[Samba] Problem with SAMBA

Rodrigo Haces rhaces_chistes at yahoo.com.mx
Wed Jun 16 16:32:40 GMT 2004 

Thanks, that's greate, but how do i say tu deny all??
hosts deny = ALL
??
or how?
Thanks!
Rodrigo

> -----Mensaje original-----
> De: samba-bounces+rhaces_chistes=yahoo.com.mx at lists.samba.org
> [mailto:samba-bounces+rhaces_chistes=yahoo.com.mx at lists.samba.org]En
> nombre de Paul Espinosa
> Enviado el: Miercoles, 16 de Junio de 2004 11:17 a.m.
> Para: samba at lists.samba.org
> Asunto: Re: [Samba] Problem with SAMBA
>
>
> Instead of using /etc/hosts.allow and /etc/hosts.deny use the
> "hosts allow"
> and "interfaces" directive in the smb.conf.
>
> I use (in smb.conf [global] section):
>
>    hosts allow = 192.168.1.0/24 127.0.0.1
>
>    interfaces=192.168.1.0/24 127.0.0.1/32
>
>    (Replace with your internal network values)
>
> To ensure that only my internal network has access to the samba service.
>
> --
> Paul Espinosa
> pespinosa at sunflowerbroadband.com
> IT Supervisor
> The World Company
> 785/312-6912
>
>
> ..----[ Rodrigo Haces wrote ]----
> |
> |
> |  Hi, i have a debian box connected to internet by ADSL, in that box i
> |  share internet to all my local network, i also have to share 3
> |  directories with samba with full read/write permissions.
> |
> |  my hosts.deny is ALL:ALL and my hosts.allow is ALL:127. AND
> |  ALL:192.168.0. so that i only accept connections from inside my local
> |  network.
> |
> |  Here is the problem, i cannot ask for a password to let them
> write in my
> |  directories because im using them as a database location so that my CRM
> |  application connects there, but with this, intruders from outside my
> |  network can write virus programs (And are actually doing it, writing a
> |  Xi.exe program). So, how can i prevent this? here is my smb.conf:
> |
> |  [global]
> |          log file = /var/log/samba/log.%m
> |          passwd chat = *Enter\snew\sUNIX\spassword:* %n\n
> |  *Retype\snew\sUNIX\spassword:* %n\n
> |          socket options = TCP_NODELAY
> |          obey pam restrictions = yes
> |          null passwords = yes
> |          encrypt passwords = true
> |          passdb backend = tdbsam guest
> |          passwd program = /usr/bin/passwd %u
> |          dns proxy = no
> |          netbios name = Servidor
> |          server string = %h server (Samba %v)
> |          invalid users = root
> |          workgroup = infosys
> |          debug level = 0
> |          os level = 20
> |          syslog = 0
> |          security = share
> |          panic action = /usr/share/samba/panic-action %d
> |          max log size = 1000
> |
> |  [bitacora]
> |         writeable = yes
> |         public = yes
> |         path = /files/bitacora
> |
> |
> |  [comun]
> |         writeable = yes
> |         public = yes
> |         path = /files/comun
> |
> |  [admivi]
> |          writeable = yes
> |          public = yes
> |          path = /files/admivi
> |
> |  Thank in advanced
> |  Rodrigo
> |
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  http://lists.samba.org/mailman/listinfo/samba

More information about the samba mailing list