[Samba] using samba over AT@T broadband

Barry deFreese bdefreese at cox.net
Tue Oct 1 04:02:00 GMT 2002


James,

You do realize what a security hole this is correct?

Barry deFreese
Newbie
  -----Original Message-----
  From: samba-admin at lists.samba.org [mailto:samba-admin at lists.samba.org]On
Behalf Of James T Prejsnar
  Sent: Monday, September 30, 2002 8:42 PM
  To: samba at samba.org; James_Prejsnar at msn.com
  Subject: [Samba] using samba over AT at T broadband


  Hello.  I'm a Graduate Student, and I'm trying to set up Samba on my
Solaris 2.8 box so that my team members can network map their home accounts
from my Solaris box onto their PC.



  Everything works great within my home. (i.e. I have a home network, and
all my PC's can mount my UNIX home directory.)



  My problem:  I can't network map my Home Directory outside my local
subnet.  (i.e. I get the following Windows error message:  Can't find
location or something in effect that it can't find my Solaris box)  I can
ping and telnet to my Solaris box outside AT&T's subnet, but I can't use
samba.  There are no logs created in /usr/local/samba/var for the PC
connecting.  I even tried to create a lmhosts file on the PC outside my
subnet, but that didn't help



  I've been reading the samba news-groups and using google.com, but nothing
is helping me.  I just want to map my home directory by doing the following
within the map network drive dialog:  \\65.96.xxx.xxx\username  outside my
subnet.



  Information:

    1.. Samba Version: 2.2.2
    2.. OS: Solaris 2.8 with all the recommended OS patch from SUN - SunOS
unknown 5.8 Generic_108528-15 sun4u sparc SUNW,Ultra-1
    3.. /etc/services file contains:
  netbios-ns      137/tcp                         # NETBIOS Name Service

  netbios-ns      137/udp                         # NETBIOS Name Service

  netbios-dgm     138/tcp                         # NETBIOS Datagram Service

  netbios-dgm     138/udp                         # NETBIOS Datagram Service

  netbios-ssn     139/tcp                         # NETBIOS Session Service

  netbios-ssn     139/udp                         # NETBIOS Session Service

    4.. /etc/inetd.conf file contains:
  #

  # Jim Prejsnar added for Samba support

  #

  netbios-ssn stream tcp nowait root
/usr/local/samba/bin/smbd -s/usr/local/samba/lib/smb.conf

  netbios-ns dgram udp wait root
/usr/local/samba/bin/nmbd -s/usr/local/samba/lib/smb.conf

    5.. /usr/local/samba/lib/smb.conf file contains:
  # This is the main Samba configuration file. You should read the

  # smb.conf(5) manual page in order to understand the options listed

  # here. Samba has a huge number of configurable options (perhaps too

  # many!) most of which are not shown in this example

  #

  # Any line which starts with a ; (semi-colon) or a # (hash)

  # is a comment and is ignored. In this example we will use a #

  # for commentry and a ; for parts of the config file that you

  # may wish to enable

  #

  # NOTE: Whenever you modify this file you should run the command
"testparm"

  # to check that you have not many any basic syntactic errors.

  #

  #======================= Global Settings
=====================================

  [global]

          log file = /usr/local/samba/var/log.%m

          encrypt passwords = yes

          update encrypted = yes

          smb passwd file = /usr/local/samba/private/smbpasswd

          username map = /usr/local/samba/lib/user.map

          valid users = @metcs673

          force group = metcs673

          server string = Prejsnar's SaMBa Server

          log level = 3

          password level = 2

          security = user

          default = homes

          sync always = yes

          preserve case = yes

          mangled names = no

          max log size = 50

          netbios name = METCS673

          max disk size = 1024

          hide dot files = yes

          invalid users = root, admin, administrator, mail, deamon

          fstype = NTFS

          dos filemode = yes

          map system = yes

          map hidden = yes

          map archive = yes

          socket options = TCP_NODELAY

          guest account = nobody

          guest ok = no

          guest only = no

          map to guest = never

          workgroup = MET-CS-673

          os level = 32

          preferred master = yes

          ;local master = yes

          domain master = yes

          wins support = yes

          ;wins proxy = yes

          ;dns proxy = yes

          wins server =

          name resolve order = lmhosts wins host bcast

  [tmp]

          comment = temporary directory

          path = /home/tmp

          read only = no

         writable = yes

          browseable = yes

          preserve case = yes

          case sensitive = no

          hide dot files = yes



  [homes]

         comment = Home Directories

          read only = no

         writable = yes

          browseable = yes

          create mode = 0750

          create mask = 0750

          preserve case = yes

          case sensitive = no

          hide dot files = yes



  [project]

         comment = MetCS 673 Class Project

         path = /home/project

          read only = yes

         writable = no

          browseable = yes

          preserve case = yes

          case sensitive = no

          hide dot files = yes



    6.. I have a proper user.map file and samba password file in place.
Because I can connect within my home network.
    7.. When I do a "ps -u 0" I do see the smbd and nmbd process, but why do
I have 2 nmbd process?
    8.. When I try to connect outside the AT&T's subnet there are no log
files created in /usr/local/samba/var for that particular PC.
    9.. Samba would make the graduate class run smoother for the nine people
in my project.  Not all of my project members know what UNIX is, only 2 out
of the nine.
    10..  I even opened the following ports on my router:  135/TCP, 137/UDP,
138/UDP, 139/TCP, and 445/TCP, and this didn't help.  I eventually broke
down and directly connected my Solaris Box to my Cable Modem, but again this
didn't help.


  Thanks, Jim Prejsnar

  ~





-------------- next part --------------
HTML attachment scrubbed and removed


More information about the samba mailing list