Skocz do zawartości

Samba Konfiguracja


simman

Rekomendowane odpowiedzi

Czesc

 

Chcialem skonfigurowac Sambe. Wiem ze to czesty temat ale ja juz próbuje tyle czasu i nic.

 

Dokladniej udostepnic jeden folder z Fedory i drukarke.

 

 

polaczenie sieciowe na linux nazwalem c1

serwer ip: 192.168.1.1/24

xp win: 192.168.1.2/24

 

napisalem tak:

----------------c1 nazwa polaczenia sieciowego

interfaces = lo c1 192.168.1.2/24 192.168.1.1/24

 

; hosts allow = 127. 10.0.0.

 

 

 

mój plik smb.conf

 

# hosts deny = the hosts not allowed to connect. This option can also be used on

# a per-share basis.

#

   workgroup = WORKGROUP 

   server string = Samba Server Version %v



;    netbios name = MYSERVER



interfaces = c1 192.168.1.2/24 192.168.1.1/24
;    hosts allow = 127. 10.0.0. 


# --------------------------- Logging Options -----------------------------

#

# log file = specify where log files are written to and how they are split.

#

# max log size = specify the maximum size log files are allowed to reach. Log

# files are rotated when they reach the size specified with "max log size".

#



   # log files split per-machine:

   log file = /var/log/samba/log.%m

   # maximum size of 50KB per log file, then rotate:

   max log size = 50



# ----------------------- Standalone Server Options ------------------------

#

# security = the mode Samba runs in. This can be set to user, share

# (deprecated), or server (deprecated).

#

# passdb backend = the backend used to store user information in. New

# installations should use either tdbsam or ldapsam. No additional configuration

# is required for tdbsam. The "smbpasswd" utility is available for backwards

# compatibility.

#



   security = user

   passdb backend = tdbsam





# ----------------------- Domain Members Options ------------------------

#

# security = must be set to domain or ads.

#

# passdb backend = the backend used to store user information in. New

# installations should use either tdbsam or ldapsam. No additional configuration

# is required for tdbsam. The "smbpasswd" utility is available for backwards

# compatibility.

#

# realm = only use the realm option when the "security = ads" option is set.

# The realm option specifies the Active Directory realm the host is a part of.

#

# password server = only use this option when the "security = server"

# option is set, or if you cannot use DNS to locate a Domain Controller. The

# argument list can include My_PDC_Name, [My_BDC_Name], and [My_Next_BDC_Name]:

#

# password server = My_PDC_Name [My_BDC_Name] [My_Next_BDC_Name]

#

# Use "password server = *" to automatically locate Domain Controllers.



;    security = domain

;    passdb backend = tdbsam

;    realm = MY_REALM



;    password server = <NT-Server-Name>



# ----------------------- Domain Controller Options ------------------------

#

# security = must be set to user for domain controllers.

#

# passdb backend = the backend used to store user information in. New

# installations should use either tdbsam or ldapsam. No additional configuration

# is required for tdbsam. The "smbpasswd" utility is available for backwards

# compatibility.

#

# domain master = specifies Samba to be the Domain Master Browser, allowing

# Samba to collate browse lists between subnets. Do not use the "domain master"

# option if you already have a Windows NT domain controller performing this task.

#

# domain logons = allows Samba to provide a network logon service for Windows

# workstations.

#

# logon script = specifies a script to run at login time on the client. These

# scripts must be provided in a share named NETLOGON.

#

# logon path = specifies (with a UNC path) where user profiles are stored.

#

#

;    security = user

;    passdb backend = tdbsam



;    domain master = yes

;    domain logons = yes



   # the following login script name is determined by the machine name

   # (%m):

;    logon script = %m.bat

   # the following login script name is determined by the UNIX user used:

;    logon script = %u.bat

;    logon path = \\%L\Profiles\%u

   # use an empty path to disable profile support:

;    logon path =



   # various scripts can be used on a domain controller or a stand-alone

   # machine to add or delete corresponding UNIX accounts:



;    add user script = /usr/sbin/useradd "%u" -n -g users

;    add group script = /usr/sbin/groupadd "%g"

;    add machine script = /usr/sbin/useradd -n -c "Workstation (%u)" -M -d /nohome -s /bin/false "%u"

;    delete user script = /usr/sbin/userdel "%u"

;    delete user from group script = /usr/sbin/userdel "%u" "%g"

;    delete group script = /usr/sbin/groupdel "%g"





