sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2025-01-11 05:18:09 +03:00
Code

merging some changes from SAMBA_2_2

Browse Source
This commit is contained in:
Gerald Carter 0001-01-01 00:00:00 +00:00
parent 3da89aa8e4
commit e8ede079b5
42 changed files with 2250 additions and 501 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

BIN
docs/Samba-HOWTO-Collection.pdf
View File

Binary file not shown.

85
docs/docbook/manpages/nmbd.8.sgml
View File

@ -177,13 +177,14 @@
<listitem><para>The -l parameter specifies a directory
into which the "log.nmbd" log file will be created
for operational data from the running
<command>nmbd</command> server.</para>
<para>The default log directory is compiled into Samba
<command>nmbd</command> server. The default log directory is compiled into Samba
as part of the build process. Common defaults are <filename>
/usr/local/samba/var/log.nmb</filename>, <filename>
/usr/samba/var/log.nmb</filename> or
<filename>/var/log/log.nmb</filename>.</para></listitem>
<filename>/var/log/log.nmb</filename>. <emphasis>Beware:</emphasis>
If the directory specified does not exist, <command>nmbd</command>
will log to the default debug log location defined at compile time.
</para></listitem>
</varlistentry>
@ -198,25 +199,25 @@
<filename>smb.conf</filename>.</para></listitem>
</varlistentry>
<varlistentry>
<term>-p &lt;UDP port number&gt;</term>
<listitem><para>UDP port number is a positive integer value.
This option changes the default UDP port number (normally 137)
that <command>nmbd</command> responds to name queries on. Don't
use this option unless you are an expert, in which case you
This option changes the default UDP port number (normally 137)
that <command>nmbd</command> responds to name queries on. Don't
use this option unless you are an expert, in which case you
won't need help!</para></listitem>
</varlistentry>
<varlistentry>
<term>-s &lt;configuration file&gt;</term>
<listitem><para>The default configuration file name
<listitem><para>The default configuration file name
is set at build time, typically as <filename>
/usr/local/samba/lib/smb.conf</filename>, but
this may be changed when Samba is autoconfigured.</para>
<para>The file specified contains the configuration details
required by the server. See <ulink url="smb.conf.5.html">
<para>The file specified contains the configuration details
required by the server. See <ulink url="smb.conf.5.html">
<filename>smb.conf(5)</filename></ulink> for more information.
</para></listitem>
</varlistentry>
@ -229,55 +230,55 @@
<variablelist>
<varlistentry>
<term><filename>/etc/inetd.conf</filename></term>
<listitem><para>If the server is to be run by the
<command>inetd</command> meta-daemon, this file
must contain suitable startup information for the
<listitem><para>If the server is to be run by the
<command>inetd</command> meta-daemon, this file
must contain suitable startup information for the
meta-daemon. See the <ulink
url="UNIX_INSTALL.html">UNIX_INSTALL.html</ulink> document
for details.
</para></listitem>
</varlistentry>
<varlistentry>
<term><filename>/etc/rc</filename></term>
<listitem><para>or whatever initialization script your
<listitem><para>or whatever initialization script your
system uses).</para>
<para>If running the server as a daemon at startup,
this file will need to contain an appropriate startup
<para>If running the server as a daemon at startup,
this file will need to contain an appropriate startup
sequence for the server. See the <ulink
url="UNIX_INSTALL.html">UNIX_INSTALL.html</ulink> document
for details.</para></listitem>
</varlistentry>
<varlistentry>
<term><filename>/etc/services</filename></term>
<listitem><para>If running the server via the
meta-daemon <command>inetd</command>, this file
must contain a mapping of service name (e.g., netbios-ssn)
to service port (e.g., 139) and protocol type (e.g., tcp).
<listitem><para>If running the server via the
meta-daemon <command>inetd</command>, this file
must contain a mapping of service name (e.g., netbios-ssn)
to service port (e.g., 139) and protocol type (e.g., tcp).
See the <ulink url="UNIX_INSTALL.html">UNIX_INSTALL.html</ulink>
document for details.</para></listitem>
</varlistentry>
<varlistentry>
<term><filename>/usr/local/samba/lib/smb.conf</filename></term>
<listitem><para>This is the default location of the
<listitem><para>This is the default location of the
<ulink url="smb.conf.5.html"><filename>smb.conf</filename></ulink>
server configuration file. Other common places that systems
install this file are <filename>/usr/samba/lib/smb.conf</filename>
server configuration file. Other common places that systems
install this file are <filename>/usr/samba/lib/smb.conf</filename>
and <filename>/etc/smb.conf</filename>.</para>
<para>When run as a WINS server (see the
<para>When run as a WINS server (see the
<ulink url="smb.conf.5.html#WINSSUPPORT">wins support</ulink>
parameter in the <filename>smb.conf(5)</filename> man page),
<command>nmbd</command>
will store the WINS database in the file <filename>wins.dat</filename>
in the <filename>var/locks</filename> directory configured under
will store the WINS database in the file <filename>wins.dat</filename>
in the <filename>var/locks</filename> directory configured under
wherever Samba was configured to install itself.</para>
<para>If <command>nmbd</command> is acting as a <emphasis>
browse master</emphasis> (see the <ulink
browse master</emphasis> (see the <ulink
url="smb.conf.5.html#LOCALMASTER">local master</ulink>
parameter in the <filename>smb.conf(5)</filename> man page,
<command>nmbd</command>
@ -292,20 +293,20 @@
<refsect1>
<title>SIGNALS</title>
<para>To shut down an <command>nmbd</command> process it is recommended
that SIGKILL (-9) <emphasis>NOT</emphasis> be used, except as a last
resort, as this may leave the name database in an inconsistent state.
The correct way to terminate <command>nmbd</command> is to send it
<para>To shut down an <command>nmbd</command> process it is recommended
that SIGKILL (-9) <emphasis>NOT</emphasis> be used, except as a last
resort, as this may leave the name database in an inconsistent state.
The correct way to terminate <command>nmbd</command> is to send it
a SIGTERM (-15) signal and wait for it to die on its own.</para>
<para><command>nmbd</command> will accept SIGHUP, which will cause
<para><command>nmbd</command> will accept SIGHUP, which will cause
it to dump out its namelists into the file <filename>namelist.debug
</filename> in the <filename>/usr/local/samba/var/locks</filename>
directory (or the <filename>var/locks</filename> directory configured
under wherever Samba was configured to install itself). This will also
</filename> in the <filename>/usr/local/samba/var/locks</filename>
directory (or the <filename>var/locks</filename> directory configured
under wherever Samba was configured to install itself). This will also
cause <command>nmbd</command> to dump out its server database in
the <filename>log.nmb</filename> file.</para>
<para>The debug log level of nmbd may be raised or lowered using
<ulink url="smbcontrol.1.html"><command>smbcontrol(1)</command>
</ulink> (SIGUSR[1|2] signals are no longer used in Samba 2.2). This is

142
docs/docbook/manpages/smb.conf.5.sgml
View File

@ -542,8 +542,10 @@
steps fail, then the connection request is rejected. However, if one of the
steps succeeds, then the following steps are not checked.</para>
<para>If the service is marked "guest only = yes" then
steps 1 to 5 are skipped.</para>
<para>If the service is marked "guest only = yes" and the
server is running with share-level security ("security = share")
then steps 1 to 5 are skipped.</para>
<orderedlist numeration="Arabic">
<listitem><para>If the client has passed a username/password
@ -653,6 +655,9 @@
<listitem><para><link linkend="LOCALMASTER"><parameter>local master</parameter></link></para></listitem>
<listitem><para><link linkend="LOCKDIR"><parameter>lock dir</parameter></link></para></listitem>
<listitem><para><link linkend="LOCKDIRECTORY"><parameter>lock directory</parameter></link></para></listitem>
<listitem><para><link linkend="LOCKSPINCOUNT"><parameter>lock spin count</parameter></link></para></listitem>
<listitem><para><link linkend="LOCKSPINTIME"><parameter>lock spin time</parameter></link></para></listitem>
<listitem><para><link linkend="PIDDIRECTORY"><parameter>pid directory</parameter></link></para></listitem>
<listitem><para><link linkend="LOGFILE"><parameter>log file</parameter></link></para></listitem>
<listitem><para><link linkend="LOGLEVEL"><parameter>log level</parameter></link></para></listitem>
<listitem><para><link linkend="LOGONDRIVE"><parameter>logon drive</parameter></link></para></listitem>
@ -833,6 +838,7 @@
<listitem><para><link linkend="HOSTSALLOW"><parameter>hosts allow</parameter></link></para></listitem>
<listitem><para><link linkend="HOSTSDENY"><parameter>hosts deny</parameter></link></para></listitem>
<listitem><para><link linkend="INCLUDE"><parameter>include</parameter></link></para></listitem>
<listitem><para><link linkend="INHERITACLS"><parameter>inherit acls</parameter></link></para></listitem>
<listitem><para><link linkend="INHERITPERMISSIONS"><parameter>inherit permissions</parameter></link></para></listitem>
<listitem><para><link linkend="INVALIDUSERS"><parameter>invalid users</parameter></link></para></listitem>
<listitem><para><link linkend="LEVEL2OPLOCKS"><parameter>level2 oplocks</parameter></link></para></listitem>
@ -3093,6 +3099,24 @@
<varlistentry>
<term><anchor id="INHERITACLS">inherit acls (S)</term>
<listitem><para>This parameter can be used to ensure
that if default acls exist on parent directories,
they are always honored when creating a subdirectory.
The default behavior is to use the mode specified
when creating the directory. Enabling this option
sets the mode to 0777, thus guaranteeing that
default directory acls are propagated.
</para>
<para>Default: <command>inherit acls = no</command>
</para></listitem>
</varlistentry>
<varlistentry>
<term><anchor id="INHERITPERMISSIONS">inherit permissions (S)</term>
<listitem><para>The permissions on new files and directories
@ -3600,6 +3624,39 @@
<varlistentry>
<term><anchor id="LOCKSPINCOUNT">lock spin count (G)</term>
<listitem><para>This parameter controls the number of times
that smbd should attempt to gain a byte range lock on the
behalf of a client request. Experiments have shown that
Windows 2k servers do not reply with a failure if the lock
could not be immediately granted, but try a few more times
in case the lock could later be aquired. This behavior
is used to support PC database formats such as MS Access
and FoxPro.
</para>
<para>Default: <command>lock spin count = 2</command>
</para></listitem>
</varlistentry>
<varlistentry>
<term><anchor id="LOCKSPINTIME">lock spin time (G)</term>
<listitem><para>The time in microseconds that smbd should
pause before attempting to gain a failed lock. See
<link linkend="LOCKSPINCOUNT"><parameter>lock spin
count</parameter></link> for more details.
</para>
<para>Default: <command>lock spin time = 10</command>
</para></listitem>
</varlistentry>
<varlistentry>
<term><anchor id="LOCKING">locking (S)</term>
<listitem><para>This controls whether or not locking will be
@ -3889,8 +3946,8 @@
takes a printer name as its only parameter and outputs printer
status information.</para>
<para>Currently eight styles of printer status information
are supported; BSD, AIX, LPRNG, PLP, SYSV, HPUX, QNX and SOFTQ.
<para>Currently nine styles of printer status information
are supported; BSD, AIX, LPRNG, PLP, SYSV, HPUX, QNX, CUPS, and SOFTQ.
This covers most UNIX systems. You control which type is expected
using the <parameter>printing =</parameter> option.</para>
@ -3906,7 +3963,10 @@
<para>Note that it is good practice to include the absolute path
in the <parameter>lpq command</parameter> as the <envar>$PATH
</envar> may not be available to the server.</para>
</envar> may not be available to the server. When compiled with
the CUPS libraries, no <parameter>lpq command</parameter> is
needed because smbd will make a library call to obtain the
print queue listing.</para>
<para>See also the <link linkend="PRINTING"><parameter>printing
</parameter></link> parameter.</para>
@ -5478,6 +5538,18 @@
<varlistentry>
<term><anchor id="PIDDIRECTORY">pid directory (G)</term>
<listitem><para>This option specifies the directory where pid
files will be placed. </para>
<para>Default: <command>pid directory = ${prefix}/var/locks</command></para>
<para>Example: <command>pid directory = /var/run/</command>
</para></listitem>
</varlistentry>
<varlistentry>
<term><anchor id="POSIXLOCKING">posix locking (S)</term>
<listitem><para>The <ulink url="smbd.8.html"><command>smbd(8)</command></ulink>
@ -5657,14 +5729,23 @@
manually remove old spool files.</para>
<para>The print command is simply a text string. It will be used
verbatim, with two exceptions: All occurrences of <parameter>%s
</parameter> and <parameter>%f</parameter> will be replaced by the
appropriate spool file name, and all occurrences of <parameter>%p
</parameter> will be replaced by the appropriate printer name. The
spool file name is generated automatically by the server. The
<parameter>%J</parameter> macro can be used to access the job
verbatim after macro substitutions have been made:</para>
<para>s, %p - the path to the spool
file name</para>
<para>%p - the appropriate printer
name</para>
<para>%J - the job
name as transmitted by the client.</para>
<para>%c - The number of printed pages
of the spooled job (if known).</para>
<para>%z - the size of the spooled
print job (in bytes)</para>
<para>The print command <emphasis>MUST</emphasis> contain at least
one occurrence of <parameter>%s</parameter> or <parameter>%f
</parameter> - the <parameter>%p</parameter> is optional. At the time
@ -5708,6 +5789,17 @@
<para>For <command>printing = SOFTQ :</command></para>
<para><command>print command = lp -d%p -s %s; rm %s</command></para>
<para>For printing = CUPS : If SAMBA is compiled against
libcups, then <link linkend="PRINTING">printcap = cups</link>
uses the CUPS API to
submit jobs, etc. Otherwise it maps to the System V
commands with the -oraw option for printing, i.e. it
uses <command>lp -c -d%p -oraw; rm %s</command>.
With <command>printing = cups</command>,
and if SAMBA is compiled against libcups, any manually
set print command will be ignored.</para>
<para>Example: <command>print command = /usr/local/samba/bin/myprintscript
%p %s</command></para>
</listitem>
@ -5762,7 +5854,13 @@
why you might want to do this.</para>
<para>To use the CUPS printing interface set <command>printcap name = cups
</command>.</para>
</command>. This should be supplemented by an addtional setting
<link linkend="PRINTING">printing = cups</link> in the [global]
section. <command>printcap name = cups</command> will use the
"dummy" printcap created by CUPS, as specified in your CUPS
configuration file.
</para>
<para>On System V systems that use <command>lpstat</command> to
list available printers you can use <command>printcap name = lpstat
</command> to automatically obtain lists of available printers. This
@ -8089,7 +8187,7 @@ veto files = /.AppleDouble/.bin/.AppleDesktop/Network Trash Folder/
<varlistentry>
<term><anchor id="WINBINDCACHETIME">winbind cache time</term>
<term><anchor id="WINBINDCACHETIME">winbind cache time (G)</term>
<listitem><para>This parameter specifies the number of seconds the
<ulink url="winbindd.8.html">winbindd(8)</ulink> daemon will cache
user and group information before querying a Windows NT server
@ -8101,8 +8199,8 @@ veto files = /.AppleDouble/.bin/.AppleDesktop/Network Trash Folder/
<varlistentry>
<term><anchor id="WINBINDENUMUSERS">winbind enum
users</term> <listitem><para>On large installations using
<term><anchor id="WINBINDENUMUSERS">winbind enum users (G)</term>
<listitem><para>On large installations using
<ulink url="winbindd.8.html">winbindd(8)</ulink> it may be
necessary to suppress the enumeration of users through the
<command> setpwent()</command>,
@ -8123,8 +8221,8 @@ veto files = /.AppleDouble/.bin/.AppleDesktop/Network Trash Folder/
</varlistentry>
<varlistentry>
<term><anchor id="WINBINDENUMGROUPS">winbind enum
groups</term> <listitem><para>On large installations using
<term><anchor id="WINBINDENUMGROUPS">winbind enum groups (G)</term>
<listitem><para>On large installations using
<ulink url="winbindd.8.html">winbindd(8)</ulink> it may be
necessary to suppress the enumeration of groups through the
<command> setgrent()</command>,
@ -8144,7 +8242,7 @@ veto files = /.AppleDouble/.bin/.AppleDesktop/Network Trash Folder/
<varlistentry>
<term><anchor id="WINBINDGID">winbind gid</term>
<term><anchor id="WINBINDGID">winbind gid (G)</term>
<listitem><para>The winbind gid parameter specifies the range of group
ids that are allocated by the <ulink url="winbindd.8.html">
winbindd(8)</ulink> daemon. This range of group ids should have no
@ -8160,7 +8258,7 @@ veto files = /.AppleDouble/.bin/.AppleDesktop/Network Trash Folder/
<varlistentry>
<term><anchor id="WINBINDSEPARATOR">winbind separator</term>
<term><anchor id="WINBINDSEPARATOR">winbind separator (G)</term>
<listitem><para>This parameter allows an admin to define the character
used when listing a username of the form of <replaceable>DOMAIN
</replaceable>\<replaceable>user</replaceable>. This parameter
@ -8172,8 +8270,8 @@ veto files = /.AppleDouble/.bin/.AppleDesktop/Network Trash Folder/
with group membership at least on glibc systems, as the character +
is used as a special character for NIS in /etc/group.</para>
<para>Example: <command>winbind separator = \\</command></para>
<para>Example: <command>winbind separator = /</command></para>
<para>Default: <command>winbind separator = '\'</command></para>
<para>Example: <command>winbind separator = +</command></para>
</listitem>
</varlistentry>
@ -8181,7 +8279,7 @@ veto files = /.AppleDouble/.bin/.AppleDesktop/Network Trash Folder/
<varlistentry>
<term><anchor id="WINBINDUID">winbind uid</term>
<term><anchor id="WINBINDUID">winbind uid (G)</term>
<listitem><para>The winbind gid parameter specifies the range of group
ids that are allocated by the <ulink url="winbindd.8.html">
winbindd(8)</ulink> daemon. This range of ids should have no

