From: Corinna Vinschen <corinna-cygwin@cygwin.com>
To: cygwin@cygwin.com
Subject: Re: cygwin 1.7.13-1: can't execute shell scripts on samba share
Date: Mon, 23 Apr 2012 12:29:00 -0000 [thread overview]
Message-ID: <20120423122807.GE7097@calimero.vinschen.de> (raw)
In-Reply-To: <20120423115331.GD7097@calimero.vinschen.de>
On Apr 23 13:53, Corinna Vinschen wrote:
> On Apr 23 13:02, Michel Bardiaux wrote:
> > [snip]
> >
> > > lgiambro@lorien ~
> > > $ cat len.sh
> > > #!/bin/sh
> > > echo it works
> >
> > And man sh states " --norc Do not read and execute the personal
> > initialization file ~/.bashrc if the
> > shell is interactive. This option is on by default if the
> > shell is invoked
> > as sh."
> > Which eliminates bashrc as a possible culprit.
> >
> > I have also tried the same as you did (len.sh on a samba share) and saw
> > the same problem. Then I saw that the len.sh got a (cygwin *and* linux)
> > mode of -rwxrw-r-- *without* doing any chmod. Then I saw that *every*
> > file I create on the samba share, gets the same mode!
> >
> > First things first, is there a workaround? Yes, chmod 777 len.sh *done
> > on linux* works. And it actually works too when done on cygwin.
> >
> > However, recreating len.sh on cygwin, then a chmod 700 len.sh again on
> > cygwin, does not work, again "./len.sh: Permission denied". But the mode
> > seen on the linux side is -rwx------.
> >
> > I have also tried deleting then recreating the file in cygwin, then
> > closing all cygwin processes and unmapping and remapping the samba
> > drive. No cigar.
> >
> > Then I tried cacls in various situations. It turns out that with mode
> > 777, cacls reveals "Everyone:F", but with mode 700 we get:
> >
> > len.sh <Account Domain not found>F
> > <Account Domain not found>(special access:)
> > Everyone:(special access:)
> >
> > And getfacl says:
> >
> > # file: len.sh
> > # owner: ????????
> > # group: ????????
Just to clarify: The unknown owner and group accounts in the getfacl
output above are almost certainly the fake SIDs created by Samba to
generate an unambiguous Unix UID/GID to Windows SID mapping. This
occurs if you don't use winbind on the Samba side to generate a real
UID/GID to SID mapping.
The fake SIDs created by Samba are of the form
S-1-22-1-UID
S-1-22-2-GID
You can add them to your /etc/passwd and /etc/group files by using the
`mkpasswd/mkgroup -U option, see
http://cygwin.com/cygwin-ug-net/using-utils.html#mkpasswd and
http://cygwin.com/cygwin-ug-net/using-utils.html#mkgroup
For instance:
$ mkpasswd -o 20000 -U root,corinna -L my_samba_server
Unix User\root:unused:20000:99999:,S-1-22-1-0::
Unix User\corinna:unused:20500:99999:,S-1-22-1-500::
$ mkgroup -o 20000 -U root,vinschen -L calimero
Unix Group\root:S-1-22-2-0:20000:
Unix Group\vinschen:S-1-22-2-11125:31125:
This gives a useful output in ls, getfacl or stat.
> You could mount the samba share with "noacl", see
> http://cygwin.com/cygwin-ug-net/using.html#mount-table
Corinna
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
next prev parent reply other threads:[~2012-04-23 12:29 UTC|newest]
Thread overview: 21+ messages / expand[flat|nested] mbox.gz Atom feed top
2012-04-18 15:45 Len Giambrone
2012-04-18 17:49 ` Earnie Boyd
2012-04-18 19:45 ` Len Giambrone
2012-04-19 8:29 ` Michel Bardiaux
2012-04-20 17:44 ` Len Giambrone
2012-04-19 11:37 ` Earnie Boyd
2012-04-20 17:45 ` Len Giambrone
2012-04-23 11:02 ` Michel Bardiaux
2012-04-23 11:33 ` Earnie Boyd
2012-04-23 11:54 ` Corinna Vinschen
2012-04-23 12:26 ` Michel Bardiaux
2012-04-23 12:31 ` Corinna Vinschen
2012-04-23 12:44 ` Michel Bardiaux
2012-04-23 12:29 ` Corinna Vinschen [this message]
2012-04-24 10:50 ` Andrey Repin
2012-04-24 12:15 ` Michel Bardiaux
2012-04-24 15:05 ` Andrey Repin
2012-04-24 15:20 ` Michel Bardiaux
2012-04-24 17:20 ` Andrey Repin
2012-04-26 14:18 ` Michel Bardiaux
2012-04-26 18:50 ` Andrey Repin
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20120423122807.GE7097@calimero.vinschen.de \
--to=corinna-cygwin@cygwin.com \
--cc=cygwin@cygwin.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).