# This is the main Samba configuration file. You should read the # smb.conf(5) manual page in order to understand the options listed # here. Samba has a huge number of configurable options (perhaps too # many!) most of which are not shown in this example # # For a step to step guide on installing, configuring and using samba, # read the Samba HOWTO Collection. # # Any line which starts with a ; (semi-colon) or a # (hash) # is a comment and is ignored. In this example we will use a # # for commentry and a ; for parts of the config file that you # may wish to enable # # NOTE: Whenever you modify this file you should run the command "testparm" # to check that you have not made any basic syntactic errors. # #======================= Global Settings ===================================== [global] workgroup = OS server string = Hyper Directory Server netbios name = TUSKA security = user encrypt passwords = yes load printers = yes ; printcap name = lpstat printing = hpux guest account = hyperdir admin users = @admin @"Domain Admins" ;add machine script = /usr/sbin/useradd -g machines -c Machine -d /opt/hyperdirectory/machines -s /bin/false %u log file = /var/opt/hyperdirectory/samba/log.%m max log size = 5000000 realm = OS passdb backend = ldapsam:ldap://localhost oplocks = no level2 oplocks = no ldap admin dn = "cn=Manager,dc=os,dc=is" #ldap ssl = start tls ldap ssl = on passdb backend = ldapsam:ldap://localhost ldap delete dn = no ldap user suffix = ou=People ldap group suffix = ou=Group ldap machine suffix = ou=People ldap suffix = dc=os,dc=is #ldap filter = (&(uid=%u)(objectclass=sambaSamAccount)) unix charset = ISO8859-1 dos charset = 850 veto files = /*.eml/*.nws/riched20.dll/*.{*}/ hosts allow = 10.0.0.0/255.0.0.0 socket options = TCP_NODELAY ; interfaces = 192.168.12.2/24 192.168.13.2/24 # Browser Control Options: # set local master to no if you don't want Samba to become a master # browser on your network. Otherwise the normal election rules apply ; local master = no # OS Level determines the precedence of this server in master browser # elections. The default value should be reasonable os level = 33 # Domain Master specifies Samba to be the Domain Master Browser. This # allows Samba to collate browse lists between subnets. Don't use this # if you already have a Windows NT domain controller doing this job ; domain master = yes # Preferred Master causes Samba to force a local browser election on startup # and gives it a slightly higher chance of winning the election ; preferred master = yes # Enable this if you want Samba to be a domain logon server for # Windows95 workstations. domain logons = yes logon script = logon.cmd # if you enable domain logons then you may want a per-machine or # per user logon script # run a specific logon batch file per workstation (machine) ; logon script = %m.bat # run a specific logon batch file per username ; logon script = %U.bat # Where to store roving profiles (only for Win95 and WinNT) # %L substitutes for this servers netbios name, %U is username # You must uncomment the [Profiles] share below ;logon path = \\%L\%U\WindowsProfile # Windows Internet Name Serving Support Section: # WINS Support - Tells the NMBD component of Samba to enable it's WINS Server wins support = yes # WINS Server - Tells the NMBD components of Samba to be a WINS Client # Note: Samba can be either a WINS Server, or a WINS Client, but NOT both ; wins server = w.x.y.z # WINS Proxy - Tells Samba to answer name resolution queries on # behalf of a non WINS capable client, for this to work there must be # at least one WINS Server on the network. The default is NO. ; wins proxy = yes # DNS Proxy - tells Samba whether or not to try to resolve NetBIOS names # via DNS nslookups. The default is NO. dns proxy = no # These scripts are used on a domain controller or stand-alone # machine to add or delete corresponding unix accounts ; add user script = /usr/sbin/useradd %u ; add group script = /usr/sbin/groupadd %g ; add machine script = /usr/sbin/adduser -n -g machines -c Machine -d /dev/null -s /bin/false %u add machine script = /opt/hyperdirectory/sbin/smbldap-useradd.pl -W -d /dev/null -c Machine -s /bin/false -g 59 %u ; delete user script = /usr/sbin/userdle %u ; delete user from group script = /usr/sbin/deluser %u %g ; delete group script = /usr/sbin/groupdel %g #============================ Share Definitions ============================== [homes] comment = Home Directories browseable = no writable = yes # Un-comment the following and create the netlogon directory for Domain Logons [netlogon] comment = Network Logon Service path = /opt/hyperdirectory/share/netlogon guest ok = yes writable = no share modes = no # Un-comment the following to provide a specific roving profile share # the default is to use the user's home directory ;[Profiles] ; path = /usr/local/samba/profiles ; browseable = no ; guest ok = yes # NOTE: If you have a BSD-style print system there is no need to # specifically define each individual printer [printers] comment = All Printers path = /usr/spool/samba browseable = no # Set public = yes to allow user 'guest account' to print guest ok = no writable = no printable = yes [os] comment = Heimasvaedi starfsmanna path = /mnt/os public = yes writeable = yes # valid users = @os @admins # create mode = 0750 # directory mode = 0770 # force group = os [isor] path = /isor/starfsmenn comment = Heimasvaedi isor starfsmanna public = yes writeable = yes valid users = @isor @admins create mode = 0750 directory mode = 0770 force group = isor [fata-os] path = /mnt/fata-os