Frederic Notet
2008-Mar-12 18:19 UTC
[Samba] [smb.conf] "browseable = no EXCEPT valid users" possible ?
Hello, I'm looking for a solution to my problem : i have a samba server with ldap auth on Debian ETCH. I need to configure this samba for multi-group and multi-users. Example : user 1 (from group1) have to see his own directory (for writing), his group' directory (for writing and sharing) but also the "homes" of others users from this group... user2 (from group2) don't have to see group1 or "user1'home "... he only have to access to group2 ' directory and group2' users' directory user3 (from group1) have to see his own directory, the directory of group1 and the directory of user1 (but for this one, only for "dropping" files/folder. he can't see what's inside...) So i need a "browseable = no EXCEPT valid users", is it possible ? How Can I setup that ? "man smb.conf" can't help me... My test : [homes] comment = Repertoire Personnel browseable = no guest ok = no writeable = no write list = %u read list = @%g [Group 1] comment = Repertoire commun Group1 writeable = Yes guest ok = No path = /home/group1 valid users = @Group1 create mask = 0777 directory mask = 0775 [Group 2] comment = Repertoire commun Group2 writeable = Yes guest ok = No path= /home/group2 valid users = @Group2 create mask = 0777 directory mask = 0775 My path's : /home/group1 /home/group2 /home/user1 /home/user2 /home/user3 Maybe need i to change it to : /home/group1/ /home/group2/ /home/group1/user1 /home/group1/user3 /home/group2/user2 ? My need : user1 see group1, user1 and user3 ONLY. user1 write to group1, user1 and user3. user1 browse group1, user1. user2 see group2, user2 ONLY. user2 write to group2 and user2 user2 browse group2 and user2 user3 see group1, user1, user3 user3 write to group1, user1, user3 user3 browse group1, user3. Thanks for your help ! FreD.
John Drescher
2008-Mar-12 18:26 UTC
[Samba] [smb.conf] "browseable = no EXCEPT valid users" possible ?
On Wed, Mar 12, 2008 at 1:57 PM, Frederic Notet <fred@2make2.eu> wrote:> Hello, > > I'm looking for a solution to my problem : > > i have a samba server with ldap auth on Debian ETCH. > > I need to configure this samba for multi-group and multi-users. > > Example : > > user 1 (from group1) have to see his own directory (for writing), his > group' directory (for writing and sharing) but also the "homes" of > others users from this group... > > user2 (from group2) don't have to see group1 or "user1'home "... he > only have to access to group2 ' directory and group2' users' directory > > user3 (from group1) have to see his own directory, the directory of > group1 and the directory of user1 (but for this one, only for > "dropping" files/folder. he can't see what's inside...) > > > So i need a "browseable = no EXCEPT valid users", is it possible ? >Have you tried to accomplish this by setting the permissions on the unix filesystem? I mean samba will respect the posix rights on the host filesystem unless you force otherwise in smb.conf. If you set the correct permissions on unix and use hide unreadable in smb.conf I believe you will get what you want. John