# ----------------------- Browser Control Options ----------------------------

#

# local master = when set to no, Samba does not become the master browser on

# your network. When set to yes, normal election rules apply.

#

# os level = determines the precedence the server has in master browser

# elections. The default value should be reasonable.

#

# preferred master = when set to yes, Samba forces a local browser election at

# start up (and gives itself a slightly higher chance of winning the election).

#

;    local master = no

;    os level = 33

;    preferred master = yes



#----------------------------- Name Resolution -------------------------------

#

# This section details the support for the Windows Internet Name Service (WINS).

#

# Note: Samba can be either a WINS server or a WINS client, but not both.

#

# wins support = when set to yes, the NMBD component of Samba enables its WINS

# server.

#

# wins server = tells the NMBD component of Samba to be a WINS client.

#

# wins proxy = when set to yes, Samba answers name resolution queries on behalf

# of a non WINS capable client. For this to work, there must be at least one

# WINS server on the network. The default is no.

#

# dns proxy = when set to yes, Samba attempts to resolve NetBIOS names via DNS

# nslookups.



;    wins support = yes

;    wins server = w.x.y.z

;    wins proxy = yes



;    dns proxy = yes



# --------------------------- Printing Options -----------------------------

#

# The options in this section allow you to configure a non-default printing

# system.

#

# load printers = when set you yes, the list of printers is automatically

# loaded, rather than setting them up individually.

#

# cups options = allows you to pass options to the CUPS library. Setting this

# option to raw, for example, allows you to use drivers on your Windows clients.

#

# printcap name = used to specify an alternative printcap file.

#



   load printers = yes

   cups options = raw



;    printcap name = /etc/printcap

   # obtain a list of printers automatically on UNIX System V systems:

;    printcap name = lpstat

;    printing = cups



# --------------------------- File System Options ---------------------------

#

# The options in this section can be un-commented if the file system supports

# extended attributes, and those attributes are enabled (usually via the

# "user_xattr" mount option). These options allow the administrator to specify

# that DOS attributes are stored in extended attributes and also make sure that

# Samba does not change the permission bits.

#

# Note: These options can be used on a per-share basis. Setting them globally

# (in the [global] section) makes them the default for all shares.



;    map archive = no

;    map hidden = no

;    map read only = no

;    map system = no

;    store dos attributes = yes





#============================ Share Definitions ==============================



[homes]

   comment = Home Directories

   browseable = no

   writable = yes

;    valid users = %S

;    valid users = MYDOMAIN\%S



[printers]

   comment = All Printers

   path = /var/spool/samba

   browseable = yes

   guest ok = yes

   writable = yes

   printable = yes



# Un-comment the following and create the netlogon directory for Domain Logons:

;    [netlogon]

;    comment = Network Logon Service

;    path = /var/lib/samba/netlogon

;    guest ok = yes

;    writable = no

;    share modes = no



# Un-comment the following to provide a specific roving profile share.

# The default is to use the user's home directory:

;    [Profiles]

;    path = /var/lib/samba/profiles

;    browseable = no

;    guest ok = yes



# A publicly accessible directory that is read only, except for users in the

# "staff" group (which have write permissions):

   [public]

   comment = Public Stuff

   path = /home/simman/Desktop/raf

   public = yes

   writable = yes

   printable = no

   write list = +staff

Edytowane przez WalDo
Odnośnik do komentarza
Udostępnij na innych stronach

  • Odpowiedzi 35
  • Created
  • Ostatniej odpowiedzi

Top Posters In This Topic

zaremuj cala linie z c1 ... to kompletna bzdura, bo nie masz interfejsu sieciowego c1 tylko np. eth* wlan* itp..

zreszta ifconfig prawde ci powie

 

Zrobilem tak jak mówiles zablokowalem ten wpis ale nadal nie moge sie zalogowac.

 

te informacje uzyskalem:

 

[root@rafal1100 ~]# ifconfig

eth0 Link encap:Ethernet HWaddr 00:1C:F0:FA:DE:DB

inet addr:178.73.32.226 Bcast:178.73.35.255 Mask:255.255.252.0

inet6 addr: fe80::21c:f0ff:fefa:dedb/64 Scope:Link

UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1

RX packets:1921 errors:0 dropped:0 overruns:0 frame:0

TX packets:2164 errors:0 dropped:0 overruns:0 carrier:0

collisions:0 txqueuelen:1000

RX bytes:1619530 (1.5 MiB) TX bytes:330458 (322.7 KiB)

Interrupt:17 Base address:0x6f00

 

lo Link encap:Local Loopback

inet addr:127.0.0.1 Mask:255.0.0.0

inet6 addr: ::1/128 Scope:Host

UP LOOPBACK RUNNING MTU:16436 Metric:1

RX packets:107 errors:0 dropped:0 overruns:0 frame:0

TX packets:107 errors:0 dropped:0 overruns:0 carrier:0

collisions:0 txqueuelen:0

RX bytes:11556 (11.2 KiB) TX bytes:11556 (11.2 KiB)

 

polaczenie sieciowe na linux nazwalem c1

serwer ip: 192.168.1.1/24

xp win: 192.168.1.2/24

 

;interfaces = lo c1 192.168.1.2/24 192.168.1.1/24

 

Czy posiadajac te dane moge dobrze wypelnic te linijke która zaremowalem?

Odnośnik do komentarza
Udostępnij na innych stronach

[...] serwer ip: 192.168.1.1/24 [...]

Otóż nie - twoja samba korzysta z eth0 który ma adres ip 178.73.32.22

 

nie rozumiem twojego uporu z jakimś C1 - nazwij sobie sieciówkę Zdzisiu0 - przynajmniej będziesz miał kogo opierniczać z imienia.

 

Moja sugestia jest taka :

1. Skonfiguruj ip serwera na takie jak chcesz - 192.168.1.1 ( system-config-network )

2. W konfigu samby przywróć ustawienia fabryczne - są one na ogół wystarczające dla newbies, ustaw sobie nazwę serwera, grupę i udostępniany zasób.

