How do I allow create directory but not move or delete in Samba/Linux?

I know I can set a directory to read-only after it is created, but
that means I have to constantly search the server for new folders
created by users (Windows clients). How do I make a default permission
with Linux/Samba to create, but not delete or move, a directory on a
server?
Thanks.

Craig <(E-Mail Removed)> wrote:
> I know I can set a directory to read-only after it is created, but

Why not do it before it is created? You are the only person allowed to
write in the superdir, right? So set your umask to something like 077.
Hic.

> that means I have to constantly search the server for new folders
> created by users (Windows clients). How do I make a default permission
> with Linux/Samba to create, but not delete or move, a directory on a
> server?

Your question makes no sense. Try again. The perms on a directory are
the decision of its creator. If you are not the creator, you have no
say in whether it is readonly or not. If you are the creator, make it
readonly.

Peter

(E-Mail Removed) (Craig) wrote in
news:(E-Mail Removed) om:

> I know I can set a directory to read-only after it is created, but
> that means I have to constantly search the server for new folders
> created by users (Windows clients). How do I make a default permission
> with Linux/Samba to create, but not delete or move, a directory on a
> server?
> Thanks.

So close to knowledge, but so far from reality. ;-)

Whether or not you meant it, the ability to "delete or move" a
directory directly requires WRITE access to its parent directory.
To create a subdirectory REQUIRES that you ca WRITE to the parent.
Both of these are true because to create, move, or delete a directory
requires the parent directory file to be MODIFIED/WRITTEN to.

> I know I can set a directory to read-only after it is created,
Which directory is being set "read-only", the parent or the newly
created subdirectory?

Read-only for which users?

What good is an empty read-only folder?

Thanks for your replies.
My end goal is to prevent users from deleting or moving entire folders
(easy to do with drag and drop). Sorry, I am not a linux expert, just
the computer guy for a small office.

I was trying to figure out a way in Linux/Samba do to the same thing
my old DOS/Lantastic server allowed over a decade ago. Users were
allowed to create directories, and subdirectories, but not delete
them.

This was not the same as a read-only folder, users could create and
delete files within the protected directories. This was not an
attribute/permission of the directory, but a permission of what the
user was allowed to do.

If you apply this to the linux method of applying r/w permissions to
each file/directory, perhaps it could be thought of as fine-tuning the
write permission to say write-to-create, write-to-delete, etc.

Maybe I am way off-base on this, should I be looking at a different
function?
Thanks.

In comp.os.linux.networking Craig <(E-Mail Removed)>:
> Thanks for your replies.
> My end goal is to prevent users from deleting or moving entire folders
> (easy to do with drag and drop). Sorry, I am not a linux expert, just
> the computer guy for a small office.

With a recent distro you should be able to mount ext3 with "acl",
so you shouldn't need to compile the kernel.

This should do what you want:

http://www.bluelightning.org/linux/samba_acl_howto/

Good luck

--
Michael Heiming (X-PGP-Sig > GPG-Key ID: EDD27B94)
mail: echo (E-Mail Removed) | perl -pe 'y/a-z/n-za-m/'
#bofh excuse 19: floating point processor overflow