[Samba] Audit Trail/Logging For Network Logons and Logoffs
Lars Rasmussen
lars.rasmussen at gmail.com
Thu Mar 3 19:18:58 GMT 2005
On Thu, 03 Mar 2005 09:56:21 +1100, Andrew Bartlett <abartlet at samba.org> wrote:
> I just hope you don't try and use the logs for anything important, given
> you have to make them world writable....
This is a problem. Besides making the share hidden, I've tried to
hack some permissions and used force user= . The dir for the share
looks like this:
drwxrws-wx 2 root executives 4096 Mar 3 08:59 logontimes
Share definition looks like this:
[logontimes]
comment = Network Logon Times
path = /backup/logontimes
write list = executivesmemberusername
read only = No
browseable = No
create mode = 0770
force user = executivesmemberusername
This seems sloppy, but prevents users from viewing the share while
allowing them to write to it. What should I do differently in this
scenario?
--
Lars
More information about the samba
mailing list