On Thursday 23 January 2003 09:57 pm, Buck wrote:
> What I have is an office of two groups of users, Processors and
> Originators. The processors need to have a private share without
the
> originators having access. The Originators need a sharing area for
> themselves because they think they need to be on the server and no
other
> reason. They only get on to write letters, read email and surf the
net
> looking for the latest porn. Won't they be surprised when I setup a
> firewall that has NetNanny? :^o
Here is how I do it (YMMV)
Find the entry in smbusers, "root = administrator admin" and comment
it out. Right now. You have been warned!
Create a generic user with a shell of /bin/false. call it "total"
Create two groups. Call them "processor" and "originator"
Create two directories.
Give ownership of one directory to total:originators and the other to
total:processors.
Set pemissions on the directories to 0770
Create the user accounts putting Processors in the processor group and
Originators in the originator group.
Put youself in both groups
Make each directory a share using the "force group = <groupname>"
option. Probably a good idea to set:
create mask = 0775
force create mode = 0664
directory mask = 0775
force directory mode = 0775
Now only members of the appropiate group can access the share and all
created files and sub directories will be accessible to the
appropiate group.
Remeber that _Linux_ in charge of the permissions and access not
Windows. Whatever permission you give a user account determines what
they can do based on UNIX permissions.
> Of course, I want access for me from where ever I happen to be.
>
> So, How do I turn off the [home] share?
In vi use "dd" until it is gone. In emacs use "crtl-K" until it is
gone. Save.
# service smb reload
> Buck
>
>
> -----Original Message-----
> From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]
> On Behalf Of Stephen Carville
> Sent: Friday, January 24, 2003 12:41 AM
> To: [EMAIL PROTECTED]
> Subject: Re: adduser -M
>
> On Thursday 23 January 2003 09:05 pm, Buck wrote:
> > Is that the answer I am looking for in my message Samba and Server
> > Access? I need to create users that can't log into the computer
at
> the
> > keyboard but share a folder with a group of users that share
files.
>
> Could be. All of my Samba users have a home directory but that is
> because their home drectory is on the Samba server :-) If you do
> not want home directories on the system make sure you turn off the
> [home] share.
>
> > Thank you,
> >
> > Buck
> >
> >
> >
> > -----Original Message-----
> > From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]
> > On Behalf Of Stephen Carville
> > Sent: Thursday, January 23, 2003 11:57 PM
> > To: [EMAIL PROTECTED]
> > Subject: Re: adduser -M
> >
> > On Thursday 23 January 2003 08:39 pm, Buck wrote:
> > > The command: adduser -M creates a new user without creating his
> home
> > > directory. What happens to a user that logs in and has no home
> > > directory?
> >
> > They will get dropped in / if possible. I use -M with -s
> /bin/nologin
> > or -s /bin/false to create accounts that cannot be logged onto.
> >
> > --
> > Stephen Carville http://www.heronforge.net/~stephen/gnupgkey.txt
> > Blessed are those who, in the face of death, think only of the
front
> > sight.
> >
> >
> >
> > --
> > Psyche-list mailing list
> > [EMAIL PROTECTED]
> > https://listman.redhat.com/mailman/listinfo/psyche-list
> >
> >
> >
> >
> >
> >
> > --
> > Psyche-list mailing list
> > [EMAIL PROTECTED]
> > https://listman.redhat.com/mailman/listinfo/psyche-list
> >
> >
>
> --
> Stephen Carville http://www.heronforge.net/~stephen/gnupgkey.txt
> Blessed are those who, in the face of death, think only of the front
> sight.
>
>
>
> --
> Psyche-list mailing list
> [EMAIL PROTECTED]
> https://listman.redhat.com/mailman/listinfo/psyche-list
>
>
>
>
>
>
> --
> Psyche-list mailing list
> [EMAIL PROTECTED]
> https://listman.redhat.com/mailman/listinfo/psyche-list
>
>
--
Stephen Carville http://www.heronforge.net/~stephen/gnupgkey.txt
Blessed are those who, in the face of death, think only of the front
sight.
--
Psyche-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/psyche-list
