Mon Jul 17 09:57:24 GMT 2000


I'm still trying to configure samba with SSL. The operating system is Suse
Linux 6.4, samba version 2.0.7. Without ssl, it works well. 

I installed SSLeay and got no error messages. After installing it, I
configured samba with ssl option and no error messages. When I tried to test
my configuration file with testparm, I have the following:

Load smb config files from /usr/local/samba/lib/smb.conf
Unknown parameter encountered: "ssl"
Ignoring unknown parameter "ssl"
Unknown parameter encountered: "ssl server cert"
Ignoring unknown parameter "ssl server cert"
Unknown parameter encountered: "ssl server key"
Ignoring unknown parameter "ssl server key"
Unknown parameter encountered: "ssl CA certDir"
Ignoring unknown parameter "ssl CA certDir"
Processing section "[home]"
Processing section "[tmp]"
Processing section "[public]"
Processing section "[cdrom]"
Loaded services file OK.
Press enter to see a dump of your service definitions                 


# Samba config file created using SWAT
# from localhost (
# Date: 2000/07/04 11:04:02

# Global parameters
	encrypt passwords = Yes
	lock directory = /var/lock/samba
	smb passwd file=/private/smbpasswd

	ssl server cert=/etc/certificates/cacert.pem
	ssl server key=/etc/certificates/private/cakey.pem
	ssl CA certDir=/etc/certificates

	comment = Home Directories
	path = /home/selma
	valid users = selma
	writeable = Yes
	create mask = 0750
	browseable = No

	comment = Temporary file space
	path = /tmp
	writeable = Yes
	guest ok = Yes

	comment = Public Stuff
	path = /home/public
	valid users = selma
	writeable = Yes

	path = /cdrom
	guest ok = Yes

I also downloaded openssl 0.9.5 and passed the same steps and came to the
point. I don't know whether it's important or not but I have read the
following in the SSLeay.txt and searched Samba Makefile for the string
SSL_ROOT, couldn't find anything about it. 

Compiling samba with SSLeay
1. Get and install SSLeay. The rest of this documentation assumes that you
   have installed it at the default location, which is /usr/local/ssl/.
   I have used SSLeay 0.9.0, but samba will probably also work with other
   versions (but not with versions older than 0.6).
2. Modify the Makefile. At the end of the configurable section you can find
   the SSL definitions. You can find them quickly by searching for SSL_ROOT.
   Unremark the definitions and modify SSL_ROOT if necessary.
3. Compile and install as usual.

Do you have any idea about this problem?


Selma Tekir

More information about the samba mailing list