修正 markdown 语法错误。
Signed-off-by: ithink.chan <chenyang@autoai.com>
This commit is contained in:
ithink.chan
parent
058d458e9a
commit
d72eb07f9a
|
|
@ -8,12 +8,16 @@ smbd 的运行依赖于 /etc/samba/smb.conf 配置文件,这个是 smbd 的默
|
|||
|
||||
SELinux 开启的状态下会影响其他系统对 Samba 服务器的访问,可能造成 Windows 或 Android 系统的 Samba 客户端无法访问服务器(错误提示内容类似于没有授权之类),可以关闭 SELinux 或正确设置 SELinux。临时关闭 SELinux 的方法如下:
|
||||
|
||||
$ setenforce 0
|
||||
```sh
|
||||
setenforce 0
|
||||
```
|
||||
|
||||
此时查看 SeLinux 状态
|
||||
|
||||
$ sestatus
|
||||
Current mode: permissive
|
||||
```sh
|
||||
sestatus
|
||||
Current mode: permissive
|
||||
```
|
||||
|
||||
永久关闭 SeLinux(需要重启)需要修改 /etc/selinux/config 文件:
|
||||
|
||||
|
|
@ -27,7 +31,7 @@ SELinux 开启的状态下会影响其他系统对 Samba 服务器的访问,
|
|||
SELINUX=disabled
|
||||
# SELINUXTYPE= can take one of three two values:
|
||||
# targeted - Targeted processes are protected,
|
||||
# minimum - Modification of targeted policy. Only selected processes are protected.
|
||||
# minimum - Modification of targeted policy. Only selected processes are protected.
|
||||
# mls - Multi Level Security protection.
|
||||
SELINUXTYPE=targeted
|
||||
```
|
||||
|
|
@ -57,14 +61,18 @@ sync always = yes
|
|||
|
||||
在 shell 中输入如下命令为 samba 服务分配账户和密码
|
||||
|
||||
$ smbpasswd -a <user name>
|
||||
```sh
|
||||
smbpasswd -a <user name>
|
||||
```
|
||||
|
||||
## 开启 Samba 服务
|
||||
|
||||
通过 systemctl 开启 samba 服务命令如下:
|
||||
|
||||
$ systemctl enable smb.service
|
||||
$ systemctl start smb.service
|
||||
```sh
|
||||
systemctl enable smb.service
|
||||
systemctl start smb.service
|
||||
```
|
||||
|
||||
必要时需要关闭防火墙,或设置防火墙规则。
|
||||
|
||||
|
|
@ -156,13 +164,13 @@ sync always = yes
|
|||
# hosts deny = the hosts not allowed to connect. This option can also be used on
|
||||
# a per-share basis.
|
||||
#
|
||||
workgroup = MYGROUP
|
||||
server string = Samba Server Version %v
|
||||
workgroup = MYGROUP
|
||||
server string = Samba Server Version %v
|
||||
|
||||
; netbios name = MYSERVER
|
||||
;netbios name = MYSERVER
|
||||
|
||||
; interfaces = lo eth0 192.168.12.2/24 192.168.13.2/24
|
||||
; hosts allow = 127. 192.168.12. 192.168.13.
|
||||
;interfaces = lo eth0 192.168.12.2/24 192.168.13.2/24
|
||||
;hosts allow = 127. 192.168.12. 192.168.13.
