thr3ads.net - samba - [Samba] How to hide directories from unauthorized users? [Sep 2023]

If this information is useful, please help other people find it:
Share via:

Rob Campbell

2023-Sep-11 19:54 UTC

[Samba] How to hide directories from unauthorized users?

It doesn't come up when I search in 'man smb.conf'.  I've
already tried it
in my smb.conf file but I get this error:
Unknown parameter encountered: "access based shared enum"

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
In all things, Be Intentional.


On Mon, Sep 11, 2023 at 3:47?PM Rowland Penny via samba <
samba at lists.samba.org> wrote:
> On Mon, 11 Sep 2023 15:36:50 -0400
> Rob Campbell via samba <samba at lists.samba.org> wrote:
>
> > I have a bunch of shares but I don't want users that don't
have
> > access to even see the share.  Is this not possible?
> >
> > [Radiology]
> > comment = Medical Films
> > path = /multimedia/.Medical
> > writeable = yes
> > guest ok = no
> > ; browsable = no
> > ; available = no
> > hide unreadable = yes
> > create mask = 2777
> > directory mask = 2777
> > valid users = "rcampbell"
> >
> > if I uncomment browsable or available the share doesn't show even
for
> > rcampbell.
> >
> > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
> > In all things, Be Intentional.
>
> Read the smb.conf manpage for 'access based share enum'.
>
> Rowland
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions:  https://lists.samba.org/mailman/options/samba
>

Rowland Penny

2023-Sep-11 20:05 UTC

head link

[Samba] How to hide directories from unauthorized users?

On Mon, 11 Sep 2023 15:54:37 -0400
Rob Campbell via samba <samba at lists.samba.org> wrote:
> It doesn't come up when I search in 'man smb.conf'.  I've
already
> tried it in my smb.conf file but I get this error:
> Unknown parameter encountered: "access based shared enum"
> 

It is 'access based share enum', not 'access based shared enum'

The smb.conf manpage says this:

access based share enum (S)

    If this parameter is yes for a service, then the share hosted by the service
will only be visible to users who have read or write access to the share during
share enumeration (for example net view \\sambaserver). The share ACLs which
allow or deny the access to the share can be modified using for example the
sharesec command or using the appropriate Windows tools. This has parallels to
access based enumeration, the main difference being that only share permissions
are evaluated, and security descriptors on files contained on the share are not
used in computing enumeration access rights.

    Default: access based share enum = no 

Rowland

samba - Sep 2023 - How to hide directories from unauthorized users?

[Samba] How to hide directories from unauthorized users?

[Samba] How to hide directories from unauthorized users?