 |
  |
Page 1 of 1
|
[ 17 posts ] |
|
How to apply access to E:\Users\Public for all Linux acounts
| Author |
Message |
|
UlfZibis
Joined: Mon Mar 31, 2014 13:43
Posts: 113
|
 How to apply access to E:\Users\Public for all Linux acounts On my Ubuntu system I get: Code: katrin@HP-Compaq:~$ id
uid=1000(katrin) gid=1000(katrin) Gruppen=1000(katrin),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),112(lpadmin),124(sambashare) I created UserMapping with: Code: F:\Software\Linux\TuxeraTools>usermap C: E:
This tool will help you to build a mapping of Windows users
to Linux users.
Be prepared to give Linux user id (uid) and group id (gid)
for owners of files which will be selected.
Your current user name is Administrator
Your account domain is Dobler-PC
* Scanning "C:" (two levels)
Under Windows login "Administrator"
file "AppData" has no mapped group
By which Linux login should this file be owned ?
Enter gid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom
Group : sudo
Under Windows login "All Users"
file "eHome" has no mapped group
By which Linux login should this file be owned ?
Enter gid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom
Group :
Under Windows login "Default"
file "Media Center Programs" has no mapped group
By which Linux login should this file be owned ?
Enter gid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom
Group :
file "S-1-5-21-2869643010-2844629126-3994450086-1005" has no mapped owner
By which Linux login should this file be owned ?
Enter uid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom
User : jakob
file "S-1-5-21-2869643010-2844629126-3994450086-1006" has no mapped owner
By which Linux login should this file be owned ?
Enter uid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom
User : lasse
file "S-1-5-21-2869643010-2844629126-3994450086-1007" has no mapped owner
By which Linux login should this file be owned ?
Enter uid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom
User : katrin
file "$RWX9LVZ" has no mapped owner
By which Linux login should this file be owned ?
Enter uid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom
User :
file "{F750E6C3-38EE-11D1-85E5-00C04FC295EE}" has no mapped group
By which Linux login should this file be owned ?
Enter gid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom
Group :
* Scanning "E:" (two levels)
Under Windows login "Public"
file "Recorded TV" has no mapped group
By which Linux login should this file be owned ?
Enter gid of login, or just press "enter" if this file
does not belong to a user, or you do not known to whom
Group :
* Old mapping file moved to E:\.NTFS-3G\UserMapping.bak
* Creating file E:\.NTFS-3G\UserMapping
# Generated by usermap for Windows, v 1.1.2
:sudo:S-1-5-21-2869643010-2844629126-3994450086-513
jakob:jakob:S-1-5-21-2869643010-2844629126-3994450086-1005
lasse:lasse:S-1-5-21-2869643010-2844629126-3994450086-1006
katrin:katrin:S-1-5-21-2869643010-2844629126-3994450086-1007
Undecided :
S-1-5-21-561645723-1598288805-1625568065-513
S-1-5-21-2869643010-2844629126-3994450086-1003
S-1-5-21-397955417-626881126-188441444-513 When running Nautilus from katrin I successfully can look into /media/Daten/Users/Katrin, but I'm not able to look into /media/Daten/Users/Public. I only can look into it, when I run nautilus with sudo. Maybe I should make root, jakob, lasse and katrin members of group users(100) and then map S-1-5-21-2869643010-2844629126-3994450086-513 to users(100). What do you think?
|
| Mon Mar 31, 2014 23:50 |
 |
|
|
UlfZibis
Joined: Mon Mar 31, 2014 13:43
Posts: 113
|
Re: How to apply access to E:\Users\Public for all Linux acounts My fstab is: Code: UUID=xxxx /media/Daten ntfs defaults,inherit 0 0
|
| Tue Apr 01, 2014 00:19 |
|
|
|
jpa
NTFS-3G Lead Developer
Joined: Tue Sep 04, 2007 17:22
Posts: 1286
|
Re: How to apply access to E:\Users\Public for all Linux acounts Hi, Quote: Maybe I should make root, jakob, lasse and katrin members of group users(100) and then map S-1-5-21-2869643010-2844629126-3994450086-513 to users(100).