|
||||
|
||||
# --------------------------- Logging Options -----------------------------
|
||||
#
|
||||
|
|
@ -172,10 +180,10 @@ sync always = yes
|
|||
# files are rotated when they reach the size specified with "max log size".
|
||||
#
|
||||
|
||||
# log files split per-machine:
|
||||
log file = /var/log/samba/log.%m
|
||||
# maximum size of 50KB per log file, then rotate:
|
||||
max log size = 50
|
||||
# log files split per-machine:
|
||||
log file = /var/log/samba/log.%m
|
||||
# maximum size of 50KB per log file, then rotate:
|
||||
max log size = 50
|
||||
|
||||
# ----------------------- Standalone Server Options ------------------------
|
||||
#
|
||||
|
|
@ -188,8 +196,8 @@ sync always = yes
|
|||
# compatibility.
|
||||
#
|
||||
|
||||
security = user
|
||||
passdb backend = tdbsam
|
||||
security = user
|
||||
passdb backend = tdbsam
|
||||
|
||||
|
||||
# ----------------------- Domain Members Options ------------------------
|
||||
|
|
@ -212,11 +220,11 @@ sync always = yes
|
|||
#
|
||||
# Use "password server = *" to automatically locate Domain Controllers.
|
||||
|
||||
; security = domain
|
||||
; passdb backend = tdbsam
|
||||
; realm = MY_REALM
|
||||
;security = domain
|
||||
;passdb backend = tdbsam
|
||||
;realm = MY_REALM
|
||||
|
||||
; password server = <NT-Server-Name>
|
||||
;password server = <NT-Server-Name>
|
||||
|
||||
# ----------------------- Domain Controller Options ------------------------
|
||||
#
|
||||
|
|
@ -240,30 +248,30 @@ sync always = yes
|
|||
# logon path = specifies (with a UNC path) where user profiles are stored.
|
||||
#
|
||||
#
|
||||
; security = user
|
||||
; passdb backend = tdbsam
|
||||
;security = user
|
||||
;passdb backend = tdbsam
|
||||
|
||||
; domain master = yes
|
||||
; domain logons = yes
|
||||
;domain master = yes
|
||||
;domain logons = yes
|
||||
|
||||
# the following login script name is determined by the machine name
|
||||
# (%m):
|
||||
; logon script = %m.bat
|
||||
# the following login script name is determined by the UNIX user used:
|
||||
; logon script = %u.bat
|
||||
; logon path = \\%L\Profiles\%u
|
||||
# use an empty path to disable profile support:
|
||||
; logon path =
|
||||
# the following login script name is determined by the machine name
|
||||
# (%m):
|
||||
;logon script = %m.bat
|
||||
# the following login script name is determined by the UNIX user used:
|
||||
;logon script = %u.bat
|
||||
;logon path = \\%L\Profiles\%u
|
||||
# use an empty path to disable profile support:
|
||||
;logon path =
|
||||
|
||||
# various scripts can be used on a domain controller or a stand-alone
|
||||
# machine to add or delete corresponding UNIX accounts:
|
||||
# various scripts can be used on a domain controller or a stand-alone
|
||||
# machine to add or delete corresponding UNIX accounts:
|
||||
|
||||
; add user script = /usr/sbin/useradd "%u" -n -g users
|
||||
; add group script = /usr/sbin/groupadd "%g"
|
||||
; add machine script = /usr/sbin/useradd -n -c "Workstation (%u)" -M -d /nohome -s /bin/false "%u"
|
||||
; delete user script = /usr/sbin/userdel "%u"
|
||||
; delete user from group script = /usr/sbin/userdel "%u" "%g"
|
||||
; delete group script = /usr/sbin/groupdel "%g"
|
||||
;add user script = /usr/sbin/useradd "%u" -n -g users
|
||||
;add group script = /usr/sbin/groupadd "%g"
|
||||
;add machine script = /usr/sbin/useradd -n -c "Workstation (%u)" -M -d /nohome -s /bin/false "%u"
|
||||
;delete user script = /usr/sbin/userdel "%u"
|
||||
;delete user from group script = /usr/sbin/userdel "%u" "%g"
|
||||
;delete group script = /usr/sbin/groupdel "%g"
