014 23:50
Profile

Joined: Mon Mar 31, 2014 13:43
Posts: 113
Post Re: How to apply access to E:\Users\Public for all Linux acounts
My fstab is:
Code:
UUID=xxxx    /media/Daten    ntfs    defaults,inherit    0    0


Tue Apr 01, 2014 00:19
Profile
NTFS-3G Lead Developer

Joined: Tue Sep 04, 2007 17:22
Posts: 1286
Post Re: How to apply access to E:\Users\Public for all Linux acounts
Hi,

Quote:
Maybe I should make root, jakob, lasse and katrin members of group users(100) and then map S-1-5-21-2869643010-2844629126-3994450086-513 to users(100).
What do you think?

Probably so.

If jakob, lasse and katrin are in the same group in Windows (this is the default for Windows 7), they must also be in the same group in Linux. S-1-5-21-2869643010-2844629126-3994450086-513 is probably the group identification of all your Windows users.
Quote:
When running Nautilus from katrin I successfully can look into /media/Daten/Users/Katrin, but I'm not able to look into /media/Daten/Users/Public.

I have currently no solution for this, /Users/Public is not defined as "world readable" as one would expect (fix needed).

Regards

Jean-Pierre


Tue Apr 01, 2014 09:53
Profile

Joined: Mon Mar 31, 2014 13:43
Posts: 113
Post Re: How to apply access to E:\Users\Public for all Linux acounts
jpa wrote:
Quote:
Maybe I should make root, jakob, lasse and katrin members of group users(100) and then map S-1-5-21-2869643010-2844629126-3994450086-513 to users(100).
What do you think?

Probably so.

Well, I'm not sure for which use group users(100) was originally designed for. As I assume, you are a very experienced Linux geek, I wanted to know if you think users(100) is appropriate for that purpose, maybe there is another which would match better.

Now I tried this:
Code:
katrin@HP-Compaq:~$ id
uid=1000(katrin) gid=1000(katrin) Gruppen=1000(katrin),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),100(users),112(lpadmin),124(sambashare)
Code:
:users:S-1-5-21-2869643010-2844629126-3994450086-513
jakob:jakob:S-1-5-21-2869643010-2844629126-3994450086-1005
lasse:lasse:S-1-5-21-2869643010-2844629126-3994450086-1006
katrin:katrin:S-1-5-21-2869643010-2844629126-3994450086-1007
Unfortunately I still can't access to /media/Daten/Users/Public/.

I'm also wondering about ownership, seen by nautilus:
/media/Daten/Users/Katrin/ -> lch:root
/media/Daten/Users/Katrin/Documents/ -> lch:users
/media/Daten/Users/Katrin/Documents/Created_from_Linux_without_mapping.txt -> root:root
/media/Daten/Users/Katrin/Documents/Created_from_Linux_with_mapping+inherit.txt -> lch:katrin

This does'n help either:
Code:
:users:S-1-5-21-2869643010-2844629126-3994450086-513
jakob::S-1-5-21-2869643010-2844629126-3994450086-1005
lasse::S-1-5-21-2869643010-2844629126-3994450086-1006
katrin::S-1-5-21-2869643010-2844629126-3994450086-1007


Quote:
If jakob, lasse and katrin are in the same group in Windows (this is the default for Windows 7), they must also be in the same group in Linux. S-1-5-21-2869643010-2844629126-3994450086-513 is probably the group identification of all your Windows users.
As examined above, this seems to be wrong :(

Quote:
I have currently no solution for this, /Users/Public is not defined as "world readable" as one would expect (fix needed).
Hopefully you find some soon.

Regards, Ulf


Tue Apr 01, 2014 19:52
Profile
NTFS-3G Lead Developer

Joined: Tue Sep 04, 2007 17:22
Posts: 1286
Post Re: How to apply access to E:\Users\Public for all Linux acounts
Hi,

Quote:
Well, I'm not sure for which use group users(100) was originally designed for. As I assume, you are a very experienced Linux geek, I wanted to know if you think users(100) is appropriate for that purpose, maybe there is another which would match better.

