Samba: Difference between revisions

From miki
Jump to navigation Jump to search
Line 25: Line 25:


== Samba Server ==
== Samba Server ==
=== Installation ===
(From [http://www.howtogeek.com/howto/ubuntu/install-samba-server-on-ubuntu/])
(From [http://www.howtogeek.com/howto/ubuntu/install-samba-server-on-ubuntu/])


Line 70: Line 71:
</source>
</source>


* Don't forget to open the ports on your '''firewall''' !!!
* Don't forget to open the ports on your '''[[#Server Firewall Settings|firewall]]''' !!!
* Restart the samba daemon
* Restart the samba daemon
<source lang="bash">
<source lang="bash">
sudo /etc/init.d/smbd restart
sudo /etc/init.d/smbd restart
</source>
</source>

=== Server Firewall Settings ===
The following ports must be opened ([http://troy.jdmz.net/samba/fw/], [http://www.samba.org/samba/docs/server_security.html]):
{| class="wikitable"
|-
!Service!!Port!!Prot!!Description
|-
|netbios-ns||137||UDP||NetBIOS Name Service
|-
|netbios-dgm||138||UDP||NetBIOS Datagram Service
|-
|netbios-ssn||139||TCP||NetBIOS Session Service
|-
|microsoft-ds||445||TCP||Microsoft Directory Service
|}


== Mount as User ==
== Mount as User ==

Revision as of 08:24, 7 July 2011

This page is part of the Linux Disk Management pages.

References

Packages

In Ubuntu, install the packages samba and smbfs.

Samba Client

  • To mount a samba share in Linux (see [1]):
$ mkdir -p /windows/winshare
$ mount -t cifs //winmachine/testshare /windows/winshare
$ mount -t cifs -o username=user,password=secret //winmachine/testshare /windows/winshare
$ sudo mount -t cifs -o username=baddreams,allow_utime=22,umask=002,uid=1000,gid=124 //phoenix/D$ /net/phoenix/d
  • Or make it an entry in /etc/fstab. Note that gid=124 refers to group sambashare.
//mnemosyne/backup /net/mnemosyne/backuprw	cifs	username=backup,allow_utime=22,umask=002,uid=999,gid=124

Samba Server

Installation

(From [2])

  • Install Samba
sudo apt-get install samba smbfs
  • Edit the configuration file /etc/samba/smb.conf
    • Uncomment the line security = user, and add link to smbusers file
security = user
username map = /etc/samba/smbusers             # ... does not seems mandatory though
  • Add the user
sudo smbpasswd -a beq06659
  • Create the user mapping file that maps samba user to linux user in file /etc/samba/smbusers:
<linuxuser>="<sambauser>"
  • Uncomment the section corresponding to the shares you want to enable:
[homes]
   comment = Home Directories
   browseable = no
 
[c]
   comment = Windows Drive C
   browseable = yes
   path = /win/c
   printable = no
   guest ok = no
   read only = yes
   create mask = 0700

[d]
   comment = Windows Drive D
   browseable = yes
   path = /win/d
   printable = no
   guest ok = no
   read only = yes
   create mask = 0700
  • Don't forget to open the ports on your firewall !!!
  • Restart the samba daemon
sudo /etc/init.d/smbd restart

Server Firewall Settings

The following ports must be opened ([3], [4]):

Service Port Prot Description
netbios-ns 137 UDP NetBIOS Name Service
netbios-dgm 138 UDP NetBIOS Datagram Service
netbios-ssn 139 TCP NetBIOS Session Service
microsoft-ds 445 TCP Microsoft Directory Service

Mount as User

To mount a samba share as a regular user (i.e. without sudo), the following conditions must be met:

  • /bin/mount, /bin/umount, /sbin/mount.cifs, /sbin/umount.cifs must be setuid (sudo chmod +s ...)
  • share point must be owned by the user (chown username mountpoint).
    • May be optional, but does not hurt, set group of mount point to sambashare, and verify that the user is in that group
  • mount spec in fstab must contain the option user (or users to let any user unmount).
    • It seems that option suid should be present as well, but does not seem to do anything good to me.
//mnemosyne/public /net/mnemosyne/publicrw	cifs	noauto,users,guest,allow_utime=22,umask=002	0 0
//mnemosyne/public /net/mnemosyne/public	cifs	noauto,users,ro,guest,allow_utime=22,umask=002,suid 	0 0
Retrieved from "https://miki.immie.org/mediawiki/index.php?title=Samba&oldid=3128"