[Samba] Restricting access to [homes]

Christopher Swingley cswingle at iarc.uaf.edu
Thu Nov 11 21:03:21 GMT 2004


I've got a samba server that's serving Windows and Mac clients.  I want 
to restrict the [homes] share such that users can *only* connect to 
their own home directory, and not make read-only connections to other 
people's home directories.

For example, on a Mac, if I connect to my Samba server with:


and then authenticate myself as:


I'm given read-only access to bbonds' home directory.  
/var/log/samba/log.smbd shows:

    [2004/11/11 11:52:46, 1] smbd/service.c:make_connection_snum(648)
      server ( connect to service bbonds initially as user 
      jgiambi (uid=25, gid=45) (pid 15621)

How can I prevent these sorts of accesses?  'jgiambi' should only be 
able to access the //servername/jgiambi share via [homes].

The [homes] share in /etc/samba/smb.conf reads:

        comment = Home Directories
        create mask = 0644
        directory mask = 0755
        browseable = no
        writable = yes
        guest ok = no

Samba version 3.0.7


Christopher S. Swingley          email: cswingle at iarc.uaf.edu (work)
Intl. Arctic Research Center            cswingle at gmail.com (personal)
University of Alaska Fairbanks   www.frontier.iarc.uaf.edu/~cswingle/

More information about the samba mailing list