I do not know either. On my system, there is no user in group "users", so it is available for any purpose. If you have any doubt, create a new group "all-users" and put your users in this group.
Quote:
I'm also wondering about ownership, seen by nautilus:
/media/Daten/Users/Katrin/ -> lch:root
/media/Daten/Users/Katrin/Documents/ -> lch:users
/media/Daten/Users/Katrin/Documents/Created_from_Linux_without_mapping.txt -> root:root
/media/Daten/Users/Katrin/Documents/Created_from_Linux_with_mapping+inherit.txt -> lch:katrin

I assume "Ich" is a synonym for "katrin" (is this the Nautilus way to hide the real owner ?). In which case all this appears to be correct to me. Let me explain :
Quote:
/media/Daten/Users/Katrin/ -> lch:root

Correct. The Windows home directory of a user is owned by the user (here katrin) and it is put into group Administrator, which is mapped to root.
Quote:
/media/Daten/Users/Katrin/Documents/ -> lch:users

Correct. On a previous post you showed Katrin/Documents has owner katrin and default Windows group, which you assigned to "users".
Quote:
/media/Daten/Users/Katrin/Documents/Created_from_Linux_without_mapping.txt -> root:root

Correct. This was created on Linux, with no user mapping, it can only be shown as root owner and root group.
Quote:
/media/Daten/Users/Katrin/Documents/Created_from_Linux_with_mapping+inherit.txt -> lch:katrin

Here, an explanation may be needed. "id" returned "uid=1000(katrin) gid=1000(katrin)", so the primary group of Katrin is "katrin", and files created by Katrin are defined with user "katrin" and group "katrin". If you wanted the files to be created in group users, you have to define "users" as the primary group (and katrin as a secondary group). This just pinpoints a different grouping of users in Windows and Linux.

I would not change this unless you have a special need. What is your policy for allowing users to access each other's files ? Possibly making /Users/Public fully accessible is what you need.
Quote:
This does not help other :

Same reason : the primary group of each user is different on Windows and Linux.

Quote:
Quote:
If jakob, lasse and katrin are in the same group in Windows (this is the default for Windows 7), they must also be in the same group in Linux. S-1-5-21-2869643010-2844629126-3994450086-513 is probably the group identification of all your Windows users

As examined above, this seems to be wrong :(

I should have mentioned primary : they must also be in the same primary group in Linux.
Quote:
Quote:
I have currently no solution for this, /Users/Public is not defined as "world readable" as one would expect (fix needed).

/Users/Public is really not "world readable" on Windows. Access is limited to some process categories, and I would have to allow such categories to be mapped to Linux groups.

As a temporary workaround, attached is a patch to consider Linux users as interactive users, and so allowed to have full access to /Users/Public.

Regards

Jean-Pierre


Attachments:
acls.c.patch.gz [644 Bytes]
Downloaded 1061 times
Tue Apr 01, 2014 22:05
Profile

Joined: Mon Mar 31, 2014 13:43
Posts: 113
Post Re: How to apply access to E:\Users\Public for all Linux acounts
jpa wrote:
I assume "Ich" is a synonym for "katrin" (is this the Nautilus way to hide the real owner ?).
I don't know, but really weird, isn't it? But yes, in terminal I see katrin for lch. I'm not sure if it is a lowercase L or an uppercase I in Nautilus font.

Quote:
Quote:
/media/Daten/Users/Katrin/Documents/Created_from_Linux_with_mapping+inherit.txt -> lch:katrin

Here, an explanation may be needed. "id" returned "uid=1000(katrin) gid=1000(katrin)", so the primary group of Katrin is "katrin", and files created by Katrin are defined with user "katrin" and group "katrin". If you wanted the files to be created in group users, you have to define "users" as the primary group (and katrin as a secondary group). This just pinpoints a different grouping of users in Windows and Linux.

