Your message dated Wed, 26 Apr 2006 21:23:17 +0200
with message-id <[EMAIL PROTECTED]>
and subject line Bug already fixed
has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what I am
talking about this indicates a serious mail system misconfiguration
somewhere. Please contact me immediately.)
Debian bug tracking system administrator
(administrator, Debian Bugs database)
--- Begin Message ---
Package: samba-common
Version: 3.0.5-1
Seveirty: important
Hi,
Attached is a patch to the default smb.conf which contains a number of
corrections (encrypted passwords, invalid users, etc.) and a few other
sections (Domains) and some suggested shares (for roaming profiles).
I believe this patch would be beneficial for Samba and as it is only
a change in an example file I believe an update prior to Debian 3.1 is
released is warranted. Thus the 'importance' of this bug.
Thanks,
Anand
--
`` All actions take place in time by the interweaving of the
forces of Nature; but the man lost in selfish delusion thinks
that he himself is the actor.''
Lord Krishna to Arjuna in _The Bhagavad Gita_
--- /usr/share/samba/smb.conf 2004-07-22 22:28:55.000000000 +1000
+++ /tmp/smb.conf 2004-08-24 01:49:11.000000000 +1000
@@ -44,6 +44,14 @@
# to IP addresses
; name resolve order = lmhosts host wins bcast
+# Only bind to the named interfaces and/or networks. It is recommended that
+# you enable this feature if your Samba machine is not protected by a
+# firewall or is a firewall itself
+; bind interfaces only = true
+
+# The specific set of interfaces / networks to bind to
+# This can be either the interface name or an IP address/netmask
+; interfaces = 127.0.0.0/8 eth0
#### Debugging/Accounting ####
@@ -77,7 +85,11 @@
# You may wish to use password encryption. See the section on
# 'encrypt passwords' in the smb.conf(5) manpage before enabling.
- encrypt passwords = no
+# As per the Samba-HOWTO Collection
+# http://us1.samba.org/samba/docs/man/Samba-HOWTO-Collection/passdb.html
+# Section 'Important Notes About Security'
+# "Use of encrypted passwords is strong advised"
+ encrypt passwords = true
# If you are using encrypted passwords, Samba will need to know what
# password database type you are using.
@@ -85,8 +97,13 @@
obey pam restrictions = yes
+# As per the Samba-HOWTO Collection
+# http://us1.samba.org/samba/docs/man/Samba-HOWTO-Collection/groupmapping.html
+# Section 'Important Administrative Information'
+# It is important for correct functioning that the following are left
+# commented out. Uncomment only if you are sure you know what you are doing!
; guest account = nobody
- invalid users = root
+; invalid users = root
# This boolean parameter controls whether Samba attempts to sync the Unix
# password with the SMB password when the encrypted SMB password in the
@@ -126,13 +143,68 @@
# properties
; printer admin = @ntadmin
+# addprinter command
+# Samba maintainer put something useful here
+# deleteprinter command
+# Samba maintainer put something useful here
+
######## File sharing ########
# Name mangling options
-; preserve case = yes
-; short preserve case = yes
+ preserve case = yes
+ short preserve case = yes
+
+
+########## Domains ###########
+
+# Please read BROWSING.txt and set the next four parameters accorindg
+# to your network setup. There is no valid default so they are commented
+; os level = 66
+; local master = yes
+; preferred master = yes
+
+# Domain Master specifies Samba to be the Domain Master Browser. If this
+# machine will be configured as a BDC (a secondary logon server), you
+# must set this to 'no'; otherwise, the default behavior is recommended.
+ domain master = auto
+# Is this machine able to authenticate users. Both PDC and BDC
+# must have this setting enabled. If you are the BDC you must
+# change the 'domain master' setting to no
+; domain logons = yes
+
+# How to create machine trust accounts?
+ add machine script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M
%u
+
+# Users can be created or removed by the Domain Administrator
+# Setting these values allow them to do it remotely, potentially
+# using standard Microsoft or Linux GUI tools
+; add user script =
+; delete user script =
+
+# Groups enable policy to be applied to all members.
+# Using GUI tools they can be created, removed have members added
+# or removed, remotely if the Domain Administrator chooses
+; add group script =
+; delete group script =
+; add user to group script =
+; delete user from group script =
+
+# The following setting only takes effect if 'domain logons' is set
+# where to store user profiles?
+ logon path = \\%N\profiles\%U
+
+# The following setting only takes effect if 'domain logons' is set
+# where is a user's home directory (on the client)
+ logon drive = H:
+ logon home = \\%N\%U
+
+# The following setting only takes effect if 'domain logons' is set
+# what script to run during logon? The script must be stored
+# in the [netlogon] share
+# NOTE: Must be store in 'DOS' file format convention
+ logon script = logon.cmd
############ Misc ############
@@ -153,10 +225,9 @@
# working to ease installation and configuration of linpopup and samba.
; message command = /bin/sh -c '/usr/bin/linpopup "%f" "%m" %s; rm %s' &
-# Domain Master specifies Samba to be the Domain Master Browser. If this
-# machine will be configured as a BDC (a secondary logon server), you
-# must set this to 'no'; otherwise, the default behavior is recommended.
-; domain master = auto
+# Time Servers specifies Samba to also serve time to client machines
+# use the 'net time' facility. Enabling this is recommended.
+ time server = true
# Some defaults for winbind (make sure you're not using the ranges
# for something else.)
@@ -191,6 +262,17 @@
; writable = no
; share modes = no
+# Un-comment the following and create the profile directory for roaming
+# profiles (you need to configure Samba to act as a domain controller too.)
+;[profiles]
+; path = /home/samba/profiles
+; writable = yes
+; create mask = 0644
+; directory mask = 0755
+; browsable = no
+; nt acl support = yes
+; profile acls = yes
+
[printers]
comment = All Printers
browseable = no
--- End Message ---
--- Begin Message ---
Version: 3.0.21a-4
It appear that soem dude, very likely me, fixed this by adding an
example "profiles" share at some moment...very likely while I was
working on other stuff in the default smb.conf file
--
signature.asc
Description: Digital signature
--- End Message ---