What do you think? Probably so. If jakob, lasse and katrin are in the same group in Windows (this is the default for Windows 7), they must also be in the same group in Linux. S-1-5-21-2869643010-2844629126-3994450086-513 is probably the group identification of all your Windows users. Quote: When running Nautilus from katrin I successfully can look into /media/Daten/Users/Katrin, but I'm not able to look into /media/Daten/Users/Public. I have currently no solution for this, /Users/Public is not defined as "world readable" as one would expect (fix needed). Regards Jean-Pierre
|
| Tue Apr 01, 2014 09:53 |
|
|
|
UlfZibis
Joined: Mon Mar 31, 2014 13:43
Posts: 113
|
Re: How to apply access to E:\Users\Public for all Linux acounts jpa wrote: Quote: Maybe I should make root, jakob, lasse and katrin members of group users(100) and then map S-1-5-21-2869643010-2844629126-3994450086-513 to users(100).
What do you think? Probably so. Well, I'm not sure for which use group users(100) was originally designed for. As I assume, you are a very experienced Linux geek, I wanted to know if you think users(100) is appropriate for that purpose, maybe there is another which would match better. Now I tried this: Code: katrin@HP-Compaq:~$ id
uid=1000(katrin) gid=1000(katrin) Gruppen=1000(katrin),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),100(users),112(lpadmin),124(sambashare) Code: :users:S-1-5-21-2869643010-2844629126-3994450086-513
jakob:jakob:S-1-5-21-2869643010-2844629126-3994450086-1005
lasse:lasse:S-1-5-21-2869643010-2844629126-3994450086-1006
katrin:katrin:S-1-5-21-2869643010-2844629126-3994450086-1007 Unfortunately I still can't access to /media/Daten/Users/Public/. I'm also wondering about ownership, seen by nautilus: /media/Daten/Users/Katrin/ -> lch:root /media/Daten/Users/Katrin/Documents/ -> lch:users /media/Daten/Users/Katrin/Documents/Created_from_Linux_without_mapping.txt -> root:root /media/Daten/Users/Katrin/Documents/Created_from_Linux_with_mapping+inherit.txt -> lch:katrin This does'n help either: Code: :users:S-1-5-21-2869643010-2844629126-3994450086-513
jakob::S-1-5-21-2869643010-2844629126-3994450086-1005
lasse::S-1-5-21-2869643010-2844629126-3994450086-1006
katrin::S-1-5-21-2869643010-2844629126-3994450086-1007 Quote: If jakob, lasse and katrin are in the same group in Windows (this is the default for Windows 7), they must also be in the same group in Linux. S-1-5-21-2869643010-2844629126-3994450086-513 is probably the group identification of all your Windows users. As examined above, this seems to be wrong  Quote: I have currently no solution for this, /Users/Public is not defined as "world readable" as one would expect (fix needed). Hopefully you find some soon. Regards, Ulf
|
| Tue Apr 01, 2014 19:52 |
|
|
|
jpa
NTFS-3G Lead Developer
Joined: Tue Sep 04, 2007 17:22
Posts: 1286
|
Re: How to apply access to E:\Users\Public for all Linux acounts Hi, Quote: Well, I'm not sure for which use group users(100) was originally designed for. As I assume, you are a very experienced Linux geek, I wanted to know if you think users(100) is appropriate for that purpose, maybe there is another which would match better. I do not know either. On my system, there is no user in group "users", so it is available for any purpose. If you have any doubt, create a new group "all-users" and put your users in this group. Quote: I'm also wondering about ownership, seen by nautilus:
/media/Daten/Users/Katrin/ -> lch:root
/media/Daten/Users/Katrin/Documents/ -> lch:users
/media/Daten/Users/Katrin/Documents/Created_from_Linux_without_mapping.txt -> root:root
/media/Daten/Users/Katrin/Documents/Created_from_Linux_with_mapping+inherit.txt -> lch:katrin I assume "Ich" is a synonym for "katrin" (is this the Nautilus way to hide the real owner ?). In which case all this appears to be correct to me. Let me explain : Quote: /media/Daten/Users/Katrin/ -> lch:root Correct. The Windows home directory of a user is owned by the user (here katrin) and it is put into group Administrator, which is mapped to root. Quote: /media/Daten/Users/Katrin/Documents/ -> lch:users Correct. On a previous post you showed Katrin/Documents has owner katrin and default Windows group, which you assigned to "users". Quote: /media/Daten/Users/Katrin/Documents/Created_from_Linux_without_mapping.txt -> root:root Correct. This was created on Linux, with no user mapping, it can only be shown as root owner and root group. Quote: /media/Daten/Users/Katrin/Documents/Created_from_Linux_with_mapping+inherit.txt -> lch:katrin Here, an explanation may be needed. "id" returned "uid=1000(katrin) gid=1000(katrin)", so the primary group of Katrin is "katrin", and files created by Katrin are defined with user "katrin" and group "katrin". If you wanted the files to be created in group users, you have to define "users" as the primary group (and katrin as a secondary group). This just pinpoints a different grouping of users in Windows