I would not change this unless you have a special need. What is your policy for allowing users to access each other's files ?
I do not want to allow users to access ech other's file if located in there own user dir, but want to allow access for all files, created by whom ever, if in /Users/Public/. I always want, that files and dirs, created from Linux, have truly valid inherited permissions from their parent folder in later Windows view.

Quote:
/Users/Public is really not "world readable" on Windows. Access is limited to some process categories, and I would have to allow such categories to be mapped to Linux groups.

As a temporary workaround, attached is a patch to consider Linux users as interactive users, and so allowed to have full access to /Users/Public.
Very much thanks!
Can you give me some little help how to compile, link and deploy that patch? I'm familiar with developing in Java and also in standalone C code, but I feel lost in correctly applying a patch in Linux system libraries. Which original files should I backup for accident case before I change something?
Do I still need katrin etc. as member of users(100) and use the following mapping with this patch? :
Code:
:users:S-1-5-21-2869643010-2844629126-3994450086-513
jakob:jakob:S-1-5-21-2869643010-2844629126-3994450086-1005
lasse:lasse:S-1-5-21-2869643010-2844629126-3994450086-1006
katrin:katrin:S-1-5-21-2869643010-2844629126-3994450086-1007


Tue Apr 01, 2014 23:38
Profile
NTFS-3G Lead Developer

Joined: Tue Sep 04, 2007 17:22
Posts: 1286
Post Re: How to apply access to E:\Users\Public for all Linux acounts
Hi,

Quote:
I do not want to allow users to access ech other's file if located in there own user dir, but want to allow access for all files, created by whom ever, if in /Users/Public/. I always want, that files and dirs, created from Linux, have truly valid inherited permissions from their parent folder in later Windows view.

Fine. So group permissions are not used to enable access to other users' directory, and you do no need to stress on groups. Also do not forget that inheritance only applies to permissions, not to ownership.

Also, copy the needed files to /Users/Public/ to apply inheritance, and do not move them from users' directory. Moving files does not change permissions.
Quote:
Can you give me some little help how to compile, link and deploy that patch? I'm familiar with developing in Java and also in standalone C code, but I feel lost in correctly applying a patch in Linux system libraries. Which original files should I backup for accident case before I change something?

This is quite simple :
1) download a recent ntfs-3g version from Tuxera
2) download the proposed patch
3) create a work directory, and "cd" to it
4) unpack both the ntfs-3g and the patch
5) apply the patch by executing "patch -p0 < acls.c.patch"
6) configure, by executing "./configure --enable-posix-acls"
7) compile, by executing "make"
8) install, by executing "sudo make install"
9) unmount and remount your ntfs partitions

Quote:
Which original files should I backup for accident case before I change something?

The proposed patch only modifies libntfs-3g/acls.c, but in case of accident, you should probably restart at step 4.
Quote:
Do I still need katrin etc. as member of users(100) and use the following mapping with this patch?

The proposed mapping is fine. Better putting users into group users so that Windows files do not appear as owned by root, but this could be unneeded, as you do not allow users to access each others' file (apart from the ones put into /Users/Public which do not rely on groups).

Regards

Jean-Pierre


Wed Apr 02, 2014 08:44
Profile

Joined: Mon Mar 31, 2014 13:43
Posts: 113
Post Re: How to apply access to E:\Users\Public for all Linux acounts
Results of the patch:
New folder created from Linux:
- OK: inherited permissions
- superflous: additional not inherited permissions
New text file created from Linux:
- OK: inherited permissions
New text file created + filled with text by using gedit from Linux:
- NOT OK: no inherited permissions

Please see attachment.

