[Samba] Audit Trail/Logging For Network Logons and Logoffs

Lars Rasmussen lars.rasmussen at gmail.com
Thu Mar 3 19:18:58 GMT 2005

On Thu, 03 Mar 2005 09:56:21 +1100, Andrew Bartlett <abartlet at samba.org> wrote:
> I just hope you don't try and use the logs for anything important, given
> you have to make them world writable....

This is a problem.  Besides making the share hidden, I've tried to
hack some permissions and used force user= .  The dir for the share
looks like this:

drwxrws-wx    2 root     executives     4096 Mar  3 08:59 logontimes

Share definition looks like this:

comment = Network Logon Times
path = /backup/logontimes
write list = executivesmemberusername
read only = No
browseable = No
create mode = 0770
force user = executivesmemberusername

This seems sloppy, but prevents users from viewing the share while
allowing them to write to it.  What should I do differently in this


More information about the samba mailing list