Differences
This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
linux_wiki:network_services_overview_smb [2016/10/02 21:38] billdozor [Host Based] |
linux_wiki:network_services_overview_smb [2019/05/25 23:50] (current) |
||
---|---|---|---|
Line 12: | Line 12: | ||
* Configure the service for basic operation | * Configure the service for basic operation | ||
* Configure host-based and user-based security for the service | * Configure host-based and user-based security for the service | ||
+ | |||
+ | ---- | ||
+ | |||
+ | ====== Lab Setup ====== | ||
+ | |||
+ | The following virtual machines will be used: | ||
+ | * server1.example.com (192.168.1.150) -> Perform all SMB client tests from here | ||
+ | * server2.example.com (192.168.1.151) -> Install the Samba Server here | ||
---- | ---- | ||
Line 36: | Line 44: | ||
* Service agnostic -> [[linux_wiki: | * Service agnostic -> [[linux_wiki: | ||
+ | * **IMPORTANT**: | ||
+ | yum install setools-console | ||
+ | |||
+ | # View all label types | ||
+ | seinfo -t | ||
+ | |||
+ | # Find Samba/SMB types | ||
+ | seinfo -t | grep samba | ||
+ | seinfo -t | grep smb | ||
+ | </ | ||
---- | ---- | ||
Line 89: | Line 107: | ||
vim / | vim / | ||
+ | [global] | ||
hosts allow = 192.168.1. | hosts allow = 192.168.1. | ||
</ | </ | ||
Line 94: | Line 113: | ||
* Allow list over rides deny lists (if any and they conflict) | * Allow list over rides deny lists (if any and they conflict) | ||
===== User Based ===== | ===== User Based ===== | ||
+ | |||
+ | Main samba config | ||
+ | <code bash> | ||
+ | vim / | ||
+ | |||
+ | [share] | ||
+ | valid users = dvader, yoda | ||
+ | write list = dvader | ||
+ | read list = yoda | ||
+ | </ | ||
+ | * valid users -> allowed to login to the service | ||
+ | * write list -> users that can write, even if the share is set to read only | ||
+ | * read list -> users that can read | ||
---- | ---- | ||