Univention Bugzilla – Full Text Bug Listing |
Summary: | rsync: GPO ACL's changes on the master can be overwritten | ||
---|---|---|---|
Product: | UCS | Reporter: | Stefan Gohmann <gohmann> |
Component: | Upstream packages | Assignee: | Stefan Gohmann <gohmann> |
Status: | CLOSED FIXED | QA Contact: | Felix Botner <botner> |
Severity: | normal | ||
Priority: | P5 | CC: | botner, gohmann, jmm, requate |
Version: | UCS 3.2 | ||
Target Milestone: | UCS 3.2-2-errata | ||
Hardware: | Other | ||
OS: | Linux | ||
What kind of report is it?: | --- | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | ||
Max CVSS v3 score: | |||
Bug Depends on: | 34430 | ||
Bug Blocks: | 33751 |
Description
Stefan Gohmann
2014-06-11 17:11:52 CEST
(In reply to Stefan Gohmann from comment #0) > It happens in some cases that the permissions for the GPOs are set to > root.root at the target host. Seen at: Ticket #2014042221007541 The main problem the mode was set to 0700 and the group ACLs have no effect. I've extended the test case 51_samba4/52replication_sysvol: r51005 The rsync fix: r13159 YAML: r51006 could reproduce the behavior: Created GPO on the master (RSAT): drwxrwx---+ 4 root Domain Admins 4096 12. Jun 09:55 {385E4FF3-08A0-467E-8958-99508BC0B45A} sysvol sync on slave: drwx------+ 4 root root 4096 12. Jun 09:55 {385E4FF3-08A0-467E-8958-99508BC0B45A} sysvol sync on master: drwx------+ 4 root root 4096 12. Jun 09:55 {385E4FF3-08A0-467E-8958-99508BC0B45A} with the patched rsync: Created GPO on the master (RAST): drwxrwx---+ 4 root Domain Admins 4096 12. Jun 10:19 {A644F288-4508-408E-AEEE-1EF920175F9D} sysvol sync on slave: drwxrwx---+ 4 root Domain Admins 4096 12. Jun 10:19 {A644F288-4508-408E-AEEE-1EF920175F9D} sysvol sync on the master: drwxrwx---+ 4 root Domain Admins 4096 12. Jun 10:19 {A644F288-4508-408E-AEEE-1EF920175F9D} OK - YAML |