[lug] scp, unison, acl and samba

[Ben]

I'm looking for a creative solution to file syncing with ACL. I've got 
samba setup with ACL's. When a user creates a new file / directory samba 
gives the new file/directory the extended ACL's of the parent's default 
ACL settings. This works great when I'm connecting via windows file 
sharing or smbmount. But I'd like to use unison or some other file 
syncing software for laptops that aren't always connected to our samba 
server. Now, from what I've read unison, rsync and the like don't 
support ACL's. Is there some way to use unison or something like unison 
such that it will not create files without the parent's ACL permissions?

I think that some of the ACL settings are set by the samba server, and 
not the client. (Windows overrides this, I believe, but when I touch a 
file on a smbmount, I think the server sets the permissions). Now, I 
don't care about the permissions on the laptop. I just want the changes 
that get propagated back to have the right permissions. So, if I could 
get unison to connect to the samba server, and not directly to the 
filesystem via ssh, then I think everything would be happy.

If so, how can I do this? I could smbmount the samba share and then 
unison that, so any file changes would have to go back through the samba 
server with smbmount. The problem is that I need to smbmount the share 
as the user who is doing the file syncing, so I can't just leave a mount 
up all the time. I'm thinking maybe a pam_mount could do this when a 
user does ssh authentication?

I'm runing debian sarge with samba 3.0.22-1.  Any suggestions welcome.

Thanks,

Ben

P.S. Thanks for the discussion on spam filtering. I just added the helo 
checking to postfix and I'm blocking a lot more spam.