Sams Teach Yourself Samba in 24 Hours
Hour 6: Security Levels and Passwords
Previous
Hour
|
Sections in this Chapter: |
|
|
|
||
|
||
|
||
|
|
Sams Teach Yourself Samba in 24 Hours |
|
||||||||||||||||
|
Hour 6: Security Levels and Passwords |
|
||||||||||||||||
|
|
||
|
The last two parameters I'll present relate to security but do not fit into any of the subjects I've discussed so far.
Without getting in over your heads in details, the map to guest parameter enables you to determine what Samba does when a session setup request contains invalid user authentication information (for example, the client sent a bad password). There are three possible responses:
I would recommend that you leave the default settings unless you have a legitimate reason for changing them. If you cannot think of a legitimate reason on your own, that's probably a good rationale to leave it alone.
This is another parameter that is not commonly used. It instructs Samba to perform a chroot() to the specified directory similar to the way that anonymous FTP connections do. This is not strictly necessary, because Samba denies access to files outside the share by default. It does, however, add an extra level of security, but you must make sure that all necessary scripts, system files, and binaries are contained below the root directory. To override the default root directory of /, you can simply specify the directory of your choice:
root directory = /export/smb root directory = /export/smb
|
Sams Teach Yourself Samba in 24 Hours |
|
||||||||||||||||
|
Hour 6: Security Levels and Passwords |
|
||||||||||||||||
|
© Copyright Macmillan USA. All rights reserved.