Context Navigation

← Previous Changeset
Next Changeset →

Changeset 548

Timestamp:

10/13/2009 07:01:13 PM (6 weeks ago)

Author:

mario.izquierdo

Message:

max-skel-conf (5.0.max7)

Use new smb.conf (thanks to Pedro Peña) Close: #105

Location:

trunk/max-skel-conf

Files:

: 3 modified

debian/changelog (modified) (1 diff)
debian/max-skel-conf.postinst (modified) (1 diff)
usr/share/max-skel-conf/etc/samba/smb.conf (modified) (19 diffs)

Legend:

: Unmodified
: Added
: Removed

trunk/max-skel-conf/debian/changelog

r541	r548
	1	max-skel-conf (5.0.max7) max; urgency=low
	2
	3	* Use new smb.conf (thanks to Pedro PeÃ±a) Close: #105
	4
	5	-- Mario Izquierdo RodrÃguez (Thinetic Systems SLNE) <mario.izquierdo@thinetic.es> Tue, 13 Oct 2009 18:55:22 +0200
	6
1	7	max-skel-conf (5.0.max6) max; urgency=low
2	8

trunk/max-skel-conf/debian/max-skel-conf.postinst

r320	r548
30	30	# configure SAMBA (without dpsyco)
31	31	update-dpsyco-skel >/dev/null 2>&1
32		grep -q AULAMAX /etc/samba/smb.conf \|\| \
	32	grep -q MAX50AULAMAX /etc/samba/smb.conf \|\| \
33	33	cat /usr/share/max-skel-conf/etc/samba/smb.conf > /etc/samba/smb.conf
34	34	fi

