Prev: simple usage of windows TAP-Win32 driver
Next: which is the hottest field in Embedded systems ,currently in market.
From: Jurgen Haan on 16 Apr 2008 09:41
Josef Moellers wrote:
> Ignoramus15568 wrote:
>> On 2008-04-15, Josef Moellers <josef.moellers(a)fujitsu-siemens.com> wrote:
>>> Ignoramus30238 wrote:
>>>> I have a ubuntu based server and a windows client. I have some SMB
>>>> shares
>>>> that I want to be read only and available without password (for anyone
>>>> coming from legitimate IPs).
>>>> My issue is that the ubuntu server insists on authenticating the user,
>>>> even for read only shares. How can I make it acept anyone, without
>>>> password?
>>> Have you tried "guest ok = yes"?
>>>
>>
>> Yes, at share level.
>
> I recall that some registry entry is required for this, but can't
> remember which.
> Maybe this triggers someone else's mind.
>

Back when we were still using a windows domain, I used to change
registry on the new XP workstations to skip authentication, but I think
it's machine authentication, and not so much user authentication (for
domain-logon).

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters]
"requiresignorseal"=dword:00000000
"signsecurechannel"=dword:00000000

Not sure if that is what you're looking for.




From: Ignoramus12441 on 16 Apr 2008 10:46
On 2008-04-16, Jurgen Haan <jurgen(a)fake.tld> wrote:
> Josef Moellers wrote:
>> Ignoramus15568 wrote:
>>> On 2008-04-15, Josef Moellers <josef.moellers(a)fujitsu-siemens.com> wrote:
>>>> Ignoramus30238 wrote:
>>>>> I have a ubuntu based server and a windows client. I have some SMB
>>>>> shares
>>>>> that I want to be read only and available without password (for anyone
>>>>> coming from legitimate IPs).
>>>>> My issue is that the ubuntu server insists on authenticating the user,
>>>>> even for read only shares. How can I make it acept anyone, without
>>>>> password?
>>>> Have you tried "guest ok = yes"?
>>>>
>>>
>>> Yes, at share level.
>>
>> I recall that some registry entry is required for this, but can't
>> remember which.
>> Maybe this triggers someone else's mind.
>>
>
> Back when we were still using a windows domain, I used to change
> registry on the new XP workstations to skip authentication, but I think
> it's machine authentication, and not so much user authentication (for
> domain-logon).
>
> [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters]
> "requiresignorseal"=dword:00000000
> "signsecurechannel"=dword:00000000
>
> Not sure if that is what you're looking for.
>

No. I am done. Everything works now. I had to specify:

guest account = sambauser
security = share

and create a fake user sambauser with /bin/false as shell. I am very
happy.

There are read only shares. So I could use a real account, but out of
abundance of paranoia, I created a fake user, and ALSO made shares
read only.

i
First  |  Prev  | 
Pages: 1 2 3
Prev: simple usage of windows TAP-Win32 driver
Next: which is the hottest field in Embedded systems ,currently in market.