89
docs/docbook/manpages/smbclient.1.sgml
View File

@ -434,9 +434,9 @@ domain = &lt;value&gt;
<varlistentry>
<term>-W WORKGROUP</term>
<listitem><para>Override the default workgroup specified in the
workgroup parameter of the <filename>smb.conf</filename> file
for this connection. This may be needed to connect to some
<listitem><para>Override the default workgroup (domain) specified
in the workgroup parameter of the <filename>smb.conf</filename>
file for this connection. This may be needed to connect to some
servers. </para></listitem>
</varlistentry>
@ -634,6 +634,44 @@ domain = &lt;value&gt;
</varlistentry>
<varlistentry>
<term>altname file</term>
<listitem><para>The client will request that the server return
the "alternate" name (the 8.3 name) for a file or directory.
</para></listitem>
</varlistentry>
<varlistentry>
<term>cancel jobid0 [jobid1] ... [jobidN]</term>
<listitem><para>The client will request that the server cancel
the printjobs identified by the given numeric print job ids.
</para></listitem>
</varlistentry>
<varlistentry>
<term>chmod file mode in octal</term>
<listitem><para>This command depends on the server supporting the CIFS
UNIX extensions and will fail if the server does not. The client requests that the server
change the UNIX permissions to the given octal mode, in standard UNIX format.
</para></listitem>
</varlistentry>
<varlistentry>
<term>chown file uid gid</term>
<listitem><para>This command depends on the server supporting the CIFS
UNIX extensions and will fail if the server does not. The client requests that the server
change the UNIX user and group ownership to the given decimal values. Note there is
currently no way to remotely look up the UNIX uid and gid values for a given name.
This may be addressed in future versions of the CIFS UNIX extensions.
</para></listitem>
</varlistentry>
<varlistentry>
<term>cd [directory name]</term>
@ -700,6 +738,17 @@ domain = &lt;value&gt;
</varlistentry>
<varlistentry>
<term>link source destination</term>
<listitem><para>This command depends on the server supporting the CIFS
UNIX extensions and will fail if the server does not. The client requests that the server
create a hard link between the source and destination files. The source file
must not exist.
</para></listitem>
</varlistentry>
<varlistentry>
<term>lowercase</term>
<listitem><para>Toggle lowercasing of filenames for the get and
@ -877,6 +926,30 @@ domain = &lt;value&gt;
</varlistentry>
<varlistentry>
<term>setmode &lt;filename&gt; &lt;perm=[+|\-]rsha&gt;</term>
<listitem><para>A version of the DOS attrib command to set
file permissions. For example: </para>
<para><command>setmode myfile +r </command></para>
<para>would make myfile read only. </para></listitem>
</varlistentry>
<varlistentry>
<term>symlink source destination</term>
<listitem><para>This command depends on the server supporting the CIFS
UNIX extensions and will fail if the server does not. The client requests that the server
create a symbolic hard link between the source and destination files. The source file
must not exist. Note that the server will not create a link to any path that lies
outside the currently connected share. This is enforced by the Samba server.
</para></listitem>
</varlistentry>
<varlistentry>
<term>tar &lt;c|x&gt;[IXbgNa]</term>
<listitem><para>Performs a tar operation - see the <parameter>-T
@ -907,16 +980,6 @@ domain = &lt;value&gt;
</varlistentry>
<varlistentry>
<term>setmode &lt;filename&gt; &lt;perm=[+|\-]rsha&gt;</term>
<listitem><para>A version of the DOS attrib command to set
file permissions. For example: </para>
<para><command>setmode myfile +r </command></para>
<para>would make myfile read only. </para></listitem>
</varlistentry>
</variablelist>
</refsect1>

21
docs/docbook/manpages/smbcontrol.1.sgml
View File

@ -9,7 +9,7 @@
<refnamediv>
<refname>smbcontrol</refname>
<refpurpose>send messages to smbd or nmbd processes</refpurpose>
<refpurpose>send messages to smbd, nmbd or winbindd processes</refpurpose>
</refnamediv>
<refsynopsisdiv>
@ -33,9 +33,10 @@
Samba</ulink> suite.</para>
<para><command>smbcontrol</command> is a very small program, which
sends messages to an <ulink url="smbd.8.html">smbd(8)</ulink> or
an <ulink url="nmbd.8.html">nmbd(8)</ulink> daemon running on the
system.</para>
sends messages to an <ulink url="smbd.8.html">smbd(8)</ulink>,
an <ulink url="nmbd.8.html">nmbd(8)</ulink>
or a <ulink url="winbindd.8.html">winbindd(8)</ulink>
daemon running on the system.</para>
</refsect1>
@ -81,8 +82,9 @@
message to smbd which will then close the client connections to
the named share. Note that this doesn't affect client connections
to any other shares. This message-type takes an argument of the
share name for which client connections will be close, or the
share name for which client connections will be closed, or the
"*" character which will close all currently open shares.
This may be useful if you made changes to the access controls on the share.
This message can only be sent to <constant>smbd</constant>.</para>
<para>The <constant>debug</constant> message-type allows
@ -105,7 +107,7 @@
collection, "off" to turn off profile stats collection, "count"
to enable only collection of count stats (time stats are
disabled), and "flush" to zero the current profile stats. This can
be sent to any of the destinations.</para>
be sent to any smbd or nmbd destinations.</para>
<para>The <constant>debuglevel</constant> message-type sends
a "request debug level" message. The current debug level setting
@ -115,18 +117,13 @@
<para>The <constant>profilelevel</constant> message-type sends
a "request profile level" message. The current profile level
setting is returned by a "profilelevel" message. This can be sent
to any of the destinations.</para>
to any smbd or nmbd destinations.</para>
<para>The <constant>printer-notify</constant> message-type sends a
message to smbd which in turn sends a printer notify message to
any Windows NT clients connected to a printer. This message-type
takes an argument of the printer name to send notify messages to.
This message can only be sent to <constant>smbd</constant>.</para>
<para>The <constant>close-share</constant> message-type sends a
message to smbd which forces smbd to close the share that was
specified as an argument. This may be useful if you made changes
to the access controls on the share. </para>
</listitem>
</varlistentry>

4
docs/docbook/manpages/smbd.8.sgml
View File

@ -176,7 +176,9 @@
its size may be controlled by the <ulink
url="smb.conf.5.html#maxlogsize">max log size</ulink>
option in the <ulink url="smb.conf.5.html"><filename>
smb.conf(5)</filename></ulink> file.
smb.conf(5)</filename></ulink> file. <emphasis>Beware:</emphasis>
If the directory specified does not exist, <command>smbd</command>
will log to the default debug log location defined at compile time.
</para>
<para>The default log directory is specified at

2
docs/docbook/manpages/smbmount.8.sgml
View File

@ -14,7 +14,7 @@
<refsynopsisdiv>
<cmdsynopsis>
<command>smbumount</command>
<command>smbmount</command>
<arg choice="req">service</arg>
<arg choice="req">mount-point</arg>
<arg choice="opt">-o options</arg>

130
docs/docbook/manpages/smbsh.1.sgml
View File

@ -16,6 +16,13 @@
<refsynopsisdiv>
<cmdsynopsis>
<command>smbsh</command>
<arg choice="opt">-W workgroup</arg>
<arg choice="opt">-U username</arg>
<arg choice="opt">-P prefix</arg>
<arg choice="opt">-R &lt;name resolve order&gt;</arg>
<arg choice="opt">-d &lt;debug level&gt;</arg>
<arg choice="opt">-l logfile</arg>
<arg choice="opt">-L libdir</arg>
</cmdsynopsis>
</refsynopsisdiv>
@ -30,6 +37,129 @@
egrep</command>, and <command>rcp</command>. You must use a
shell that is dynamically linked in order for <command>smbsh</command>
to work correctly.</para>
</refsect1>
<refsect1>
<title>OPTIONS</title>
<variablelist>
<varlistentry>
<term>-W WORKGROUP</term>
<listitem><para>Override the default workgroup specified in the
workgroup parameter of the <filename>smb.conf</filename> file
for this session. This may be needed to connect to some
servers. </para></listitem>
</varlistentry>
<varlistentry>
<term>-U username[%pass]</term>
<listitem><para>Sets the SMB username or username and password.
If this option is not specified, the user will be prompted for
both the username and the password. If %pass is not specified,
the user will be prompted for the password.
</para></listitem>
</varlistentry>
<varlistentry>
<term>-P prefix</term><listitem><para>This option allows
the user to set the directory prefix for SMB access. The
default value if this option is not specified is
<emphasis>smb</emphasis>.
</para></listitem>
</varlistentry>
<varlistentry>
<term>-R &lt;name resolve order&gt;</term>
<listitem><para>This option is used to determine what naming
services and in what order to resolve
host names to IP addresses. The option takes a space-separated
string of different name resolution options.</para>
<para>The options are :"lmhosts", "host", "wins" and "bcast".
They cause names to be resolved as follows :</para>
<itemizedlist>
<listitem><para><constant>lmhosts</constant> :
Lookup an IP address in the Samba lmhosts file. If the
line in lmhosts has no name type attached to the
NetBIOS name
(see the <ulink url="lmhosts.5.html">lmhosts(5)</ulink>
for details) then any name type matches for lookup.
</para></listitem>
<listitem><para><constant>host</constant> :
Do a standard host name to IP address resolution, using
the system <filename>/etc/hosts</filename>, NIS, or DNS
lookups. This method of name resolution is operating
system dependent, for instance on IRIX or Solaris this
may be controlled by the <filename>/etc/nsswitch.conf
</filename> file). Note that this method is only used
if the NetBIOS name type being queried is the 0x20
(server) name type, otherwise it is ignored.
</para></listitem>
<listitem><para><constant>wins</constant> :
Query a name with the IP address listed in the
<parameter>wins server</parameter> parameter. If no
WINS server has been specified this method will be
ignored.
</para></listitem>
<listitem><para><constant>bcast</constant> :
Do a broadcast on each of the known local interfaces
listed in the <parameter>interfaces</parameter>
parameter. This is the least reliable of the name
resolution methods as it depends on the target host
being on a locally connected subnet.
</para></listitem>
</itemizedlist>
<para>If this parameter is not set then the name resolve order
defined in the <filename>smb.conf</filename> file parameter
(name resolve order) will be used. </para>
<para>The default order is lmhosts, host, wins, bcast. Without
this parameter or any entry in the <parameter>name resolve order
</parameter> parameter of the <filename>smb.conf</filename>
file, the name resolution methods will be attempted in this
order. </para></listitem>
</varlistentry>
<varlistentry>
<term>-d &lt;debug level&gt;</term>
<listitem><para>debug level is an integer from 0 to 10.</para>
<para>The default value if this parameter is not specified
is zero.</para>
<para>The higher this value, the more detail will be logged
about the activities of <command>nmblookup</command>. At level
0, only critical errors and serious warnings will be logged.
</para></listitem>
</varlistentry>
<varlistentry>
<term>-l logfilename</term>
<listitem><para>If specified causes all debug messages to be
written to the file specified by <replaceable>logfilename
</replaceable>. If not specified then all messages will be
written to<replaceable>stderr</replaceable>.
</para></listitem>
</varlistentry>
<varlistentry>
<term>-L libdir</term>
<listitem><para>This parameter specifies the location of the
shared libraries used by <command>smbsh</command>. The default
value is specified at compile time.
</para></listitem>
</varlistentry>
</variablelist>
</refsect1>
<refsect1>
<title>EXAMPLES</title>
<para>To use the <command>smbsh</command> command, execute <command>
smbsh</command> from the prompt and enter the username and password

45
docs/docbook/manpages/wbinfo.1.sgml
View File

@ -17,6 +17,8 @@
<command>wbinfo</command>
<arg choice="opt">-u</arg>
<arg choice="opt">-g</arg>
<arg choice="opt">-h name</arg>
<arg choice="opt">-i ip</arg>
<arg choice="opt">-n name</arg>
<arg choice="opt">-s sid</arg>
<arg choice="opt">-U uid</arg>
@ -25,8 +27,9 @@
<arg choice="opt">-Y sid</arg>
<arg choice="opt">-t</arg>
<arg choice="opt">-m</arg>
<arg choice="opt">-r user</arg>
<arg choice="opt">-a user%password</arg>
<arg choice="opt">-p</arg>
<arg choice="opt">-A user%password</arg>
</cmdsynopsis>
</refsynopsisdiv>
@ -70,6 +73,26 @@
</varlistentry>
<varlistentry>
<term>-h name</term>
<listitem><para>The <parameter>-h</parameter> option
queries <command>winbindd(8)</command> to query the WINS
server for the IP address associated with the NetBIOS name
specified by the <parameter>name</parameter> parameter.
</para></listitem>
</varlistentry>
<varlistentry>
<term>-i ip</term>
<listitem><para>The <parameter>-i</parameter> option
queries <command>winbindd(8)</command> to send a node status
request to get the NetBIOS name associated with the IP address
specified by the <parameter>ip</parameter> parameter.
</para></listitem>
</varlistentry>
<varlistentry>
<term>-n name</term>
<listitem><para>The <parameter>-n</parameter> option
@ -143,6 +166,16 @@
</para></listitem>
</varlistentry>
<varlistentry>
<term>-r username</term>
<listitem><para>Try to obtain the list of UNIX group ids
to which the user belongs. This only works for users
defined on a Domain Controller.
</para></listitem>
</varlistentry>
<varlistentry>
<term>-a username%password</term>
<listitem><para>Attempt to authenticate a user via winbindd.
@ -150,10 +183,14 @@
</para></listitem>
</varlistentry>
<varlistentry>
<term>-p</term>
<listitem><para>Attempt a simple 'ping' check that the winbindd
is indeed alive.
<term>-A username%password</term>
<listitem><para>Store username and password used by winbindd
during session setup to a domain controller. This enables
winbindd to operate in a Windows 2000 domain with Restrict
Anonymous turned on (a.k.a. Permissions compatiable with
Windows 2000 servers only).
</para></listitem>
</varlistentry>
</variablelist>

15
docs/docbook/manpages/winbindd.8.sgml
View File

@ -56,6 +56,15 @@
the winbindd service: </para>
<variablelist>
<varlistentry>
<term>hosts</term>
<listitem><para>User information traditionally stored in
the <filename>hosts(5)</filename> file and used by
<command>gethostbyname(3)</command> functions. Names are
resolved through the WINS server or by broadcast.
</para></listitem>
</varlistentry>
<varlistentry>
<term>passwd</term>
<listitem><para>User information traditionally stored in
@ -81,6 +90,12 @@
passwd: files winbind
group: files winbind
</programlisting></para>
<para>The following simple configuration in the
<filename>/etc/nsswitch.conf</filename> file can be used to initially
resolve hostnames from <filename>/etc/hosts</filename> and then from the
WINS server.</para>
</refsect1>

7
docs/docbook/projdoc/Samba-LDAP-HOWTO.sgml
View File

@ -13,8 +13,8 @@
<address><email>olem@IDEALX.org</email></address>
</affiliation>
</author>
<pubdate> (13 Jan 2002) </pubdate>
</chapterinfo>
@ -98,7 +98,7 @@ Identified (RID).
As a result of these defeciencies, a more robust means of storing user attributes
used by smbd was developed. The API which defines access to user accounts
is commonly referred to as the samdb interface (previously this was called the passdb
API, and is still so named in the CVS trees). In Samba 2.2.3, enabling support
API, and is still so named in the CVS trees). In Samba 2.2.3, enabling support
for a samdb backend (e.g. <parameter>--with-ldapsam</parameter> or
<parameter>--with-tdbsam</parameter>) requires compile time support.
</para>
@ -515,7 +515,6 @@ something other than the default (e.g. \\MOBY\becky).
<sect1>
<title>Example LDIF Entries for a sambaAccount</title>

8
docs/docbook/projdoc/winbind.sgml
View File

@ -324,6 +324,14 @@ to control access and authenticate users on your Linux box using
the winbind services which come with SAMBA 2.2.2.
</para>
<para>
There is also some Solaris specific information in
<filename>docs/textdocs/Solaris-Winbind-HOWTO.txt</filename>.
Future revisions of this document will incorporate that
information.
</para>
<sect2>
<title>Introduction</title>

8
docs/faq/README Normal file
View File

@ -0,0 +1,8 @@
This directory contains the old Samba FAQ.
It is now horribly outdated and unmaintained.
It is being left here in case there is some
useful information within.
--jerry@samba.org

