The Samba-Bugzilla – Attachment 11752 Details for
Bug 11655
NT_STATUS_NETWORK_BUSY / nfsd(4) LEASE READ lock
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
New Account
|
Log In
[x]
|
Forgot Password
Login:
[x]
smb.conf
smb.conf (text/plain), 7.36 KB, created by
Michael Baldauf
on 2015-12-30 10:17:17 UTC
(
hide
)
Description:
smb.conf
Filename:
MIME Type:
Creator:
Michael Baldauf
Created:
2015-12-30 10:17:17 UTC
Size:
7.36 KB
patch
obsolete
># ># Sample configuration file for the Samba suite for Debian GNU/Linux. ># ># ># This is the main Samba configuration file. You should read the ># smb.conf(5) manual page in order to understand the options listed ># here. Samba has a huge number of configurable options most of which ># are not shown in this example ># ># Some options that are often worth tuning have been included as ># commented-out examples in this file. ># - When such options are commented with ";", the proposed setting ># differs from the default Samba behaviour ># - When commented with "#", the proposed setting is the default ># behaviour of Samba but the option is considered important ># enough to be mentioned here ># ># NOTE: Whenever you modify this file you should run the command ># "testparm" to check that you have not made any basic syntactic ># errors. > >#======================= Global Settings ======================= > >[global] > workgroup = WORKGROUP > passwd program = /usr/bin/passwd %u > panic action = /usr/share/samba/panic-action %d > os level = 20 > syslog = 0 > kernel oplocks = no > encrypt passwords = yes > passdb backend = tdbsam > map to guest = bad user > obey pam restrictions = yes > force group = users > usershare allow guests = yes > netbios aliases = fs-02 alias > netbios name = fs-02 > dns proxy = no > username map = /etc/samba/user.map > passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* . > write raw = no > force user = mb1 > force directory mode = 755 > log file = /var/log/samba/log.%m > unix password sync = yes > read raw = no > debug level = 10 > force create mode = 755 > max log size = 10000 > server role = standalone server > pam password change = yes > >## Browsing/Identification ### > ># Change this to the workgroup/NT-domain name your Samba server will part of > ># Windows Internet Name Serving Support Section: ># WINS Support - Tells the NMBD component of Samba to enable its WINS Server ># wins support = no > ># WINS Server - Tells the NMBD components of Samba to be a WINS Client ># Note: Samba can be either a WINS Server, or a WINS Client, but NOT both >; wins server = w.x.y.z > ># This will prevent nmbd to search for NetBIOS names through DNS. > >#### Networking #### > ># The specific set of interfaces / networks to bind to ># This can be either the interface name or an IP address/netmask; ># interface names are normally preferred >; interfaces = 127.0.0.0/8 eth0 > ># Only bind to the named interfaces and/or networks; you must use the ># 'interfaces' option above to use this. ># It is recommended that you enable this feature if your Samba machine is ># not protected by a firewall or is a firewall itself. However, this ># option cannot handle dynamic or non-broadcast interfaces correctly. >; bind interfaces only = yes > > > >#### Debugging/Accounting #### > ># This tells Samba to use a separate log file for each machine ># that connects > ># Cap the size of the individual log files (in KiB). > ># If you want Samba to only log through syslog then set the following ># parameter to 'yes'. ># syslog only = no > ># We want Samba to log a minimum amount of information to syslog. Everything ># should go to /var/log/samba/log.{smbd,nmbd} instead. If you want to log ># through syslog you should set the following parameter to something higher. > ># Do something sensible when Samba crashes: mail the admin a backtrace > > >####### Authentication ####### > ># Server role. Defines in which mode Samba will operate. Possible ># values are "standalone server", "member server", "classic primary ># domain controller", "classic backup domain controller", "active ># directory domain controller". ># ># Most people will want "standalone sever" or "member server". ># Running as "active directory domain controller" will require first ># running "samba-tool domain provision" to wipe databases and create a ># new domain. > ># If you are using encrypted passwords, Samba will need to know what ># password database type you are using. > > ># This boolean parameter controls whether Samba attempts to sync the Unix ># password with the SMB password when the encrypted SMB password in the ># passdb is changed. > ># For Unix password sync to work on a Debian GNU/Linux system, the following ># parameters must be set (thanks to Ian Kahan <<kahan@informatik.tu-muenchen.de> for ># sending the correct chat script for the passwd program in Debian Sarge). > ># This boolean controls whether PAM will be used for password changes ># when requested by an SMB client instead of the program listed in ># 'passwd program'. The default is 'no'. > ># This option controls how unsuccessful authentication attempts are mapped ># to anonymous connections > >########## Domains ########### > ># ># The following settings only takes effect if 'server role = primary ># classic domain controller', 'server role = backup domain controller' ># or 'domain logons' is set ># > ># It specifies the location of the user's ># profile directory from the client point of view) The following ># required a [profiles] share to be setup on the samba server (see ># below) >; logon path = \\%N\profiles\%U ># Another common choice is storing the profile in the user's home directory ># (this is Samba's default) ># logon path = \\%N\%U\profile > ># The following setting only takes effect if 'domain logons' is set ># It specifies the location of a user's home directory (from the client ># point of view) >; logon drive = H: ># logon home = \\%N\%U > ># The following setting only takes effect if 'domain logons' is set ># It specifies the script to run during logon. The script must be stored ># in the [netlogon] share ># NOTE: Must be store in 'DOS' file format convention >; logon script = logon.cmd > ># This allows Unix users to be created on the domain controller via the SAMR ># RPC pipe. The example command creates a user account with a disabled Unix ># password; please adapt to your needs >; add user script = /usr/sbin/adduser --quiet --disabled-password --gecos "" %u > ># This allows machine accounts to be created on the domain controller via the ># SAMR RPC pipe. ># The following assumes a "machines" group exists on the system >; add machine script = /usr/sbin/useradd -g machines -c "%u machine account" -d /var/lib/samba -s /bin/false %u > ># This allows Unix groups to be created on the domain controller via the SAMR ># RPC pipe. >; add group script = /usr/sbin/addgroup --force-badname %g > >############ Misc ############ > ># Using the following line enables you to customise your configuration ># on a per machine basis. The %m gets replaced with the netbios name ># of the machine that is connecting >; include = /home/samba/etc/smb.conf.%m > ># Some defaults for winbind (make sure you're not using the ranges ># for something else.) >; idmap uid = 10000-20000 >; idmap gid = 10000-20000 >; template shell = /bin/bash > ># Setup usershare options to enable non-root users to share folders ># with the net usershare command. > ># Maximum number of usershare. 0 (default) means that usershare is disabled. >; usershare max shares = 100 > ># Allow users who've been granted usershare privileges to create ># public shares, not just authenticated ones > >#======================= Share Definitions ======================= > > > > >[fs-ro] > directory mode = 775 > force directory mode = 775 > locking = no > create mode = 775 > writeable = yes > path = /data/fs-ro > force create mode = 775 > comment = fs-ro comment > wide links = no > hide dot files = no > oplocks = no > >[fs-rw] > copy = fs-ro > path = /data/fs-rw > comment = fs-rw comment > >[fs-test] > path = /data/fs-test > copy = fs-ro
You cannot view the attachment while viewing its details because your browser does not support IFRAMEs.
View the attachment on a separate page
.
View Attachment As Raw
Actions:
View
Attachments on
bug 11655
:
11751
| 11752