Subject: Re: Strange permission (denied) problem
From: Ove Ruben R Olsen (ruben@bdc.no)
Date: Sun Mar 19 2000 - 22:01:51 EST
At 23:39 +0100 on 19.03.00, I wrote:
...
> These error happens regardless of version of MacOS.
> These error happens regardless of if the users home-directory permissions
> is set to 755 instead of 555.
...
> /var/log/messages gives Mar 19 23:07:09 localhost afpd[1943]: afp_openfork:
> ad_open: Permission denied
...
> What kan be done to remedy this situation?
I found the solution to this particular problem:
When RedHat 6.2 creates users with the "adduser" script it will also create
a group for each user (users primary group).
Lets say I have the user "ruben" with "ruben" as primary group. In my process
(automated) when the user was created I also changed ownership of the
home-directory to "ruben.users" (group: users). This is not really according
to RedHats setup.
Apperently netatalk has certain problems with this kind of setup and will give
the errormessage back to the user telling him/her that he/she does not have
the right permission (when in fact (unix-wise) he/she does).
(I even looked at the source trying to find this info.)
The solution was to either
a) Let the users home-directory also have the primary-group as GID
OR
b) Let the all the users have the same GID as their primary
Personally I do consider this a misfeature - afpd should honour the UID on a
given directory and not UID.GID unless specified.
\Ruben.
This archive was generated by hypermail 2b28 : Wed Jan 17 2001 - 14:30:16 EST