98
docs/htmldocs/Samba-HOWTO-Collection.html
View File

@ -878,29 +878,29 @@ HREF="#AEN2015"
><DL
><DT
>11.5.1. <A
HREF="#AEN2020"
HREF="#AEN2022"
>Introduction</A
></DT
><DT
>11.5.2. <A
HREF="#AEN2033"
HREF="#AEN2035"
>Requirements</A
></DT
><DT
>11.5.3. <A
HREF="#AEN2047"
HREF="#AEN2049"
>Testing Things Out</A
></DT
><DD
><DL
><DT
>11.5.3.1. <A
HREF="#AEN2058"
HREF="#AEN2060"
>Configure and compile SAMBA</A
></DT
><DT
>11.5.3.2. <A
HREF="#AEN2077"
HREF="#AEN2079"
>Configure <TT
CLASS="FILENAME"
>nsswitch.conf</TT
@ -909,22 +909,22 @@ winbind libraries</A
></DT
><DT
>11.5.3.3. <A
HREF="#AEN2102"
HREF="#AEN2104"
>Configure smb.conf</A
></DT
><DT
>11.5.3.4. <A
HREF="#AEN2118"
HREF="#AEN2120"
>Join the SAMBA server to the PDC domain</A
></DT
><DT
>11.5.3.5. <A
HREF="#AEN2129"
HREF="#AEN2131"
>Start up the winbindd daemon and test it!</A
></DT
><DT
>11.5.3.6. <A
HREF="#AEN2165"
HREF="#AEN2167"
>Fix the <TT
CLASS="FILENAME"
>/etc/rc.d/init.d/smb</TT
@ -932,7 +932,7 @@ CLASS="FILENAME"
></DT
><DT
>11.5.3.7. <A
HREF="#AEN2187"
HREF="#AEN2189"
>Configure Winbind and PAM</A
></DT
></DL
@ -941,12 +941,12 @@ HREF="#AEN2187"
></DD
><DT
>11.6. <A
HREF="#AEN2234"
HREF="#AEN2236"
>Limitations</A
></DT
><DT
>11.7. <A
HREF="#AEN2244"
HREF="#AEN2246"
>Conclusion</A
></DT
></DL
@ -960,32 +960,32 @@ HREF="#OS2"
><DL
><DT
>12.1. <A
HREF="#AEN2258"
HREF="#AEN2260"
>FAQs</A
></DT
><DD
><DL
><DT
>12.1.1. <A
HREF="#AEN2260"
HREF="#AEN2262"
>How can I configure OS/2 Warp Connect or
OS/2 Warp 4 as a client for Samba?</A
></DT
><DT
>12.1.2. <A
HREF="#AEN2275"
HREF="#AEN2277"
>How can I configure OS/2 Warp 3 (not Connect),
OS/2 1.2, 1.3 or 2.x for Samba?</A
></DT
><DT
>12.1.3. <A
HREF="#AEN2284"
HREF="#AEN2286"
>Are there any other issues when OS/2 (any version)
is used as a client?</A
></DT
><DT
>12.1.4. <A
HREF="#AEN2288"
HREF="#AEN2290"
>How do I get printer driver download working
for OS/2 clients?</A
></DT
@ -1002,24 +1002,24 @@ HREF="#CVS-ACCESS"
><DL
><DT
>13.1. <A
HREF="#AEN2304"
HREF="#AEN2306"
>Introduction</A
></DT
><DT
>13.2. <A
HREF="#AEN2309"
HREF="#AEN2311"
>CVS Access to samba.org</A
></DT
><DD
><DL
><DT
>13.2.1. <A
HREF="#AEN2312"
HREF="#AEN2314"
>Access via CVSweb</A
></DT
><DT
>13.2.2. <A
HREF="#AEN2317"
HREF="#AEN2319"
>Access via cvs</A
></DT
></DL
@ -1028,7 +1028,7 @@ HREF="#AEN2317"
></DD
><DT
><A
HREF="#AEN2345"
HREF="#AEN2347"
>Index</A
></DT
></DL
@ -8347,7 +8347,7 @@ Identified (RID).</P
>As a result of these defeciencies, a more robust means of storing user attributes
used by smbd was developed. The API which defines access to user accounts
is commonly referred to as the samdb interface (previously this was called the passdb
API, and is still so named in the CVS trees). In Samba 2.2.3, enabling support
API, and is still so named in the CVS trees). In Samba 2.2.3, enabling support
for a samdb backend (e.g. <TT
CLASS="PARAMETER"
><I
@ -9535,12 +9535,20 @@ for providing the HOWTO for this section.</P
>This HOWTO describes how to get winbind services up and running
to control access and authenticate users on your Linux box using
the winbind services which come with SAMBA 2.2.2.</P
><P
>There is also some Solaris specific information in
<TT
CLASS="FILENAME"
>docs/textdocs/Solaris-Winbind-HOWTO.txt</TT
>.
Future revisions of this document will incorporate that
information.</P
><DIV
CLASS="SECT2"
><HR><H2
CLASS="SECT2"
><A
NAME="AEN2020"
NAME="AEN2022"
>11.5.1. Introduction</A
></H2
><P
@ -9591,7 +9599,7 @@ CLASS="SECT2"
><HR><H2
CLASS="SECT2"
><A
NAME="AEN2033"
NAME="AEN2035"
>11.5.2. Requirements</A
></H2
><P
@ -9649,7 +9657,7 @@ CLASS="SECT2"
><HR><H2
CLASS="SECT2"
><A
NAME="AEN2047"
NAME="AEN2049"
>11.5.3. Testing Things Out</A
></H2
><P
@ -9694,7 +9702,7 @@ CLASS="SECT3"
><HR><H3
CLASS="SECT3"
><A
NAME="AEN2058"
NAME="AEN2060"
>11.5.3.1. Configure and compile SAMBA</A
></H3
><P
@ -9769,7 +9777,7 @@ CLASS="SECT3"
><HR><H3
CLASS="SECT3"
><A
NAME="AEN2077"
NAME="AEN2079"
>11.5.3.2. Configure <TT
CLASS="FILENAME"
>nsswitch.conf</TT
@ -9859,7 +9867,7 @@ CLASS="SECT3"
><HR><H3
CLASS="SECT3"
><A
NAME="AEN2102"
NAME="AEN2104"
>11.5.3.3. Configure smb.conf</A
></H3
><P
@ -9943,7 +9951,7 @@ CLASS="SECT3"
><HR><H3
CLASS="SECT3"
><A
NAME="AEN2118"
NAME="AEN2120"
>11.5.3.4. Join the SAMBA server to the PDC domain</A
></H3
><P
@ -9989,7 +9997,7 @@ CLASS="SECT3"
><HR><H3
CLASS="SECT3"
><A
NAME="AEN2129"
NAME="AEN2131"
>11.5.3.5. Start up the winbindd daemon and test it!</A
></H3
><P
@ -10130,7 +10138,7 @@ CLASS="SECT3"
><HR><H3
CLASS="SECT3"
><A
NAME="AEN2165"
NAME="AEN2167"
>11.5.3.6. Fix the <TT
CLASS="FILENAME"
>/etc/rc.d/init.d/smb</TT
@ -10260,7 +10268,7 @@ CLASS="SECT3"
><HR><H3
CLASS="SECT3"
><A
NAME="AEN2187"
NAME="AEN2189"
>11.5.3.7. Configure Winbind and PAM</A
></H3
><P
@ -10482,7 +10490,7 @@ CLASS="SECT1"
><HR><H1
CLASS="SECT1"
><A
NAME="AEN2234"
NAME="AEN2236"
>11.6. Limitations</A
></H1
><P
@ -10523,7 +10531,7 @@ CLASS="SECT1"
><HR><H1
CLASS="SECT1"
><A
NAME="AEN2244"
NAME="AEN2246"
>11.7. Conclusion</A
></H1
><P
@ -10547,7 +10555,7 @@ CLASS="SECT1"
><H1
CLASS="SECT1"
><A
NAME="AEN2258"
NAME="AEN2260"
>12.1. FAQs</A
></H1
><DIV
@ -10555,7 +10563,7 @@ CLASS="SECT2"
><H2
CLASS="SECT2"
><A
NAME="AEN2260"
NAME="AEN2262"
>12.1.1. How can I configure OS/2 Warp Connect or
OS/2 Warp 4 as a client for Samba?</A
></H2
@ -10614,7 +10622,7 @@ CLASS="SECT2"
><HR><H2
CLASS="SECT2"
><A
NAME="AEN2275"
NAME="AEN2277"
>12.1.2. How can I configure OS/2 Warp 3 (not Connect),
OS/2 1.2, 1.3 or 2.x for Samba?</A
></H2
@ -10667,7 +10675,7 @@ CLASS="SECT2"
><HR><H2
CLASS="SECT2"
><A
NAME="AEN2284"
NAME="AEN2286"
>12.1.3. Are there any other issues when OS/2 (any version)
is used as a client?</A
></H2
@ -10689,7 +10697,7 @@ CLASS="SECT2"
><HR><H2
CLASS="SECT2"
><A
NAME="AEN2288"
NAME="AEN2290"
>12.1.4. How do I get printer driver download working
for OS/2 clients?</A
></H2
@ -10745,7 +10753,7 @@ CLASS="SECT1"
><H1
CLASS="SECT1"
><A
NAME="AEN2304"
NAME="AEN2306"
>13.1. Introduction</A
></H1
><P
@ -10767,7 +10775,7 @@ CLASS="SECT1"
><HR><H1
CLASS="SECT1"
><A
NAME="AEN2309"
NAME="AEN2311"
>13.2. CVS Access to samba.org</A
></H1
><P
@ -10780,7 +10788,7 @@ CLASS="SECT2"
><HR><H2
CLASS="SECT2"
><A
NAME="AEN2312"
NAME="AEN2314"
>13.2.1. Access via CVSweb</A
></H2
><P
@ -10801,7 +10809,7 @@ CLASS="SECT2"
><HR><H2
CLASS="SECT2"
><A
NAME="AEN2317"
NAME="AEN2319"
>13.2.2. Access via cvs</A
></H2
><P
@ -10907,7 +10915,7 @@ CLASS="COMMAND"
></DIV
><HR><H1
><A
NAME="AEN2345"
NAME="AEN2347"
>Index</A
></H1
><DL

85
docs/htmldocs/nmbd.8.html
View File

@ -295,9 +295,7 @@ CLASS="FILENAME"
<B
CLASS="COMMAND"
>nmbd</B
> server.</P
><P
>The default log directory is compiled into Samba
> server. The default log directory is compiled into Samba
as part of the build process. Common defaults are <TT
CLASS="FILENAME"
> /usr/local/samba/var/log.nmb</TT
@ -308,7 +306,15 @@ CLASS="FILENAME"
<TT
CLASS="FILENAME"
>/var/log/log.nmb</TT
>.</P
>. <EM
>Beware:</EM
>
If the directory specified does not exist, <B
CLASS="COMMAND"
>nmbd</B
>
will log to the default debug log location defined at compile time.
</P
></DD
><DT
>-n &#60;primary NetBIOS name&#62;</DT
@ -340,31 +346,30 @@ CLASS="FILENAME"
><DD
><P
>UDP port number is a positive integer value.
This option changes the default UDP port number (normally 137)
This option changes the default UDP port number (normally 137)
that <B
CLASS="COMMAND"
>nmbd</B
> responds to name queries on. Don't
use this option unless you are an expert, in which case you
> responds to name queries on. Don't
use this option unless you are an expert, in which case you
won't need help!</P
></DD
><DT
>-s &#60;configuration file&#62;</DT
><DD
><P
>The default configuration file name
>The default configuration file name
is set at build time, typically as <TT
CLASS="FILENAME"
> /usr/local/samba/lib/smb.conf</TT
>, but
this may be changed when Samba is autoconfigured.</P
><P
>The file specified contains the configuration details
>The file specified contains the configuration details
required by the server. See <A
HREF="smb.conf.5.html"
TARGET="_top"
>
<TT
> <TT
CLASS="FILENAME"
>smb.conf(5)</TT
></A
@ -377,7 +382,7 @@ CLASS="FILENAME"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN130"
NAME="AEN131"
></A
><H2
>FILES</H2
@ -393,12 +398,12 @@ CLASS="FILENAME"
></DT
><DD
><P
>If the server is to be run by the
>If the server is to be run by the
<B
CLASS="COMMAND"
>inetd</B
> meta-daemon, this file
must contain suitable startup information for the
> meta-daemon, this file
must contain suitable startup information for the
meta-daemon. See the <A
HREF="UNIX_INSTALL.html"
TARGET="_top"
@ -414,11 +419,11 @@ CLASS="FILENAME"
></DT
><DD
><P
>or whatever initialization script your
>or whatever initialization script your
system uses).</P
><P
>If running the server as a daemon at startup,
this file will need to contain an appropriate startup
>If running the server as a daemon at startup,
this file will need to contain an appropriate startup
sequence for the server. See the <A
HREF="UNIX_INSTALL.html"
TARGET="_top"
@ -433,13 +438,13 @@ CLASS="FILENAME"
></DT
><DD
><P
>If running the server via the
>If running the server via the
meta-daemon <B
CLASS="COMMAND"
>inetd</B
>, this file
must contain a mapping of service name (e.g., netbios-ssn)
to service port (e.g., 139) and protocol type (e.g., tcp).
>, this file
must contain a mapping of service name (e.g., netbios-ssn)
to service port (e.g., 139) and protocol type (e.g., tcp).
See the <A
HREF="UNIX_INSTALL.html"
TARGET="_top"
@ -454,7 +459,7 @@ CLASS="FILENAME"
></DT
><DD
><P
>This is the default location of the
>This is the default location of the
<A
HREF="smb.conf.5.html"
TARGET="_top"
@ -463,17 +468,17 @@ CLASS="FILENAME"
>smb.conf</TT
></A
>
server configuration file. Other common places that systems
server configuration file. Other common places that systems
install this file are <TT
CLASS="FILENAME"
>/usr/samba/lib/smb.conf</TT
>
>
and <TT
CLASS="FILENAME"
>/etc/smb.conf</TT
>.</P
><P
>When run as a WINS server (see the
>When run as a WINS server (see the
<A
HREF="smb.conf.5.html#WINSSUPPORT"
TARGET="_top"
@ -490,11 +495,11 @@ CLASS="COMMAND"
will store the WINS database in the file <TT
CLASS="FILENAME"
>wins.dat</TT
>
>
in the <TT
CLASS="FILENAME"
>var/locks</TT
> directory configured under
> directory configured under
wherever Samba was configured to install itself.</P
><P
>If <B
@ -532,7 +537,7 @@ CLASS="FILENAME"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN177"
NAME="AEN178"
></A
><H2
>SIGNALS</H2
@ -540,21 +545,21 @@ NAME="AEN177"
>To shut down an <B
CLASS="COMMAND"
>nmbd</B
> process it is recommended
> process it is recommended
that SIGKILL (-9) <EM
>NOT</EM
> be used, except as a last
resort, as this may leave the name database in an inconsistent state.
> be used, except as a last
resort, as this may leave the name database in an inconsistent state.
The correct way to terminate <B
CLASS="COMMAND"
>nmbd</B
> is to send it
> is to send it
a SIGTERM (-15) signal and wait for it to die on its own.</P
><P
><B
CLASS="COMMAND"
>nmbd</B
> will accept SIGHUP, which will cause
> will accept SIGHUP, which will cause
it to dump out its namelists into the file <TT
CLASS="FILENAME"
>namelist.debug
@ -562,12 +567,12 @@ CLASS="FILENAME"
> in the <TT
CLASS="FILENAME"
>/usr/local/samba/var/locks</TT
>
>
directory (or the <TT
CLASS="FILENAME"
>var/locks</TT
> directory configured
under wherever Samba was configured to install itself). This will also
> directory configured
under wherever Samba was configured to install itself). This will also
cause <B
CLASS="COMMAND"
>nmbd</B
@ -593,7 +598,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN193"
NAME="AEN194"
></A
><H2
>VERSION</H2
@ -604,7 +609,7 @@ NAME="AEN193"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN196"
NAME="AEN197"
></A
><H2
>SEE ALSO</H2
@ -669,7 +674,7 @@ TARGET="_top"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN213"
NAME="AEN214"
></A
><H2
>AUTHOR</H2

265
docs/htmldocs/smb.conf.5.html
View File

@ -785,8 +785,9 @@ NAME="AEN236"
steps fail, then the connection request is rejected. However, if one of the
steps succeeds, then the following steps are not checked.</P
><P
>If the service is marked "guest only = yes" then
steps 1 to 5 are skipped.</P
>If the service is marked "guest only = yes" and the
server is running with share-level security ("security = share")
then steps 1 to 5 are skipped.</P
><P
></P
><OL
@ -1584,6 +1585,42 @@ CLASS="PARAMETER"
><LI
><P
><A
HREF="#LOCKSPINCOUNT"
><TT
CLASS="PARAMETER"
><I
>lock spin count</I
></TT
></A
></P
></LI
><LI
><P
><A
HREF="#LOCKSPINTIME"
><TT
CLASS="PARAMETER"
><I
>lock spin time</I
></TT
></A
></P
></LI
><LI
><P
><A
HREF="#PIDDIRECTORY"
><TT
CLASS="PARAMETER"
><I
>pid directory</I
></TT
></A
></P
></LI
><LI
><P
><A
HREF="#LOGFILE"
><TT
CLASS="PARAMETER"
@ -3026,7 +3063,7 @@ CLASS="PARAMETER"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN979"
NAME="AEN991"
></A
><H2
>COMPLETE LIST OF SERVICE PARAMETERS</H2
@ -3591,6 +3628,18 @@ CLASS="PARAMETER"
><LI
><P
><A
HREF="#INHERITACLS"
><TT
CLASS="PARAMETER"
><I
>inherit acls</I
></TT
></A
></P
></LI
><LI
><P
><A
HREF="#INHERITPERMISSIONS"
><TT
CLASS="PARAMETER"
@ -4493,7 +4542,7 @@ CLASS="PARAMETER"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN1467"
NAME="AEN1483"
></A
><H2
>EXPLANATION OF EACH PARAMETER</H2
@ -8927,6 +8976,28 @@ CLASS="COMMAND"
></DD
><DT
><A
NAME="INHERITACLS"
></A
>inherit acls (S)</DT
><DD
><P
>This parameter can be used to ensure
that if default acls exist on parent directories,
they are always honored when creating a subdirectory.
The default behavior is to use the mode specified
when creating the directory. Enabling this option
sets the mode to 0777, thus guaranteeing that
default directory acls are propagated.
</P
><P
>Default: <B
CLASS="COMMAND"
>inherit acls = no</B
>
</P
></DD
><DT
><A
NAME="INHERITPERMISSIONS"
></A
>inherit permissions (S)</DT
@ -9945,6 +10016,56 @@ CLASS="COMMAND"
></DD
><DT
><A
NAME="LOCKSPINCOUNT"
></A
>lock spin count (G)</DT
><DD
><P
>This parameter controls the number of times
that smbd should attempt to gain a byte range lock on the
behalf of a client request. Experiments have shown that
Windows 2k servers do not reply with a failure if the lock
could not be immediately granted, but try a few more times
in case the lock could later be aquired. This behavior
is used to support PC database formats such as MS Access
and FoxPro.
</P
><P
>Default: <B
CLASS="COMMAND"
>lock spin count = 2</B
>
</P
></DD
><DT
><A
NAME="LOCKSPINTIME"
></A
>lock spin time (G)</DT
><DD
><P
>The time in microseconds that smbd should
pause before attempting to gain a failed lock. See
<A
HREF="#LOCKSPINCOUNT"
><TT
CLASS="PARAMETER"
><I
>lock spin
count</I
></TT
></A
> for more details.
</P
><P
>Default: <B
CLASS="COMMAND"
>lock spin time = 10</B
>
</P
></DD
><DT
><A
NAME="LOCKING"
></A
>locking (S)</DT
@ -10474,8 +10595,8 @@ CLASS="COMMAND"
takes a printer name as its only parameter and outputs printer
status information.</P
><P
>Currently eight styles of printer status information
are supported; BSD, AIX, LPRNG, PLP, SYSV, HPUX, QNX and SOFTQ.
>Currently nine styles of printer status information
are supported; BSD, AIX, LPRNG, PLP, SYSV, HPUX, QNX, CUPS, and SOFTQ.
This covers most UNIX systems. You control which type is expected
using the <TT
CLASS="PARAMETER"
@ -10509,7 +10630,15 @@ CLASS="PARAMETER"
CLASS="ENVAR"
>$PATH
</TT
> may not be available to the server.</P
> may not be available to the server. When compiled with
the CUPS libraries, no <TT
CLASS="PARAMETER"
><I
>lpq command</I
></TT
> is
needed because smbd will make a library call to obtain the
print queue listing.</P
><P
>See also the <A
HREF="#PRINTING"
@ -13603,6 +13732,27 @@ CLASS="COMMAND"
></DD
><DT
><A
NAME="PIDDIRECTORY"
></A
>pid directory (G)</DT
><DD
><P
>This option specifies the directory where pid
files will be placed. </P
><P
>Default: <B
CLASS="COMMAND"
>pid directory = ${prefix}/var/locks</B
></P
><P
>Example: <B
CLASS="COMMAND"
>pid directory = /var/run/</B
>
</P
></DD
><DT
><A
NAME="POSIXLOCKING"
></A
>posix locking (S)</DT
@ -13931,34 +14081,23 @@ CLASS="COMMAND"
manually remove old spool files.</P
><P
>The print command is simply a text string. It will be used
verbatim, with two exceptions: All occurrences of <TT
CLASS="PARAMETER"
><I
>%s
</I
></TT
> and <TT
CLASS="PARAMETER"
><I
>%f</I
></TT
> will be replaced by the
appropriate spool file name, and all occurrences of <TT
CLASS="PARAMETER"
><I
>%p
</I
></TT
> will be replaced by the appropriate printer name. The
spool file name is generated automatically by the server. The
<TT
CLASS="PARAMETER"
><I
>%J</I
></TT
> macro can be used to access the job
verbatim after macro substitutions have been made:</P
><P
>s, %p - the path to the spool
file name</P
><P
>%p - the appropriate printer
name</P
><P
>%J - the job
name as transmitted by the client.</P
><P
>%c - The number of printed pages
of the spooled job (if known).</P
><P
>%z - the size of the spooled
print job (in bytes)</P
><P
>The print command <EM
>MUST</EM
> contain at least
@ -14065,6 +14204,25 @@ CLASS="COMMAND"
>print command = lp -d%p -s %s; rm %s</B
></P
><P
>For printing = CUPS : If SAMBA is compiled against
libcups, then <A
HREF="#PRINTING"
>printcap = cups</A
>
uses the CUPS API to
submit jobs, etc. Otherwise it maps to the System V
commands with the -oraw option for printing, i.e. it
uses <B
CLASS="COMMAND"
>lp -c -d%p -oraw; rm %s</B
>.
With <B
CLASS="COMMAND"
>printing = cups</B
>,
and if SAMBA is compiled against libcups, any manually
set print command will be ignored.</P
><P
>Example: <B
CLASS="COMMAND"
>print command = /usr/local/samba/bin/myprintscript
@ -14159,7 +14317,18 @@ HREF="#AEN79"
CLASS="COMMAND"
>printcap name = cups
</B
>.</P
>. This should be supplemented by an addtional setting
<A
HREF="#PRINTING"
>printing = cups</A
> in the [global]
section. <B
CLASS="COMMAND"
>printcap name = cups</B
> will use the
"dummy" printcap created by CUPS, as specified in your CUPS
configuration file.
</P
><P
>On System V systems that use <B
CLASS="COMMAND"
@ -18464,7 +18633,7 @@ CLASS="COMMAND"
><A
NAME="WINBINDCACHETIME"
></A
>winbind cache time</DT
>winbind cache time (G)</DT
><DD
><P
>This parameter specifies the number of seconds the
@ -18485,8 +18654,7 @@ CLASS="COMMAND"
><A
NAME="WINBINDENUMUSERS"
></A
>winbind enum
users</DT
>winbind enum users (G)</DT
><DD
><P
>On large installations using
@ -18537,8 +18705,7 @@ CLASS="COMMAND"
><A
NAME="WINBINDENUMGROUPS"
></A
>winbind enum
groups</DT
>winbind enum groups (G)</DT
><DD
><P
>On large installations using
@ -18588,7 +18755,7 @@ CLASS="COMMAND"
><A
NAME="WINBINDGID"
></A
>winbind gid</DT
>winbind gid (G)</DT
><DD
><P
>The winbind gid parameter specifies the range of group
@ -18615,7 +18782,7 @@ CLASS="COMMAND"
><A
NAME="WINBINDSEPARATOR"
></A
>winbind separator</DT
>winbind separator (G)</DT
><DD
><P
>This parameter allows an admin to define the character
@ -18645,21 +18812,21 @@ CLASS="FILENAME"
with group membership at least on glibc systems, as the character +
is used as a special character for NIS in /etc/group.</P
><P
>Example: <B
>Default: <B
CLASS="COMMAND"
>winbind separator = \\</B
>winbind separator = '\'</B
></P
><P
>Example: <B
CLASS="COMMAND"
>winbind separator = /</B
>winbind separator = +</B
></P
></DD
><DT
><A
NAME="WINBINDUID"
></A
>winbind uid</DT
>winbind uid (G)</DT
><DD
><P
>The winbind gid parameter specifies the range of group
@ -19079,7 +19246,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN6045"
NAME="AEN6101"
></A
><H2
>WARNINGS</H2
@ -19109,7 +19276,7 @@ TARGET="_top"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN6051"
NAME="AEN6107"
></A
><H2
>VERSION</H2
@ -19120,7 +19287,7 @@ NAME="AEN6051"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN6054"
NAME="AEN6110"
></A
><H2
>SEE ALSO</H2
@ -19199,7 +19366,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN6074"
NAME="AEN6130"
></A
><H2
>AUTHOR</H2

