2.2 release imminent.

Martin Thomas mthomas at rhrk.uni-kl.de
Tue Apr 10 13:36:03 GMT 2001


> 
> Feedback welcome (nay, *required* ! :-) :-).
> 

I've posted this issue some time ago but since I
can reproduce it in the cvs-Version from yesterday
I suppose the problem is still there and should not be in the
2.2 release:

Windows 2000 handles shortcuts to a share or a computer
in the network neighbourhood as a directory 
with the files 'desktop.ini' and 'target' in it. 
These shortcut-directorys have the dos-attribute 'read-only'
so Windows 'knows' that it's not a normal directory but a 
shortcut.

If such a shortcut directory is in the roaming profile that is stored 
on a Samba 2.2(cvs) profile-share the 'read-only' attribute is ignored.
the Shortcut-directory should be mode r-x but is mode rwx.

So, thanks to MS, the directory has do be r-x to map the read-only
attribute but samba has to write files in it (desktop.ini/target).

Hope, this issue will be solved in the release, it coused some
confusion to the 'test-users' of W2K/Samba 2.2 server.
since Windows seems to add shortcuts to shares in the 
Network neighbourhood automaticly.

Another issue: While accessing shares with W2k %u or  %U 
will not be substituted with the user name. 
Doing sambaclient -L <server> on a linux box does the right 
substitutions. 


Martin Thomas


the smb.conf:
-----------------

[global]

debug level = 2
netbios name = RADAGAST
workgroup = SIWAWI

security = user 
domain logons = yes 
encrypt passwords = yes 

status=yes

# browse master is miraculix
  os level = 65 
; domain master = yes 
; preferred master = yes 
; local master = yes 

#wins server is miraculix
wins server = 131.246.xxx.xxx

time server = yes 

logon script = scripts\default.bat 
##logon script = scripts\%U.bat
logon drive = R: 
logon home = \\%N\%U
logon path = \\%N\profile\%U

domain admin group = @smbadm
add user script = /usr/sbin/useradd -g machines -c RechnerAccount -d /dev/null -s /bin/false %m$

guest account = nobody

## dont do in man smb.conf, do in pdc-howto ?? ## share modes = no

interfaces = 131.246.xxx.xxx/255.255.255.0 127.0.0.1/255.255.255.0
socket options = TCP_NODELAY
bind interfaces only=True

name resolve order = host wins lmhosts bcast

allow hosts = 127.0.0.1 131.246.xxx.xxx 131.246.xxx.xxx \
    ...
    ...

printer admin = pcadmin, at smbadm

#create mode=0700
#directory mode=0700


[homes]
   comment = %Ss privates Heimatverzeichnis (%u %U)
   browseable = no
   read only = no
   guest ok = no
   path = /home/%S
   valid users = %S
   create mask = 0600
   directory mask = 0700
   oplocks = false
   veto files = /.*/Desktop/
   hide dot files = yes
   locking = no

[netlogon] 
path = /home/smbdata/netlogon 
writable = no 
guest ok = no 
comment = PDC netlogon share
browseable = yes 

[temp]
comment = Temp auf %N (Arch: %a User: %u / %U)
path = /home/smbdata/temp
read only = no
force group = smbusers
create mode = 0660
directory mode = 0770

[profile]
path = /home/smbdata/profile
writeable = yes
#create mask = 711
#directory mask = 711
#map hidden = yes
#map system = yes
force group = smbusers
oplocks=false
browseable=false
#locking=no

[ps]
   public = no
   comment = Laser A4 duplex RHRK
   printable = yes
   writable = no
   create mode = 0700
   path = /tmp

[print$]
   path=/home/smbdata/druckertreiber
   guest ok=yes
   browseable=yes
   read only=yes
#   force create mode = 664
#   force directory mode = 775
   force group = smbadm
   write list=pcadmin, at smbadm

[mcafeeupd]
   public = no
   comment = Virenscannerupdates McAfee
   read only = yes
   browseable = yes
   create mode = 0664
   directory mode = 0775
   force group = smbadm
   write list = pcadmin Administrator administrator
   path = /home/smbdata/mcafeeupd











More information about the samba-ntdom mailing list