create mask = 0640 directory mask = 0750 public = yes writeable = yes browseable = yes [fata-bg] path = /mnt/fata-os/bg create mask = 0640 directory mask = 0750 public = no writeable = yes browseable = yes valid users = bg force user = bg force group = user [www] path = /mnt/www writeable = yes create mode = 664 directory mode = 775 force group = mosaic comment = Vefsvaedi os valid users = @mosaic printable = no public = yes [cdrom] comment = Linux CD-ROM path = /media/cdrom locking = No [tmp] comment = temp directory path = /tmp create mask = 0600 printable = no browsable = yes [dosadmin] valid users = @admins comment = dos share for admins write list = @admins create mode = 775 writable = yes directory mode = 775 force group = admins path = /sam/admins/dos [admins] comment = Administrator files path = /sam/admins public = no writable = yes create mode = 0770 force group = admins valid users = @admins [galvos] path = /vm/galvos writable = yes create mode = 0775 directory mode = 775 force group = vhm comment = Galvos diskur valid users = @vhm @admins printable = no public = yes [eftirlit] comment = Eftirlit - ROS path = /os/eftirlit public = no writable = yes create mode = 0644 directory mode = 775 valid users = @eftirlit force group = eftirlit [dos] comment = Dos diskur path = /sam/admins/dos public = yes writable = yes printable = no create mask = 0664 [ffr] comment = Diskur fordafraedideildar path = /mnt/o/ffr public = yes writable = yes printable = no create mask = 0775 valid users = @ffr @admins force group = ffr [jel] comment = Jel diskur path = /mnt/isor/jel public = yes writable = yes printable = no create mask = 0664 [bhm] path = /mnt/bhm writable = yes create mode = 0770 directory mode = 775 force group = vhm comment = Bhm diskur valid users = @vhm @admins printable = no public = yes [seismic] comment = Seismic diskur path = /mnt/seismic writeable = yes public = yes [intranet] path = /mnt/intranet writable = yes create mode = 0775 directory mode = 775 comment = Intranet OS valid users = @mosaic @admins force group = mosaic printable = no public = yes [sam] create mode = 0770 directory mode = 0770 valid users = @sam force group = sam path = /mnt/sam comment = Svaedi SAM [rekstur] path = /mnt/sam/rekstur writable = yes create mode = 0770 directory mode = 0770 force group = sam comment = Rekstur valid users = @sam [vmrekstur] path = /mnt/vm/verk/vmrekstur force group = stjvm writable = yes valid users = @stjvm create mode = 775 directory mode = 775 [gis] path = /mnt/gis writable = yes create mode = 775 directory mode = 775 read list = @users force group = gis valid users = @gis,@users write list = @gis [jfr] path = /mnt/o/jfr writable = yes force group = jfr valid users = @jfr,@admins create mode = 775 directory mode = 775 [vm] path = /mnt/vm writable = yes force group = vhm valid users = @vhm,@admins create mode = 664 directory mode = 775 read only = no writeable = yes [notes] path = /mnt/sam/forrit/notesshared writable = yes [mandrake] path = /opt/mandrake read list = @users writable = yes create mode = 664 directory mode = 775 write list = @admins [bokasafn] comment = Heimasvaedi bokasafns path = /os/bokasafn valid users = @bokasafn force group = bokasafn create mode = 0664 directory mode = 0664 public = no writeable = yes [haf] path = /mnt/isor/haf writable = yes force group = haf create mode = 664 write list = @haf [simi] path = /mnt/os/simi writable = yes force group = simaskra valid users = @simaskra,@admins create mode = 664 directory mode = 775 [vmgis] path = /mnt/vmgis writable = yes force group = vhm valid users = @vhm,@admins create mode = 664 directory mode = 775 [openoffice] path = /mnt/sam/forrit/OpenOffice writeable = yes create mode = 664 directory mode = 775 read list = @users valid users = @users,@admins write list = @admins [aurburdur] valid users = @aurburdur,@vhm write list = @aurburdur read list = @vhm create mode = 664 directory mode = 775 force group = aurburdur path = /mnt/bhm/vm/aurburdur [notes6] path = /mnt/sam/forrit/notes6 writeable = yes create mode = 664 directory mode = 775 read list = @users valid users = @users,@admins write list = @admins [jardhitafelag.is] path = /mnt/apache/vhosts/jardhitafelag.is writeable = yes create mode = 664 directory mode = 775 force group = mosaic comment = Vefsvaedi jardhitafelags Islands valid users = @mosaic printable = no public = yes [nsp7] path = /os/bg/NSP7 writable = yes force group = nsp7 valid users = @nsp7 create mode = 664 directory mode = 775 [ims] path = /ims writable = yes valid users = @users create mode = 664 directory mode = 775 [obd948] path = /obd/OBD948 writeable = yes create mode = 664 directory mode = 775 [obd] path = /obd writeable = yes create mode = 664 directory mode = 775 [arcims] path = /mnt/arcims public = yes create mode = 664 writeable = yes directory mode = 775 valid users = @arcims @admins write list = @arcims @admins force group = arcims [wwwisor] path = /mnt/www/ros force group = mosaic valid users = @isor,@admins writeable = yes create mode = 664 directory mode = 775 [oms-glaerur] comment = Glaerusvaedi OMS path = /mnt/ald/glaerur valid users = @oms @admins force group = oms create mode = 0664 directory mode = 0775 public = no writeable = yes [iss] comment = Heimasvaedi starfsmanna path = /opt/iss public = yes writeable = yes [heimildasafn] comment = Heimildasafn gagnagrunns path = /og/heimildasafn writeable = yes create mode = 664 directory mode = 775 [sameign] comment = Sameiginlegt svaedi Orkugards path = /og/sameign writeable = yes create mode = 664 directory mode = 775