3. Zrób dziurę w firewallu - prawdopodobnie pory samby są zamknięte.

4. Sprawdź czy Sambę masz uruchomioną, service smb restart - przy okazji przeładujesz konfig.

5. Nie wspomnę o dodaniu użytkownika - smbpasswd -a user

 

i chyba tyle...

Odnośnik do komentarza
Udostępnij na innych stronach

[...] serwer ip: 192.168.1.1/24 [...]

Otóz nie - twoja samba korzysta z eth0 który ma adres ip 178.73.32.22

 

nie rozumiem twojego uporu z jakims C1 - nazwij sobie sieciówke Zdzisiu0 - przynajmniej bedziesz mial kogo opierniczac z imienia.

 

Moja sugestia jest taka :

1. Skonfiguruj ip serwera na takie jak chcesz - 192.168.1.1 ( system-config-network )

2. W konfigu samby przywróc ustawienia fabryczne - sa one na ogól wystarczajace dla newbies, ustaw sobie nazwe serwera, grupe i udostepniany zasób.

3. Zrób dziure w firewallu - prawdopodobnie pory samby sa zamkniete.

4. Sprawdz czy Sambe masz uruchomiona, service smb restart - przy okazji przeladujesz konfig.

5. Nie wspomne o dodaniu uzytkownika - smbpasswd -a user

 

i chyba tyle...

 

 

Zrobilem to co mówiles ale nadal mi nie dziala:

 

Wydaje mi sie ze teraz to juz tylko maly problemik. Mysle ze blad polega na wywolaniu folderu udostepnionego w WIN XP. Wywoluje folder mianowicie tak(start->uruchom): //serwer/ -> ale mam blad

 

Dolanczam Dolaczam jednak na wszelki wypadek moja konfiguracje lacznie z tym co zrobilem.

 

 

Moja konfiguracja:

workgroup = MYGROUP

server string = server

i

[public]

comment = Public Stuff

path = /home/simman/Desktop/raf

public = yes

writable = yes

printable = no

write list = +staff

 

Mój plik etc/samba

 

# This is the main Samba configuration file. For detailed information about the

# options listed here, refer to the smb.conf(5) manual page. Samba has a huge

# number of configurable options, most of which are not shown in this example.

#

# The Official Samba 3.2.x HOWTO and Reference Guide contains step-by-step

# guides for installing, configuring, and using Samba:

# http://www.samba.org/samba/docs/Samba-HOWTO-Collection.pdf

#

# The Samba-3 by Example guide has working examples for smb.conf. This guide is

# generated daily: http://www.samba.org/samba/docs/Samba-Guide.pdf

#

# In this file, lines starting with a semicolon ( or a hash (#) are

# comments and are ignored. This file uses hashes to denote commentary and

# semicolons for parts of the file you may wish to configure.

#

# Note: Run the "testparm" command after modifying this file to check for basic

# syntax errors.

#

#---------------

# Security-Enhanced Linux (SELinux) Notes:

#

# Turn the samba_domain_controller Boolean on to allow Samba to use the useradd

# and groupadd family of binaries. Run the following command as the root user to

# turn this Boolean on:

# setsebool -P samba_domain_controller on

#

# Turn the samba_enable_home_dirs Boolean on if you want to share home

# directories via Samba. Run the following command as the root user to turn this

# Boolean on:

# setsebool -P samba_enable_home_dirs on

#

# If you create a new directory, such as a new top-level directory, label it

# with samba_share_t so that SELinux allows Samba to read and write to it. Do

# not label system directories, such as /etc/ and /home/, with samba_share_t, as

# such directories should already have an SELinux label.

#

# Run the "ls -ldZ /path/to/directory" command to view the current SELinux

# label for a given directory.

#

# Set SELinux labels only on files and directories you have created. Use the

# chcon command to temporarily change a label:

# chcon -t samba_share_t /path/to/directory

#

# Changes made via chcon are lost when the file system is relabeled or commands

# such as restorecon are run.

#

# Use the samba_export_all_ro or samba_export_all_rw Boolean to share system

# directories. To share such directories and only allow read-only permissions:

# setsebool -P samba_export_all_ro on

# To share such directories and allow read and write permissions:

# setsebool -P samba_export_all_rw on

#

# To run scripts (preexec/root prexec/print command/...), copy them to the

# /var/lib/samba/scripts/ directory so that SELinux will allow smbd to run them.

# Note that if you move the scripts to /var/lib/samba/scripts/, they retain

# their existing SELinux labels, which may be labels that SELinux does not allow

# smbd to run. Copying the scripts will result in the correct SELinux labels.

# Run the "restorecon -R -v /var/lib/samba/scripts" command as the root user to

# apply the correct SELinux labels to these files.

#

#--------------

#

#======================= Global Settings =====================================



[global]



# ----------------------- Network-Related Options -------------------------

#

# workgroup = the Windows NT domain name or workgroup name, for example, MYGROUP.

#

# server string = the equivalent of the Windows NT Description field.

#

# netbios name = used to specify a server name that is not tied to the hostname.

#

# interfaces = used to configure Samba to listen on multiple network interfaces.

# If you have multiple interfaces, you can use the "interfaces =" option to

# configure which of those interfaces Samba listens on. Never omit the localhost

# interface (lo).

#

# hosts allow = the hosts allowed to connect. This option can also be used on a

# per-share basis.



# hosts deny = the hosts not allowed to connect. This option can also be used on

# a per-share basis.

#

workgroup = MYGROUP

server string = server



;	netbios name = MYSERVER



;	interfaces = lo eth0 192.168.12.2/24 192.168.13.2/24

;	hosts allow = 127. 192.168.12. 192.168.13.



