I want some power users to have read access to everyone's home directories. They should not have any command-line access, however, let alone sudo. I thought I could solve this by making them members of a poweruser group (powergrp), then chowning all homedirs to powergrp and chmodding them 770. Each user would be able to access their homedir normally, and the powerusers would be able to as well through the group ownership. In normal linux, I get the expected behavior. Samba chokes, however, disallowing any access to a homedir permissioned as such. Is there a way to enable samba to correctly parse permissions with an owning user that does not belong to the owning group?
Will I have to resort to ACLs?