[TriLUG] Samba question

Greg Brown gwbrown1 at gmail.com
Thu Dec 14 08:31:35 EST 2006 

Good idea!  Here is the existing config:

[global]
    workgroup = mrpp
    server string = Samba Server
    printcap name = /etc/printcap
    load printers = yes
    cups options = raw
    log file = /var/log/samba/%m.log
    max log size = 50
    socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
    dns proxy = no
    idmap uid = 16777216-33554431
    idmap gid = 16777216-33554431
    template shell = /bin/false
    password server = None
    username map = /etc/samba/smbusers
    winbind use default domain = no
[homes]
    comment = Home Directories
    browseable = no
    writeable = yes
[printers]
    comment = All Printers
    path = /var/spool/samba
    browseable = no
    printable = yes
[data]
    comment = Shared Data Folder on RAID1
    path = /data
    guest ok = yes
    writeable = yes

What I'd like to do is create several more restrictive shares under /data.
I can restrict by specific users or users in defined in a group.

Would my last example do this?

 [marketing]
  comment = Marketing
  path = /data1/marketing
  valid users = mary fred
  public = no
  writable = yes
  printable = no
  create mask = 0765

On 12/13/06, jonc at nc.rr.com <jonc at nc.rr.com> wrote:
>
> I've done a lot of this. Group shares generally work just fine. Heck as
> long ago as 8 years ago I had this working for a large company with each
> branch having their own shared folder areas. The folks didn't even know
> that it was a Linux box running samba that they were attaching to.
>
> Why don't you post your config.
>
> Jon
>
> ----- Original Message -----
> From: Greg Brown <gwbrown1 at gmail.com>
> Date: Wednesday, December 13, 2006 9:33 am
> Subject: [TriLUG] Samba question
> To: Triangle Linux Users Group discussion list <trilug at trilug.org>
>
> > Had anyone tried to set up a Samba share in the following manner:
> >
> > /data1 (shared to all employees.  used as a general place where
> > everyone can
> > dump files)
> > /data1/marketing  (where only employees that are defined in the group
> > marketing (in /etc/groups) can access the share?)
> >
> > This seems it should be possible.  However this was tried in
> > practice users
> > defined in the /etc/groups group for marketing will lose
> > connectivity to the
> > /data1/marketing share occasionally.  Does anyone have a restrictive
> > directory shared from within a general access shared directory working
> > properly?
> >
> > Would it be easier to just define the users instead of using groups
> > (likethe following example)?
> >
> > [marketing]
> >  comment = Marketing
> >  path = /data1/marketing
> >  valid users = mary fred
> >  public = no
> >  writable = yes
> >  printable = no
> >  create mask = 0765
> >
> >
> >
> > Greg
> > --
> > TriLUG mailing list        :
> > http://www.trilug.org/mailman/listinfo/trilugTriLUG Organizational
> > FAQ  : http://trilug.org/faq/
> > TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
> >
> --
> TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
> TriLUG Organizational FAQ  : http://trilug.org/faq/
> TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
>

More information about the TriLUG mailing list