SOLVED: Samba 3.0.0 Access Blues
Doncho N. Gunchev
mr700 at globalnet.bg
Wed Dec 24 00:04:46 UTC 2003
On Tuesday 23 December 2003 22:58, Gar Nelson wrote:
> Gar Nelson wrote:
> > Charles Curley wrote:
> >> On Tue, Dec 23, 2003 at 11:35:53AM -0700, Charles Curley wrote:
> >>> I am taking a Samba setup essentialy unchanged from Samba on Red Hat 8
> >>> (samba-2.2.7-5.8.0) to Fedora Core 1 (samba-3.0.0-15). I can use
> >>> smbclient to access anonymous shares (i.e. those not requiring a
> >>> password). I cannot use smbclient to access my home
> >>> directory. Security is the default, user, and passwords are to be
> >>> encrypted.
> >
> > [...]
> >
> >> I finally found the problem. I had "valid users = %S" in the
> >> configuration file, apparently figuring that Samba would expand the
> >> %S. It does not. I changed it to "valid users = ccurley" and it
> >> worked.
> >
> > Actually, this seems like a real problem. I have 30+ users, each with a
> > home directory on my samba server. I have 3.0 on a test server now, to
> > get everything worked out before moving it online. Good thing, eh?
> >
> > While your solution works for a single user, I'd still like to see the
> > question answered for a multiuser environment.
>
> Dang, like you, I answered my own question. In looking at
> /etc/samba/smb.conf.rpmnew, in the [homes] share the example conf no
> longer lists any "valid users" line. The solution in a multiuser
> environment is to leave it out entirely.
>
> I've tested it here. I can now log into my home directory via Windows,
> and I can not see anyone elses home directory.
>
> The man page for samba 3 does reference using the %S macro, even though
> it does not seem to work.
>
> So, going from Samba 2.2 to Samba 3.0, the home section should be
> something like;
>
> [homes]
> read only = no
> browseable = no
>
>
>
> Cheers,
> Gar
With samba 2.x I used:
| [homes]
| comment = Home Directories
| browseable = no
| writable = yes
| valid users = %S
| create mode = 0664
| directory mode = 0775
| path = %H/samba
| ; path=/mnt/Serveur/%S
| ; path = %H/public_html
| # If you want users samba doesn't recognize to be mapped to a guest user
| ; map to guest = bad user
| [Profiles]
| path = %H/samba-profile
| browseable = no
(I don't like windows's profile files in my home dir, so I put them in samba dir there)
There are some problems problem with Samba 3.0.x For more details you can look at
http://us1.samba.org/samba/whatsnew/samba-3.0.0rc4.html .
To see what works with sambsa 3.x I used
| [homes]
| comment = Home Directories - %H - %S
| browseable = no
| writable = yes
and I saw: 'Home Directories - / - mr700', then:
| comment = S:%S,P:%P,u:%u,g:%g,U:%U,G:%G,H:%H,m:%m,M:%M,N:%N,p:%p,R:%R,d:%d,a:%a,I:%I,T:%T;L:%L
and ended up with:
| [homes]
| comment = %U's Home Directory '%H/samba' - for %U:%G from %m:(%M) with %a
| ; I do find this comment very usefull
| browseable = no
| writable = yes
| valid users = %U
| create mode = 0664
| directory mode = 0775
| path = %H/samba
| [Profiles]
| path = %H/samba-profile
| browseable = no
| guest ok = no
works just fine for me :) you?
--
Regards,
Doncho N. Gunchev
More information about the fedora-list
mailing list