My solely UserMapping:
Code:
jakob:jakob:S-1-5-21-2869643010-2844629126-3994450086-1005
lasse:lasse:S-1-5-21-2869643010-2844629126-3994450086-1006
katrin:katrin:S-1-5-21-2869643010-2844629126-3994450086-1007

fstab options: defaults,inherit


Attachments:
Secaudit New_with_patch.zip [6.39 KiB]
Downloaded 946 times
Thu Apr 03, 2014 19:17
Profile
NTFS-3G Lead Developer

Joined: Tue Sep 04, 2007 17:22
Posts: 1286
Post Re: How to apply access to E:\Users\Public for all Linux acounts
Hi,

Quote:
New folder created from Linux:
- OK: inherited permissions
- superflous: additional not inherited permissions

Can you post both the parent directory ACL and the created folder ACL (using secaudit) ?
Quote:
New text file created + filled with text by using gedit from Linux:
- NOT OK: no inherited permissions

This is frequent for editors : they create a new temporary file, then they rename it.
a) If the temporary file is in the same directory, it inherits the parent directory permissions, and the result is as expected.
b) If the temporary file is in another inheritable directory in the same partition, the resulting file inherits from this other directory.
c) If the temporary file is in a non-inheritable temporary directory, such as /tmp, the file is created according to Linux rules (umask applied, etc), and these permissions are then copied to the target file.

gedit probably uses method b or c. I have no idea of a solution for method b, but for method c, there is probably a possibility to disable chown/chmod/setfacl so that the permissions are not copied over the inheritance. Do you need such an option, at least for a try ?

Regards

Jean-Pierre


Thu Apr 03, 2014 22:09
Profile

Joined: Mon Mar 31, 2014 13:43
Posts: 113
Post Re: How to apply access to E:\Users\Public for all Linux acounts
jpa wrote:
Can you post both the parent directory ACL and the created folder ACL (using secaudit) ?
Attachment:
Secaudit Public_Parent.zip [1.63 KiB]
Downloaded 990 times


Quote:
Quote:
New text file created + filled with text by using gedit from Linux:
- NOT OK: no inherited permissions

This is frequent for editors : they create a new temporary file, then they rename it.
a) If the temporary file is in the same directory, it inherits the parent directory permissions, and the result is as expected.
b) If the temporary file is in another inheritable directory in the same partition, the resulting file inherits from this other directory.
I don't think so, at which place on my Linux-external NTFS partition should it be save. Note: from file system view the root of the path /media/Daten/... isn't on the NTFS partition at all.
Quote:
c) If the temporary file is in a non-inheritable temporary directory, such as /tmp, the file is created according to Linux rules (umask applied, etc), and these permissions are then copied to the target file.
This seems possible !!!

Quote:
gedit probably uses method b or c. I have no idea of a solution for method b, but for method c, there is probably a possibility to disable chown/chmod/setfacl so that the permissions are not copied over the inheritance. Do you need such an option, at least for a try ?
Yes thanks, I would appreciate such possibility.


Fri Apr 04, 2014 21:08
Profile

Joined: Mon Mar 31, 2014 13:43
Posts: 113
Post Re: How to apply access to E:\Users\Public for all Linux acounts
There are additional things I worry about:
Attachment:
Permissions in Public folders.png
Permissions in Public folders.png [ 159.21 KiB | Viewed 33847 times ]
IMO the Public folder and it's Windows standard subfolders should only be readable, but not deletable from normal user account.
The only folder which follows this rule is Desktop.
On the other Hand, the Linux user created folder "New-with_patch" should be rw-accessible from all Linux users.
Is there any chance to change that?


Fri Apr 04, 2014 22:14
Profile
NTFS-3G Lead Developer

Joined: Tue Sep 04, 2007 17:22
Posts: 1286
Post Re: How to apply access to E:\Users\Public for all Linux acounts
Hi,

Quote:
Quote:
gedit probably uses method b or c. I have no idea of a solution for method b, but for method c, there is probably a possibility to disable chown/chmod/setfacl so that the permissions are not copied over the inheritance. Do you need such an option, at least for a try ?

Yes thanks, I would appreciate such possibility.

Try attached patch no-chmod.patch
Quote:
IMO the Public folder and it's Windows standard subfolders should only be readable, but not deletable from normal user account.
The only folder which follows this rule is Desktop.

