[Samba] Mounting home directory from Windows in Linux
Shaun J. O'Callaghan
Shaun.OCallaghan at durham.ac.uk
Thu Sep 7 18:11:49 GMT 2006
Dale,
Thanks for your reply, let me clarify.
We have a Windows 2003 domain of which contains a share for our user
home directories.
We've recently integrated a Linux server running Samba into our domain
which users are going to be using and we want to provide access to their
Windows based files. As I mentioned, I've mounted the share in linux
and I'm authenticating through Winbind but every user has access to
every other users files. Could this be something to do with the fact
I've mounted the share with Domain Administrator privileges or not?
Kind Regards,
Shaun
________________________________
From: Dale Schroeder [mailto:dale at BriannasSaladDressing.com]
Sent: 07 September 2006 17:56
To: Shaun J. O'Callaghan
Subject: Re: [Samba] Mounting home directory from Windows in Linux
Shaun,
Maybe I misread your post. Are these home directories on the Samba
server or the Windows PDC?
Assuming Samba server homes as viewed from Windows, this answer is based
on your smb.conf [homes] entry of "path = /home/DOMAIN". In our
network, in addition to the "valid users" directive, I have set the
POSIX permissions of the home directories to drwxr----- . The
directories are owned by "the_user:Domain Users". From Windows
Explorer, only the owner can view the files within.
No special (root) mounting should be required, and I don't feel
qualified to comment on POSIX ACL's.
Hope this helps.
Dale
Shaun J. O'Callaghan wrote:
Dale,
Thanks for your reply.
I've just added valid users = OUR_DOMAIN\%S but no luck.
Any user can still traverse any directory. Should the filesystem be
mounted as root? Could there be a problem with ACLs ?
We're running 3.0.10-1
Any further advice would be great.
Kind Regards,
Shaun James O'Callaghan
________________________________
From: Dale Schroeder [mailto:dale at BriannasSaladDressing.com]
Sent: 07 September 2006 16:25
To: Shaun J. O'Callaghan; samba at lists.samba.org
Subject: Re: [Samba] Mounting home directory from Windows in Linux
Try "valid users = DOMAIN\%S"
Keep in mind that this parameter is broken in 3.0.23, but has been
resolved in 3.0.23c.
I'm still waiting on the updated debs so that I can upgrade.
Dale
Shaun J. O'Callaghan wrote:
Hi All,
I'm using samba 3.0.10-1 on RedHat Enterprise Linux 4.
I'm authentication to our PDC using Winbind and also mounting our home
directory share (from Windows) onto our main Linux server such that when
a user logs on to the Linux server, their Windows home directory is
mounted also.
I'm using the domain admin account to mount the home directory share,
which I feel is probably not the best way to go about doing this because
when a user logs in to their account they can "cd .." and traverse other
user accounts.
How should this share be correctly mounted using Samba ?
I've pasted smb.conf below, I've tried multiple arrangements of 'create
mask', 'directory mask' and 'directory security mask' even though (if
I'm right) they shouldn't be needed when using winbind.
Can anybody please shed any light on this?
Kind Regards,
Shaun O'Callaghan
smb.conf
[homes]
comment = Home Directories
path = /home/DOMAIN/
browseable = no
create mask = 0700
directory mask = 0700
directory security mask = 0700
admin users = OUR_DOMAIN\ADMINISTRATOR
writable = yes
**valid users = DOMAIN\%S**
________________________________
No virus found in this incoming message.
Checked by AVG Anti-Virus.
Version: 7.1.406 / Virus Database: 268.12.1/440 - Release Date:
09/06/2006
More information about the samba
mailing list