Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
hi there i'm currently running samba as a domain controller and it's working great, but i want to be able to create administrator's that can install software and do other administrative jobs, now the root user dose this prefectly, i was wondering if anyone knows how to create another user with the same privileges as root? or if it's even possable?
my second question is i have mapped home drives in my smb.conf file and i've tryed a few different things but i can't seam to be able to make it so that only one person can view the share, this is my share in the smb.conf file:
[homes]
read only = no
browsable = no
valid users = %U
force user = %U
path = /home/%U
writeable = yes
create mode = 0600
create directory = 0700
comment = User home drive's
and this is how it is mapped
logon drive = m:
logon home = \\home\%U
i want only the user that is logged in to be able to access his own share
at the moment i can map into other user's home file
also one other thing i want to be able to map another drive, but no security on it and i was just wondering if someone could help me out there and tell me how to do that in the smb.conf file
Seems like what you really ought to do is give these other users more privileges, though not necessarily root privileges.
Here are a few things to look into:
1. Decide which groups these privileged users need to belong to, and make them members of those groups. (this is easier said than done; most of the problem is figuring out which group membership gives you the particular type of access you want.)
2. Read up on the "primary group". If you want a situation similar to having several root users, then you'll want these privileged members to be members of the group which is the root user's primary group. For now, I'll call it admingroup. So root's primary group is admingroup, and privileged users are members of admingroup.
3. Also read up on umask - the default file creation mask - and set root user's umask to something appropriate, like 002. 002 would give the root user, as well as the admingroup members, full privileges (read/write/execute) of any file that root creates. With 002, users who are not members of admingroup would not have write privileges. Of course, there are certain files that root will want to chmod g-w (e.g. passwd and smbpasswd)
4. I don't know what your setup is, but if you have several people who you want to allow root privilege to... these people should probably have a second admin login. You don't generally want to be using your system with lots of privileges; you should only login to the privileged account when you want to do sysadmin stuff. And, ya see, since you should be doing it that way, there's not a whole lot of need to have multiple privileged accounts -- you should just give your privileged users the root password (assuming you trust them) and have them login as root when they need to do that work. Or set up one privileged user as I've described, and give your sysadmins access to that one privileged account.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.