Linux is not Windows. For a file to not be deletable on Linux, the parent directory has to be unwriteable or it must be sticky.
Quote:
On the other Hand, the Linux user created folder "New-with_patch" should be rw-accessible from all Linux users.
Is there any chance to change that?

Yes, by putting the users into a common group mapped to the Windows default group.

Regards

Jean-Pierre


Attachments:
no-chmod.patch.gz [1.11 KiB]
Downloaded 937 times
Sat Apr 05, 2014 10:37
Profile

Joined: Mon Mar 31, 2014 13:43
Posts: 113
Post Re: How to apply access to E:\Users\Public for all Linux acounts
jpa wrote:
Quote:
Quote:
gedit probably uses method b or c. I have no idea of a solution for method b, but for method c, there is probably a possibility to disable chown/chmod/setfacl so that the permissions are not copied over the inheritance. Do you need such an option, at least for a try ?

Yes thanks, I would appreciate such possibility.

Try attached patch no-chmod.patch

Unfortunately there is no change in behaviour :(

Thanks, Ulf


Sat Apr 05, 2014 17:06
Profile

Joined: Mon Mar 31, 2014 13:43
Posts: 113
Post Re: How to apply access to E:\Users\Public for all Linux acounts
jpa wrote:
Quote:
IMO the Public folder and it's Windows standard subfolders should only be readable, but not deletable from normal user account.
The only folder which follows this rule is Desktop.

Linux is not Windows. For a file to not be deletable on Linux, the parent directory has to be unwriteable or it must be sticky.
Is there a chance, that this could be established automatically by NTFS-3G?

Quote:
Quote:
On the other Hand, the Linux user created folder "New-with_patch" should be rw-accessible from all Linux users.
Is there any chance to change that?

Yes, by putting the users into a common group mapped to the Windows default group.
Now I've tried this. UserMapping:
Code:
:users:S-1-5-21-2869643010-2844629126-3994450086-513
jakob:jakob:S-1-5-21-2869643010-2844629126-3994450086-1005
lasse:lasse:S-1-5-21-2869643010-2844629126-3994450086-1006
katrin:katrin:S-1-5-21-2869643010-2844629126-3994450086-1007

This does change nothing except that the new created folder now belongs to users instead katrin.
Nautilus doesn't allow to set rw access to group users at Users/Public/New_with_users.
From another user lasse I cannot open folder Users/Public/New_with_users.

Thanks Ulf


Sat Apr 05, 2014 17:58
Profile

Joined: Mon Mar 31, 2014 13:43
Posts: 113
Post Re: How to apply access to E:\Users\Public for all Linux acounts
Now I'm worrying about what will happen if there comes an update of kernel/ntfs-3g along with Ubuntu Software Updater.
I guess, that the manual patches then were gone and there is again no access to Users/Public, right?
In the meantime there may be changes to latest ntfs-3g, so additionally the patches may become outdated.

Because this machine is for a friend katrin and her children. They are not able to (1) be aware on the update, (2) download current ntfs-3g and (3) install a patch.
Another reason to have option inherit without user mapping and permissions.

Do you know solutions? How long will it take, the changes go into Ubuntu's official Update Center?


Sat Apr 05, 2014 18:17
Profile
NTFS-3G Lead Developer

Joined: Tue Sep 04, 2007 17:22
Posts: 1286
Post Re: How to apply access to E:\Users\Public for all Linux acounts
Hi,

Quote:
Quote:
Try attached patch no-chmod.patch

Unfortunately there is no change in behaviour :(

There must be another explanation. I do not have gedit, and I would need a strace to know more.
Quote:
Quote:
Linux is not Windows. For a file to not be deletable on Linux, the parent directory has to be unwriteable or it must be sticky.

Is there a chance, that this could be established automatically by NTFS-3G?

No reasonable way. ntfs-3g is not a Windows emulator, it is a file system targeting Posix compliance.
Quote:
Code:
:users:S-1-5-21-2869643010-2844629126-3994450086-513
jakob:jakob:S-1-5-21-2869643010-2844629126-3994450086-1005
lasse:lasse:S-1-5-21-2869643010-2844629126-3994450086-1006
katrin:katrin:S-1-5-21-2869643010-2844629126-3994450086-1007

This does change nothing except that the new created folder now belongs to users instead katrin.