# --------------------------- Logging Options -----------------------------

#

# log file = specify where log files are written to and how they are split.

#

# max log size = specify the maximum size log files are allowed to reach. Log

# files are rotated when they reach the size specified with "max log size".

#



# log files split per-machine:

log file = /var/log/samba/log.%m

# maximum size of 50KB per log file, then rotate:

max log size = 50



# ----------------------- Standalone Server Options ------------------------

#

# security = the mode Samba runs in. This can be set to user, share

# (deprecated), or server (deprecated).

#

# passdb backend = the backend used to store user information in. New

# installations should use either tdbsam or ldapsam. No additional configuration

# is required for tdbsam. The "smbpasswd" utility is available for backwards

# compatibility.

#



security = user

passdb backend = tdbsam





# ----------------------- Domain Members Options ------------------------

#

# security = must be set to domain or ads.

#

# passdb backend = the backend used to store user information in. New

# installations should use either tdbsam or ldapsam. No additional configuration

# is required for tdbsam. The "smbpasswd" utility is available for backwards

# compatibility.

#

# realm = only use the realm option when the "security = ads" option is set.

# The realm option specifies the Active Directory realm the host is a part of.

#

# password server = only use this option when the "security = server"

# option is set, or if you cannot use DNS to locate a Domain Controller. The

# argument list can include My_PDC_Name, [My_BDC_Name], and [My_Next_BDC_Name]:

#

# password server = My_PDC_Name [My_BDC_Name] [My_Next_BDC_Name]

#

# Use "password server = *" to automatically locate Domain Controllers.



;	security = domain

;	passdb backend = tdbsam

;	realm = MY_REALM



;	password server = <NT-Server-Name>



# ----------------------- Domain Controller Options ------------------------

#

# security = must be set to user for domain controllers.

#

# passdb backend = the backend used to store user information in. New

# installations should use either tdbsam or ldapsam. No additional configuration

# is required for tdbsam. The "smbpasswd" utility is available for backwards

# compatibility.

#

# domain master = specifies Samba to be the Domain Master Browser, allowing

# Samba to collate browse lists between subnets. Do not use the "domain master"

# option if you already have a Windows NT domain controller performing this task.

#

# domain logons = allows Samba to provide a network logon service for Windows

# workstations.

#

# logon script = specifies a script to run at login time on the client. These

# scripts must be provided in a share named NETLOGON.

#

# logon path = specifies (with a UNC path) where user profiles are stored.

#

#

;	security = user

;	passdb backend = tdbsam



;	domain master = yes

;	domain logons = yes



# the following login script name is determined by the machine name

# (%m):

;	logon script = %m.bat

# the following login script name is determined by the UNIX user used:

;	logon script = %u.bat

;	logon path = \\%L\Profiles\%u

# use an empty path to disable profile support:

;	logon path =



# various scripts can be used on a domain controller or a stand-alone

# machine to add or delete corresponding UNIX accounts:



;	add user script = /usr/sbin/useradd "%u" -n -g users

;	add group script = /usr/sbin/groupadd "%g"

;	add machine script = /usr/sbin/useradd -n -c "Workstation (%u)" -M -d /nohome -s /bin/false "%u"

;	delete user script = /usr/sbin/userdel "%u"

;	delete user from group script = /usr/sbin/userdel "%u" "%g"

;	delete group script = /usr/sbin/groupdel "%g"





