|
 |
f2a5d6 |
From b54e00beddd4343e746c7ead585ef607dbf48cff Mon Sep 17 00:00:00 2001
|
|
|
f2a5d6 |
From: Uri Simchoni <urisimchoni@gmail.com>
|
|
|
f2a5d6 |
Date: Thu, 19 Nov 2015 21:48:15 +0200
|
|
|
f2a5d6 |
Subject: [PATCH 4/5] manpage: clarify use of backupuid and backupgid in
|
|
|
f2a5d6 |
mount.cifs.8
|
|
|
f2a5d6 |
|
|
|
f2a5d6 |
Assert that backup intent shall only be attempted if the user matches
|
|
|
f2a5d6 |
the backupuid or backupgid parameter.
|
|
|
f2a5d6 |
|
|
|
f2a5d6 |
Signed-off-by: Uri Simchoni <uri@samba.org>
|
|
|
f2a5d6 |
Signed-off-by: Jeff Layton <jlayton@samba.org>
|
|
|
f2a5d6 |
(cherry picked from commit dd13ac8a25d409a0d3d068b5b2b96f921f2613f2)
|
|
|
f2a5d6 |
Signed-off-by: Sachin Prabhu <sprabhu@redhat.com>
|
|
|
f2a5d6 |
---
|
|
|
f2a5d6 |
mount.cifs.8 | 6 +++---
|
|
|
f2a5d6 |
1 file changed, 3 insertions(+), 3 deletions(-)
|
|
|
f2a5d6 |
|
|
|
f2a5d6 |
diff --git a/mount.cifs.8 b/mount.cifs.8
|
|
|
f2a5d6 |
index 2643145..af6b097 100644
|
|
|
f2a5d6 |
--- a/mount.cifs.8
|
|
|
f2a5d6 |
+++ b/mount.cifs.8
|
|
|
f2a5d6 |
@@ -310,14 +310,14 @@ for more information\&.
|
|
|
f2a5d6 |
.PP
|
|
|
f2a5d6 |
backupuid=\fIarg\fR
|
|
|
f2a5d6 |
.RS 4
|
|
|
f2a5d6 |
-Restrict access to files with the backup intent to a user. Either a name or an id must be provided as an argument, there are no default values.
|
|
|
f2a5d6 |
+File access by this user shall be done with the backup intent flag set. Either a name or an id must be provided as an argument, there are no default values.
|
|
|
f2a5d6 |
.sp
|
|
|
f2a5d6 |
See section \fIACCESSING FILES WITH BACKUP INTENT\fR for more details
|
|
|
f2a5d6 |
.RE
|
|
|
f2a5d6 |
.PP
|
|
|
f2a5d6 |
backupgid=\fIarg\fR
|
|
|
f2a5d6 |
.RS 4
|
|
|
f2a5d6 |
-Restrict access to files with the backup intent to a group. Either a name or an id must be provided as an argument, there are no default values.
|
|
|
f2a5d6 |
+File access by users who are members of this group shall be done with the backup intent flag set. Either a name or an id must be provided as an argument, there are no default values.
|
|
|
f2a5d6 |
.sp
|
|
|
f2a5d6 |
See section \fIACCESSING FILES WITH BACKUP INTENT\fR for more details
|
|
|
f2a5d6 |
.RE
|
|
|
f2a5d6 |
@@ -767,7 +767,7 @@ But the user testuser, if it becomes part of the group Backup Operators, can ope
|
|
|
f2a5d6 |
Any user on the client side who can authenticate as such a user on the server,
|
|
|
f2a5d6 |
can access the files with the backup intent. But it is desirable and preferable for security reasons amongst many, to restrict this special right.
|
|
|
f2a5d6 |
|
|
|
f2a5d6 |
-The mount option backupuid is used to restrict this special right to a user which is specified by either a name or an id. The mount option backupgid is used to restrict this special right to the users in a group which is specified by either a name or an id. These two mount options can be used together.
|
|
|
f2a5d6 |
+The mount option backupuid is used to restrict this special right to a user which is specified by either a name or an id. The mount option backupgid is used to restrict this special right to the users in a group which is specified by either a name or an id. Only users maching either backupuid or backupgid shall attempt to access files with backup intent. These two mount options can be used together.
|
|
|
f2a5d6 |
.SH "FILE AND DIRECTORY OWNERSHIP AND PERMISSIONS"
|
|
|
f2a5d6 |
.PP
|
|
|
f2a5d6 |
The core CIFS protocol does not provide unix ownership information or mode for files and directories\&. Because of this, files and directories will generally appear to be owned by whatever values the uid= or gid= options are set, and will have permissions set to the default file_mode and dir_mode for the mount\&. Attempting to change these values via chmod/chown will return success but have no effect\&.
|
|
|
f2a5d6 |
--
|
|
|
f2a5d6 |
2.5.5
|
|
|
f2a5d6 |
|