Permissions created by ACL disappear

[freenasbbs]

Hello,everybody!

FreeNas 9.2.1.9
Cifs
Zfs

After I add Auxiliary Parameters , permissions ( which created by ACL) disappear

Before I add Auxiliary Parameters, it’s permissions as below(figure 1):

Because I want to record who/when loggin/modify/delete my share files,I add some “Auxiliary Parameters” (sharing—windows(cifs)—edit-advanced mode-Auxiliary Parameters)

vfs objects = full_audit
full_audit:prefix = %u|%I|%m|%S
full_audit:success = mkdir rmdir write rename
full_audit:failure = none
full_audit:facility = LOCAL7
full_audit:priority = ALERT

After I added Parameters and restart cifs services ,it’s permissions as bellow(Figure 3),Permissions (show on windows explorer) created by ACL had disappear:

thanks help !!!!

 

[anodos]

Samba allows extending its core functionality through modules called "vfs objects". Samba only allows one "vfs objects" line per share. When you added "vfs objects = full-audit", it effectively disabled the previous entry "vfs objects = zfsacl" which handles ACLs. The solution is modify your line "vfs objects = full audit" to "vfs objects = zfsacl streams_xattr full_audit". If you want to do shadow copies, then you will need "vfs objects = zfsacl streams_xattr full_audit shadow_copy2".

 

[freenasbbs]

Thank you very much...

it works good now.


but i have another problem....
(full_audit:success = mkdir rmdir write rename pwrite")

when i add more words to file "test.txt",the logfile can show me like

"Test2|192.168.0.43|mycomputer|NeedName|
pwrite|ok|PerTest/test.txt "


but if i clear all contents of this notepad(test.txt) and then save it
var/log/messages have no any messages


i think,when i clear all contents of this notepad,this file(test.txt) had been changed,log messages should be record it .


how can i fix this probelm?
add somethings to "full_audit:success ="?


thanks agin

 

[anodos]

Thank you very much...

it works good now.


but i have another problem....
(full_audit:success = mkdir rmdir write rename pwrite")

when i add more words to file "test.txt",the logfile can show me like

"Test2|192.168.0.43|mycomputer|NeedName|
pwrite|ok|PerTest/test.txt "


but if i clear all contents of this notepad(test.txt) and then save it
var/log/messages have no any messages


i think,when i clear all contents of this notepad,this file(test.txt) had been changed,log messages should be record it .


how can i fix this probelm?
add somethings to "full_audit:success ="?


thanks agin

I don't mess with full_audit (I feel like it generates large amounts of pointless logs). You're probably best off asking on the samba mailing lists: https://lists.samba.org

That being said, you can increase logging to "debug" and review the VFS operations that are performed when you modify contents of a file. Adjust your "full_audit:success" parameters accordingly.

 

[cyberjock]

I don't mess with full_audit (I feel like it generates large amounts of pointless logs). You're probably best off asking on the samba mailing lists: https://lists.samba.org

That's because it *does* generation a large amount of pointless logs. ;)

 

[freenasbbs]

thank you every mch