David Donahue
2002-Sep-24 19:20 UTC
[Samba] Anonymous access to Samba, or something like it?
I know, why IIS when I can Apache? I'm actually running both... Kind of a hybrid network. Anyway, I'm trying to configure IIS to use a Samba share as its www root and I think I'm running into a security issue. See, in IIS, I have to connect as a specific user when I attach a network share as the www root. The share, from Samba's point of view, is read-only and every file in it is world-readable. Now, when a person accesses an IIS server, it accesses the files with the user account IUSR_Computername or something to that effect, seemingly regardless of the account it used to connect to that share. And it seems to be running into a problem with this. So, finally, my question is... Is there a way in the smb.conf file to specify total anonymous read access to a share, or to the server in general? Ideally, no matter what user IIS claims to be, I want Samba to field the request and return the file (read-only, of course). Does this make sense? David P. Donahue david.donahue@firstsolution.com First Call Computer Solutions A Montana Technology Resource Company
Joel Hammer
2002-Sep-24 20:35 UTC
[Samba] Anonymous access to Samba, or something like it?
Well, you might use: guest account = ftp (global) guest ok = yes read only = yes. If you don't give a d* about security, guest account = root Joel On Tue, Sep 24, 2002 at 01:22:39PM -0600, David Donahue wrote:> I know, why IIS when I can Apache? I'm actually running both... Kind of > a hybrid network. Anyway, I'm trying to configure IIS to use a Samba > share as its www root and I think I'm running into a security issue. > See, in IIS, I have to connect as a specific user when I attach a > network share as the www root. The share, from Samba's point of view, > is read-only and every file in it is world-readable. Now, when a person > accesses an IIS server, it accesses the files with the user account > IUSR_Computername or something to that effect, seemingly regardless of > the account it used to connect to that share. And it seems to be > running into a problem with this. So, finally, my question is... Is > there a way in the smb.conf file to specify total anonymous read access > to a share, or to the server in general? Ideally, no matter what user > IIS claims to be, I want Samba to field the request and return the file > (read-only, of course). Does this make sense? > > > > David P. Donahue > david.donahue@firstsolution.com > First Call Computer Solutions > A Montana Technology Resource Company > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba