fedora23搭建samba-server
2016-05-19 16:52
441 查看
1。首先是安装samba
2 添加samba的账户,这里添加给samba的账户需要在系统里现有这个人。
否则他会提示:
root@localhost ~]# smbpasswd -a test
New SMB password:
Retype new SMB password:
Failed to add entry for user test.
所以现在系统中添加这个账户
[root@localhost ~]# groupadd test -g 6000
[root@localhost ~]# useradd test -u 6000 -g 6000 -s /sbin/nologin -d /dev/null
当然,如果用系统现有的账户那就直接添加就行了
[root@localhost ~]# smbpasswd -a test
New SMB password:
Retype new SMB password:
Added user test.
其实这里有参考:https://docs.fedoraproject.org/en-US/Fedora/19/html/Security_Guide/sect-Managing_Confined_Services-Samba-Configuration_examples.html
10.4.4. Configuration examples
The following examples provide real-world demonstrations of how SELinux complements the Samba server and how full function of the Samba server can be maintained.
10.4.4.1. Sharing directories you create
The following example creates a new directory, and shares that directory through Samba:
sudo service smb start
sudo setenforce 0
2 添加samba的账户,这里添加给samba的账户需要在系统里现有这个人。
否则他会提示:
root@localhost ~]# smbpasswd -a test
New SMB password:
Retype new SMB password:
Failed to add entry for user test.
所以现在系统中添加这个账户
[root@localhost ~]# groupadd test -g 6000
[root@localhost ~]# useradd test -u 6000 -g 6000 -s /sbin/nologin -d /dev/null
当然,如果用系统现有的账户那就直接添加就行了
[root@localhost ~]# smbpasswd -a test
New SMB password:
Retype new SMB password:
Added user test.
其实这里有参考:https://docs.fedoraproject.org/en-US/Fedora/19/html/Security_Guide/sect-Managing_Confined_Services-Samba-Configuration_examples.html
10.4.4. Configuration examples
The following examples provide real-world demonstrations of how SELinux complements the Samba server and how full function of the Samba server can be maintained.
10.4.4.1. Sharing directories you create
The following example creates a new directory, and shares that directory through Samba:
Run rpm -q samba samba-common samba-client to confirm the samba, samba-common, and samba-client packages are installed. If any of these packages are not installed, install them by running yum install package-name as the root user. Run mkdir /myshare as the root user to create a new top-level directory to share files through Samba. Run touch /myshare/file1 as the root user to create an empty file. This file is used later to verify the Samba share mounted correctly. SELinux allows Samba to read and write to files labeled with the samba_share_t type, as long as /etc/samba/smb.conf and Linux permissions are set accordingly. Run the following command as the root user to add the label change to file-context configuration: semanage fcontext -a -t samba_share_t "/myshare(/.*)?" Run restorecon -R -v /myshare as the root user to apply the label changes: # restorecon -R -v /myshare restorecon reset /myshare context unconfined_u:object_r:default_t:s0->system_u:object_r:samba_share_t:s0 restorecon reset /myshare/file1 context unconfined_u:object_r:default_t:s0->system_u:object_r:samba_share_t:s0 Edit /etc/samba/smb.conf as the root user. Add the following to the bottom of this file to share the /myshare/ directory through Samba: [myshare] comment = My share path = /myshare public = yes writeable = no A Samba account is required to mount a Samba file system. Run smbpasswd -a username as the root user to create a Samba account, where username is an existing Linux user. For example, smbpasswd -a testuser creates a Samba account for the Linux testuser user: # smbpasswd -a testuser New SMB password: Enter a password Retype new SMB password: Enter the same password again Added user testuser. Running smbpasswd -a username, where username is the username of a Linux account that does not exist on the system, causes a Cannot locate Unix account for 'username'! error. Run service smb start as the root user to start the Samba service: service smb start Starting SMB services: [ OK ] Run smbclient -U username -L localhost to list the available shares, where username is the Samba account added in step 7. When prompted for a password, enter the password assigned to the Samba account in step 7 (version numbers may differ): $ smbclient -U username -L localhost Enter username's password: Domain=[HOSTNAME] OS=[Unix] Server=[Samba 3.5.2-59.fc13] Sharename Type Comment --------- ---- ------- myshare Disk My share IPC$ IPC IPC Service (Samba Server Version 3.5.2-59.fc13) username Disk Home Directories Domain=[HOSTNAME] OS=[Unix] Server=[Samba 3.5.2-59.fc13] Server Comment --------- ------- Workgroup Master --------- ------- Run mkdir /test/ as the root user to create a new directory. This directory will be used to mount the myshare Samba share. Run the following command as the root user to mount the myshare Samba share to /test/, replacing username with the username from step 7: mount //localhost/myshare /test/ -o user=username Enter the password for username, which was configured in step 7. Run ls /test/ to view the file1 file created in step 3: $ ls /test/ file1
sudo service smb start
sudo setenforce 0
相关文章推荐
- Jquery可移动的DIV
- adb命令查看sharedpreferences
- Difference between frame and bounds? frame和bounds有什么不同?
- 一个js引发的血案
- React
- CSS 之 内层div填充margin,外层div的背景色不会覆盖该margin
- javascript onkeydown事件
- js获取网页的各种高度和宽度
- Html编码和URL编码
- JQuery为textarea添加maxlength属性并且兼容IE
- 利用css来写一些几何形状,从最基本的三角形到复杂的太极图
- CSS隐藏元素 display visibility opacity的区别
- .what is difference between NSNotification and protocol? 通知和协议的不同之处?
- <button> 和 input button的对比(实实在在的被坑了一把!)
- htmlunit使用
- HTML特殊字符的html、js、css写法汇总
- nvm 管理你的nodejs版本
- 获取项目路径 js
- 常用js方法
- SharePreference的简单用法