|
||||
|
||||
|
||||
# ----------------------- Browser Control Options ----------------------------
|
||||
|
|
@ -277,9 +285,9 @@ sync always = yes
|
|||
# preferred master = when set to yes, Samba forces a local browser election at
|
||||
# start up (and gives itself a slightly higher chance of winning the election).
|
||||
#
|
||||
; local master = no
|
||||
; os level = 33
|
||||
; preferred master = yes
|
||||
;local master = no
|
||||
;os level = 33
|
||||
;preferred master = yes
|
||||
|
||||
#----------------------------- Name Resolution -------------------------------
|
||||
#
|
||||
|
|
@ -299,11 +307,11 @@ sync always = yes
|
|||
# dns proxy = when set to yes, Samba attempts to resolve NetBIOS names via DNS
|
||||
# nslookups.
|
||||
|
||||
; wins support = yes
|
||||
; wins server = w.x.y.z
|
||||
; wins proxy = yes
|
||||
;wins support = yes
|
||||
;wins server = w.x.y.z
|
||||
;wins proxy = yes
|
||||
|
||||
; dns proxy = yes
|
||||
;dns proxy = yes
|
||||
|
||||
# --------------------------- Printing Options -----------------------------
|
||||
#
|
||||
|
|
@ -319,13 +327,13 @@ sync always = yes
|
|||
# printcap name = used to specify an alternative printcap file.
|
||||
#
|
||||
|
||||
load printers = yes
|
||||
cups options = raw
|
||||
load printers = yes
|
||||
cups options = raw
|
||||
|
||||
; printcap name = /etc/printcap
|
||||
# obtain a list of printers automatically on UNIX System V systems:
|
||||
; printcap name = lpstat
|
||||
; printing = cups
|
||||
;printcap name = /etc/printcap
|
||||
# obtain a list of printers automatically on UNIX System V systems:
|
||||
;printcap name = lpstat
|
||||
;printing = cups
|
||||
|
||||
# --------------------------- File System Options ---------------------------
|
||||
#
|
||||
|
|
@ -338,53 +346,53 @@ sync always = yes
|
|||
# Note: These options can be used on a per-share basis. Setting them globally
|
||||
# (in the [global] section) makes them the default for all shares.
|
||||
|
||||
; map archive = no
|
||||
; map hidden = no
|
||||
; map read only = no
|
||||
; map system = no
|
||||
; store dos attributes = yes
|
||||
;map archive = no
|
||||
;map hidden = no
|
||||
;map read only = no
|
||||
;map system = no
|
||||
;store dos attributes = yes
|
||||
|
||||
|
||||
#============================ Share Definitions ==============================
|
||||
|
||||
[homes]
|
||||
comment = Home Directories
|
||||
browseable = no
|
||||
writable = yes
|
||||
; valid users = %S
|
||||
; valid users = MYDOMAIN\%S
|
||||
comment = Home Directories
|
||||
browseable = no
|
||||
writable = yes
|
||||
;valid users = %S
|
||||
;valid users = MYDOMAIN\%S
|
||||
|
||||
[printers]
|
||||
comment = All Printers
|
||||
path = /var/spool/samba
|
||||
browseable = no
|
||||
guest ok = no
|
||||
writable = no
|
||||
printable = yes
|
||||
comment = All Printers
|
||||
path = /var/spool/samba
|
||||
browseable = no
|
||||
guest ok = no
|
||||
writable = no
|
||||
printable = yes
|
||||
|
||||
# Un-comment the following and create the netlogon directory for Domain Logons:
|
||||
; [netlogon]
|
||||
; comment = Network Logon Service
|
||||
; path = /var/lib/samba/netlogon
|
||||
; guest ok = yes
|
||||
; writable = no
|
||||
; share modes = no
|
||||
;[netlogon]
|
||||
;comment = Network Logon Service
|
||||
;path = /var/lib/samba/netlogon
|
||||
;guest ok = yes
|
||||
;writable = no
|
||||
;share modes = no
|
||||
|
||||
# Un-comment the following to provide a specific roaming profile share.
|
||||
# The default is to use the user's home directory:
|
||||
; [Profiles]
|
||||
; path = /var/lib/samba/profiles
|
||||
; browseable = no
|
||||
; guest ok = yes
|
||||
;[Profiles]
|
||||
;path = /var/lib/samba/profiles
|
||||
;browseable = no
|
||||
;guest ok = yes
|
||||
|
||||
# A publicly accessible directory that is read only, except for users in the
|
||||
# "staff" group (which have write permissions):
|
||||
; [public]
|
||||
; comment = Public Stuff
|
||||
; path = /home/samba
|
||||
; public = yes
|
||||
; writable = no
|
||||
; printable = no
|
||||
; write list = +staff
|
||||
;[public]
|
||||
;comment = Public Stuff
|
||||
;path = /home/samba
|
||||
;public = yes
|
||||
;writable = no
|
||||
;printable = no
|
||||
;write list = +staff
|
||||
|
||||
```
|
||||
|
|
|
|||
Loading…
Reference in New Issue