trunk/max-skel-conf/usr/share/max-skel-conf/etc/samba/smb.conf

r263	r548
8	8	# are not shown in this example
9	9	#
10		# Any line which starts with a ; (semi-colon) or a # (hash)
11		# is a comment and is ignored. In this example we will use a #
12		# for commentary and a ; for parts of the config file that you
13		# may wish to enable
	10	# Some options that are often worth tuning have been included as
	11	# commented-out examples in this file.
	12	# - When such options are commented with ";", the proposed setting
	13	# differs from the default Samba behaviour
	14	# - When commented with "#", the proposed setting is the default
	15	# behaviour of Samba but the option is considered important
	16	# enough to be mentioned here
14	17	#
15	18	# NOTE: Whenever you modify this file you should run the command
16	19	# "testparm" to check that you have not made any basic syntactic
17	20	# errors.
	21	# A well-established practice is to name the original file
	22	# "smb.conf.master" and create the "real" config file with
	23	# testparm -s smb.conf.master >smb.conf
	24	# This minimizes the size of the really used smb.conf file
	25	# which, according to the Samba Team, impacts performance
	26	# However, use this with caution if your smb.conf file contains nested
	27	# "include" statements. See Debian bug #483187 for a case
	28	# where using a master file is not a good idea.
18	29	#
19	30
…	…
25	36
26	37	# Change this to the workgroup/NT-domain name your Samba server will part of
	38	# MAX50AULAMAX
27	39	workgroup = AULAMAX
28	40
…	…
32	44	# Windows Internet Name Serving Support Section:
33	45	# WINS Support - Tells the NMBD component of Samba to enable its WINS Server
34		; wins support = no
	46	# wins support = no
35	47
36	48	# WINS Server - Tells the NMBD components of Samba to be a WINS Client
…	…
57	69	# not protected by a firewall or is a firewall itself. However, this
58	70	# option cannot handle dynamic or non-broadcast interfaces correctly.
59		; bind interfaces only = ~~true~~
	71	; bind interfaces only = yes
60	72
61	73
…	…
67	79	log file = /var/log/samba/log.%m
68	80
69		# ~~Put a capping on the size of the log files (in Kb~~).
	81	# Cap the size of the individual log files (in KiB).
70	82	max log size = 1000
71	83
72	84	# If you want Samba to only log through syslog then set the following
73	85	# parameter to 'yes'.
74		; syslog only = no
	86	# syslog only = no
75	87
76	88	# We want Samba to log a minimum amount of information to syslog. Everything
…	…
87	99	# "security = user" is always a good idea. This will require a Unix account
88	100	# in this server for every user accessing the server. See
89		# /usr/share/doc/samba-doc/htmldocs/Samba~~-HOWTO-Collection~~/ServerType.html
	101	# /usr/share/doc/samba-doc/htmldocs/Samba3-HOWTO/ServerType.html
90	102	# in the samba-doc package for details.
91		security = share
	103	# security = user
92	104
93	105	# You may wish to use password encryption. See the section on
…	…
101	113	obey pam restrictions = yes
102	114
103		~~; guest account = nobody~~
104		~~invalid users = root~~
105
106	115	# This boolean parameter controls whether Samba attempts to sync the Unix
107	116	# password with the SMB password when the encrypted SMB password in the
108	117	# passdb is changed.
109		; unix password sync = no
	118	unix password sync = yes
110	119
111	120	# For Unix password sync to work on a Debian GNU/Linux system, the following
…	…
113	122	# sending the correct chat script for the passwd program in Debian Sarge).
114	123	passwd program = /usr/bin/passwd %u
115		passwd chat = Enter\snew\s~~UNIX\spassword: %n\n Retype\snew\sUNIX~~\spassword: %n\n password\supdated\ssuccessfully .
	124	passwd chat = Enter\snew\s\spassword:* %n\n Retype\snew\s\spassword:* %n\n password\supdated\ssuccessfully .
116	125
117	126	# This boolean controls whether PAM will be used for password changes
118	127	# when requested by an SMB client instead of the program listed in
119	128	# 'passwd program'. The default is 'no'.
120		; pam password change = no
	129	pam password change = yes
	130
	131	# This option controls how unsuccessful authentication attempts are mapped
	132	# to anonymous connections
	133	map to guest = bad user
121	134
122	135	########## Domains ###########
…	…
135	148	; logon path = \\%N\profiles\%U
136	149	# Another common choice is storing the profile in the user's home directory
137		; logon path = \\%N\%U\profile
	150	# (this is Samba's default)
	151	# logon path = \\%N\%U\profile
138	152
139	153	# The following setting only takes effect if 'domain logons' is set
…	…
141	155	# point of view)
142	156	; logon drive = H:
143		; logon home = \\%N\%U
	157	# logon home = \\%N\%U
144	158
145	159	# The following setting only takes effect if 'domain logons' is set
…	…
154	168	; add user script = /usr/sbin/adduser --quiet --disabled-password --gecos "" %u
155	169
	170	# This allows machine accounts to be created on the domain controller via the
	171	# SAMR RPC pipe.
	172	# The following assumes a "machines" group exists on the system
	173	; add machine script = /usr/sbin/useradd -g machines -c "%u machine account" -d /var/lib/samba -s /bin/false %u
	174
	175	# This allows Unix groups to be created on the domain controller via the SAMR
	176	# RPC pipe.
	177	; add group script = /usr/sbin/addgroup --force-badname %g
	178
156	179	########## Printing ##########