and Linux. I would not change this unless you have a special need. What is your policy for allowing users to access each other's files ? Possibly making /Users/Public fully accessible is what you need. Quote: This does not help other : Same reason : the primary group of each user is different on Windows and Linux. Quote: Quote: If jakob, lasse and katrin are in the same group in Windows (this is the default for Windows 7), they must also be in the same group in Linux. S-1-5-21-2869643010-2844629126-3994450086-513 is probably the group identification of all your Windows users As examined above, this seems to be wrong I should have mentioned primary : they must also be in the same primary group in Linux. Quote: Quote: I have currently no solution for this, /Users/Public is not defined as "world readable" as one would expect (fix needed). /Users/Public is really not "world readable" on Windows. Access is limited to some process categories, and I would have to allow such categories to be mapped to Linux groups. As a temporary workaround, attached is a patch to consider Linux users as interactive users, and so allowed to have full access to /Users/Public. Regards Jean-Pierre
|
| Tue Apr 01, 2014 22:05 |
|
|
|
UlfZibis
Joined: Mon Mar 31, 2014 13:43
Posts: 113
|
Re: How to apply access to E:\Users\Public for all Linux acounts jpa wrote: I assume "Ich" is a synonym for "katrin" (is this the Nautilus way to hide the real owner ?). I don't know, but really weird, isn't it? But yes, in terminal I see katrin for lch. I'm not sure if it is a lowercase L or an uppercase I in Nautilus font. Quote: Quote: /media/Daten/Users/Katrin/Documents/Created_from_Linux_with_mapping+inherit.txt -> lch:katrin Here, an explanation may be needed. "id" returned "uid=1000(katrin) gid=1000(katrin)", so the primary group of Katrin is "katrin", and files created by Katrin are defined with user "katrin" and group "katrin". If you wanted the files to be created in group users, you have to define "users" as the primary group (and katrin as a secondary group). This just pinpoints a different grouping of users in Windows and Linux. I would not change this unless you have a special need. What is your policy for allowing users to access each other's files ? I do not want to allow users to access ech other's file if located in there own user dir, but want to allow access for all files, created by whom ever, if in /Users/Public/. I always want, that files and dirs, created from Linux, have truly valid inherited permissions from their parent folder in later Windows view. Quote: /Users/Public is really not "world readable" on Windows. Access is limited to some process categories, and I would have to allow such categories to be mapped to Linux groups.
As a temporary workaround, attached is a patch to consider Linux users as interactive users, and so allowed to have full access to /Users/Public. Very much thanks! Can you give me some little help how to compile, link and deploy that patch? I'm familiar with developing in Java and also in standalone C code, but I feel lost in correctly applying a patch in Linux system libraries. Which original files should I backup for accident case before I change something? Do I still need katrin etc. as member of users(100) and use the following mapping with this patch? : Code: :users:S-1-5-21-2869643010-2844629126-3994450086-513
jakob:jakob:S-1-5-21-2869643010-2844629126-3994450086-1005
lasse:lasse:S-1-5-21-2869643010-2844629126-3994450086-1006
katrin:katrin:S-1-5-21-2869643010-2844629126-3994450086-1007
|
| Tue Apr 01, 2014 23:38 |
|
|
|
jpa
NTFS-3G Lead Developer
Joined: Tue Sep 04, 2007 17:22
Posts: 1286
|
Re: How to apply access to E:\Users\Public for all Linux acounts Hi, Quote: I do not want to allow users to access ech other's file if located in there own user dir, but want to allow access for all files, created by whom ever, if in /Users/Public/. I always want, that files and dirs, created from Linux, have truly valid inherited permissions from their parent folder in later Windows view. Fine. So group permissions are not used to enable access to other users' directory, and you do no need to stress on groups. Also do not forget that inheritance only applies to permissions, not to ownership. Also, copy the needed files to /Users/Public/ to apply inheritance, and do not move them from users' directory. Moving files does not change permissions. Quote: Can you give me some little help how to compile, link and deploy that patch? I'm familiar with developing in Java and also in standalone C code, but I feel lost in correctly applying a patch in Linux system libraries. Which original files should I backup for accident case before I change something? This is quite simple : 1) download a recent ntfs-3g version from Tuxera 2) download the proposed patch 3) create a work directory, and "cd" to it 4) unpack both the ntfs-3g and the patch 5) apply the patch by executing "patch -p0 < acls.c.patch" 6) configure, by executing "./configure --enable-posix-acls" 7) compile, by executing "make" 8) install, by executing "sudo make install" 9) unmount and remount your ntfs partitions Quote: Which original files should I backup for accident case before I change something? The proposed patch only modifies libntfs-3g/acls.c, but in case of accident, you should probably restart at step 4. Quote: Do I still need katrin etc. as member of users(100) and use the following mapping with this patch? The proposed mapping is fine. Better putting users into group users so that Windows files do not appear as owned by root, but this could be unneeded, as you do not allow users to access each others' file (apart from the ones put into /Users/Public which do not rely on groups). Regards Jean-Pierre
|
| Wed Apr 02, 2014 08:44 |
|
|
|
UlfZibis
Joined: Mon Mar 31, 2014 13:43
Posts: 113
|
Re: How to apply access to E:\Users\Public for all Linux acounts Results of the patch: New folder created from Linux: - OK: inherited permissions - superflous: additional not inherited permissions New text file created from Linux: - OK: inherited permissions New text file created + filled with text by using gedit from Linux: - NOT OK: no inherited permissions Please see attachment. My solely UserMapping: Code: jakob:jakob:S-1-5-21-2869643010-2844629126-3994450086-1005
lasse:lasse:S-1-5-21-2869643010-2844629126-3994450086-1006
katrin:katrin:S-1-5-21-2869643010-2844629126-3994450086-1007 fstab options: defaults,inherit
|
| Thu Apr 03, 2014 19:17 |
|
|
|
jpa
NTFS-3G Lead Developer
Joined: Tue Sep 04, 2007 17:22
Posts: 1286
|
Re: How to apply access to E:\Users\Public for all Linux acounts Hi, Quote: New folder created from Linux:
- OK: inherited permissions
- superflous: additional not inherited permissions Can you post both the parent directory ACL and the created folder ACL (using secaudit) ? Quote: New text file created + filled with text by using gedit from Linux:
- NOT OK: no inherited permissions This is frequent for editors : they create a new temporary file, then they rename it. a) If the temporary file is in the same directory, it inherits the parent directory permissions, and the result is as expected. b) If the temporary file is in another inheritable directory in the same partition, the resulting file inherits from this other directory. c) If the temporary file is in a non-inheritable temporary directory, such as /tmp, the file is created according to Linux rules (umask applied, etc), and these permissions are then copied to the target file. gedit probably uses method b or c. I have no idea of a solution for method b, but for method c, there is probably a possibility to disable chown/chmod/setfacl so that the permissions are not copied over the inheritance. Do you need such an option, at least for a try ? Regards Jean-Pierre
|
| Thu Apr 03, 2014 22:09 |
|
|
|
UlfZibis
Joined: Mon Mar 31, 2014 13:43
Posts: 113
|
Re: How to apply access to E:\Users\Public for all Linux acounts jpa wrote: Can you post both the parent directory ACL and the created folder ACL (using secaudit) ? Quote: Quote: New text file created + filled with text by using gedit from Linux:
- NOT OK: no inherited permissions This is frequent for editors : they create a new temporary file, then they rename it. a) If the temporary file is in the same directory, it inherits the parent directory permissions, and the result is as expected. b) If the temporary file is in another inheritable directory in the same partition, the resulting file inherits from this other directory. I don't think so, at which place on my Linux-external NTFS partition should it be save. Note: from file system view the root of the path /media/Daten/... isn't on the NTFS partition at all. Quote: c) If the temporary file is in a non-inheritable temporary directory, such as /tmp, the file is created according to Linux rules (umask applied, etc), and these permissions are then copied to the target file. This seems possible !!! Quote: gedit probably uses method b or c. I have no idea of a solution for method b, but for method c, there is probably a possibility to disable chown/chmod/setfacl so that the permissions are not copied over the inheritance. Do you need such an option, at least for a try ? Yes thanks, I would appreciate such possibility.
|
| Fri Apr 04, 2014 21:08 |
|
|
|
UlfZibis
Joined: Mon Mar 31, 2014 13:43
Posts: 113
|
Re: How to apply access to E:\Users\Public for all Linux acounts There are additional things I worry about: Attachment: 
Permissions in Public folders.png [ 159.21 KiB | Viewed 34390 times ]
IMO the Public folder and it's Windows standard subfolders should only be readable, but not deletable from normal user account. The only folder which follows this rule is Desktop. On the other Hand, the Linux user created folder "New-with_patch" should be rw-accessible from all Linux users. Is there any chance to change that?
