On 25/04/11 09:49, Alexander Farber wrote: > Hello, > > I was using CentOS 5.5 as a "playground" VM at my WinXP notebook > and now I'm migrating to a new CentOS 5.6 install > and everything has worked well - except samba. > > I have this very permissive config to export my ~/src dir: > > # cat /etc/samba/smb.conf > [global] > guest ok = yes > guest account = afarber > security = share > hosts allow = 172.16.6. 127.0.0.1 > > [src] > path = /home/afarber/src > public = yes > writable = yes > printable = no > > But in the new install it has stopped working and prints: > > # tail /var/log/samba/smbd.log > [2011/04/25 01:36:37, 0] smbd/service.c:make_connection_snum(1013) > '/home/afarber/src' does not exist or permission denied when > connecting to [src] Error was Permission denied > > I've checked permissions and installed rpms - > they're all the same > (and smbd runs as "root", doesn't it?) > > Is this maybe a SELinux setting problem? > > # tail /var/log/audit/audit.log (only at the new VM) > type=AVC msg=audit(1303720863.712:53): avc: denied { search } for > pid=6737 comm="smbd" name="/" dev=sda3 ino=2 > scontext=user_u:system_r:smbd_t:s0 > tcontext=system_u:object_r:home_root_t:s0 tclass=dir > > type=SYSCALL msg=audit(1303720863.712:53): arch=c000003e syscall=4 > success=no exit=-13 a0=2b79380c9620 a1=7fff35dfe9f0 a2=7fff35dfe9f0 > a3=ea items=0 ppid=6543 pid=6737 auid=500 uid=500 gid=0 euid=500 > suid=0 fsuid=500 egid=500 sgid=0 fsgid=500 tty=(none) ses=2 > comm="smbd" exe="/usr/sbin/smbd" subj=user_u:system_r:smbd_t:s0 > key=(null) > > # ls -aldZ /home/afarber/src (same result at both old and new VMs) > drwxrwxr-x afarber afarber user_u:object_r:user_home_t /home/afarber/src > > # ls -aldZ /home/afarber/ > drwx------ afarber afarber user_u:object_r:user_home_dir_t /home/afarber/ > > Does anybody please know a magic command here? > > Thank you > Alex Alex, Try the following command, and make sure it's set to "on" to allow users home dirs to be shared by samba: $ /usr/sbin/getsebool -a | grep samba_enable_home_dirs samba_enable_home_dirs --> on If not, you can turn it on with: setsebool -P samba_enable_home_dirs on See here for more information: http://wiki.centos.org/HowTos/SELinux http://wiki.centos.org/TipsAndTricks/SelinuxBooleans