105
docs/htmldocs/smbclient.1.html
View File

@ -673,12 +673,12 @@ CLASS="COMMAND"
>-W WORKGROUP</DT
><DD
><P
>Override the default workgroup specified in the
workgroup parameter of the <TT
>Override the default workgroup (domain) specified
in the workgroup parameter of the <TT
CLASS="FILENAME"
>smb.conf</TT
> file
for this connection. This may be needed to connect to some
>
file for this connection. This may be needed to connect to some
servers. </P
></DD
><DT
@ -1051,6 +1051,42 @@ CLASS="REPLACEABLE"
</P
></DD
><DT
>altname file</DT
><DD
><P
>The client will request that the server return
the "alternate" name (the 8.3 name) for a file or directory.
</P
></DD
><DT
>cancel jobid0 [jobid1] ... [jobidN]</DT
><DD
><P
>The client will request that the server cancel
the printjobs identified by the given numeric print job ids.
</P
></DD
><DT
>chmod file mode in octal</DT
><DD
><P
>This command depends on the server supporting the CIFS
UNIX extensions and will fail if the server does not. The client requests that the server
change the UNIX permissions to the given octal mode, in standard UNIX format.
</P
></DD
><DT
>chown file uid gid</DT
><DD
><P
>This command depends on the server supporting the CIFS
UNIX extensions and will fail if the server does not. The client requests that the server
change the UNIX user and group ownership to the given decimal values. Note there is
currently no way to remotely look up the UNIX uid and gid values for a given name.
This may be addressed in future versions of the CIFS UNIX extensions.
</P
></DD
><DT
>cd [directory name]</DT
><DD
><P
@ -1139,6 +1175,16 @@ CLASS="REPLACEABLE"
</P
></DD
><DT
>link source destination</DT
><DD
><P
>This command depends on the server supporting the CIFS
UNIX extensions and will fail if the server does not. The client requests that the server
create a hard link between the source and destination files. The source file
must not exist.
</P
></DD
><DT
>lowercase</DT
><DD
><P
@ -1352,6 +1398,31 @@ CLASS="REPLACEABLE"
privileges permitting) from the server. </P
></DD
><DT
>setmode &#60;filename&#62; &#60;perm=[+|\-]rsha&#62;</DT
><DD
><P
>A version of the DOS attrib command to set
file permissions. For example: </P
><P
><B
CLASS="COMMAND"
>setmode myfile +r </B
></P
><P
>would make myfile read only. </P
></DD
><DT
>symlink source destination</DT
><DD
><P
>This command depends on the server supporting the CIFS
UNIX extensions and will fail if the server does not. The client requests that the server
create a symbolic hard link between the source and destination files. The source file
must not exist. Note that the server will not create a link to any path that lies
outside the currently connected share. This is enforced by the Samba server.
</P
></DD
><DT
>tar &#60;c|x&#62;[IXbgNa]</DT
><DD
><P
@ -1391,27 +1462,13 @@ CLASS="REPLACEABLE"
tar will reset the archive bit on all files it backs up (implies
read/write share). </P
></DD
><DT
>setmode &#60;filename&#62; &#60;perm=[+|\-]rsha&#62;</DT
><DD
><P
>A version of the DOS attrib command to set
file permissions. For example: </P
><P
><B
CLASS="COMMAND"
>setmode myfile +r </B
></P
><P
>would make myfile read only. </P
></DD
></DL
></DIV
></DIV
><DIV
CLASS="REFSECT1"
><A
NAME="AEN477"
NAME="AEN501"
></A
><H2
>NOTES</H2
@ -1432,7 +1489,7 @@ NAME="AEN477"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN482"
NAME="AEN506"
></A
><H2
>ENVIRONMENT VARIABLES</H2
@ -1465,7 +1522,7 @@ CLASS="ENVAR"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN490"
NAME="AEN514"
></A
><H2
>INSTALLATION</H2
@ -1503,7 +1560,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN500"
NAME="AEN524"
></A
><H2
>DIAGNOSTICS</H2
@ -1519,7 +1576,7 @@ NAME="AEN500"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN504"
NAME="AEN528"
></A
><H2
>VERSION</H2
@ -1530,7 +1587,7 @@ NAME="AEN504"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN507"
NAME="AEN531"
></A
><H2
>AUTHOR</H2

36
docs/htmldocs/smbcontrol.1.html
View File

@ -24,7 +24,7 @@ NAME="AEN5"
></A
><H2
>Name</H2
>smbcontrol&nbsp;--&nbsp;send messages to smbd or nmbd processes</DIV
>smbcontrol&nbsp;--&nbsp;send messages to smbd, nmbd or winbindd processes</DIV
><DIV
CLASS="REFSYNOPSISDIV"
><A
@ -65,18 +65,23 @@ CLASS="COMMAND"
HREF="smbd.8.html"
TARGET="_top"
>smbd(8)</A
> or
>,
an <A
HREF="nmbd.8.html"
TARGET="_top"
>nmbd(8)</A
> daemon running on the
system.</P
>
or a <A
HREF="winbindd.8.html"
TARGET="_top"
>winbindd(8)</A
>
daemon running on the system.</P
></DIV
><DIV
CLASS="REFSECT1"
><A
NAME="AEN25"
NAME="AEN26"
></A
><H2
>OPTIONS</H2
@ -175,8 +180,9 @@ CLASS="CONSTANT"
message to smbd which will then close the client connections to
the named share. Note that this doesn't affect client connections
to any other shares. This message-type takes an argument of the
share name for which client connections will be close, or the
share name for which client connections will be closed, or the
"*" character which will close all currently open shares.
This may be useful if you made changes to the access controls on the share.
This message can only be sent to <TT
CLASS="CONSTANT"
>smbd</TT
@ -220,7 +226,7 @@ CLASS="CONSTANT"
collection, "off" to turn off profile stats collection, "count"
to enable only collection of count stats (time stats are
disabled), and "flush" to zero the current profile stats. This can
be sent to any of the destinations.</P
be sent to any smbd or nmbd destinations.</P
><P
>The <TT
CLASS="CONSTANT"
@ -236,7 +242,7 @@ CLASS="CONSTANT"
> message-type sends
a "request profile level" message. The current profile level
setting is returned by a "profilelevel" message. This can be sent
to any of the destinations.</P
to any smbd or nmbd destinations.</P
><P
>The <TT
CLASS="CONSTANT"
@ -249,14 +255,6 @@ CLASS="CONSTANT"
CLASS="CONSTANT"
>smbd</TT
>.</P
><P
>The <TT
CLASS="CONSTANT"
>close-share</TT
> message-type sends a
message to smbd which forces smbd to close the share that was
specified as an argument. This may be useful if you made changes
to the access controls on the share. </P
></DD
><DT
>parameters</DT
@ -270,7 +268,7 @@ CLASS="CONSTANT"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN82"
NAME="AEN81"
></A
><H2
>VERSION</H2
@ -281,7 +279,7 @@ NAME="AEN82"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN85"
NAME="AEN84"
></A
><H2
>SEE ALSO</H2
@ -307,7 +305,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN92"
NAME="AEN91"
></A
><H2
>AUTHOR</H2

27
docs/htmldocs/smbd.8.html
View File

@ -272,7 +272,14 @@ TARGET="_top"
CLASS="FILENAME"
> smb.conf(5)</TT
></A
> file.
> file. <EM
>Beware:</EM
>
If the directory specified does not exist, <B
CLASS="COMMAND"
>smbd</B
>
will log to the default debug log location defined at compile time.
</P
><P
>The default log directory is specified at
@ -354,7 +361,7 @@ CLASS="FILENAME"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN120"
NAME="AEN122"
></A
><H2
>FILES</H2
@ -466,7 +473,7 @@ CLASS="FILENAME"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN156"
NAME="AEN158"
></A
><H2
>LIMITATIONS</H2
@ -485,7 +492,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN160"
NAME="AEN162"
></A
><H2
>ENVIRONMENT VARIABLES</H2
@ -516,7 +523,7 @@ CLASS="CONSTANT"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN169"
NAME="AEN171"
></A
><H2
>PAM INTERACTION</H2
@ -561,7 +568,7 @@ TARGET="_top"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN180"
NAME="AEN182"
></A
><H2
>VERSION</H2
@ -572,7 +579,7 @@ NAME="AEN180"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN183"
NAME="AEN185"
></A
><H2
>DIAGNOSTICS</H2
@ -595,7 +602,7 @@ NAME="AEN183"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN188"
NAME="AEN190"
></A
><H2
>SIGNALS</H2
@ -660,7 +667,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN205"
NAME="AEN207"
></A
><H2
>SEE ALSO</H2
@ -726,7 +733,7 @@ TARGET="_top"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN222"
NAME="AEN224"
></A
><H2
>AUTHOR</H2

2
docs/htmldocs/smbmount.8.html
View File

@ -35,7 +35,7 @@ NAME="AEN8"
><P
><B
CLASS="COMMAND"
>smbumount</B
>smbmount</B
> {service} {mount-point} [-o options]</P
></DIV
><DIV

229
docs/htmldocs/smbsh.1.html
View File

@ -37,12 +37,12 @@ NAME="AEN8"
><B
CLASS="COMMAND"
>smbsh</B
> </P
> [-W workgroup] [-U username] [-P prefix] [-R &#60;name resolve order&#62;] [-d &#60;debug level&#62;] [-l logfile] [-L libdir]</P
></DIV
><DIV
CLASS="REFSECT1"
><A
NAME="AEN11"
NAME="AEN18"
></A
><H2
>DESCRIPTION</H2
@ -72,6 +72,223 @@ CLASS="COMMAND"
>smbsh</B
>
to work correctly.</P
></DIV
><DIV
CLASS="REFSECT1"
><A
NAME="AEN28"
></A
><H2
>OPTIONS</H2
><P
></P
><DIV
CLASS="VARIABLELIST"
><DL
><DT
>-W WORKGROUP</DT
><DD
><P
>Override the default workgroup specified in the
workgroup parameter of the <TT
CLASS="FILENAME"
>smb.conf</TT
> file
for this session. This may be needed to connect to some
servers. </P
></DD
><DT
>-U username[%pass]</DT
><DD
><P
>Sets the SMB username or username and password.
If this option is not specified, the user will be prompted for
both the username and the password. If %pass is not specified,
the user will be prompted for the password.
</P
></DD
><DT
>-P prefix</DT
><DD
><P
>This option allows
the user to set the directory prefix for SMB access. The
default value if this option is not specified is
<EM
>smb</EM
>.
</P
></DD
><DT
>-R &#60;name resolve order&#62;</DT
><DD
><P
>This option is used to determine what naming
services and in what order to resolve
host names to IP addresses. The option takes a space-separated
string of different name resolution options.</P
><P
>The options are :"lmhosts", "host", "wins" and "bcast".
They cause names to be resolved as follows :</P
><P
></P
><UL
><LI
><P
><TT
CLASS="CONSTANT"
>lmhosts</TT
> :
Lookup an IP address in the Samba lmhosts file. If the
line in lmhosts has no name type attached to the
NetBIOS name
(see the <A
HREF="lmhosts.5.html"
TARGET="_top"
>lmhosts(5)</A
>
for details) then any name type matches for lookup.
</P
></LI
><LI
><P
><TT
CLASS="CONSTANT"
>host</TT
> :
Do a standard host name to IP address resolution, using
the system <TT
CLASS="FILENAME"
>/etc/hosts</TT
>, NIS, or DNS
lookups. This method of name resolution is operating
system dependent, for instance on IRIX or Solaris this
may be controlled by the <TT
CLASS="FILENAME"
>/etc/nsswitch.conf
</TT
> file). Note that this method is only used
if the NetBIOS name type being queried is the 0x20
(server) name type, otherwise it is ignored.
</P
></LI
><LI
><P
><TT
CLASS="CONSTANT"
>wins</TT
> :
Query a name with the IP address listed in the
<TT
CLASS="PARAMETER"
><I
>wins server</I
></TT
> parameter. If no
WINS server has been specified this method will be
ignored.
</P
></LI
><LI
><P
><TT
CLASS="CONSTANT"
>bcast</TT
> :
Do a broadcast on each of the known local interfaces
listed in the <TT
CLASS="PARAMETER"
><I
>interfaces</I
></TT
>
parameter. This is the least reliable of the name
resolution methods as it depends on the target host
being on a locally connected subnet.
</P
></LI
></UL
><P
>If this parameter is not set then the name resolve order
defined in the <TT
CLASS="FILENAME"
>smb.conf</TT
> file parameter
(name resolve order) will be used. </P
><P
>The default order is lmhosts, host, wins, bcast. Without
this parameter or any entry in the <TT
CLASS="PARAMETER"
><I
>name resolve order
</I
></TT
> parameter of the <TT
CLASS="FILENAME"
>smb.conf</TT
>
file, the name resolution methods will be attempted in this
order. </P
></DD
><DT
>-d &#60;debug level&#62;</DT
><DD
><P
>debug level is an integer from 0 to 10.</P
><P
>The default value if this parameter is not specified
is zero.</P
><P
>The higher this value, the more detail will be logged
about the activities of <B
CLASS="COMMAND"
>nmblookup</B
>. At level
0, only critical errors and serious warnings will be logged.
</P
></DD
><DT
>-l logfilename</DT
><DD
><P
>If specified causes all debug messages to be
written to the file specified by <TT
CLASS="REPLACEABLE"
><I
>logfilename
</I
></TT
>. If not specified then all messages will be
written to<TT
CLASS="REPLACEABLE"
><I
>stderr</I
></TT
>.
</P
></DD
><DT
>-L libdir</DT
><DD
><P
>This parameter specifies the location of the
shared libraries used by <B
CLASS="COMMAND"
>smbsh</B
>. The default
value is specified at compile time.
</P
></DD
></DL
></DIV
></DIV
><DIV
CLASS="REFSECT1"
><A
NAME="AEN91"
></A
><H2
>EXAMPLES</H2
><P
>To use the <B
CLASS="COMMAND"
@ -158,7 +375,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN40"
NAME="AEN112"
></A
><H2
>VERSION</H2
@ -169,7 +386,7 @@ NAME="AEN40"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN43"
NAME="AEN115"
></A
><H2
>BUGS</H2
@ -202,7 +419,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN52"
NAME="AEN124"
></A
><H2
>SEE ALSO</H2
@ -225,7 +442,7 @@ TARGET="_top"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN58"
NAME="AEN130"
></A
><H2
>AUTHOR</H2