|
| Fri Apr 04, 2014 22:14 |
|
|
|
jpa
NTFS-3G Lead Developer
Joined: Tue Sep 04, 2007 17:22
Posts: 1286
|
Re: How to apply access to E:\Users\Public for all Linux acounts Hi, Quote: Quote: gedit probably uses method b or c. I have no idea of a solution for method b, but for method c, there is probably a possibility to disable chown/chmod/setfacl so that the permissions are not copied over the inheritance. Do you need such an option, at least for a try ? Yes thanks, I would appreciate such possibility. Try attached patch no-chmod.patch Quote: IMO the Public folder and it's Windows standard subfolders should only be readable, but not deletable from normal user account.
The only folder which follows this rule is Desktop. Linux is not Windows. For a file to not be deletable on Linux, the parent directory has to be unwriteable or it must be sticky. Quote: On the other Hand, the Linux user created folder "New-with_patch" should be rw-accessible from all Linux users.
Is there any chance to change that? Yes, by putting the users into a common group mapped to the Windows default group. Regards Jean-Pierre
|
| Sat Apr 05, 2014 10:37 |
|
|
|
UlfZibis
Joined: Mon Mar 31, 2014 13:43
Posts: 113
|
Re: How to apply access to E:\Users\Public for all Linux acounts jpa wrote: Quote: Quote: gedit probably uses method b or c. I have no idea of a solution for method b, but for method c, there is probably a possibility to disable chown/chmod/setfacl so that the permissions are not copied over the inheritance. Do you need such an option, at least for a try ? Yes thanks, I would appreciate such possibility. Try attached patch no-chmod.patch Unfortunately there is no change in behaviour Thanks, Ulf
|
| Sat Apr 05, 2014 17:06 |
|
|
|
UlfZibis
Joined: Mon Mar 31, 2014 13:43
Posts: 113
|
Re: How to apply access to E:\Users\Public for all Linux acounts jpa wrote: Quote: IMO the Public folder and it's Windows standard subfolders should only be readable, but not deletable from normal user account.
The only folder which follows this rule is Desktop. Linux is not Windows. For a file to not be deletable on Linux, the parent directory has to be unwriteable or it must be sticky. Is there a chance, that this could be established automatically by NTFS-3G? Quote: Quote: On the other Hand, the Linux user created folder "New-with_patch" should be rw-accessible from all Linux users.
Is there any chance to change that? Yes, by putting the users into a common group mapped to the Windows default group. Now I've tried this. UserMapping: Code: :users:S-1-5-21-2869643010-2844629126-3994450086-513
jakob:jakob:S-1-5-21-2869643010-2844629126-3994450086-1005
lasse:lasse:S-1-5-21-2869643010-2844629126-3994450086-1006
katrin:katrin:S-1-5-21-2869643010-2844629126-3994450086-1007 This does change nothing except that the new created folder now belongs to users instead katrin. Nautilus doesn't allow to set rw access to group users at Users/Public/New_with_users. From another user lasse I cannot open folder Users/Public/New_with_users. Thanks Ulf
|
| Sat Apr 05, 2014 17:58 |
|
|
|
UlfZibis
Joined: Mon Mar 31, 2014 13:43
Posts: 113
|
Re: How to apply access to E:\Users\Public for all Linux acounts Now I'm worrying about what will happen if there comes an update of kernel/ntfs-3g along with Ubuntu Software Updater.
I guess, that the manual patches then were gone and there is again no access to Users/Public, right?
In the meantime there may be changes to latest ntfs-3g, so additionally the patches may become outdated.
Because this machine is for a friend katrin and her children. They are not able to (1) be aware on the update, (2) download current ntfs-3g and (3) install a patch.
Another reason to have option inherit without user mapping and permissions.