IMHO, this is the user mapping you should use.
Quote:
Nautilus doesn't allow to set rw access to group users at Users/Public/New_with_users.
From another user lasse I cannot open folder Users/Public/New_with_users.

Did you put your users into group users on Linux ? This is needed for allowing jakob, lasse and katrin to access each other's files.
Quote:
Now I'm worrying about what will happen if there comes an update of kernel/ntfs-3g along with Ubuntu Software Updater.
I guess, that the manual patches then were gone and there is again no access to Users/Public, right?
In the meantime there may be changes to latest ntfs-3g, so additionally the patches may become outdated.

Yes.
Quote:
Because this machine is for a friend katrin and her children

For a home computer, shared with children, granting full access to files from Linux is dangerous.
Quote:
How long will it take, the changes go into Ubuntu's official Update Center?

Roughly one year. I make three or four releases per year. Tuxera makes a single "stable" release at the beginning of each year, and Ubuntu packages one of them. From https://bugs.launchpad.net/ubuntu/+sour ... ug/1291827 the current ntfs-3g packaged by Ubuntu is 2013.1.13AR.1 from February 2013.

IMHO you should not try to twist Windows behavior into Linux. Use Windows with its rules and Ubuntu with its own. If you feel unsafe, create files in different subdirectories for Windows and Linux. Use the above user mapping file, do not use "inherit", and put Linux users into group users. This way you will avoid problems with editors which expect Linux behavior, and you can use a standard ntfs-3g release.

Regards

Jean-Pierre


Sat Apr 05, 2014 21:47
Profile

Joined: Mon Mar 31, 2014 13:43
Posts: 113
Post Re: How to apply access to E:\Users\Public for all Linux acounts
Hi,

jpa wrote:
There must be another explanation. I do not have gedit, and I would need a strace to know more.
How could I make a strace, or maybe better, are you able to install gedit on your machine?
See also: https://bugs.launchpad.net/ubuntu/+sour ... ug/1303757

Quote:
Quote:
Nautilus doesn't allow to set rw access to group users at Users/Public/New_with_users.
From another user lasse I cannot open folder Users/Public/New_with_users.

Did you put your users into group users on Linux ? This is needed for allowing jakob, lasse and katrin to access each other's files.
Yes of coarse.

Quote:
Quote:
Because this machine is for a friend katrin and her children

For a home computer, shared with children, granting full access to files from Linux is dangerous.

Yes, that's why I want inheritance work as expected, ...even without complicated user mapping.
They are 16+18, so I can tell them to only work on their data files but not on Windows system files. But I can't forbid them to install games on Windows or visit dangerous web sites, so if they catch a malware, it should not have access to data files of any arbitrary account because of full access permissions.

Quote:
If you feel unsafe, create files in different subdirectories for Windows and Linux.
Well, I want that these users can learn to do there daily work - maybe better - with Ubuntu, but they should have a fall-back to Windows, which requires access to all user files from both OS. I don't think they have enough discipline to properly use different subdirectories for Windows and Linux. Even the sharing of Firefox and Thunderbird profiles from both OS should work. This works fine on my machine except that if FF or TB creates new files, on Windows they appear with full access permissions for anybody instead being properly inherited.

Quote:
Use the above user mapping file, do not use "inherit", and put Linux users into group users. This way you will avoid problems with editors which expect Linux behavior, and you can use a standard ntfs-3g release.
Thanks for the advise with this fall-back, but I have not given up yet. :mrgreen:

Anyway very much thanks for your responsive help and "teamwork",

Ulf


Mon Apr 07, 2014 14:20
Profile
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 17 posts ] 


Who is online

Users browsing this forum: No registered users and 4 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group.
Original forum style by Vjacheslav Trushkin.