on 3-26-2008 10:32 AM John spake the following: > On Wed, 2008-03-26 at 10:16 -0700, Scott Silva wrote: >> on 3-26-2008 6:55 AM Ray Leventhal spake the following: >>> Hi all, >>> >>> I'm fighting with samba on a new CentOS 5.1 install. >>> >>> The goal here is to have unix/linux usernames/passwords used for the >>> samba shares (which i'll setup using webmin, as I find it easy that >>> way). At present, the home share and one for the company's public share >>> are in place. >>> >>> I can see the server, browsing from WinXP to \\172.16.0.106, but >>> permissions seem amiss. I should be able to read/write to a given share >>> but it seems to be ro. >>> >>> Any pointers or advice would be greatly appreciated. >>> >>> My simple smb.conf file is here: >>> >>> [global] >>> netbios name = BACKUP >>> socket options = TCP_NODELAY >>> force directory mode = 777 >>> unix password sync = yes >>> workgroup = WORKGROUP >>> force create mode = 777 >>> os level = 20 >>> encrypt passwords = yes >>> security = share >>> public = yes >>> passdb backend = smbpasswd >>> directory mode = 777 >>> >>> >>> [homes] >>> writeable = yes >>> public = yes >>> path = /home >>> >>> [company data] >>> comment = company data >>> writeable = yes >>> create mode = 775 >>> path = /home/share1 >>> >>> >>> Thanks in advance, >>> -Ray >> If you are going to use smb passwords anyway, why set security to "share? >> You should set security to "user" and make sure you keep unix users and samba >> users synced. For public shares you can set a shared user and group, and make >> shared directories keep those perms. > > Not to highjack the thread but on to samba security (user and share > mode) as I am having a problem with it. Can you link me to some sort of > samba docs that fully explain user and share mode. Also why user mode > will not work with some forms of authentication. > See Link: > http://www.centos.org/modules/newbb/viewtopic.php?viewmode=flat&topic_id=13357&forum=39 > Not to complain about hijacking threads (which is very irritating), but I think the link you have referenced is more a problem with the CIFS protocol and not samba security. Samba share mode is more for shares that you want everybody to have access to. Home directories, other shares, whatever you put on there gets shared like the new girl in the commune. You can have user security, and still share all sorts of common directories with no restrictions. The best docs are on the samba site, and although they are long and technical in places, they are still very good. http://www.samba.org/samba/docs/using_samba/toc.html http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/ http://www.samba.org/samba/docs/man/Samba-Guide/ -- MailScanner is like deodorant... You hope everybody uses it, and you notice quickly if they don't!!!! -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 250 bytes Desc: OpenPGP digital signature URL: <http://lists.centos.org/pipermail/centos/attachments/20080326/288e7e85/attachment-0005.sig>