# ----------------------- Browser Control Options ----------------------------

#

# local master = when set to no, Samba does not become the master browser on

# your network. When set to yes, normal election rules apply.

#

# os level = determines the precedence the server has in master browser

# elections. The default value should be reasonable.

#

# preferred master = when set to yes, Samba forces a local browser election at

# start up (and gives itself a slightly higher chance of winning the election).

#

;	local master = no

;	os level = 33

;	preferred master = yes



#----------------------------- Name Resolution -------------------------------

#

# This section details the support for the Windows Internet Name Service (WINS).

#

# Note: Samba can be either a WINS server or a WINS client, but not both.

#

# wins support = when set to yes, the NMBD component of Samba enables its WINS

# server.

#

# wins server = tells the NMBD component of Samba to be a WINS client.

#

# wins proxy = when set to yes, Samba answers name resolution queries on behalf

# of a non WINS capable client. For this to work, there must be at least one

# WINS server on the network. The default is no.

#

# dns proxy = when set to yes, Samba attempts to resolve NetBIOS names via DNS

# nslookups.



;	wins support = yes

;	wins server = w.x.y.z

;	wins proxy = yes



;	dns proxy = yes



# --------------------------- Printing Options -----------------------------

#

# The options in this section allow you to configure a non-default printing

# system.

#

# load printers = when set you yes, the list of printers is automatically

# loaded, rather than setting them up individually.

#

# cups options = allows you to pass options to the CUPS library. Setting this

# option to raw, for example, allows you to use drivers on your Windows clients.

#

# printcap name = used to specify an alternative printcap file.

#



load printers = yes

cups options = raw



;	printcap name = /etc/printcap

# obtain a list of printers automatically on UNIX System V systems:

;	printcap name = lpstat

;	printing = cups



# --------------------------- File System Options ---------------------------

#

# The options in this section can be un-commented if the file system supports

# extended attributes, and those attributes are enabled (usually via the

# "user_xattr" mount option). These options allow the administrator to specify

# that DOS attributes are stored in extended attributes and also make sure that

# Samba does not change the permission bits.

#

# Note: These options can be used on a per-share basis. Setting them globally

# (in the [global] section) makes them the default for all shares.



;	map archive = no

;	map hidden = no

;	map read only = no

;	map system = no

;	store dos attributes = yes





#============================ Share Definitions ==============================



[homes]

comment = Home Directories

browseable = no

writable = yes

;	valid users = %S

;	valid users = MYDOMAIN\%S



[printers]

comment = All Printers

path = /var/spool/samba

browseable = no

guest ok = no

writable = no

printable = yes



# Un-comment the following and create the netlogon directory for Domain Logons:

;	[netlogon]

;	comment = Network Logon Service

;	path = /var/lib/samba/netlogon

;	guest ok = yes

;	writable = no

;	share modes = no



# Un-comment the following to provide a specific roving profile share.

# The default is to use the user's home directory:

;	[Profiles]

;	path = /var/lib/samba/profiles

;	browseable = no

;	guest ok = yes



# A publicly accessible directory that is read only, except for users in the

# "staff" group (which have write permissions):

[public]

comment = Public Stuff

path = /home/simman/Desktop/raf

public = yes

writable = yes

printable = no

write list = +staff

 

 

//udostepnienie portów standardowych dla samby :)

System->Administration->Faierwall-Other Porst

dodanie portów takich jak 139 i 445

 

[root@rafal1100 ~]# useradd user
[root@rafal1100 ~]# passwd user
Changing password for user user.
New password: 
Retype new password: 
passwd: all authentication tokens updated successfully.
[root@rafal1100 ~]# smbpasswd -a user
New SMB password:
Retype new SMB password:
Added user user.
[root@rafal1100 ~]# service smb start
Starting SMB services:                                     [  OK  ]
[root@rafal1100 ~]# service smb restart
Shutting down SMB services:                                [  OK  ]
Starting SMB services:                                     [  OK  ]
[root@rafal1100 ~]# service smb restart

 

/// zmiana ip dla eth 0 Linux :)

System -> Preferences ->Newtork Connections

Edytowanie eth 0 zamiana z DHCP na manual i podanie 192.168.1.1/24

/// zmiana ip windows xp

192.168.1.2/24

 

///ifconfig :)

[root@rafal1100 ~]# ifconfig
eth0      Link encap:Ethernet  HWaddr 00:1C:F0:FA:DE:DB  
         inet addr:192.168.1.1  Bcast:192.168.1.255  Mask:255.255.255.0
         inet6 addr: fe80::21c:f0ff:fefa:dedb/64 Scope:Link
         UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
         RX packets:115769 errors:0 dropped:0 overruns:0 frame:0
         TX packets:76513 errors:0 dropped:0 overruns:0 carrier:0
         collisions:0 txqueuelen:1000 
         RX bytes:153875416 (146.7 MiB)  TX bytes:8435987 (8.0 MiB)
         Interrupt:17 Base address:0x6f00 

lo        Link encap:Local Loopback  
         inet addr:127.0.0.1  Mask:255.0.0.0
         inet6 addr: ::1/128 Scope:Host
         UP LOOPBACK RUNNING  MTU:16436  Metric:1
         RX packets:99 errors:0 dropped:0 overruns:0 frame:0
         TX packets:99 errors:0 dropped:0 overruns:0 carrier:0
         collisions:0 txqueuelen:0 
         RX bytes:11076 (10.8 KiB)  TX bytes:11076 (10.8 KiB)

 

//na windowsie

Start->uruchom

cmd (enter)

ping 192.168.1.1 (enter)

pinguje sie :)

Edytowane przez WalDo
Boże, zlituj się nad ortografią polską, bo simman ma ją w ... nosie
Odnośnik do komentarza
Udostępnij na innych stronach

Podłącze się do tematu coby nie powielać...

 

Samba na f14 uruchomiona, w moim przekonaniu skonfigurowana ;) dałem uprawnienia do katalogu usera i dodatkowo do var/html

 

Na innym kompie z w7 robie na pulpicie skrót z adresem \\192.168.13.3 czyli do komputera z f14.

Skrót się otwiera, znaczy łączy, widzę zarówno katalog html jak i katalog usera, ale... nie mogę żadnego otworzyć, zgłasza brak uprawnień :/

 

Gdzie mogłem zrobić błąd, oraz jak go naprawić? (najlepiej przez SSH)

Odnośnik do komentarza
Udostępnij na innych stronach

Podłącze się do tematu coby nie powielać...

