### ## /etc/samba/smb.conf - Samba SMB/CIFS file server configuration ### [global] ## Server identification workgroup = moffett.home server string = %h (Samba %v) ## Act as a WINS server wins support = yes dns proxy = yes name resolve order = host ## Act as a time server and add compatibility hacks for Windows #time service = yes # ?? dos filetimes = yes ## Network connectivity interfaces = lo, lan bind interfaces only = true ## Logging log file = /var/log/samba/machine-%m.log log level = 1 #max log size = 0 max log size = 1048576 debug timestamp = yes debug pid = yes ;syslog only = no syslog = 0 ## What to do when samba crashes panic action = /usr/share/samba/panic-action %d ## Account security security = user encrypt passwords = true passdb backend = ldapsam obey pam restrictions = yes ## Account storage passdb backend = ldapsam:ldapi://%2fvar%2frun%2fslapd%2fldapi enable privileges = Yes username map = /etc/samba/smbusers ldap suffix = dc=moffett,dc=home ldap machine suffix = ou=host ldap user suffix = ou=user ldap group suffix = ou=group ldap admin dn = dc=samba0,ou=samba,dc=moffett,dc=home ldapsam:trusted = yes ldapsam:editposix = yes ldap delete dn = yes ## ID mapping storage idmap domains = MOFFETT.HOME idmap config MOFFETT.HOME:backend = ldap idmap config MOFFETT.HOME:readonly = no idmap config MOFFETT.HOME:default = yes idmap config MOFFETT.HOME:ldap_base_dn = ou=idmap,dc=moffett,dc=home idmap config MOFFETT.HOME:ldap_user_dn = dc=samba0,ou=samba,dc=moffett,dc=home idmap config MOFFETT.HOME:ldap_url = ldapi://%2fvar%2frun%2fslapd%2fldapi idmap config MOFFETT.HOME:range = 10000-99999 idmap alloc backend = ldap idmap alloc config:ldap_base_dn = ou=idmap,dc=moffett,dc=home idmap alloc config:ldap_user_dn = dc=samba0,ou=samba,dc=moffett,dc=home idmap alloc config:ldap_url = ldapi://%2fvar%2frun%2fslapd%2fldapi idmap alloc config:range = 10000-99999 map acl inherit = Yes ;guest account = nobody invalid users = root ;unix password sync = no ;passwd program = /usr/bin/passwd %u ;passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n *password\supdated\ssuccessfully* . ;pam password change = no ## Domain properties domain logons = yes logon path = \\%N\%U\Library\Windows\Profile logon drive = H: logon home = \\%N\%U logon script = scripts\logon.bat ## Printing load printers = yes printing = cups printcap name = cups ;printer admin = +ntadmin ## Misc ;include = /home/samba/etc/smb.conf.%m # Most people will find that this option gives better performance. # See smb.conf(5) and /usr/share/doc/samba-doc/htmldocs/Samba3-HOWTO/speed.html # for details # You may want to add the following on a Linux system: # SO_RCVBUF=8192 SO_SNDBUF=8192 socket options = TCP_NODELAY ## Display windows intercomputer messages ;message command = /bin/sh -c '/usr/bin/linpopup "%f" "%m" %s; rm %s' & ## Domain Master specifies Samba to be the Domain Master Browser. If ## this machine will be configured as a BDC (a secondary logon ## server), you must set this to 'no'; otherwise, the default ## behavior is recommended. ;domain master = auto [homes] comment = Home Directories browseable = no writable = yes csc policy = disable admin users = +domadmins force user = %S create mask = 0770 security mask = 0770 directory mask = 0770 directory security mask = 0770 force create mode = 0600 force security mode = 0600 force directory mode = 0700 force directory security mode = 0700 [shared] comment = Shared Files path = /home/MOFFETT.HOME/shared browseable = yes writeable = yes csc policy = disable admin users = +domadmins force group = domusers create mask = 0770 security mask = 0770 directory mask = 0770 directory security mask = 0770 force create mode = 0660 force security mode = 0660 force directory mode = 0770 force directory security mode = 0770 [netlogon] comment = Network Logon Service path = /home/MOFFETT.HOME/netlogon guest ok = yes writable = yes csc policy = disable share modes = no admin users = +domadmins [printers] comment = All Printers browseable = no path = /var/spool/samba printable = yes public = no writable = yes create mode = 0700 admin users = +domadmins # Windows clients look for this share name as a source of downloadable # printer drivers [print$] comment = Printer Drivers path = /var/lib/samba/printers browseable = yes read only = no csc policy = disable guest ok = no admin users = +domadmins ## Remote access to the DVD-R/W drive in #[cdrom0] # comment = PLEXTOR_DVDR_PX-740A # writable = no # locking = no # csc policy = disable # # path = /media/cdrom0 # preexec = /bin/mount /media/cdrom0 # postexec = /bin/umount /media/cdrom0 # admin users = +domadmins