157	180
158	181	# If you want to automatically load your printer list rather
159	182	# than setting them up individually then you'll need this
160		; load printers = yes
	183	# load printers = yes
161	184
162	185	# lpr(ng) printing. You may wish to override the location of the
…	…
170	193	; printcap name = cups
171	194
172		~~# When using [print$], root is implicitly a 'printer admin', but you can~~
173		~~# also give this right to other users to add drivers and set printer~~
174		~~# properties~~
175		~~; printer admin = @lpadmin~~
176
177
178	195	############ Misc ############
179	196
…	…
184	201
185	202	# Most people will find that this option gives better performance.
186		# See smb.conf(5) and /usr/share/doc/samba-doc/htmldocs/speed.html
	203	# See smb.conf(5) and /usr/share/doc/samba-doc/htmldocs/Samba3-HOWTO/speed.html
187	204	# for details
188	205	# You may want to add the following on a Linux system:
189	206	# SO_RCVBUF=8192 SO_SNDBUF=8192
190		socket options = TCP_NODELAY
	207	# socket options = TCP_NODELAY
191	208
192	209	# The following parameter is useful only if you have the linpopup package
…	…
198	215	# machine will be configured as a BDC (a secondary logon server), you
199	216	# must set this to 'no'; otherwise, the default behavior is recommended.
200		; domain master = auto
	217	# domain master = auto
201	218
202	219	# Some defaults for winbind (make sure you're not using the ranges
…	…
205	222	; idmap gid = 10000-20000
206	223	; template shell = /bin/bash
	224
	225	# The following was the default behaviour in sarge,
	226	# but samba upstream reverted the default because it might induce
	227	# performance issues in large organizations.
	228	# See Debian bug #368251 for some of the consequences of not
	229	# having this setting and smb.conf(5) for details.
	230	; winbind enum groups = yes
	231	; winbind enum users = yes
	232
	233	# Setup usershare options to enable non-root users to share folders
	234	# with the net usershare command.
	235
	236	# Maximum number of usershare. 0 (default) means that usershare is disabled.
	237	; usershare max shares = 100
	238
	239	# Allow users who've been granted usershare privileges to create
	240	# public shares, not just authenticated ones
	241	usershare allow guests = yes
207	242
208	243	#======================= Share Definitions =======================
…	…
215	250	; browseable = no
216	251
	252	# By default, the home directories are exported read-only. Change the
	253	# next parameter to 'no' if you want to be able to write to them.
	254	; read only = yes
	255
	256	# File creation mask is set to 0700 for security reasons. If you want to
	257	# create files with group=rw permissions, set next parameter to 0775.
	258	; create mask = 0700
	259
	260	# Directory creation mask is set to 0700 for security reasons. If you want to
	261	# create dirs. with group=rw permissions, set next parameter to 0775.
	262	; directory mask = 0700
	263
217	264	# By default, \\server\username shares can be connected to by anyone
218	265	# with access to the samba server. Un-comment the following parameter
219	266	# to make sure that only "username" can connect to \\server\username
	267	# This might need tweaking when using external authentication schemes
220	268	; valid users = %S
221
222		~~# By default, the home directories are exported read-only. Change next~~
223		~~# parameter to 'yes' if you want to be able to write to them.~~
224		~~; writable = no~~
225
226		~~# File creation mask is set to 0600 for security reasons. If you want to~~
227		~~# create files with group=rw permissions, set next parameter to 0664.~~
228		~~; create mask = 0600~~
229
230		~~# Directory creation mask is set to 0700 for security reasons. If you want to~~
231		~~# create dirs. with group=rw permissions, set next parameter to 0775.~~
232		~~; directory mask = 0700~~
233	269
234	270	# Un-comment the following and create the netlogon directory for Domain Logons
…	…
238	274	; path = /home/samba/netlogon
239	275	; guest ok = yes
240		; ~~writable = no~~
	276	; read only = yes
241	277	; share modes = no
242	278
…	…
257	293	comment = All Printers
258	294	browseable = no
259		path = /~~tmp~~
	295	path = /var/spool/samba
260	296	printable = yes
261		~~public~~ = no
262		~~writable = no~~
263		create m~~ode~~ = 0700
	297	guest ok = no
	298	read only = yes
	299	create mask = 0700
264	300
265	301	# Windows clients look for this share name as a source of downloadable
…	…
272	308	guest ok = no
273	309	# Uncomment to allow remote administration of Windows print drivers.
274		# Replace 'ntadmin' with the name of the group your admin users are
275		# members of.
276		; write list = root, @ntadmin
	310	# You may need to replace 'lpadmin' with the name of the group your
	311	# admin users are members of.
	312	# Please note that you also need to set appropriate Unix permissions
	313	# to the drivers directory for these users to have write rights in it
	314	; write list = root, @lpadmin
277	315
278	316	# A sample share for sharing your CD-ROM with others.
279	317	;[cdrom]
280	318	; comment = Samba server's CD-ROM
281		; ~~writable = no~~
	319	; read only = yes
282	320	; locking = no
283	321	; path = /cdrom
284		; ~~public~~ = yes
	322	; guest ok = yes
285	323
286	324	# The next two parameters show how to auto-mount a CD-ROM when the

Download in other formats: