TIM router and USB device permissions (Samba)

usb permissions router samba

Solution 1:

An explanation for these SIDs is found in the notes Samba 3 User and Group Changes :

Unmapped users are now assigned a SID in the S-1-22-1 domain and unmapped groups are assigned a SID in the S-1-22-2 domain.

The problem you are experiencing is then explained:

An example helps to illustrate the change:

Assume that a group named developers exists with a UNIX GID of 782. In this case this group does not exist in Samba's group mapping table. It would be perfectly normal for this group to be appear in an ACL editor. Prior to Samba-3.0.23, the group SID might appear as S-1-5-21-647511796-4126122067-3123570092-2565.

With the release of Samba-3.0.23, the group SID would be reported as S-1-22-2-782. Any security descriptors associated with files stored on a Windows NTFS disk partition will not allow access based on the group permissions if the user was not a member of the S-1-5-21-647511796-4126122067-3123570092-2565 group. Because this group SID is S-1-22-2-782 and not reported in a user's token,
Windows would fail the authorization check even though both SIDs in some respect refer to the same UNIX group.

The solution that is proposed is as follows:

The workaround for versions of Samba prior to 3.0.23, is to create a manual domain group mapping entry for the group developers to point at the S-1-5-21-647511796-4126122067-3123570092-2565 SID.
With the release of Samba-3.0.23 this workaround is no longer needed.

Therefore, your choices as I see them are :

  • Gain SSH access to the router and modify the Samba tables so as to give the SIDs from S-1-22 the necessary "everyone" permissions. This will require good knowledge about the router's Linux and Samba versions, and a mistake is certainly possible.
  • Get in touch with the Support of your internet service provider. They might be able to guide you in making these changes, or would have a firmware update for upgrading Samba to a version later than 3.0.23, where the problem is said to no longer exist. Samba version 4.x should be even better.

Related

Filter a list of strings in powershell by a regex, then group and sort by one of the capture groups
Will installing Windows 10 affect Windows Live Mail?
How frequent are DRAM errors?
How to force Windows 7 to disable driver signature enforcement?
How do make my e-mail display an image from the web?
Windows 10 startup folder missing
Is there a way to set daily time limits for user on a windows 7 PC?
Offline Installer for .NET framework 3.5, still requiring an internet connection
How do I target and close a specific Terminal window in AppleScript?
Partially transpose data which pasted as a single column
What is the difference between Provision Factory Default Keys and Enroll all Factory Default Keys in UEFI?
Mount an ext3 partition in Windows, inside a Dynamic Disk?