[Samba] anyone can access system users home ??

Dhillon, Gurjit dhillon.gs at pg.com
Mon May 21 11:54:46 GMT 2007

There is some issue in my samba, any one can browse system users home


If I give  \\myserver\bin <file:///\\myserver\bin>   \\myserver\mail
<file:///\\myserver\mail>  \\myserver\root <file:///\\myserver\root>
\\myserver\lp <file:///\\myserver\lp>   I am able to browse this
directories, I can even open all the system users home directory. 



For root I have created a rule, see below, after adding this rule, now
no one is able able to browse \\myserver\root , this works, but there
are 36 system a/c on my server. Do I have to create this kind of rule to
avoid user to access this ??. or there is a single rule which can stop
access of system users home directory.  I have also added  this system
users to "invalid users" list .



        comment = Root Directory

        path = %S



My smb.conf


# Global parameters


        workgroup = TEST

        server string = Test Samba Server

        security = share

        encrypt passwords = Yes

        passwd program = /usr/bin/passwd %u

        passwd chat = *ew*password:* %n\n *e-enter*new*password:* %n\n

        max log size = 5000

        log level = 2

        name resolve order = host

        socket options = TCP_NODELAY

        use sendfile = No

        max xmit = 65535

        strict locking = no

        printcap name = lpstat -t

        os level = 0

        oplocks = No

        kernel oplocks = No

        level2 oplocks = No

        preferred master = No

        local master = No

        domain master = No

        dns proxy = No

        comment = Samba %v

        guest account = guest

        printing = bsd

        print command = /usr/samba/bin/sambalp %p %s %U %m

       invalid users = root bin daemon adm sync shutdown halt mail news
uucp operator gopher




smb passwd file =

log file = /usr/samba/dmf/journals/.samba/CAENFS/log/log.%m

netbios name = nu-dev0




cat /usr/samba/lib/smb.conf.CAENFS



        comment = Home Directories

        read only = No

        max connections = 5

        browseable = No



        comment = Root Directory

        path = %S






Gurjit Dhillon

More information about the samba mailing list