 

Samba na f14 uruchomiona, w moim przekonaniu skonfigurowana ;) dałem uprawnienia do katalogu usera i dodatkowo do var/html

 

Na innym kompie z w7 robie na pulpicie skrót z adresem \\192.168.13.3 czyli do komputera z f14.

Skrót się otwiera, znaczy łączy, widzę zarówno katalog html jak i katalog usera, ale... nie mogę żadnego otworzyć, zgłasza brak uprawnień :/

 

Gdzie mogłem zrobić błąd, oraz jak go naprawić? (najlepiej przez SSH)

 

Cześć zahoryzontem

 

Nie jestem specjalistą ale myślę że powinieneś zmienić upranienia dla konta użytkownika linux które przypisałeś do samby.

System->Administration->User and groups i tam zmień jego uprawnienia.

 

Mam nadzieję że ktoś i mi pomoże z moim problemem.

Odnośnik do komentarza
Udostępnij na innych stronach

Powiem Tobie Ci ze tez teraz mam ten problem.

 

Widze folder user, dukarke, public ale nie moge ich uzywac.

 

\\192.168.1.1\user -> Nie jest dostepny. Mozesz nie miec uprawnien do uzywania tego zasobu sieciowego. Skontaktuj sie z administratorem tego serwera, aby uzyskac uprawnienia dostepu.

Edytowane przez WalDo
gramatyka
Odnośnik do komentarza
Udostępnij na innych stronach

przeciez do wlasnego katalogu mam dostep na maszynie z Linuksem, wiec i przez sambe powinnien byc dostep..
Nie wiem jak zaradzic na te sytuacje, ale z cala pewnoscia nie masz racji. Samba to nie Ty. Ty masz prawo a Samba nie. To sa dwa zupelnie rózne byty w systemie. Edytowane przez WalDo
Odnośnik do komentarza
Udostępnij na innych stronach

[...]System->Administration->Faierwall-Other Ports[...]

Po co tak - w narzędziu masz gotową grupę - Zaufane usługi - i tam możesz odblokować ruch do samby

co do udostępniania var/www/html - załóż grupę wwwusers, dopisz się do grupy i nadaj jej uprawnienia +rw do /var/www/html

W win7 i Viście trzeba zmodyfikować wpis w secpol.msc inaczej może być problem z podłączeniem do zasobu w NT/2000/XP problem nie występuje.

 

W żadnym przypadku nie ma sensu i nie jest wskazane podnoszenie uprawnień użytkownika, do zadań specjalnych mamy sudo

Odnośnik do komentarza
Udostępnij na innych stronach

Zacznijmy od początku, bo się gubie :/

 

Nie jest to problem w7, ponieważ w tej samej sieci mam QNAPa z uruchomioną Sambą i bez problemu się podłączam.

Nie jest to problem firewall'a, sprawdziłem, są otwarte porty Samby

 

Zostawmy chwilowo katalog html

 

Mam /home/Jacek do którego ma dostęp user Jacek na f14

 

 

w konfiguracji Samby

dodałem usera Jacek, wybrany z listy, więc chyba jest to istniejący user w systemie

taki sam user istnieje też w w7 z którego potem się łącze, hasła te same

dodałem Samba share - katalog /home/Jacek writable + visible Access dla usera Jacek

 

zamykam konfiguracje Samby

restartuje smb

 

łącze się z w7 - widzę udział Jacek który utworzyłem, ale nie mogę się do niego dostać

Odnośnik do komentarza
Udostępnij na innych stronach

Mam ten sam problem co kolega. Moge nawet drukowac pliki ale tak jak pisalem co do folderów:

 

\\192.168.1.1\user -> Nie jest dostepny. Mozesz nie miec uprawnien do uzywania tego zasobu sieciowego. Skontaktuj sie z administratorem tego serwera, aby uzyskac uprawnienia dostepu.

 

Gdzie jest problem?

Odnośnik do komentarza
Udostępnij na innych stronach

Spoko juz sobie poradzilem. Niech kolega "zahoryzontem" na koncu pliku smb.conf doda:

 

[global]

security = share

[wspoldz]

comment = wiecej udzialów publicznych: %G: %g: %$(MACHTYPE)

path = /etc

public = yes

writeable =yes

printable = no

 

Do tego folderu bedziesz mial dostep reszta to kwestia czasu.

 

Uwazam ze w tym temacie bylo wiele fajnych i dobrych informacji które moga przydadza sie poczatkujacemu uzytkownikowi. Warto oznaczyc ten temat.