78
docs/htmldocs/wbinfo.1.html
View File

@ -36,12 +36,12 @@ NAME="AEN8"
><B
CLASS="COMMAND"
>wbinfo</B
> [-u] [-g] [-n name] [-s sid] [-U uid] [-G gid] [-S sid] [-Y sid] [-t] [-m] [-a user%password] [-p]</P
> [-u] [-g] [-h name] [-i ip] [-n name] [-s sid] [-U uid] [-G gid] [-S sid] [-Y sid] [-t] [-m] [-r user] [-a user%password] [-A user%password]</P
></DIV
><DIV
CLASS="REFSECT1"
><A
NAME="AEN23"
NAME="AEN26"
></A
><H2
>DESCRIPTION</H2
@ -78,7 +78,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN34"
NAME="AEN37"
></A
><H2
>OPTIONS</H2
@ -122,6 +122,52 @@ CLASS="COMMAND"
>. </P
></DD
><DT
>-h name</DT
><DD
><P
>The <TT
CLASS="PARAMETER"
><I
>-h</I
></TT
> option
queries <B
CLASS="COMMAND"
>winbindd(8)</B
> to query the WINS
server for the IP address associated with the NetBIOS name
specified by the <TT
CLASS="PARAMETER"
><I
>name</I
></TT
> parameter.
</P
></DD
><DT
>-i ip</DT
><DD
><P
>The <TT
CLASS="PARAMETER"
><I
>-i</I
></TT
> option
queries <B
CLASS="COMMAND"
>winbindd(8)</B
> to send a node status
request to get the NetBIOS name associated with the IP address
specified by the <TT
CLASS="PARAMETER"
><I
>ip</I
></TT
> parameter.
</P
></DD
><DT
>-n name</DT
><DD
><P
@ -228,6 +274,15 @@ CLASS="COMMAND"
</P
></DD
><DT
>-r username</DT
><DD
><P
>Try to obtain the list of UNIX group ids
to which the user belongs. This only works for users
defined on a Domain Controller.
</P
></DD
><DT
>-a username%password</DT
><DD
><P
@ -236,11 +291,14 @@ CLASS="COMMAND"
</P
></DD
><DT
>-p</DT
>-A username%password</DT
><DD
><P
>Attempt a simple 'ping' check that the winbindd
is indeed alive.
>Store username and password used by winbindd
during session setup to a domain controller. This enables
winbindd to operate in a Windows 2000 domain with Restrict
Anonymous turned on (a.k.a. Permissions compatiable with
Windows 2000 servers only).
</P
></DD
></DL
@ -249,7 +307,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN98"
NAME="AEN119"
></A
><H2
>EXIT STATUS</H2
@ -268,7 +326,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN103"
NAME="AEN124"
></A
><H2
>VERSION</H2
@ -279,7 +337,7 @@ NAME="AEN103"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN106"
NAME="AEN127"
></A
><H2
>SEE ALSO</H2
@ -297,7 +355,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN111"
NAME="AEN132"
></A
><H2
>AUTHOR</H2

47
docs/htmldocs/winbindd.8.html
View File

@ -109,6 +109,22 @@ CLASS="FILENAME"
CLASS="VARIABLELIST"
><DL
><DT
>hosts</DT
><DD
><P
>User information traditionally stored in
the <TT
CLASS="FILENAME"
>hosts(5)</TT
> file and used by
<B
CLASS="COMMAND"
>gethostbyname(3)</B
> functions. Names are
resolved through the WINS server or by broadcast.
</P
></DD
><DT
>passwd</DT
><DD
><P
@ -169,11 +185,22 @@ group: files winbind
></TR
></TABLE
></P
><P
>The following simple configuration in the
<TT
CLASS="FILENAME"
>/etc/nsswitch.conf</TT
> file can be used to initially
resolve hostnames from <TT
CLASS="FILENAME"
>/etc/hosts</TT
> and then from the
WINS server.</P
></DIV
><DIV
CLASS="REFSECT1"
><A
NAME="AEN48"
NAME="AEN57"
></A
><H2
>OPTIONS</H2
@ -212,7 +239,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN61"
NAME="AEN70"
></A
><H2
>NAME AND ID RESOLUTION</H2
@ -243,7 +270,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN67"
NAME="AEN76"
></A
><H2
>CONFIGURATION</H2
@ -532,7 +559,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN158"
NAME="AEN167"
></A
><H2
>EXAMPLE SETUP</H2
@ -710,7 +737,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN197"
NAME="AEN206"
></A
><H2
>NOTES</H2
@ -768,7 +795,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN213"
NAME="AEN222"
></A
><H2
>SIGNALS</H2
@ -819,7 +846,7 @@ CLASS="COMMAND"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN230"
NAME="AEN239"
></A
><H2
>FILES</H2
@ -895,7 +922,7 @@ CLASS="FILENAME"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN259"
NAME="AEN268"
></A
><H2
>VERSION</H2
@ -906,7 +933,7 @@ NAME="AEN259"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN262"
NAME="AEN271"
></A
><H2
>SEE ALSO</H2
@ -934,7 +961,7 @@ TARGET="_top"
><DIV
CLASS="REFSECT1"
><A
NAME="AEN269"
NAME="AEN278"
></A
><H2
>AUTHOR</H2

71
docs/manpages/nmbd.8
View File

@ -3,7 +3,7 @@
.\" <http://shell.ipoline.com/~elmert/hacks/docbook2X/>
.\" Please send any bug reports, improvements, comments, patches,
.\" etc. to Steve Cheng <steve@ggi-project.org>.
.TH "NMBD" "8" "28 January 2002" "" ""
.TH "NMBD" "8" "08 May 2002" "" ""
.SH NAME
nmbd \- NetBIOS name server to provide NetBIOS over IP naming services to clients
.SH SYNOPSIS
@ -126,11 +126,11 @@ parameter in the \fI smb.conf\fRfile.
The -l parameter specifies a directory
into which the "log.nmbd" log file will be created
for operational data from the running
\fBnmbd\fR server.
The default log directory is compiled into Samba
\fBnmbd\fR server. The default log directory is compiled into Samba
as part of the build process. Common defaults are \fI /usr/local/samba/var/log.nmb\fR, \fI /usr/samba/var/log.nmb\fR or
\fI/var/log/log.nmb\fR.
\fI/var/log/log.nmb\fR. \fBBeware:\fR
If the directory specified does not exist, \fBnmbd\fR
will log to the default debug log location defined at compile time.
.TP
\fB-n <primary NetBIOS name>\fR
This option allows you to override
@ -142,58 +142,57 @@ line setting will take precedence over settings in
.TP
\fB-p <UDP port number>\fR
UDP port number is a positive integer value.
This option changes the default UDP port number (normally 137)
that \fBnmbd\fR responds to name queries on. Don't
use this option unless you are an expert, in which case you
This option changes the default UDP port number (normally 137)
that \fBnmbd\fR responds to name queries on. Don't
use this option unless you are an expert, in which case you
won't need help!
.TP
\fB-s <configuration file>\fR
The default configuration file name
The default configuration file name
is set at build time, typically as \fI /usr/local/samba/lib/smb.conf\fR, but
this may be changed when Samba is autoconfigured.
The file specified contains the configuration details
required by the server. See
\fIsmb.conf(5)\fRfor more information.
The file specified contains the configuration details
required by the server. See \fIsmb.conf(5)\fRfor more information.
.SH "FILES"
.TP
\fB\fI/etc/inetd.conf\fB\fR
If the server is to be run by the
\fBinetd\fR meta-daemon, this file
must contain suitable startup information for the
If the server is to be run by the
\fBinetd\fR meta-daemon, this file
must contain suitable startup information for the
meta-daemon. See the UNIX_INSTALL.htmldocument
for details.
.TP
\fB\fI/etc/rc\fB\fR
or whatever initialization script your
or whatever initialization script your
system uses).
If running the server as a daemon at startup,
this file will need to contain an appropriate startup
If running the server as a daemon at startup,
this file will need to contain an appropriate startup
sequence for the server. See the UNIX_INSTALL.htmldocument
for details.
.TP
\fB\fI/etc/services\fB\fR
If running the server via the
meta-daemon \fBinetd\fR, this file
must contain a mapping of service name (e.g., netbios-ssn)
to service port (e.g., 139) and protocol type (e.g., tcp).
If running the server via the
meta-daemon \fBinetd\fR, this file
must contain a mapping of service name (e.g., netbios-ssn)
to service port (e.g., 139) and protocol type (e.g., tcp).
See the UNIX_INSTALL.html
document for details.
.TP
\fB\fI/usr/local/samba/lib/smb.conf\fB\fR
This is the default location of the
This is the default location of the
\fIsmb.conf\fR
server configuration file. Other common places that systems
install this file are \fI/usr/samba/lib/smb.conf\fR
server configuration file. Other common places that systems
install this file are \fI/usr/samba/lib/smb.conf\fR
and \fI/etc/smb.conf\fR.
When run as a WINS server (see the
When run as a WINS server (see the
wins support
parameter in the \fIsmb.conf(5)\fR man page),
\fBnmbd\fR
will store the WINS database in the file \fIwins.dat\fR
in the \fIvar/locks\fR directory configured under
will store the WINS database in the file \fIwins.dat\fR
in the \fIvar/locks\fR directory configured under
wherever Samba was configured to install itself.
If \fBnmbd\fR is acting as a \fB browse master\fR (see the local master
@ -204,17 +203,17 @@ will store the browsing database in the file \fIbrowse.dat
configured under wherever Samba was configured to install itself.
.SH "SIGNALS"
.PP
To shut down an \fBnmbd\fR process it is recommended
that SIGKILL (-9) \fBNOT\fR be used, except as a last
resort, as this may leave the name database in an inconsistent state.
The correct way to terminate \fBnmbd\fR is to send it
To shut down an \fBnmbd\fR process it is recommended
that SIGKILL (-9) \fBNOT\fR be used, except as a last
resort, as this may leave the name database in an inconsistent state.
The correct way to terminate \fBnmbd\fR is to send it
a SIGTERM (-15) signal and wait for it to die on its own.
.PP
\fBnmbd\fR will accept SIGHUP, which will cause
\fBnmbd\fR will accept SIGHUP, which will cause
it to dump out its namelists into the file \fInamelist.debug
\fRin the \fI/usr/local/samba/var/locks\fR
directory (or the \fIvar/locks\fR directory configured
under wherever Samba was configured to install itself). This will also
\fRin the \fI/usr/local/samba/var/locks\fR
directory (or the \fIvar/locks\fR directory configured
under wherever Samba was configured to install itself). This will also
cause \fBnmbd\fR to dump out its server database in
the \fIlog.nmb\fR file.
.PP

120
docs/manpages/smb.conf.5
View File

@ -3,7 +3,7 @@
.\" <http://shell.ipoline.com/~elmert/hacks/docbook2X/>
.\" Please send any bug reports, improvements, comments, patches,
.\" etc. to Steve Cheng <steve@ggi-project.org>.
.TH "SMB.CONF" "5" "24 April 2002" "" ""
.TH "SMB.CONF" "5" "08 May 2002" "" ""
.SH NAME
smb.conf \- The configuration file for the Samba suite
.SH "SYNOPSIS"
@ -463,8 +463,9 @@ if it will allow a connection to a specified service. If all the
steps fail, then the connection request is rejected. However, if one of the
steps succeeds, then the following steps are not checked.
.PP
If the service is marked "guest only = yes" then
steps 1 to 5 are skipped.
If the service is marked "guest only = yes" and the
server is running with share-level security ("security = share")
then steps 1 to 5 are skipped.
.IP 1.
If the client has passed a username/password
pair and that username/password pair is validated by the UNIX
@ -686,6 +687,15 @@ each parameter for details. Note that some are synonyms.
\fIlock directory\fR
.TP 0.2i
\(bu
\fIlock spin count\fR
.TP 0.2i
\(bu
\fIlock spin time\fR
.TP 0.2i
\(bu
\fIpid directory\fR
.TP 0.2i
\(bu
\fIlog file\fR
.TP 0.2i
\(bu
@ -1188,6 +1198,9 @@ each parameter for details. Note that some are synonyms.
\fIinclude\fR
.TP 0.2i
\(bu
\fIinherit acls\fR
.TP 0.2i
\(bu
\fIinherit permissions\fR
.TP 0.2i
\(bu
@ -3102,6 +3115,17 @@ Default: \fBno file included\fR
Example: \fBinclude = /usr/local/samba/lib/admin_smb.conf
\fR.TP
\fBinherit acls (S)\fR
This parameter can be used to ensure
that if default acls exist on parent directories,
they are always honored when creating a subdirectory.
The default behavior is to use the mode specified
when creating the directory. Enabling this option
sets the mode to 0777, thus guaranteeing that
default directory acls are propagated.
Default: \fBinherit acls = no\fR
.TP
\fBinherit permissions (S)\fR
The permissions on new files and directories
are normally governed by \fI create mask\fR, \fIdirectory mask\fR, \fIforce create mode\fR
@ -3469,6 +3493,26 @@ Default: \fBlock directory = ${prefix}/var/locks\fR
Example: \fBlock directory = /var/run/samba/locks\fR
.TP
\fBlock spin count (G)\fR
This parameter controls the number of times
that smbd should attempt to gain a byte range lock on the
behalf of a client request. Experiments have shown that
Windows 2k servers do not reply with a failure if the lock
could not be immediately granted, but try a few more times
in case the lock could later be aquired. This behavior
is used to support PC database formats such as MS Access
and FoxPro.
Default: \fBlock spin count = 2\fR
.TP
\fBlock spin time (G)\fR
The time in microseconds that smbd should
pause before attempting to gain a failed lock. See
\fIlock spin
count\fR for more details.
Default: \fBlock spin time = 10\fR
.TP
\fBlocking (S)\fR
This controls whether or not locking will be
performed by the server in response to lock requests from the
@ -3712,8 +3756,8 @@ This command should be a program or script which
takes a printer name as its only parameter and outputs printer
status information.
Currently eight styles of printer status information
are supported; BSD, AIX, LPRNG, PLP, SYSV, HPUX, QNX and SOFTQ.
Currently nine styles of printer status information
are supported; BSD, AIX, LPRNG, PLP, SYSV, HPUX, QNX, CUPS, and SOFTQ.
This covers most UNIX systems. You control which type is expected
using the \fIprinting =\fR option.
@ -3729,7 +3773,10 @@ command.
Note that it is good practice to include the absolute path
in the \fIlpq command\fR as the \fB$PATH
\fRmay not be available to the server.
\fRmay not be available to the server. When compiled with
the CUPS libraries, no \fIlpq command\fR is
needed because smbd will make a library call to obtain the
print queue listing.
See also the \fIprinting
\fRparameter.
@ -5008,6 +5055,14 @@ Default: \fBnone\fR
Example: \fBpath = /home/fred\fR
.TP
\fBpid directory (G)\fR
This option specifies the directory where pid
files will be placed.
Default: \fBpid directory = ${prefix}/var/locks\fR
Example: \fBpid directory = /var/run/\fR
.TP
\fBposix locking (S)\fR
The \fBsmbd(8)\fR
daemon maintains an database of file locks obtained by SMB clients.
@ -5137,14 +5192,23 @@ spool file when it has been processed, otherwise you will need to
manually remove old spool files.
The print command is simply a text string. It will be used
verbatim, with two exceptions: All occurrences of \fI%s
\fRand \fI%f\fR will be replaced by the
appropriate spool file name, and all occurrences of \fI%p
\fRwill be replaced by the appropriate printer name. The
spool file name is generated automatically by the server. The
\fI%J\fR macro can be used to access the job
verbatim after macro substitutions have been made:
s, %p - the path to the spool
file name
%p - the appropriate printer
name
%J - the job
name as transmitted by the client.
%c - The number of printed pages
of the spooled job (if known).
%z - the size of the spooled
print job (in bytes)
The print command \fBMUST\fR contain at least
one occurrence of \fI%s\fR or \fI%f
\fR- the \fI%p\fR is optional. At the time
@ -5189,6 +5253,16 @@ For \fBprinting = SOFTQ :\fR
\fBprint command = lp -d%p -s %s; rm %s\fR
For printing = CUPS : If SAMBA is compiled against
libcups, then printcap = cups
uses the CUPS API to
submit jobs, etc. Otherwise it maps to the System V
commands with the -oraw option for printing, i.e. it
uses \fBlp -c -d%p -oraw; rm %s\fR.
With \fBprinting = cups\fR,
and if SAMBA is compiled against libcups, any manually
set print command will be ignored.
Example: \fBprint command = /usr/local/samba/bin/myprintscript
%p %s\fR
.TP
@ -5217,7 +5291,11 @@ compiled-in default printcap name used by the server (usually \fI /etc/printcap\
why you might want to do this.
To use the CUPS printing interface set \fBprintcap name = cups
\fR\&.
\fR\&. This should be supplemented by an addtional setting
printing = cups in the [global]
section. \fBprintcap name = cups\fR will use the
"dummy" printcap created by CUPS, as specified in your CUPS
configuration file.
On System V systems that use \fBlpstat\fR to
list available printers you can use \fBprintcap name = lpstat
@ -7042,7 +7120,7 @@ that Samba has to do in order to perform the link checks.
Default: \fBwide links = yes\fR
.TP
\fBwinbind cache time\fR
\fBwinbind cache time (G)\fR
This parameter specifies the number of seconds the
winbindd(8)daemon will cache
user and group information before querying a Windows NT server
@ -7050,7 +7128,7 @@ again.
Default: \fBwinbind cache type = 15\fR
.TP
\fBwinbind enum users\fR
\fBwinbind enum users (G)\fR
On large installations using
winbindd(8)it may be
necessary to suppress the enumeration of users through the
@ -7069,7 +7147,7 @@ usernames.
Default: \fBwinbind enum users = yes \fR
.TP
\fBwinbind enum groups\fR
\fBwinbind enum groups (G)\fR
On large installations using
winbindd(8)it may be
necessary to suppress the enumeration of groups through the
@ -7085,7 +7163,7 @@ enumeration may cause some programs to behave oddly.
Default: \fBwinbind enum groups = yes \fR
.TP
\fBwinbind gid\fR
\fBwinbind gid (G)\fR
The winbind gid parameter specifies the range of group
ids that are allocated by the winbindd(8)daemon. This range of group ids should have no
existing local or NIS groups within it as strange conflicts can
@ -7095,7 +7173,7 @@ Default: \fBwinbind gid = <empty string>
\fR
Example: \fBwinbind gid = 10000-20000\fR
.TP
\fBwinbind separator\fR
\fBwinbind separator (G)\fR
This parameter allows an admin to define the character
used when listing a username of the form of \fIDOMAIN
\fR\\\fIuser\fR. This parameter
@ -7106,11 +7184,11 @@ Please note that setting this parameter to + causes problems
with group membership at least on glibc systems, as the character +
is used as a special character for NIS in /etc/group.
Example: \fBwinbind separator = \\\\\fR
Default: \fBwinbind separator = '\\'\fR
Example: \fBwinbind separator = /\fR
Example: \fBwinbind separator = +\fR
.TP
\fBwinbind uid\fR
\fBwinbind uid (G)\fR
The winbind gid parameter specifies the range of group
ids that are allocated by the winbindd(8)daemon. This range of ids should have no
existing local or NIS users within it as strange conflicts can