Do you know solutions? How long will it take, the changes go into Ubuntu's official Update Center?
|
| Sat Apr 05, 2014 18:17 |
|
|
|
jpa
NTFS-3G Lead Developer
Joined: Tue Sep 04, 2007 17:22
Posts: 1286
|
Re: How to apply access to E:\Users\Public for all Linux acounts Hi, Quote: Quote: Try attached patch no-chmod.patch Unfortunately there is no change in behaviour There must be another explanation. I do not have gedit, and I would need a strace to know more. Quote: Quote: Linux is not Windows. For a file to not be deletable on Linux, the parent directory has to be unwriteable or it must be sticky. Is there a chance, that this could be established automatically by NTFS-3G? No reasonable way. ntfs-3g is not a Windows emulator, it is a file system targeting Posix compliance. Quote: Code: :users:S-1-5-21-2869643010-2844629126-3994450086-513
jakob:jakob:S-1-5-21-2869643010-2844629126-3994450086-1005
lasse:lasse:S-1-5-21-2869643010-2844629126-3994450086-1006
katrin:katrin:S-1-5-21-2869643010-2844629126-3994450086-1007 This does change nothing except that the new created folder now belongs to users instead katrin. IMHO, this is the user mapping you should use. Quote: Nautilus doesn't allow to set rw access to group users at Users/Public/New_with_users.
From another user lasse I cannot open folder Users/Public/New_with_users. Did you put your users into group users on Linux ? This is needed for allowing jakob, lasse and katrin to access each other's files. Quote: Now I'm worrying about what will happen if there comes an update of kernel/ntfs-3g along with Ubuntu Software Updater.
I guess, that the manual patches then were gone and there is again no access to Users/Public, right?
In the meantime there may be changes to latest ntfs-3g, so additionally the patches may become outdated. Yes. Quote: Because this machine is for a friend katrin and her children For a home computer, shared with children, granting full access to files from Linux is dangerous. Quote: How long will it take, the changes go into Ubuntu's official Update Center? Roughly one year. I make three or four releases per year. Tuxera makes a single "stable" release at the beginning of each year, and Ubuntu packages one of them. From https://bugs.launchpad.net/ubuntu/+sour ... ug/1291827 the current ntfs-3g packaged by Ubuntu is 2013.1.13AR.1 from February 2013. IMHO you should not try to twist Windows behavior into Linux. Use Windows with its rules and Ubuntu with its own. If you feel unsafe, create files in different subdirectories for Windows and Linux. Use the above user mapping file, do not use "inherit", and put Linux users into group users. This way you will avoid problems with editors which expect Linux behavior, and you can use a standard ntfs-3g release. Regards Jean-Pierre
|
| Sat Apr 05, 2014 21:47 |
|
|
|
UlfZibis
Joined: Mon Mar 31, 2014 13:43
Posts: 113
|
Re: How to apply access to E:\Users\Public for all Linux acounts Hi, jpa wrote: There must be another explanation. I do not have gedit, and I would need a strace to know more. How could I make a strace, or maybe better, are you able to install gedit on your machine? See also: https://bugs.launchpad.net/ubuntu/+sour ... ug/1303757Quote: Quote: Nautilus doesn't allow to set rw access to group users at Users/Public/New_with_users.
From another user lasse I cannot open folder Users/Public/New_with_users. Did you put your users into group users on Linux ? This is needed for allowing jakob, lasse and katrin to access each other's files. Yes of coarse. Quote: Quote: Because this machine is for a friend katrin and her children For a home computer, shared with children, granting full access to files from Linux is dangerous. Yes, that's why I want inheritance work as expected, ...even without complicated user mapping. They are 16+18, so I can tell them to only work on their data files but not on Windows system files. But I can't forbid them to install games on Windows or visit dangerous web sites, so if they catch a malware, it should not have access to data files of any arbitrary account because of full access permissions. Quote: If you feel unsafe, create files in different subdirectories for Windows and Linux. Well, I want that these users can learn to do there daily work - maybe better - with Ubuntu, but they should have a fall-back to Windows, which requires access to all user files from both OS. I don't think they have enough discipline to properly use different subdirectories for Windows and Linux. Even the sharing of Firefox and Thunderbird profiles from both OS should work. This works fine on my machine except that if FF or TB creates new files, on Windows they appear with full access permissions for anybody instead being properly inherited. Quote: Use the above user mapping file, do not use "inherit", and put Linux users into group users. This way you will avoid problems with editors which expect Linux behavior, and you can use a standard ntfs-3g release. Thanks for the advise with this fall-back, but I have not given up yet.  Anyway very much thanks for your responsive help and "teamwork", Ulf
|
| Mon Apr 07, 2014 14:20 |
|
|
|
|
Page 1 of 1
|
[ 17 posts ] |
|
Who is online |
Users browsing this forum: No registered users and 3 guests |
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum
|
|
|
