ACLs for CIFS/SMB shares [PSARC/2008/641 FastTrack timeout 10/27/2008]
Doug McCallum
Doug.McCallum at sun.com
Mon Oct 20 10:19:34 PDT 2008
Nicolas Williams wrote:
> On Mon, Oct 20, 2008 at 10:43:31AM -0600, Tim Haley wrote:
>
>> CIFS is the only protocol we currently support that has the
>> concept of shares (resources in sharemgr/share terms) so this
>> implementation will initially only provide support for CIFS.
>>
>
> That can't possibly be right. NFS has long had a concept of shares, and
> share ACLs too.
>
The NFS host access control (which is being added to SMB as well) is not
ACL based.
They are strictly based off of the client IP address and not based on
the user's ID.
SMB share ACLs are just like file ACLs except that they are based on the
share name.
Each SMB share name for the same path can have its own set of ACLs.
Doug
More information about the opensolaris-arc
mailing list