| blob | 1d0b85b975a0904afa7a053900e793b214f11a5c |
1 # NOTE: Whenever you modify this file you should run the command "testparm"
2 # to check that you have not made any basic syntactic errors.
3 #---------------
4 # SELINUX NOTES:
5 #
6 # If you want to use the useradd/groupadd family of binaries please run:
7 # setsebool -P samba_domain_controller on
8 #
9 # If you want to share home directories via samba please run:
10 # setsebool -P samba_enable_home_dirs on
11 #
12 # If you create a new directory you want to share you should mark it as
13 # "samba_share_t" so that selinux will let you write into it.
14 # Make sure not to do that on system directories as they may already have
15 # been marked with othe SELinux labels.
16 #
17 # Use ls -ldZ /path to see which context a directory has
18 #
19 # Set labels only on directories you created!
20 # To set a label use the following: chcon -t samba_share_t /path
21 #
22 # If you need to share a system created directory you can use one of the
23 # following (read-only/read-write):
24 # setsebool -P samba_export_all_ro on
25 # or
26 # setsebool -P samba_export_all_rw on
27 #
28 # If you want to run scripts (preexec/root prexec/print command/...) please
29 # put them into the /var/lib/samba/scripts directory so that smbd will be
30 # allowed to run them.
31 # Make sure you COPY them and not MOVE them so that the right SELinux context
32 # is applied, to check all is ok use restorecon -R -v /var/lib/samba/scripts
33 #
34 #--------------
35 #
36 #======================= Global Settings =====================================
38 [global]
40 #null passwords = yes
41 dos charset = cp936
42 unix charset = utf8
43 display charset = UTF8
44 ;max disk size = 1000
45 dont descend = /proc,/dev
46 follow symlinks = yes
47 force group = users
48 force directory mode = 0750
49 force create mode = 0640
50 create mask = 0644
51 directory mask = 0755
52 guest ok = no
53 wide links = yes
54 unix extensions = no
56 veto files = /._*/.DS_Store/.AppleDouble/.AppleDB/.AppleDesktop/Network Trash Folder/
57 delete veto files = yes
59 ;browseable = yes
60 workgroup = WORKGROUP
61 ;workgroup = LuoLab
62 server string = Eutheria
64 ; interfaces = lo eth0 192.168.12.2/24 192.168.13.2/24
65 ; hosts allow = 127. 192.168.12. 192.168.13.
66 # logs split per machine
67 log file = /var/log/samba/log.%m
68 # max 50KB per log file, then rotate
69 max log size = 50
70 security = user
71 passdb backend = tdbsam
72 # use either tdbsam or ldapsam. smbpasswd is available for backwards
73 # compatibility. tdbsam requires no further configuration.
74 #load printers = yes
75 load printers = no
76 ; printing = cups
77 ; map archive = no
78 ; map hidden = no
79 ; map read only = no
80 ; map system = no
81 ; store dos attributes = yes
83 ;[homes]
84 ; comment = Home Directories
85 ; browseable = no
86 ; writable = yes
87 ; valid users = %S
88 ; valid users = MYDOMAIN\%S
90 # A publicly accessible directory, but read only, except for people in
91 # the "staff" group
92 ; [public]
93 ; comment = Public Stuff
94 ; path = /home/samba
95 ; public = yes
96 ; writable = yes
97 ; printable = no
98 ; write list = +staff
100 [homes]
101 comment = Home Directories
102 path = /share/users/%S
103 valid users = @users
104 browseable = no
105 valid users = %S
106 writeable = yes
107 directory mask = 0755
108 create mask = 0644
110 [EutheriaShare]
111 path = /share
112 valid users = @users
113 ;browseable = yes
114 public = no
115 ;guest ok = yes
116 writable = yes
117 directory mask = 0775
118 create mask = 0664
119 ;printable = no
120 ;write list = @users
122 [EutheriaBak]
123 path = /bak
124 valid users = @users
125 public = no
126 writable = no
127 write list = +wheel
128 force group = wheel
129 directory mask = 0775
131 [root]
132 path = /
133 valid users = huxs
134 public = no
135 writable = yes
136 directory mask = 0755
137 browseable = no
139 [EutheriaGuest]
140 path = /share/public
141 valid users = @guests
142 public = no
143 ;guest ok = yes
144 writable = yes
145 directory mask = 0775
146 create mask = 0664