 

Dodam jeszcze ostateczny smb.conf

 

# This is the main Samba configuration file. For detailed information about the

# options listed here, refer to the smb.conf(5) manual page. Samba has a huge

# number of configurable options, most of which are not shown in this example.

#

# The Official Samba 3.2.x HOWTO and Reference Guide contains step-by-step

# guides for installing, configuring, and using Samba:

# http://www.samba.org/samba/docs/Samba-HOWTO-Collection.pdf

#

# The Samba-3 by Example guide has working examples for smb.conf. This guide is

# generated daily: http://www.samba.org/samba/docs/Samba-Guide.pdf

#

# In this file, lines starting with a semicolon ( or a hash (#) are

# comments and are ignored. This file uses hashes to denote commentary and

# semicolons for parts of the file you may wish to configure.

#

# Note: Run the "testparm" command after modifying this file to check for basic

# syntax errors.

#

#---------------

# Security-Enhanced Linux (SELinux) Notes:

#

# Turn the samba_domain_controller Boolean on to allow Samba to use the useradd

# and groupadd family of binaries. Run the following command as the root user to

# turn this Boolean on:

# setsebool -P samba_domain_controller on

#

# Turn the samba_enable_home_dirs Boolean on if you want to share home

# directories via Samba. Run the following command as the root user to turn this

# Boolean on:

# setsebool -P samba_enable_home_dirs on

#

# If you create a new directory, such as a new top-level directory, label it

# with samba_share_t so that SELinux allows Samba to read and write to it. Do

# not label system directories, such as /etc/ and /home/, with samba_share_t, as

# such directories should already have an SELinux label.

#

# Run the "ls -ldZ /path/to/directory" command to view the current SELinux

# label for a given directory.

#

# Set SELinux labels only on files and directories you have created. Use the

# chcon command to temporarily change a label:

# chcon -t samba_share_t /path/to/directory

#

# Changes made via chcon are lost when the file system is relabeled or commands

# such as restorecon are run.

#

# Use the samba_export_all_ro or samba_export_all_rw Boolean to share system

# directories. To share such directories and only allow read-only permissions:

# setsebool -P samba_export_all_ro on

# To share such directories and allow read and write permissions:

# setsebool -P samba_export_all_rw on

#

# To run scripts (preexec/root prexec/print command/...), copy them to the

# /var/lib/samba/scripts/ directory so that SELinux will allow smbd to run them.

# Note that if you move the scripts to /var/lib/samba/scripts/, they retain

# their existing SELinux labels, which may be labels that SELinux does not allow

# smbd to run. Copying the scripts will result in the correct SELinux labels.

# Run the "restorecon -R -v /var/lib/samba/scripts" command as the root user to

# apply the correct SELinux labels to these files.

#

#--------------

#

#======================= Global Settings =====================================



[global]



# ----------------------- Network-Related Options -------------------------

#

# workgroup = the Windows NT domain name or workgroup name, for example, MYGROUP.

#

# server string = the equivalent of the Windows NT Description field.

#

# netbios name = used to specify a server name that is not tied to the hostname.

#

# interfaces = used to configure Samba to listen on multiple network interfaces.

# If you have multiple interfaces, you can use the "interfaces =" option to

# configure which of those interfaces Samba listens on. Never omit the localhost

# interface (lo).

#

# hosts allow = the hosts allowed to connect. This option can also be used on a

# per-share basis.



# hosts deny = the hosts not allowed to connect. This option can also be used on

# a per-share basis.

#

workgroup = MYGROUP

server string = server



;	netbios name = MYSERVER



;	interfaces = lo eth0 192.168.12.2/24 192.168.13.2/24

;	hosts allow = 127. 192.168.12. 192.168.13.



