sin/samba-mirror
1
0
Fork 0
mirror of https://github.com/samba-team/samba.git synced 2024-12-25 23:21:54 +03:00
Code
166022c864
samba-mirror/docs-xml/smbdotconf/security/username.xml
Andrew Bartlett d7bb961859 s3-auth: Remove security=share (depricated since 3.6). 
This patch removes security=share, which Samba implemented by matching
the per-share password provided by the client in the Tree Connect with
a selection of usernames supplied by the client, the smb.conf or
guessed from the environment.

The rationale for the removal is that for the bulk of security=share
users, we just we need a very simple way to run a 'trust the network'
Samba server, where users mark shares as guest ok.  This is still
supported, and the smb.conf options are documented at
https://wiki.samba.org/index.php/Public_Samba_Server

At the same time, this closes the door on one of the most arcane areas
of Samba authentication.

Naturally, full user-name/password authentication remain available in
security=user and above.

This includes documentation updates for username and only user, which
now only do a small amount of what they used to do.

Andrew Bartlett

                       --------------
                      /              \
                     /      REST      \
                    /        IN        \
                   /       PEACE        \
                  /                      \
                  |      SEC_SHARE       |
                  |    security=share    |
                  |                      |
                  |                      |
                  |       5 March        |
                  |                      |
                  |        2012          |
                 *|     *  *  *          | *
        _________)/\\_//(\/(/\)/\//\/\///|_)_______
2012-03-04 23:33:05 +01:00

25 lines
850 B
XML
Raw Blame History

<samba:parameter name="username"
context="S"
type="string"
xmlns:samba="http://www.samba.org/samba/DTD/samba-doc">
<synonym>user</synonym>
<synonym>users</synonym>
<description>
<para>To restrict a service to a particular set of users you
can use the <smbconfoption name="valid users"/> parameter.</para>
<para>This parameter is deprecated</para>
<para>However, it currently operates only in conjunction with
<smbconfoption name="only user"/>. The supported way to restrict
a service to a particular set of users is the
<smbconfoption name="valid users"/> parameter.</para>
</description>
<value type="default"><comment>The guest account if a guest service,
else &lt;empty string&gt;.</comment></value>
<value type="example">fred, mary, jack, jane, @users, @pcgroup</value>
</samba:parameter>
View Git Blame Copy Permalink