Hi, I have a Samba share set with the "Export Read Only" option to prevent changes. It was my understanding, that this setting is supposed to override individual user rights and create a read-only share of a given dataset.
However, I can still create new files and delete existing files in all subfolders of that share from a windows client logged in as the owner of the dataset.
The only things I found to be genuinely protected in this setting were:
- Folders residing in the root directory of the "read-only" share (which cannot be deleted)
- The content of existing files, even in subfolders (which cannot be changed)
I can however easily:
- Delete all existing folders and files in all subfolders within that "read-only" share
- Create new files and change them within subfolders of that "read-only" share
Did I just misunderstand the concept of "Export Read Only"? Is it not recursively applied to subfolders of a share? Are my observations expected behaviour? Does that mean, that the only way to REALLY achieve a read-only share is to remove writing rights of the dataset owner?
I'd be happy for any help!
However, I can still create new files and delete existing files in all subfolders of that share from a windows client logged in as the owner of the dataset.
The only things I found to be genuinely protected in this setting were:
- Folders residing in the root directory of the "read-only" share (which cannot be deleted)
- The content of existing files, even in subfolders (which cannot be changed)
I can however easily:
- Delete all existing folders and files in all subfolders within that "read-only" share
- Create new files and change them within subfolders of that "read-only" share
Did I just misunderstand the concept of "Export Read Only"? Is it not recursively applied to subfolders of a share? Are my observations expected behaviour? Does that mean, that the only way to REALLY achieve a read-only share is to remove writing rights of the dataset owner?
I'd be happy for any help!