LinuxQuestions.org
Page 1 of 2 1 2
Show 50 post(s) from this thread on one page

LinuxQuestions.org (/questions/)
-   Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)
-   -   browseable home directories (https://www.linuxquestions.org/questions/linux-networking-3/browseable-home-directories-209668/)

kenji1903 07-26-2004 12:05 AM
browseable home directories
 
My users' home directories are visible in Network Neightbourhood eventhough i have browseable = no, anybody knows why?
Code:
[homes]
comment = Home Directories
browseable = no
valid users = %S
writable = yes
I read that if i have $ at the end of the directory name, its won't be visible in network Neighbourhood, so can I put [homes$]? :D

Thanks in advance~

Archite 07-26-2004 12:23 AM
guest ok = no

kenji1903 07-26-2004 03:39 AM
Sorry, mate~
That did not work...

I am wondering whether you come across this problem or not... i cannot see any home directories after i rebooted the PC... but when i start to logon one user at a time, the 2nd user sees the first user's home and the 3rd user sees both the 1st and 2nd user's home!
Of course user2 cannot access user1's home and vice versa, i just want to make it look tidy...
Any ideas?

Anyway, thanks for the reply ;)

Archite 07-26-2004 05:13 AM
Well, here is what I use for the home directories. If this does not work, I will post my entire smb.conf.

[homes]
comment = Home Directories
browseable = no
writable = yes
create mode = 0600
directory mode = 0700
valid users = %S

kenji1903 07-27-2004 11:07 AM
I am trying it now~

Just wondering... whats the difference between create mode and create mask?

Thanks for the reply :)

Archite 07-27-2004 05:29 PM
I think that create mode is who can create new files and the create mask is what pemissions created files have, but I'm not sure;)

motub 07-27-2004 07:43 PM
No, they are the same, according to man smb.conf:
Quote:
create mode
This parameter is a synonym for create mask.


create mask (S)
When a file is created, the necessary permissions are calculated
according to the mapping from DOS modes to UNIX permissions, and
the resulting UNIX mode is then bit-wise 'AND'ed with this
parameter. This parameter may be thought of as a bit-wise MASK
for the UNIX modes of a file. Any bit not set here will be
removed from the modes set on a file when it is created.

The default value of this parameter removes the 'group' and
'other' write and execute bits from the UNIX modes.

Following this Samba will bit-wise 'OR' the UNIX mode created
from this parameter with the value of the force create mode
parameter which is set to 000 by default.

This parameter does not affect directory modes. See the parame-
ter directory mode for details.

Note that this parameter does not apply to permissions set by
Windows NT/2000 ACL editors. If the administrator wishes to
enforce a mask on access control lists also, they need to set
the security mask.

Default: create mask = 0744

Example: create mask = 0775

Archite 07-27-2004 07:48 PM
You learn something new everyday. Personally, I don't like to use smb at all. I prefer to move my files by something more secure like scp. I guess that I could wrap the smb connection with ssl since all my windows boxes are running ssh though but that seams like a hassle, LoL. Thanks for the insight motub .

motub 07-27-2004 07:52 PM
You're welcome, but that doesn't explain why there's a synonym in the first place...? Seems weird to me.

What's scp and what's the benefit over Samba (yes, I guess I could look it up, but a user's-eye perspective is often more helpful than a man page ;) )?

kenji1903 07-27-2004 08:58 PM
Ahh... more reading material ;)
Thanks guys, i reckon i should spend some time with man pages before trying silly things :D

Archite:
The mode/mask does not work, i have the home directories set to drwx------ and both are owned by the user... still wondering whats wrong...
Mind if i look at your smb.conf?
Also would like to hear more about the scp you have mentioned! Sounds interesting ;)

motub:
Do you have any suggestions?

Archite 07-27-2004 10:31 PM
okay, say you have user1 who belongs to the group users. If you set his home directory to drwx------ then he will not be able to access his own direcotry. Quick fix, create a group called user1 and set user1's main group to user1.

kenji1903 07-28-2004 09:42 AM
oh, there's no problem with my users accessing their own home drives ;)
The problem is users can see each others home in XP :D

Archite 07-28-2004 10:05 AM
Have you tried playing with user level security? That should make it so that only authorized users see their own homes.

kenji1903 07-28-2004 07:00 PM
Oooh, interesting... where do I go in order to do that? :D

Archite 07-28-2004 07:06 PM
it's one of the general options..

security = user .


Check out this link for some more informative informating about samba:

http://us3.samba.org/samba/docs/using_samba/toc.html


All times are GMT -5. The time now is 05:53 PM.
Page 1 of 2 1 2
Show 50 post(s) from this thread on one page