# --------------------------- Logging Options -----------------------------

#

# log file = specify where log files are written to and how they are split.

#

# max log size = specify the maximum size log files are allowed to reach. Log

# files are rotated when they reach the size specified with "max log size".

#



# log files split per-machine:

log file = /var/log/samba/log.%m

# maximum size of 50KB per log file, then rotate:

max log size = 50



# ----------------------- Standalone Server Options ------------------------

#

# security = the mode Samba runs in. This can be set to user, share

# (deprecated), or server (deprecated).

#

# passdb backend = the backend used to store user information in. New

# installations should use either tdbsam or ldapsam. No additional configuration

# is required for tdbsam. The "smbpasswd" utility is available for backwards

# compatibility.

#



security = user

passdb backend = tdbsam





# ----------------------- Domain Members Options ------------------------

#

# security = must be set to domain or ads.

#

# passdb backend = the backend used to store user information in. New

# installations should use either tdbsam or ldapsam. No additional configuration

# is required for tdbsam. The "smbpasswd" utility is available for backwards

# compatibility.

#

# realm = only use the realm option when the "security = ads" option is set.

# The realm option specifies the Active Directory realm the host is a part of.

#

# password server = only use this option when the "security = server"

# option is set, or if you cannot use DNS to locate a Domain Controller. The

# argument list can include My_PDC_Name, [My_BDC_Name], and [My_Next_BDC_Name]:

#

# password server = My_PDC_Name [My_BDC_Name] [My_Next_BDC_Name]

#

# Use "password server = *" to automatically locate Domain Controllers.



;	security = domain

;	passdb backend = tdbsam

;	realm = MY_REALM



;	password server = <NT-Server-Name>



# ----------------------- Domain Controller Options ------------------------

#

# security = must be set to user for domain controllers.

#

# passdb backend = the backend used to store user information in. New

# installations should use either tdbsam or ldapsam. No additional configuration

# is required for tdbsam. The "smbpasswd" utility is available for backwards

# compatibility.

#

# domain master = specifies Samba to be the Domain Master Browser, allowing

# Samba to collate browse lists between subnets. Do not use the "domain master"

# option if you already have a Windows NT domain controller performing this task.

#

# domain logons = allows Samba to provide a network logon service for Windows

# workstations.

#

# logon script = specifies a script to run at login time on the client. These

# scripts must be provided in a share named NETLOGON.

#

# logon path = specifies (with a UNC path) where user profiles are stored.

#

#

;	security = user

;	passdb backend = tdbsam



;	domain master = yes

;	domain logons = yes



# the following login script name is determined by the machine name

# (%m):

;	logon script = %m.bat

# the following login script name is determined by the UNIX user used:

;	logon script = %u.bat

;	logon path = \\%L\Profiles\%u

# use an empty path to disable profile support:

;	logon path =



# various scripts can be used on a domain controller or a stand-alone

# machine to add or delete corresponding UNIX accounts:



;	add user script = /usr/sbin/useradd "%u" -n -g users

;	add group script = /usr/sbin/groupadd "%g"

;	add machine script = /usr/sbin/useradd -n -c "Workstation (%u)" -M -d /nohome -s /bin/false "%u"

;	delete user script = /usr/sbin/userdel "%u"

;	delete user from group script = /usr/sbin/userdel "%u" "%g"

;	delete group script = /usr/sbin/groupdel "%g"





# ----------------------- Browser Control Options ----------------------------

#

# local master = when set to no, Samba does not become the master browser on

# your network. When set to yes, normal election rules apply.

#

# os level = determines the precedence the server has in master browser

# elections. The default value should be reasonable.

#

# preferred master = when set to yes, Samba forces a local browser election at

# start up (and gives itself a slightly higher chance of winning the election).

#

;	local master = no

;	os level = 33

;	preferred master = yes



#----------------------------- Name Resolution -------------------------------

#

# This section details the support for the Windows Internet Name Service (WINS).

#

# Note: Samba can be either a WINS server or a WINS client, but not both.

#

# wins support = when set to yes, the NMBD component of Samba enables its WINS

# server.

#

# wins server = tells the NMBD component of Samba to be a WINS client.

#

# wins proxy = when set to yes, Samba answers name resolution queries on behalf

# of a non WINS capable client. For this to work, there must be at least one

# WINS server on the network. The default is no.

#

# dns proxy = when set to yes, Samba attempts to resolve NetBIOS names via DNS

# nslookups.



;	wins support = yes

;	wins server = w.x.y.z

;	wins proxy = yes



;	dns proxy = yes



# --------------------------- Printing Options -----------------------------

#

# The options in this section allow you to configure a non-default printing

# system.

#

# load printers = when set you yes, the list of printers is automatically

# loaded, rather than setting them up individually.

#

# cups options = allows you to pass options to the CUPS library. Setting this

# option to raw, for example, allows you to use drivers on your Windows clients.

#

# printcap name = used to specify an alternative printcap file.

#



load printers = yes

cups options = raw



;	printcap name = /etc/printcap

# obtain a list of printers automatically on UNIX System V systems:

;	printcap name = lpstat

;	printing = cups



# --------------------------- File System Options ---------------------------

#

# The options in this section can be un-commented if the file system supports

# extended attributes, and those attributes are enabled (usually via the

# "user_xattr" mount option). These options allow the administrator to specify

# that DOS attributes are stored in extended attributes and also make sure that

# Samba does not change the permission bits.

#

# Note: These options can be used on a per-share basis. Setting them globally

# (in the [global] section) makes them the default for all shares.



;	map archive = no

;	map hidden = no

;	map read only = no

;	map system = no

;	store dos attributes = yes





#============================ Share Definitions ==============================

[global]
security = user
os level = 33
domain logons = yes
logon script = netlogon.bat
domain master = yes
preferred master = yes
wins support = yes
load printers = yes


[homes]

comment = Home Directories

browseable = yes

writable = yes

valid users = %S

valid users = MYDOMAIN\%S



[printers]

comment = All Printers

path = /var/spool/samba

browseable = no

guest ok = no

writable = no

printable = yes



# Un-comment the following and create the netlogon directory for Domain Logons:

[netlogon]

comment = Network Logon Service

path = /var/lib/samba/netlogon

guest ok = yes

writable = yes

share modes = yes




# Un-comment the following to provide a specific roving profile share.

# The default is to use the user's home directory:



[Profiles]

path = /var/lib/samba/profiles

browseable = yes

guest ok = yes






# A publicly accessible directory that is read only, except for users in the

# "staff" group (which have write permissions):

[public]

comment = Public Stuff

path = /home/simman/Desktop/raf

public = yes

writable = yes

printable = yes

write list = +staff

[global]
security = share
[wspoldz]
comment = wiecej udzialów publicznych: %G: %g: %$(MACHTYPE)
path = /etc
public = yes
writeable =yes
printable = no

Odnośnik do komentarza
Udostępnij na innych stronach

Jeśli chcesz dodać odpowiedź, zaloguj się lub zarejestruj nowe konto

Jedynie zarejestrowani użytkownicy mogą komentować zawartość tej strony.

Zarejestruj nowe konto

Załóż nowe konto. To bardzo proste!

Zarejestruj się

Zaloguj się

Posiadasz już konto? Zaloguj się poniżej.

Zaloguj się

×
×
  • Dodaj nową pozycję...