57
docs/manpages/smbclient.1
View File

@ -3,7 +3,7 @@
.\" <http://shell.ipoline.com/~elmert/hacks/docbook2X/>
.\" Please send any bug reports, improvements, comments, patches,
.\" etc. to Steve Cheng <steve@ggi-project.org>.
.TH "SMBCLIENT" "1" "28 January 2002" "" ""
.TH "SMBCLIENT" "1" "08 May 2002" "" ""
.SH NAME
smbclient \- ftp-like client to access SMB/CIFS resources on servers
.SH SYNOPSIS
@ -327,9 +327,9 @@ is 65520 bytes. Setting this value smaller (to 1200 bytes) has been
observed to speed up file transfers to and from a Win9x server.
.TP
\fB-W WORKGROUP\fR
Override the default workgroup specified in the
workgroup parameter of the \fIsmb.conf\fR file
for this connection. This may be needed to connect to some
Override the default workgroup (domain) specified
in the workgroup parameter of the \fIsmb.conf\fR
file for this connection. This may be needed to connect to some
servers.
.TP
\fB-T tar options\fR
@ -513,6 +513,26 @@ If \fIshell command\fR is specified, the !
command will execute a shell locally and run the specified shell
command. If no command is specified, a local shell will be run.
.TP
\fBaltname file\fR
The client will request that the server return
the "alternate" name (the 8.3 name) for a file or directory.
.TP
\fBcancel jobid0 [jobid1] ... [jobidN]\fR
The client will request that the server cancel
the printjobs identified by the given numeric print job ids.
.TP
\fBchmod file mode in octal\fR
This command depends on the server supporting the CIFS
UNIX extensions and will fail if the server does not. The client requests that the server
change the UNIX permissions to the given octal mode, in standard UNIX format.
.TP
\fBchown file uid gid\fR
This command depends on the server supporting the CIFS
UNIX extensions and will fail if the server does not. The client requests that the server
change the UNIX user and group ownership to the given decimal values. Note there is
currently no way to remotely look up the UNIX uid and gid values for a given name.
This may be addressed in future versions of the CIFS UNIX extensions.
.TP
\fBcd [directory name]\fR
If "directory name" is specified, the current
working directory on the server will be changed to the directory
@ -555,6 +575,12 @@ reason the specified directory is inaccessible.
If no directory name is specified, the name of the
current working directory on the local machine will be reported.
.TP
\fBlink source destination\fR
This command depends on the server supporting the CIFS
UNIX extensions and will fail if the server does not. The client requests that the server
create a hard link between the source and destination files. The source file
must not exist.
.TP
\fBlowercase\fR
Toggle lowercasing of filenames for the get and
mget commands.
@ -674,6 +700,21 @@ working directory on the server.
Remove the specified directory (user access
privileges permitting) from the server.
.TP
\fBsetmode <filename> <perm=[+|\\-]rsha>\fR
A version of the DOS attrib command to set
file permissions. For example:
\fBsetmode myfile +r \fR
would make myfile read only.
.TP
\fBsymlink source destination\fR
This command depends on the server supporting the CIFS
UNIX extensions and will fail if the server does not. The client requests that the server
create a symbolic hard link between the source and destination files. The source file
must not exist. Note that the server will not create a link to any path that lies
outside the currently connected share. This is enforced by the Samba server.
.TP
\fBtar <c|x>[IXbgNa]\fR
Performs a tar operation - see the \fI-T
\fRcommand line option above. Behavior may be affected
@ -693,14 +734,6 @@ archive bit setting (this is the default mode). In incremental mode,
tar will only back up files with the archive bit set. In reset mode,
tar will reset the archive bit on all files it backs up (implies
read/write share).
.TP
\fBsetmode <filename> <perm=[+|\\-]rsha>\fR
A version of the DOS attrib command to set
file permissions. For example:
\fBsetmode myfile +r \fR
would make myfile read only.
.SH "NOTES"
.PP
Some servers are fussy about the case of supplied usernames,

23
docs/manpages/smbcontrol.1
View File

@ -3,9 +3,9 @@
.\" <http://shell.ipoline.com/~elmert/hacks/docbook2X/>
.\" Please send any bug reports, improvements, comments, patches,
.\" etc. to Steve Cheng <steve@ggi-project.org>.
.TH "SMBCONTROL" "1" "28 January 2002" "" ""
.TH "SMBCONTROL" "1" "08 May 2002" "" ""
.SH NAME
smbcontrol \- send messages to smbd or nmbd processes
smbcontrol \- send messages to smbd, nmbd or winbindd processes
.SH SYNOPSIS
.sp
\fBsmbcontrol\fR [ \fB-i\fR ]
@ -16,9 +16,10 @@ smbcontrol \- send messages to smbd or nmbd processes
This tool is part of the Sambasuite.
.PP
\fBsmbcontrol\fR is a very small program, which
sends messages to an smbd(8)or
an nmbd(8)daemon running on the
system.
sends messages to an smbd(8),
an nmbd(8)
or a winbindd(8)
daemon running on the system.
.SH "OPTIONS"
.TP
\fB-i\fR
@ -52,8 +53,9 @@ The close-share message-type sends a
message to smbd which will then close the client connections to
the named share. Note that this doesn't affect client connections
to any other shares. This message-type takes an argument of the
share name for which client connections will be close, or the
share name for which client connections will be closed, or the
"*" character which will close all currently open shares.
This may be useful if you made changes to the access controls on the share.
This message can only be sent to smbd.
The debug message-type allows
@ -76,7 +78,7 @@ parameter. The parameter can be "on" to turn on profile stats
collection, "off" to turn off profile stats collection, "count"
to enable only collection of count stats (time stats are
disabled), and "flush" to zero the current profile stats. This can
be sent to any of the destinations.
be sent to any smbd or nmbd destinations.
The debuglevel message-type sends
a "request debug level" message. The current debug level setting
@ -86,18 +88,13 @@ sent to any of the destinations.
The profilelevel message-type sends
a "request profile level" message. The current profile level
setting is returned by a "profilelevel" message. This can be sent
to any of the destinations.
to any smbd or nmbd destinations.
The printer-notify message-type sends a
message to smbd which in turn sends a printer notify message to
any Windows NT clients connected to a printer. This message-type
takes an argument of the printer name to send notify messages to.
This message can only be sent to smbd.
The close-share message-type sends a
message to smbd which forces smbd to close the share that was
specified as an argument. This may be useful if you made changes
to the access controls on the share.
.TP
\fBparameters\fR
any parameters required for the message-type

6
docs/manpages/smbd.8
View File

@ -3,7 +3,7 @@
.\" <http://shell.ipoline.com/~elmert/hacks/docbook2X/>
.\" Please send any bug reports, improvements, comments, patches,
.\" etc. to Steve Cheng <steve@ggi-project.org>.
.TH "SMBD" "8" "28 January 2002" "" ""
.TH "SMBD" "8" "08 May 2002" "" ""
.SH NAME
smbd \- server to provide SMB/CIFS services to clients
.SH SYNOPSIS
@ -124,7 +124,9 @@ file will be created for informational and debug
messages from the running server. The log
file generated is never removed by the server although
its size may be controlled by the max log size
option in the \fI smb.conf(5)\fRfile.
option in the \fI smb.conf(5)\fRfile. \fBBeware:\fR
If the directory specified does not exist, \fBsmbd\fR
will log to the default debug log location defined at compile time.
The default log directory is specified at
compile time.

4
docs/manpages/smbmount.8
View File

@ -3,12 +3,12 @@
.\" <http://shell.ipoline.com/~elmert/hacks/docbook2X/>
.\" Please send any bug reports, improvements, comments, patches,
.\" etc. to Steve Cheng <steve@ggi-project.org>.
.TH "SMBMOUNT" "8" "28 January 2002" "" ""
.TH "SMBMOUNT" "8" "08 May 2002" "" ""
.SH NAME
smbmount \- mount an smbfs filesystem
.SH SYNOPSIS
.sp
\fBsmbumount\fR \fBservice\fR \fBmount-point\fR [ \fB-o options\fR ]
\fBsmbmount\fR \fBservice\fR \fBmount-point\fR [ \fB-o options\fR ]
.SH "DESCRIPTION"
.PP
\fBsmbmount\fR mounts a Linux SMB filesystem. It

102
docs/manpages/smbsh.1
View File

@ -3,12 +3,12 @@
.\" <http://shell.ipoline.com/~elmert/hacks/docbook2X/>
.\" Please send any bug reports, improvements, comments, patches,
.\" etc. to Steve Cheng <steve@ggi-project.org>.
.TH "SMBSH" "1" "28 January 2002" "" ""
.TH "SMBSH" "1" "08 May 2002" "" ""
.SH NAME
smbsh \- Allows access to Windows NT filesystem using UNIX commands
.SH SYNOPSIS
.sp
\fBsmbsh\fR
\fBsmbsh\fR [ \fB-W workgroup\fR ] [ \fB-U username\fR ] [ \fB-P prefix\fR ] [ \fB-R <name resolve order>\fR ] [ \fB-d <debug level>\fR ] [ \fB-l logfile\fR ] [ \fB-L libdir\fR ]
.SH "DESCRIPTION"
.PP
This tool is part of the Sambasuite.
@ -17,6 +17,104 @@ This tool is part of the Sambasuite.
using UNIX commands such as \fBls\fR, \fB egrep\fR, and \fBrcp\fR. You must use a
shell that is dynamically linked in order for \fBsmbsh\fR
to work correctly.
.SH "OPTIONS"
.TP
\fB-W WORKGROUP\fR
Override the default workgroup specified in the
workgroup parameter of the \fIsmb.conf\fR file
for this session. This may be needed to connect to some
servers.
.TP
\fB-U username[%pass]\fR
Sets the SMB username or username and password.
If this option is not specified, the user will be prompted for
both the username and the password. If %pass is not specified,
the user will be prompted for the password.
.TP
\fB-P prefix\fR
This option allows
the user to set the directory prefix for SMB access. The
default value if this option is not specified is
\fBsmb\fR.
.TP
\fB-R <name resolve order>\fR
This option is used to determine what naming
services and in what order to resolve
host names to IP addresses. The option takes a space-separated
string of different name resolution options.
The options are :"lmhosts", "host", "wins" and "bcast".
They cause names to be resolved as follows :
.RS
.TP 0.2i
\(bu
lmhosts :
Lookup an IP address in the Samba lmhosts file. If the
line in lmhosts has no name type attached to the
NetBIOS name
(see the lmhosts(5)
for details) then any name type matches for lookup.
.TP 0.2i
\(bu
host :
Do a standard host name to IP address resolution, using
the system \fI/etc/hosts\fR, NIS, or DNS
lookups. This method of name resolution is operating
system dependent, for instance on IRIX or Solaris this
may be controlled by the \fI/etc/nsswitch.conf
\fRfile). Note that this method is only used
if the NetBIOS name type being queried is the 0x20
(server) name type, otherwise it is ignored.
.TP 0.2i
\(bu
wins :
Query a name with the IP address listed in the
\fIwins server\fR parameter. If no
WINS server has been specified this method will be
ignored.
.TP 0.2i
\(bu
bcast :
Do a broadcast on each of the known local interfaces
listed in the \fIinterfaces\fR
parameter. This is the least reliable of the name
resolution methods as it depends on the target host
being on a locally connected subnet.
.RE
.PP
If this parameter is not set then the name resolve order
defined in the \fIsmb.conf\fR file parameter
(name resolve order) will be used.
.PP
.PP
The default order is lmhosts, host, wins, bcast. Without
this parameter or any entry in the \fIname resolve order
\fRparameter of the \fIsmb.conf\fR
file, the name resolution methods will be attempted in this
order.
.PP
.TP
\fB-d <debug level>\fR
debug level is an integer from 0 to 10.
The default value if this parameter is not specified
is zero.
The higher this value, the more detail will be logged
about the activities of \fBnmblookup\fR. At level
0, only critical errors and serious warnings will be logged.
.TP
\fB-l logfilename\fR
If specified causes all debug messages to be
written to the file specified by \fIlogfilename
\fR\&. If not specified then all messages will be
written to\fIstderr\fR.
.TP
\fB-L libdir\fR
This parameter specifies the location of the
shared libraries used by \fBsmbsh\fR. The default
value is specified at compile time.
.SH "EXAMPLES"
.PP
To use the \fBsmbsh\fR command, execute \fB smbsh\fR from the prompt and enter the username and password
that authenticates you to the machine running the Windows NT

30
docs/manpages/wbinfo.1
View File

@ -3,12 +3,12 @@
.\" <http://shell.ipoline.com/~elmert/hacks/docbook2X/>
.\" Please send any bug reports, improvements, comments, patches,
.\" etc. to Steve Cheng <steve@ggi-project.org>.
.TH "WBINFO" "1" "28 January 2002" "" ""
.TH "WBINFO" "1" "08 May 2002" "" ""
.SH NAME
wbinfo \- Query information from winbind daemon
.SH SYNOPSIS
.sp
\fBwbinfo\fR [ \fB-u\fR ] [ \fB-g\fR ] [ \fB-n name\fR ] [ \fB-s sid\fR ] [ \fB-U uid\fR ] [ \fB-G gid\fR ] [ \fB-S sid\fR ] [ \fB-Y sid\fR ] [ \fB-t\fR ] [ \fB-m\fR ] [ \fB-a user%password\fR ] [ \fB-p\fR ]
\fBwbinfo\fR [ \fB-u\fR ] [ \fB-g\fR ] [ \fB-h name\fR ] [ \fB-i ip\fR ] [ \fB-n name\fR ] [ \fB-s sid\fR ] [ \fB-U uid\fR ] [ \fB-G gid\fR ] [ \fB-S sid\fR ] [ \fB-Y sid\fR ] [ \fB-t\fR ] [ \fB-m\fR ] [ \fB-r user\fR ] [ \fB-a user%password\fR ] [ \fB-A user%password\fR ]
.SH "DESCRIPTION"
.PP
This tool is part of the Sambasuite.
@ -37,6 +37,18 @@ will also be listed. Note that this operation does not assign
group ids to any groups that have not already been seen by
\fBwinbindd(8)\fR.
.TP
\fB-h name\fR
The \fI-h\fR option
queries \fBwinbindd(8)\fR to query the WINS
server for the IP address associated with the NetBIOS name
specified by the \fIname\fR parameter.
.TP
\fB-i ip\fR
The \fI-i\fR option
queries \fBwinbindd(8)\fR to send a node status
request to get the NetBIOS name associated with the IP address
specified by the \fIip\fR parameter.
.TP
\fB-n name\fR
The \fI-n\fR option
queries \fBwinbindd(8)\fR for the SID
@ -83,13 +95,21 @@ Windows NT server \fBwinbindd(8)\fR contacts
when resolving names. This list does not include the Windows
NT domain the server is a Primary Domain Controller for.
.TP
\fB-r username\fR
Try to obtain the list of UNIX group ids
to which the user belongs. This only works for users
defined on a Domain Controller.
.TP
\fB-a username%password\fR
Attempt to authenticate a user via winbindd.
This checks both authenticaion methods and reports its results.
.TP
\fB-p\fR
Attempt a simple 'ping' check that the winbindd
is indeed alive.
\fB-A username%password\fR
Store username and password used by winbindd
during session setup to a domain controller. This enables
winbindd to operate in a Windows 2000 domain with Restrict
Anonymous turned on (a.k.a. Permissions compatiable with
Windows 2000 servers only).
.SH "EXIT STATUS"
.PP
The wbinfo program returns 0 if the operation

14
docs/manpages/winbindd.8
View File

@ -3,7 +3,7 @@
.\" <http://shell.ipoline.com/~elmert/hacks/docbook2X/>
.\" Please send any bug reports, improvements, comments, patches,
.\" etc. to Steve Cheng <steve@ggi-project.org>.
.TH "WINBINDD" "8" "28 January 2002" "" ""
.TH "WINBINDD" "8" "08 May 2002" "" ""
.SH NAME
winbindd \- Name Service Switch daemon for resolving names from NT servers
.SH SYNOPSIS
@ -38,6 +38,12 @@ installed, this should always suceed.
The following nsswitch databases are implemented by
the winbindd service:
.TP
\fBhosts\fR
User information traditionally stored in
the \fIhosts(5)\fR file and used by
\fBgethostbyname(3)\fR functions. Names are
resolved through the WINS server or by broadcast.
.TP
\fBpasswd\fR
User information traditionally stored in
the \fIpasswd(5)\fR file and used by
@ -63,6 +69,12 @@ group: files winbind
.sp
.fi
.PP
.PP
The following simple configuration in the
\fI/etc/nsswitch.conf\fR file can be used to initially
resolve hostnames from \fI/etc/hosts\fR and then from the
WINS server.
.PP
.SH "OPTIONS"
.TP
\fB-d debuglevel\fR

17
docs/textdocs/BROWSING.txt
View File

@ -7,10 +7,14 @@ Summary: This describes how to configure Samba for improved browsing.
OVERVIEW:
=========
SMB networking provides a mechanism by which clients can access a list
of machines that are available within the network. This list is called
the browse list and is heavily used by all SMB clients. Configuration
of SMB browsing has been problematic for some Samba users, hence this
of machines in a network, a so-called "browse list". This list
contains machines that are ready to offer file and/or print services
to other machines within the network. Thus it does not include
machines which aren't currently able to do server tasks. The browse
list is heavily used by all SMB clients. Configuration of SMB
browsing has been problematic for some Samba users, hence this
document.
Browsing will NOT work if name resolution from NetBIOS names to IP
@ -59,9 +63,10 @@ browsing on another subnet. It is recommended that this option is only
used for 'unusual' purposes: announcements over the internet, for
example. See "remote announce" in the smb.conf man page.
If something doesn't work then hopefully the log.nmb file will
help you track down the problem. Try a debug level of 2 or 3 for
finding problems.
If something doesn't work then hopefully the log.nmb file will help
you track down the problem. Try a debug level of 2 or 3 for finding
problems. Also note that the current browse list usually gets stored
in text form in a file called browse.dat.
Note that if it doesn't work for you, then you should still be able to
type the server name as \\SERVER in filemanager then hit enter and

361
docs/textdocs/Solaris-Winbind-HOWTO.txt Normal file
View File

@ -0,0 +1,361 @@
!==
!== Solaris-Winbind-HOWTO.txt
!==
Contributors: Naag Mummaneni <getnag@rediffmail.com>
Updated: May 2, 2002
Status: Current
Subject: Installing and Configuring Winbind on Solaris
=============================================================================
Installation and Configuration of Winbind on Solaris.
-----------------------------------------------------
This HOWTO describes how to get winbind services up and running to control
access and authenticate users on your Solaris box using the winbind services
which come with SAMBA 2.2.x latest CVS Checkout.Make sure you are using the
latest Samba 2.2.x cvs checkout as other versions come with a lots of bugs
regarding winbind .And even the Latest Samba Stable Release is also not an
exception to this.
Introduction
------------
This HOWTO describes the procedures used to get winbind up and running on a
Solaris system. Winbind is capable of providing access and authentication
control for Windows Domain users through an NT or Win2K PDC for 'regular'
services, such as telnet and ftp, as well for SAMBA services.
Why should I to this?
This allows the SAMBA administrator to rely on the authentication mechanisms
on the NT/Win2K PDC for the authentication of domain members. NT/Win2K users
no longer need to have separate accounts on the SAMBA server.
Who should be reading this document?
This HOWTO is designed for system administrators. If you are implementing
SAMBA on a file server and wish to (fairly easily) integrate existing
NT/Win2K users from your PDC onto the SAMBA server, this HOWTO is for you.
Requirements
------------
If you have a samba configuration file that you are currently using... BACK
IT UP! If your system already uses PAM, back up the /etc/pam.conf file ! If
you haven't already made a boot disk, MAKEONE NOW! Messing with the pam
configuration file can make it nearly impossible to log in to yourmachine.
That's why you want to be able to boot back into your machine in single user
mode and restore your /etc/pam.conf back to the original state they were in
if you get frustrated with the way things are going. ;-) Please refer to the
main SAMBA web page or, better yet, your closest SAMBA mirror site for
instructions on downloading the source code of Samba 2.2.x from the SAMBA
CVS repository. To allow Domain users the ability to access SAMBA shares and
files, as well as potentially other services provided by your SAMBA machine,
PAM (pluggable authentication modules) must be setup properly on your
machine. In order to compile the winbind modules, you should have at least
the pam libraries resident on your system. Solaris 7/8 has its pam modules
coming with the distribution itself.
Testing Things Out
------------------
Before starting, it is probably best to kill off all the SAMBA related
daemons running on your server. Kill off all smbd, nmbd, and winbindd
processes that may be running.
Configure and compile SAMBA
---------------------------
The configuration and compilation of SAMBA is pretty straightforward. The
first three steps may not be necessary depending upon whether or not you
have previously built the Samba binaries.
root# autoconf
root# make clean
root# rm config.cache
root# ./configure --with-winbind --with-pam
root# make
root# make install
This will, by default, install SAMBA in /usr/local/samba. See the main SAMBA
documentation if you want to install SAMBA somewhere else. It will also
build the winbindd executable and libraries.
Configure nsswitch.conf and the winbind libraries
-------------------------------------------------
The libraries needed to run the winbindd daemon through nsswitch need to be
copied to their proper locations, so
root# cp ../samba/source/nsswitch/libnss_winbind.so /usr/lib
I also found it necessary to make the following symbolic links:
root# ln -s /usr/lib/libnss_winbind.so /usr/lib/libnss_winbind.so.1
root# ln -s /usr/lib/libnss_winbind.so /usr/lib/libnss_winbind.so.2
root# ln -s /usr/lib/libnss_winbind.so /usr/lib/nss_winbind.so.1
root# ln -s /usr/lib/libnss_winbind.so /usr/lib/nss_winbind.so.2
Now, as root you need to edit /etc/nsswitch.conf to allow user and group
entries to be visible from the winbindd daemon. My /etc/nsswitch.conf file
look like this after editing:
passwd: files winbind
group: files winbind
Configure smb.conf
------------------
Several parameters are needed in the smb.conf file to control the behavior
of winbindd. Configure smb.conf These are described in more detail in the
winbindd(8) man page. My smb.conf file was modified to include the following
entries in the [global] section:
[global]
<...>
# The previous documentation says to
# as the "winbind seperator " directive also but
# it is no longer supported.
# use uids from 10000 to 20000 for domain users
winbind uid = 10000-20000
# use gids from 10000 to 20000 for domain groups
winbind gid = 10000-20000
# allow enumeration of winbind users and groups
winbind enum users = yes
winbind enum groups = yes
# give winbind users a real shell (only needed if
# they have telnet access)
template homedir = /home/winnt/%D/%U
template shell = /bin/bash
Join the SAMBA server to the PDC domain
---------------------------------------
Enter the following command to make the SAMBA server join the PDC domain,
where DOMAIN is the name of your Windows domain and Administrator is a
domain user who has administrative privileges in the domain.
root# /usr/local/samba/bin/smbpasswd -j DOMAIN -r PDC -U Administrator
The proper response to the command should be: "Joined the domain DOMAIN"
where DOMAIN is your DOMAIN name.
Start up the winbindd daemon and test it!
Eventually, you will want to modify your smb startup script to automatically
invoke the winbindd daemon when the other parts of SAMBA start, but it is
possible to test out just the winbind portion first. To start up winbind
services, enter the following command as root:
root# /usr/local/samba/bin/winbindd
I'm always paranoid and like to make sure the daemon is really running...
root# ps -ae | grep winbindd
This command should produce output like this, if the daemon is running
3025 ? 00:00:00 winbindd
Now... for the real test, try to get some information about the users on
your PDC
root# /usr/local/samba/bin/wbinfo -u
This should echo back a list of users on your Windows users on your PDC. For
example, I get the following response:
CEO\Administrator
CEO\burdell
CEO\Guest
CEO\jt-ad
CEO\krbtgt
CEO\TsInternetUser
root# /usr/local/samba/bin/wbinfo -g
CEO\Domain Admins
CEO\Domain Users
CEO\Domain Guests
CEO\Domain Computers
CEO\Domain Controllers
CEO\Cert Publishers
CEO\Schema Admins
CEO\Enterprise Admins
CEO\Group Policy Creator Owners
The function 'getent' can now be used to get unified lists of both local and
PDC users and groups. Try the following command:
root# getent passwd
You should get a list that looks like your /etc/passwd list followed by the domain users with their new
uids, gids, home directories and default shells.
The same thing can be done for groups with the command
root# getent group
Fix the /etc/rc.d/init.d/samba.server startup files The winbindd daemon
needs to start up after the smbd and nmbd daemons are running. To accomplish
this task, you need to modify the /etc/init.d/samba.server script to add
commands to invoke this daemon in the proper sequence. My
/etc/init.d/samba.server file starts up smbd, nmbd, and winbindd from the
/usr/local/samba/bin directory directly.
##
## samba.server
##
if [ ! -d /usr/bin ]
then # /usr not mounted
exit
fi
killproc() { # kill the named process(es)
pid=`/usr/bin/ps -e |
/usr/bin/grep -w $1 |
/usr/bin/sed -e 's/^ *//' -e 's/ .*//'`
[ "$pid" != "" ] && kill $pid
}
# Start/stop processes required for samba server
case "$1" in
'start')
#
# Edit these lines to suit your installation (paths, workgroup, host)
#
echo Starting SMBD
/usr/local/samba/bin/smbd -D -s \
/usr/local/samba/smb.conf
echo Starting NMBD
/usr/local/samba/bin/nmbd -D -l \
/usr/local/samba/var/log -s /usr/local/samba/smb.conf
echo Starting Winbind Daemon
/usr/local/samba/bin/winbindd
;;
'stop')
killproc nmbd
killproc smbd
killproc winbindd
;;
*)
echo "Usage: /etc/init.d/samba.server { start | stop }"
;;
esac
If you restart the smbd, nmbd, and winbindd daemons at this point, you
should be able to connect to the samba server as a domain member just as if
you were a local user.
Configure Winbind and PAM
-------------------------
If you have made it this far, you know that winbindd and samba are working
together. If you want to use winbind to provide authentication for other
services, keep reading. The pam configuration file need to be altered in
this step. (Did you remember to make backups of your original /etc/pam.conf
file? If not, do it now.) You will need a pam module to use winbindd with
these other services. This module will be compiled in the ../source/nsswitch
directory by default when we used ./configure --with-pam option.
root# make nsswitch/pam_winbind.so
from the ../source directory. The pam_winbind.so file should be copied to
the location of your other pam security modules. On my Solaris 8, this was
the /usr/lib/security directory.
root# cp ../samba/source/nsswitch/pam_winbind.so /usr/lib/security
The /etc/pam.conf need to be changed. I changed this file so that my Domain
users can logon both locally as well as telnet.The following are the changes
that I made.You can customize the pam.conf file as per your requirements,but
be sure of those changes because in the worst case it will leave your system
nearly impossible to boot.
#
#ident "@(#)pam.conf 1.14 99/09/16 SMI"
#
# Copyright (c) 1996-1999, Sun Microsystems, Inc.
# All Rights Reserved.
#
# PAM configuration
#
# Authentication management
#
login auth required /usr/lib/security/pam_winbind.so
login auth required /usr/lib/security/$ISA/pam_unix.so.1 try_first_pass
login auth required /usr/lib/security/$ISA/pam_dial_auth.so.1 try_first_pass
#
rlogin auth sufficient /usr/lib/security/pam_winbind.so
rlogin auth sufficient /usr/lib/security/$ISA/pam_rhosts_auth.so.1
rlogin auth required /usr/lib/security/$ISA/pam_unix.so.1 try_first_pass
#
dtlogin auth sufficient /usr/lib/security/pam_winbind.so
dtlogin auth required /usr/lib/security/$ISA/pam_unix.so.1 try_first_pass
#
rsh auth required /usr/lib/security/$ISA/pam_rhosts_auth.so.1
other auth sufficient /usr/lib/security/pam_winbind.so
other auth required /usr/lib/security/$ISA/pam_unix.so.1 try_first_pass
#
# Account management
#
login account sufficient /usr/lib/security/pam_winbind.so
login account requisite /usr/lib/security/$ISA/pam_roles.so.1
login account required /usr/lib/security/$ISA/pam_unix.so.1
#
dtlogin account sufficient /usr/lib/security/pam_winbind.so
dtlogin account requisite /usr/lib/security/$ISA/pam_roles.so.1
dtlogin account required /usr/lib/security/$ISA/pam_unix.so.1
#
other account sufficient /usr/lib/security/pam_winbind.so
other account requisite /usr/lib/security/$ISA/pam_roles.so.1
other account required /usr/lib/security/$ISA/pam_unix.so.1
#
# Session management
#
other session required /usr/lib/security/$ISA/pam_unix.so.1
#
# Password management
#
#other password sufficient /usr/lib/security/pam_winbind.so
other password required /usr/lib/security/$ISA/pam_unix.so.1
dtsession auth required /usr/lib/security/$ISA/pam_unix.so.1
#
# Support for Kerberos V5 authentication (uncomment to use Kerberos)
#
#rlogin auth optional /usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass
#login auth optional /usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass
#dtlogin auth optional /usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass
#other auth optional /usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass
#dtlogin account optional /usr/lib/security/$ISA/pam_krb5.so.1
#other account optional /usr/lib/security/$ISA/pam_krb5.so.1
#other session optional /usr/lib/security/$ISA/pam_krb5.so.1
#other password optional /usr/lib/security/$ISA/pam_krb5.so.1 try_first_pass
I also added a try_first_pass line after the winbind.so line to get rid of
annoying double prompts for passwords.
Now restart your Samba & try connecting through your application that you
configured in the pam.conf.
!==
!== end of Solaris-Winbind-HOWTO.txt
!==

54
examples/LDAP/samba-schema-netscapeds4.x Normal file
View File

@ -0,0 +1,54 @@
#
# LDAP Schema file for SAMBA attribute storage
# This file is suitable for usage with Netscape Directory Server 4.1x
# Adapted by Scott Lawson with help from Ron Creamer
#
attribute lmPassword 1.3.6.1.4.1.7165.2.1.1 cis single
attribute ntPassword 1.3.6.1.4.1.7165.2.1.2 cis single
attribute acctFlags 1.3.6.1.4.1.7165.2.1.4 cis single
attribute pwdLastSet 1.3.6.1.4.1.7165.2.1.3 int single
attribute logonTime 1.3.6.1.4.1.7165.2.1.5 int single
attribute logoffTime 1.3.6.1.4.1.7165.2.1.6 int single
attribute kickoffTime 1.3.6.1.4.1.7165.2.1.7 int single
attribute pwdCanChange 1.3.6.1.4.1.7165.2.1.8 int single
attribute pwdMustChange 1.3.6.1.4.1.7165.2.1.9 int single
attribute homedrive 1.3.6.1.4.1.7165.2.1.10 cis single
attribute scriptPath 1.3.6.1.4.1.7165.2.1.11 cis single
attribute profilePath 1.3.6.1.4.1.7165.2.1.12 cis single
attribute userWorkstations 1.3.6.1.4.1.7165.2.1.13 cis single
attribute rid 1.3.6.1.4.1.7165.2.1.14 int single
attribute primaryGroupID 1.3.6.1.4.1.7165.2.1.15 int single
attribute smbHome 1.3.6.1.4.1.7165.2.1.17 cis single
attribute domain 1.3.6.1.4.1.7165.2.1.18 cis single
objectclass sambaAccount
oid
1.3.1.5.1.4.1.7165.2.2.2
superior
top
requires
objectClass,
uid,
rid
allows
cn,
lmPassword,
ntPassword,
pwdLastSet,
logonTime,
logoffTime,
KickoffTime,
pwdCanChange,
pwdMustChange,
acctFlags,
displayName,
smbHome,
homeDrive,
scriptPath,
profilePath,
description,
userWorkstations,
primaryGroupID,
domain

74
examples/LDAP/samba-schema-netscapeds5.x Normal file
View File

@ -0,0 +1,74 @@
##
## submitted by Martin.Dehn@comparex.de
##
## Experiement sambaAccount schema file Netscape DS 5.0
##
## INSTALL-DIRECTORY/slapd-your_name/config/schema/samba-schema-netscapeds5.ldif
##
dn: cn=schema
objectClass: top
objectClass: ldapSubentry
objectClass: subschema
cn: schema
aci: (target="ldap:///cn=schema")(targetattr !="aci")(version 3.0;acl "anonymo
us, no acis"; allow (read, search, compare) userdn = "ldap:///anyone";)
aci: (targetattr = "*")(version 3.0; acl "Configuration Administrator"; allow
(all) userdn = "ldap:///uid=admin,ou=Administrators, ou=TopologyManagement,
o=NetscapeRoot";)
aci: (targetattr = "*")(version 3.0; acl "Local Directory Administrators Group
"; allow (all) groupdn = "ldap:///cn=Directory Administrators, dc=samba,dc=org";)
aci: (targetattr = "*")(version 3.0; acl "SIE Group"; allow (all)groupdn = "ld
ap:///cn=slapd-sambaldap, cn=iPlanet Directory Server, cn=Server Group, cn=iPlanetDirectory.samba.org, ou=samba.org, o=NetscapeRoot";)
modifiersName: cn=directory manager
modifyTimestamp: 20020322124844Z
objectClasses: ( 1.3.1.5.1.4.1.7165.2.2.2 NAME 'sambaAccount' SUP top STRUCTUR
AL MAY ( acctFlags $ domain $ homeDrive $ kickoffTime $ lmPassword $ logofft
ime $ logonTime $ ntPassword $ primaryGroupID $ profilePath $ pwdCanChange $
pwdLastSet $ pwdMustChange $ rid $ scriptPath $ smbHome $ userWorkstations
) X-ORIGIN 'user defined' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.11 NAME 'scriptPath' DESC 'NT script pa
th' SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN 'user defined
' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.5 NAME 'logonTime' DESC 'NT logon time'
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE X-ORIGIN 'user defined' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.12 NAME 'profilePath' DESC 'NT profile
path' SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN 'user defin
ed' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.8 NAME 'pwdCanChange' DESC 'NT passwd c
an change' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE X-ORIGIN 'user
defined' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.17 NAME 'smbHome' DESC 'smbHome' SYNTAX
1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN 'user defined' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.3 NAME 'pwdLastSet' SYNTAX 1.3.6.1.4.1
.1466.115.121.1.27 SINGLE-VALUE X-ORIGIN 'user defined' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.18 NAME 'domain' DESC 'Windows NT domai
n Samba' SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN 'user de
fined' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.10 NAME 'homeDrive' DESC 'NT home drive
' SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN 'user defined'
)
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.6 NAME 'logofftime' DESC 'logoff Time'
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE X-ORIGIN 'user defined' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.15 NAME 'primaryGroupID' DESC 'NT Group
RID' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE X-ORIGIN 'user defin
ed' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.1 NAME 'lmPassword' DESC 'LanManager Pa
sswd' SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN 'user defin
ed' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.9 NAME 'pwdMustChange' DESC 'NT pwdmust
chnage' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE X-ORIGIN 'user def
ined' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.4 NAME 'acctFlags' DESC 'Account Flags'
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN 'user defined' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.13 NAME 'userWorkstations' DESC 'userWo
rkstations' SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN 'user
defined' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.7 NAME 'kickoffTime' DESC 'NT kickoff T
ime' SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 SINGLE-VALUE X-ORIGIN 'user define
d' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.14 NAME 'rid' DESC 'rid' SYNTAX 1.3.6.1
.4.1.1466.115.121.1.27 SINGLE-VALUE X-ORIGIN 'user defined' )
attributeTypes: ( 1.3.6.1.4.1.7165.2.1.2 NAME 'ntPassword' DESC 'NT Passwd' SY
NTAX 1.3.6.1.4.1.1466.115.121.1.15 SINGLE-VALUE X-ORIGIN 'user defined' )
nsSchemaCSN: 3c9b282c000000000000

43
examples/LDAP/samba-schema.IBMSecureWay Normal file
View File

@ -0,0 +1,43 @@
##
## Submitted by Dirk Kastens <Dirk.Kastens@Uni-Osnabrueck.de>
##
## I translated the samba.schema to be used with IBM
## SecureWay directoy server 3.2.2. You have to load
## it in your slapd32.conf with:
##
## dn: cn=IBM SecureWay, cn=Schemas, cn=Configuration
## cn: IBM SecureWay
## ibm-slapdIncludeSchema: /etc/lapschema/samba.schema
##
objectClasses {
( 1.3.1.5.1.4.1.7165.2.2.2 NAME 'sambaAccount' DESC 'Samba Account' SUP top MUST uid $ rid MAY ( acctFlags $ cn $ description $ displayName $ homeDrive $ kickoffTime $ lmPassword $ logoffTime $ logonTime $ ntPassword $ primaryGroupID $ profilePath $ pwdCanChange $ pwdLastSet $ pwdMustChange $ scriptPath $ smbHome $ userWorkstations ) )
}
attributeTypes {
( 1.3.6.1.4.1.7165.2.1.1 NAME 'lmPassword' DESC 'LanManager Passwd' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
( 1.3.6.1.4.1.7165.2.1.10 NAME 'homeDrive' DESC 'NT homeDrive' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{4} SINGLE-VALUE )
( 1.3.6.1.4.1.7165.2.1.11 NAME 'scriptPath' DESC 'NT scriptPath' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE )
( 1.3.6.1.4.1.7165.2.1.12 NAME 'profilePath' DESC 'NT profilePath' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE )
( 1.3.6.1.4.1.7165.2.1.13 NAME 'userWorkstations' DESC 'userWorkstations' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE )
( 1.3.6.1.4.1.7165.2.1.14 NAME 'rid' DESC 'NT rid' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE )
( 1.3.6.1.4.1.7165.2.1.15 NAME 'primaryGroupID' DESC 'NT Group RID' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{255} SINGLE-VALUE )
( 1.3.6.1.4.1.7165.2.1.17 NAME 'smbHome' DESC 'smbHome' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{128} )
( 1.3.6.1.4.1.7165.2.1.2 NAME 'ntPassword' DESC 'NT Passwd' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
( 1.3.6.1.4.1.7165.2.1.3 NAME 'pwdLastSet' DESC 'NT pwdLastSet' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
( 1.3.6.1.4.1.7165.2.1.4 NAME 'acctFlags' DESC 'Account Flags' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{16} SINGLE-VALUE )
( 1.3.6.1.4.1.7165.2.1.5 NAME 'logonTime' DESC 'NT logonTime' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
( 1.3.6.1.4.1.7165.2.1.6 NAME 'logoffTime' DESC 'NT logoffTime' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
( 1.3.6.1.4.1.7165.2.1.7 NAME 'kickoffTime' DESC 'NT kickoffTime' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
( 1.3.6.1.4.1.7165.2.1.8 NAME 'pwdCanChange' DESC 'NT pwdCanChange' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
( 1.3.6.1.4.1.7165.2.1.9 NAME 'pwdMustChange' DESC 'NT pwdMustChange' EQUALITY caseIgnoreIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26{32} SINGLE-VALUE )
}
IBMattributeTypes {
}
ldapSyntaxes {
}
matchingRules {
}

