Slackware 12.1 + Samba 3.0.28a + a lot of users

G'day Samba Users!

I'm trying to use Samba on a Linux server which has a lot of Unix
users: I have Slackware 12.1 and Samba 3.0.28a. My users are defined
in /etc/passwd and /etc/shadow which is typical for Slackware.

I have one directory shared between everybody called Xchange:

[Xchange]
   comment = Xchange
   path = /raid/Xchange
   read only = no
   public = yes

The above works fine.

Now, I'm trying to convince Samba to let Win XP users to connect to
their home directories for example /raid/Users/user000001,
/raid/Users/user000002 etc. I have a lot of users (Slackware Unix
users in /etc/passwd and /etc/shadow) so defining them with "smbpasswd
-a userNNNNNN" is impossible. Well, maybe it is possible but...
considering the number of users it would take too much time.

Also, the same users have their home directories shared via AFP (which
works fine) and I can't complicate the setup with an additional
smbpasswd file.

I tried numerous configurations but so far I can't find a solution to
the following - is there a way to convince SAMBA to use /etc/passwd
and /etc/shadow in order to grant user access to their home
directories?

For example I tried the following (which is not good):

[Homes]
   path = /raid/Users/%U
   public = no
   read only = no
   valid users = %U
   printable = no
   browsable = yes

Users should be able to read and write to their home directories. They
can't read from other users home directories.

Looking forward to your help.

Cheers
Krzys
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/listinfo/samba

Hallo, Krzysztof,

Du (krzys18) meintest am 08.07.08:

> Now, I'm trying to convince Samba to let Win XP users to connect to
> their home directories for example /raid/Users/user000001,
> /raid/Users/user000002 etc. I have a lot of users (Slackware Unix
> users in /etc/passwd and /etc/shadow) so defining them with
> "smbpasswd -a userNNNNNN" is impossible. Well, maybe it is possible
> but... considering the number of users it would take too much time.

If you don't want LDAP you have to use the "smbpasswd" way.

(and LDAP leads to other problems ...)

> Also, the same users have their home directories shared via AFP
> (which works fine) and I can't complicate the setup with an
> additional smbpasswd file.

How and where does AFP manage the authentification for Windows clients?

Viele Gruesse!
Helmut
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/listinfo/samba

On Tuesday 08 July 2008, Helmut Hullen wrote: <snip>

To help make things easier for me when I had to do it the "smbpasswd way"
recently, I wrote an expect script. I had to add the users to passwd and
create the directories, so there may be some extra stuff in here you don't
need, but it should get you started. Comment out what you don't need. This
requires expect and takes two arguments on the command line: the username and
the password. Improvements are welcome.

For example, if I need to add user frank with password secret, call the script
like this (as root):

<path to script>/<script name> frank secret

With the right shell script loop, this could be highly automated.

========Begin script=============
#!/usr/bin/expect -f

  set password [lindex $argv 1]
  set username [lindex $argv 0]
  spawn useradd $username
  sleep 1
  spawn mkdir /home/$username
  sleep 1
  spawn chown -R $username:$username /home/$username
  sleep 5
  spawn chmod 0770 -R /home/$username
  sleep 5
  spawn passwd [lindex $argv 0]
  expect {
        -re "password:" {sleep 1; send "$password\r"; exp_continue}
        -re "password:" {sleep 1; send "$password\r";}
}
  spawn mkdir /home/profiles/$username
  sleep 1
  spawn chown $username:$username /home/profiles/$username
  sleep 1
  spawn chown -R $username:$username /home/$username
  sleep 1
  spawn chmod 0770 -R /home/$username
  sleep 5
  spawn smbpasswd -a $username
  expect {
        -re "password:" {sleep 1; send "$password\r"; exp_continue}
        -re "password:" {sleep 1; send "$password\r";}
}
========End script=============

--
Fail to learn history-repeat it.
Fail to learn rights-lose them.
Learn both-get screwed by previous two groups.
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/listinfo/samba

[...] Yeah, FWIW, I just setup LDAP on Slackware-12.0, and it's a bear to
build it from source.
Depending on what libraries you require, of course.  I took the "kitchen
sink" approach and I think I ended up chasing about a dozen libraries
for dependencies.  My only advice if you decide to go this route is to
use Slackware's makepkg utility as you compile sources and keep all the
packages in subversion or some other form of revision control.  Also,
the default Samba add machine script needs to be modified slightly, IIRC.

That being said, it's very doable if you have patience and a Starbucks
near by.  Also, a hard copy of John Terpstra and Jelmer Vernooij's "The
Official Samba-3 HOWTO and Reference Guide" as well as Jerry Carter's
"LDAP System Administration" are worth their weight in gold for such an
undertaking.
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/listinfo/samba