SMB File Sharing Mystery

Lovell Mcilwain lovell.mcilwain at gmail.com
Thu Jul 19 16:30:35 UTC 2007 

On Jul 19, 2007, at 1:23 AM, Andy Green wrote:

> :
>>
>> On Jul 18, 2007, at 10:20 AM, Tim wrote:
>>
>>> On Wed, 2007-07-18 at 09:36 -0400, Lovell Mcilwain wrote:
>>>> [2007/06/26 20:35:45, 0] smbd/service.c:make_connection_snum(920)
>>>> '/home/lem/temp' does not exist or permission denied when  
>>>> connecting
>>>> to [temp] Error was Permission denied
>>>
>>> Along with Mikkel's question about adding users to Samba, you may  
>>> also
>>> have to change firewall rules to allow Samba connections through,  
>>> and
>>> SELinux rules to allow sharing home space.  I think the defaults are
>>> still to deny such things.
>>
>> How can I figure out which SELinux rule to edit?
>
> Editing the actual rules is pretty fearsome.  But the rules define  
> some
> "user settable switches" which are easy to change.  Often these basic
> policy options are all you need to make selinux conform to common  
> setups
> -- and it's nice that the list of these options can be discovered  
> easily
> from the commandline.  Use
>
> getsebool -a
>
I got a lot of stuff that listed out but here are the ones I saw  
related to samba:
samba_domain_controller --> off
samba_enable_home_dirs --> off
samba_export_all_ro --> off
samba_export_all_rw --> off
samba_share_nfs --> off
> to get a list of the switches ("booleans") you can turn on or off, and
>
> setsebool <name>=on
>
I turned the following on and restarted the service
sudo setsebool samba_enable_home_dirs=on
sudo setsebool samba_enable_home_dirs=on
sudo setsebool samba_enable_home_dirs=on

> to enable it, =off disables it.  If you additionally give -P, then it
> will be sticky across reboots.  So it looks like you can try
>
> setsebool -P use_samba_home_dirs=on
>
> for example and restart IIRC the "smb" service.
>
sudo service smb restart

I still got the same issue. when I try to log in, it just keeps  
giving me a long in prompt.  I will try to take a look at the samba  
selinux man page to see if it gives me any other hints.
> -Andy
>
> -- 
> fedora-list mailing list
> fedora-list at redhat.com
> To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list

More information about the fedora-list mailing list