8
examples/README
View File

@ -1,11 +1,11 @@
Copyright(C) Samba-Team 1993-1997
Copyright(C) Samba-Team 1993-2001
This directory contains example samba extensions, example config files and
related material for Samba.
This directory contains example config files and related material for
Samba.
At a minimum please refer to the smb.conf.default file for current
information regarding global and share parameter settings.
Send additions to: samba-bugs@samba.org
Send additions to: samba@samba.org

12
examples/smb.conf.default
View File

@ -58,9 +58,17 @@
# Security mode. Most people will want user level security. See
# security_level.txt for details.
security = user
# Use password server option only with security = server
# The argument list may include:
# password server = My_PDC_Name [My_BDC_Name] [My_Next_BDC_Name]
# or to auto-locate the domain controller/s
# password server = *
; password server = <NT-Server-Name>
# Note: Do NOT use the now deprecated option of "domain controller"
# This option is no longer implemented.
# You may wish to use password encryption. Please read
# ENCRYPTION.txt, Win95.txt and WinNT.txt in the Samba documentation.
# Do not enable this option unless you have read those documents
@ -102,10 +110,6 @@
# and gives it a slightly higher chance of winning the election
; preferred master = yes
# Use only if you have an NT server on your network that has been
# configured at install time to be a primary domain controller.
; domain controller = <NT-Domain-Controller-SMBName>
# Enable this if you want Samba to be a domain logon server for
# Windows95 workstations.
; domain logons = yes

4
packaging/RedHat/samba.pamd
View File

@ -1,4 +1,4 @@
auth required /lib/security/pam_pwdb.so nullok shadow
auth required /lib/security/pam_pwdb.so nullok
account required /lib/security/pam_pwdb.so
session required /lib/security/pam_pwdb.so
password required /lib/security/pam_pwdb.so
password required /lib/security/pam_pwdb.so # shadow md5 nullok audit

212
packaging/RedHat/samba2.spec.tmpl
View File

@ -8,6 +8,7 @@ Source: ftp://samba.org/pub/samba/samba-%{version}.tar.gz
Packager: John H Terpstra [Samba-Team] <jht@samba.org>
Requires: pam >= 0.72 kernel >= 2.2.1 glibc >= 2.1.2
Prereq: chkconfig fileutils
Provides: samba = %{version}, samba-common = %{version}, samba-client = %{version}, samba-swat = %{version}
BuildRoot: /var/tmp/samba
Prefix: /usr
@ -43,9 +44,16 @@ for Shadow passwords and quotas. Do NOT recompile with the
SHADOW_PWD option enabled
%changelog
* Mon May 6 2002 Gerald Carter <jerry@samba.org>
- moved findsmb to a standard component in samba's
"make install". Removed from specfile.
* Sun Oct 14 2001 Andrew Bartlett <abartlet@samba.org>
- Set SBINDIR for codepage/manpage install, cope with
broken Makefile
* Mon Aug 1 2001 Tim Potter <tpot@samba.org>
- Install winbind daemon, client programs, nss and pam libraries
- Removed codepage stuff so spec file works with current HEAD branch
* Sat Mar 31 2001 Andrew Bartlett <abartlet@pcug.org.au>
- Changed prefix/share/man for _mandir/share/man
@ -158,11 +166,11 @@ CFLAGS="$RPM_OPT_FLAGS $EXTRA" ./configure \
--with-privatedir=/etc/samba \
--with-fhs \
--with-quotas \
--with-msdfs \
--with-smbmount \
--with-pam \
--with-syslog \
--with-utmp \
--with-netatalk \
--with-sambabook=%{prefix}/share/swat/using_samba \
--with-swatdir=%{prefix}/share/swat
make -j${NUMCPU} proto
@ -182,8 +190,8 @@ mkdir -p $RPM_BUILD_ROOT%{prefix}/{bin,sbin}
mkdir -p $RPM_BUILD_ROOT%{prefix}/share/swat/{images,help,include,using_samba}
mkdir -p $RPM_BUILD_ROOT%{prefix}/share/swat/using_samba/{figs,gifs}
mkdir -p $RPM_BUILD_ROOTMANDIR_MACRO
mkdir -p $RPM_BUILD_ROOT/var/lock/samba
mkdir -p $RPM_BUILD_ROOT/var/log/samba
mkdir -p $RPM_BUILD_ROOT/var/cache/samba
mkdir -p $RPM_BUILD_ROOT/var/{log,run}/samba
mkdir -p $RPM_BUILD_ROOT/var/spool/samba
mkdir -p $RPM_BUILD_ROOT/lib/security
@ -211,19 +219,21 @@ ln -sf %{prefix}/sbin/smbmount $RPM_BUILD_ROOT/sbin/mount.smb
# This allows us to get away without duplicating code that
# sombody else can maintain for us.
cd source
make LIBDIR=$RPM_BUILD_ROOT/etc/samba \
make BASEDIR=$RPM_BUILD_ROOT/usr \
LIBDIR=$RPM_BUILD_ROOT/etc/samba \
SBINDIR=$RPM_BUILD_ROOT%{prefix}/sbin \
BINDIR=$RPM_BUILD_ROOT%{prefix}/bin \
MANDIR=$RPM_BUILD_ROOTMANDIR_MACRO \
SWATDIR=$RPM_BUILD_ROOT/usr/share/swat \
SAMBABOOK=$RPM_BUILD_ROOT/usr/share/swat/using_samba \
installman installswat
installman installcp installswat
cd ..
# Install the nsswitch library extension file
install -m755 source/nsswitch/libnss_wins.so $RPM_BUILD_ROOT/lib
# Make link for wins resolver
( cd $RPM_BUILD_ROOT/lib; ln -s libnss_wins.so libnss_wins.so.2; )
( cd $RPM_BUILD_ROOT/lib; ln -sf libnss_wins.so libnss_wins.so.2; )
# Install winbind shared libraries
install -m755 source/nsswitch/libnss_winbind.so $RPM_BUILD_ROOT/lib
@ -246,7 +256,6 @@ done
# Install the miscellany
install -m644 swat/README $RPM_BUILD_ROOT%{prefix}/share/swat
install -m755 packaging/RedHat/smbprint $RPM_BUILD_ROOT%{prefix}/bin
install -m755 packaging/RedHat/findsmb $RPM_BUILD_ROOT%{prefix}/bin
install -m755 packaging/RedHat/smb.init $RPM_BUILD_ROOT/etc/rc.d/init.d/smb
install -m755 packaging/RedHat/smb.init $RPM_BUILD_ROOT%{prefix}/sbin/samba
install -m644 packaging/RedHat/samba.log $RPM_BUILD_ROOT/etc/logrotate.d/samba
@ -265,35 +274,74 @@ rm -rf $RPM_BUILD_ROOT
/sbin/chkconfig smb off
echo "Looking for old /etc/smb.conf..."
if [ -f /etc/smb.conf ]; then
if [ -f /etc/smb.conf -a ! -f /etc/samba/smb.conf ]; then
echo "Moving old /etc/smb.conf to /etc/samba/smb.conf"
mv /etc/smb.conf /etc/samba/smb.conf
fi
echo "Looking for old /etc/smbusers..."
if [ -f /etc/smbusers ]; then
if [ -f /etc/smbusers -a ! -f /etc/samba/smbusers ]; then
echo "Moving old /etc/smbusers to /etc/samba/smbusers"
mv /etc/smbusers /etc/samba/smbusers
fi
echo "Looking for old /etc/lmhosts..."
if [ -f /etc/lmhosts ]; then
if [ -f /etc/lmhosts -a ! -f /etc/samba/lmhosts ]; then
echo "Moving old /etc/lmhosts to /etc/samba/lmhosts"
mv /etc/lmhosts /etc/samba/lmhosts
fi
echo "Looking for old /etc/MACHINE.SID..."
if [ -f /etc/MACHINE.SID ]; then
if [ -f /etc/MACHINE.SID -a ! -f /etc/samba/MACHINE.SID ]; then
echo "Moving old /etc/MACHINE.SID to /etc/samba/MACHINE.SID"
mv /etc/MACHINE.SID /etc/samba/MACHINE.SID
fi
echo "Looking for old /etc/smbpasswd..."
if [ -f /etc/smbpasswd ]; then
if [ -f /etc/smbpasswd -a ! -f /etc/samba/smbpasswd ]; then
echo "Moving old /etc/smbpasswd to /etc/samba/smbpasswd"
mv /etc/smbpasswd /etc/samba/smbpasswd
fi
#
# For 2.2.1 we move the tdb files from /var/lock/samba to /var/cache/samba
# to preserve across reboots.
#
echo "Moving tdb files in /var/lock/samba/*.tdb to /var/cache/samba/*.tdb"
for i in /var/lock/samba/*.tdb
do
if [ -f $i ]; then
newname=`echo $i | sed -e's|var\/lock\/samba|var\/cache\/samba|'`
echo "Moving $i to $newname"
mv $i $newname
fi
done
# Remove the transient tdb files.
if [ -e /var/cache/samba/brlock.tdb ]; then
rm -f /var/cache/samba/brlock.tdb
fi
if [ -e /var/cache/samba/unexpected.tdb ]; then
rm -f /var/cache/samba/unexpected.tdb
fi
if [ -e /var/cache/samba/connections.tdb ]; then
rm -f /var/cache/samba/connections.tdb
fi
if [ -e /var/cache/samba/locking.tdb ]; then
rm -f /var/cache/samba/locking.tdb
fi
if [ -e /var/cache/samba/messages.tdb ]; then
rm -f /var/cache/samba/messages.tdb
fi
if [ -d /var/lock/samba ]; then
rm -rf /var/lock/samba
fi
# Add swat entry to /etc/services if not already there.
if !( grep ^[:space:]*swat /etc/services > /dev/null ) then
echo 'swat 901/tcp # Add swat service used via inetd' >> /etc/services
@ -309,7 +357,7 @@ fi
# Add swat entry to xinetd.d if needed.
if [ -d $RPM_BUILD_ROOT/etc/xinetd.d -a ! -f /etc/xinetd.d/swat ]; then
mv /etc/samba/samba.xinetd /etc/xinetd.d/swat
mv /etc/samba/samba.xinetd /etc/xinetd.d/swat
else
rm -f /etc/samba/samba.xinetd
fi
@ -325,39 +373,41 @@ fi
# Create winbind nss client symlink
ln -s /lib/libnss_winbind.so /lib/libnss_winbind.so.2
if [ -e /lib/libnss_winbind.so ]; then
ln -sf /lib/libnss_winbind.so /lib/libnss_winbind.so.2
fi
%preun
if [ $1 = 0 ] ; then
/sbin/chkconfig --del smb
/sbin/chkconfig --del smb
# We want to remove the browse.dat and wins.dat files so they can not interfer with a new version of samba!
if [ -e /var/lock/samba/browse.dat ]; then
rm -f /var/lock/samba/browse.dat
fi
if [ -e /var/lock/samba/wins.dat ]; then
rm -f /var/lock/samba/wins.dat
fi
# We want to remove the browse.dat and wins.dat files so they can not interfer with a new version of samba!
if [ -e /var/cache/samba/browse.dat ]; then
rm -f /var/cache/samba/browse.dat
fi
if [ -e /var/cache/samba/wins.dat ]; then
rm -f /var/cache/samba/wins.dat
fi
# Remove the transient tdb files.
if [ -e /var/lock/samba/brlock.tdb ]; then
rm -f /var/lock/samba/brlock.tdb
if [ -e /var/cache/samba/brlock.tdb ]; then
rm -f /var/cache/samba/brlock.tdb
fi
if [ -e /var/lock/samba/unexpected.tdb ]; then
rm -f /var/lock/samba/unexpected.tdb
if [ -e /var/cache/samba/unexpected.tdb ]; then
rm -f /var/cache/samba/unexpected.tdb
fi
if [ -e /var/lock/samba/connections.tdb ]; then
rm -f /var/lock/samba/connections.tdb
if [ -e /var/cache/samba/connections.tdb ]; then
rm -f /var/cache/samba/connections.tdb
fi
if [ -e /var/lock/samba/locking.tdb ]; then
rm -f /var/lock/samba/locking.tdb
if [ -e /var/cache/samba/locking.tdb ]; then
rm -f /var/cache/samba/locking.tdb
fi
if [ -e /var/lock/samba/messages.tdb ]; then
rm -f /var/lock/samba/messages.tdb
if [ -e /var/cache/samba/messages.tdb ]; then
rm -f /var/cache/samba/messages.tdb
fi
# Remove winbind nss client symlink
@ -376,6 +426,9 @@ if [ $1 = 0 ] ; then
if [ -e /var/log/samba ]; then
rm -rf /var/log/samba
fi
if [ -e /var/cache/samba ]; then
rm -rf /var/cache/samba
fi
# Remove swat entries from /etc/inetd.conf and /etc/services
cd /etc
@ -403,56 +456,61 @@ if [ $0 != 0 ]; then
fi
%files
%defattr(-,root,root)
%doc README COPYING Manifest Read-Manifest-Now
%doc WHATSNEW.txt Roadmap
%doc docs
%doc swat/README
%doc examples
%attr(-,root,root) %{prefix}/sbin/smbd
%attr(-,root,root) %{prefix}/sbin/nmbd
%attr(-,root,root) %{prefix}/sbin/swat
%attr(-,root,root) %{prefix}/sbin/smbmnt
%attr(-,root,root) %{prefix}/sbin/smbmount
%attr(-,root,root) %{prefix}/sbin/smbumount
%attr(-,root,root) %{prefix}/sbin/winbindd
%attr(-,root,root) /sbin/mount.smbfs
%attr(-,root,root) /sbin/mount.smb
%attr(-,root,root) %{prefix}/bin/mksmbpasswd.sh
%attr(-,root,root) %{prefix}/bin/smbclient
%attr(-,root,root) %{prefix}/bin/smbspool
%attr(-,root,root) %{prefix}/bin/rpcclient
%attr(-,root,root) %{prefix}/bin/testparm
%attr(-,root,root) %{prefix}/bin/testprns
%attr(-,root,root) %{prefix}/bin/findsmb
%attr(-,root,root) %{prefix}/bin/smbstatus
%attr(-,root,root) %{prefix}/bin/nmblookup
%attr(-,root,root) %{prefix}/bin/make_printerdef
%attr(-,root,root) %{prefix}/bin/smbpasswd
%attr(-,root,root) %{prefix}/bin/smbtar
%attr(-,root,root) %{prefix}/bin/smbprint
%attr(-,root,root) %{prefix}/bin/smbcontrol
%attr(-,root,root) %{prefix}/bin/smbcacls
%attr(-,root,root) %{prefix}/bin/wbinfo
%{prefix}/sbin/smbd
%{prefix}/sbin/nmbd
%{prefix}/sbin/swat
%{prefix}/sbin/smbmnt
%{prefix}/sbin/smbmount
%{prefix}/sbin/smbumount
%{prefix}/sbin/winbindd
/sbin/mount.smbfs
/sbin/mount.smb
%{prefix}/bin/mksmbpasswd.sh
%{prefix}/bin/smbclient
%{prefix}/bin/smbspool
%{prefix}/bin/rpcclient
%{prefix}/bin/testparm
%{prefix}/bin/testprns
%{prefix}/bin/findsmb
%{prefix}/bin/smbstatus
%{prefix}/bin/nmblookup
%{prefix}/bin/make_smbcodepage
%{prefix}/bin/make_unicodemap
%{prefix}/bin/make_printerdef
%{prefix}/bin/smbpasswd
%{prefix}/bin/smbtar
%{prefix}/bin/smbprint
%{prefix}/bin/smbcontrol
%{prefix}/bin/smbcacls
%{prefix}/bin/wbinfo
%attr(755,root,root) /lib/libnss_wins.s*
%attr(-,root,root) %{prefix}/share/swat/help/*
%attr(-,root,root) %{prefix}/share/swat/images/*
%attr(-,root,root) %{prefix}/share/swat/include/header.html
%attr(-,root,root) %{prefix}/share/swat/include/footer.html
%attr(-,root,root) %{prefix}/share/swat/using_samba/*
%attr(-,root,root) %config(noreplace) /etc/samba/lmhosts
%attr(-,root,root) %config(noreplace) /etc/samba/smb.conf
%attr(-,root,root) %config(noreplace) /etc/samba/smbusers
%attr(-,root,root) /etc/samba/samba.stack
%attr(-,root,root) /etc/samba/samba.xinetd
%attr(-,root,root) /etc/rc.d/init.d/smb
%attr(-,root,root) /etc/logrotate.d/samba
%attr(-,root,root) %config(noreplace) /etc/pam.d/samba
%attr(-,root,root) MANDIR_MACRO/man1/*
%attr(-,root,root) MANDIR_MACRO/man5/*
%attr(-,root,root) MANDIR_MACRO/man7/*
%attr(-,root,root) MANDIR_MACRO/man8/*
%attr(755,root,root) %dir /var/lock/samba
%attr(-,root,root) %dir /var/log/samba
%{prefix}/share/swat/help/*
%{prefix}/share/swat/images/*
%{prefix}/share/swat/include/header.html
%{prefix}/share/swat/include/footer.html
%{prefix}/share/swat/using_samba/*
%config(noreplace) /etc/samba/lmhosts
%config(noreplace) /etc/samba/smb.conf
%config(noreplace) /etc/samba/smbusers
/etc/samba/samba.stack
/etc/samba/samba.xinetd
/etc/rc.d/init.d/smb
/etc/logrotate.d/samba
%config(noreplace) /etc/pam.d/samba
MANDIR_MACRO/man1/*
MANDIR_MACRO/man5/*
MANDIR_MACRO/man7/*
MANDIR_MACRO/man8/*
%dir /etc/codepages/*
%attr(755,root,root) %dir /var/cache/samba
%dir /var/log/samba
%dir /var/run/samba
%attr(1777,root,root) %dir /var/spool/samba
%attr(-,root,root) /lib/libnss_winbind.so
%attr(-,root,root) /lib/security/pam_winbind.so

11
packaging/RedHat/smb.init
View File

@ -13,8 +13,10 @@
# Check that networking is up.
[ ${NETWORKING} = "no" ] && exit 0
CONFIG=/etc/samba/smb.conf
# Check that smb.conf exists.
[ -f /etc/samba/smb.conf ] || exit 0
[ -f $CONFIG ] || exit 0
# See how we were called.
case "$1" in
@ -22,6 +24,9 @@ case "$1" in
echo -n "Starting SMB services: "
daemon smbd -D
daemon nmbd -D
if [ "`grep -i 'winbind uid' /etc/samba/smb.conf | egrep -v [\#\;]`" ]; then
daemon winbindd
fi
echo
touch /var/lock/subsys/smb
;;
@ -29,12 +34,16 @@ case "$1" in
echo -n "Shutting down SMB services: "
killproc smbd
killproc nmbd
if [ "`ps -ef | grep winbind | grep -v grep`" ]; then
killproc winbindd
fi
rm -f /var/lock/subsys/smb
echo ""
;;
status)
status smbd
status nmbd
status winbindd
;;
restart)
echo -n "Restarting SMB services: "