using samba as nfs server replacement?
in [Samba]
|
Prev: [Samba] 3.0.28a winbind fails to resolve sid-to-gid for local groups
Next: [Samba] Problem joining XP SP2 Machines to the domain
From: Michael Heydon on 23 Apr 2008 20:10 Pakorn Chutinimitkul wrote: > Hi, > > <snip> > 1. How to make Samba stores the ownership of the file? Afaik Samba changes ownership of the file to the connected user. Our storage relies > on uid/gid a lot. > > 2. Can Samba obey umask settings? Apart from changing values in create mask ? > Recent versions of samba will automatically figure out that they are talking to a unix client (as long as the client is recent as well) and enable the CIFS unix extensions. Permissions, ownership, symlinks, etc should "Just Work(tm)". > If anyone could point me to any resource, that would be greatly appreciated. > > Thank you! > Pakorn > *Michael Heydon - IT Administratorr * michaelh(a)jaswin.com.au <mailto:michaelh(a)jaswin.com.au> -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
From: Helmut Hullen on 24 Apr 2008 03:10 Hallo, Pakorn, Du (pakorn) meintest am 24.04.08: > There's a lot of different users who will log into the workstation, > all of them are not superuser, therefore they can't run mount command > and specify their samba username/password. You may set the SUID flag for "mount,cifs" and "umount.cifs" on the server. Viele Gruesse! Helmut -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
From: Michael Heydon on 24 Apr 2008 03:50 Helmut Hullen wrote: > Hallo, Pakorn, > <snip> > You may set the SUID flag for "mount,cifs" and "umount.cifs" on the > server. > That could be a security hazard. If we assume that cifs unix extensions can be made to work, I could bring in my laptop which contains a SUID root binary and mount it to my workstation. > Viele Gruesse! > Helmut > The mount output looks OK to me. How old is the client's kernel (sorry, I'm not familar with distro version numbers/names)? Does it have CIFS Posix support built in (or the relevant modules loaded)? *Michael Heydon - IT Administratorr * michaelh(a)jaswin.com.au <mailto:michaelh(a)jaswin.com.au> -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
From: Pakorn Chutinimitkul on 24 Apr 2008 04:00 The client is running 2.6.18 stock kernel. It shud be a year and a half old or so. I saw cifs module loaded. Here's the output from modinfo cifs filename: /lib/modules/2.6.18.8-0.7-default/kernel/fs/cifs/cifs.ko author: Steve French <sfrench(a)us.ibm.com> license: GPL description: VFS to access servers complying with the SNIA CIFS Specification e.g. Samba and Windows version: 1.45 vermagic: 2.6.18.8-0.7-default SMP mod_unload 586 REGPARM gcc-4.1 supported: external depends: srcversion: F8F65B4747CFABB396E7C28 parm: cifs_max_pending:Simultaneous requests to server. Default: 50 Range: 2 to 256 (int) parm: cifs_min_small:Small network buffers in pool. Default: 30 Range: 2 to 256 (int) parm: cifs_min_rcv:Network buffers in pool. Default: 4 Range: 1 to 64 (int) parm: CIFSMaxBufSize:Network buffer size (not including header). Default: 16384 Range: 8192 to 130048 (int) The server is running 2.6.24 stock kernel. Thank you! Pakorn Michael Heydon wrote: > Helmut Hullen wrote: >> Hallo, Pakorn, >> <snip> >> You may set the SUID flag for "mount,cifs" and "umount.cifs" on the >> server. >> > That could be a security hazard. If we assume that cifs unix extensions > can be made to work, I could bring in my laptop which contains a SUID > root binary and mount it to my workstation. >> Viele Gruesse! >> Helmut >> > > The mount output looks OK to me. How old is the client's kernel (sorry, > I'm not familar with distro version numbers/names)? Does it have CIFS > Posix support built in (or the relevant modules loaded)? > > *Michael Heydon - IT Administratorr * > michaelh(a)jaswin.com.au <mailto:michaelh(a)jaswin.com.au> > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
From: Helmut Hullen on 24 Apr 2008 06:00
Hallo, Pakorn, Du (pakorn) meintest am 24.04.08: > There's a lot of different users who will log into the workstation, > all of them are not superuser, therefore they can't run mount command > and specify their samba username/password. I tried to create a Samba > account for each machine, say machine1 and put the username/password > in /etc/fstab. These entries in "/etc/fstab" are not necessary, they only allow to shorten the mount options. Some colleagues and I have played with many option to mount shares from a Linux Samba server on many linux clients. First: may be the username may not be "root" but some other user. Second: our actual way is mounting a) via a special script in "/etc/profile.d" which is run when the user logs in using CLI (and bash). b) via a special entry in "Xsession" which is run when the user logs in using the GUI or c) via an icon on the (GUI) desktop which reads the desired username and password and then mounts the (pre-defined) shares. a and b run automatically, c runs only on demand. One problem: client's (or user's) authentification on the server. I've read that it needs "winbind" - may be. "winbind" seems to need PAM, and slackware (my favorite server distribution) runs without PAM. I won't install LDAP on the server only for authentification - it brings in other difficulties. ------------------------ You can read (in german) the discussion in http://www.listserv.dfn.de/cgi-bin/wa?A1=ind0804&L=schul-netz under the titles: "Neu"vorstellung, Linux-Client an Server, anmeldescript linux, anmeldescript linux (was: "Neu"vorstellung), Domaenenanmeldung mit Linux-Clients, Samba mit SuSE-Client (was: [SN] "Neu"vorstellung), Samba per SuSE-Client, smbnetfs Viele Gruesse! Helmut -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba |