以192.168.0.212作修改
主要參考鳥哥Samba教學
國網中心 & 青草湖社區大學
————————————————————-以下開始——————————-
locate lmhosts
————————————————————-
/etc/samba/lmhosts
/usr/share/man/man5/lmhosts.5.gz
————————————————————-
vi /etc/samba/lmhosts #這步驟我覺得其實有無無所謂
————————————————————-
127.0.0.1 localhost
192.168.0.248 XXXXX #以下幾行是我多打的
192.168.0.247 XXXX
————————————————————-
vi /etc/samba/smb.conf #請修改成以下的設定
————————————————————-
# This is the main Samba configuration file. You should read the
# smb.conf(5) manual page in order to understand the options listed
# here. Samba has a huge number of configurable options (perhaps too
# many!) most of which are not shown in this example
#
# For a step to step guide on installing, configuring and using samba,
# read the Samba-HOWTO-Collection. This may be obtained from:
# http://www.samba.org/samba/docs/Samba-HOWTO-Collection.pdf
#
# Many working examples of smb.conf files can be found in the
# Samba-Guide which is generated daily and can be downloaded from:
# http://www.samba.org/samba/docs/Samba-Guide.pdf
#
# Any line which starts with a ; (semi-colon) or a # (hash)
# is a comment and is ignored. In this example we will use a #
# for commentry and a ; for parts of the config file that you
# may wish to enable
#
# NOTE: Whenever you modify this file you should run the command 『testparm』
# to check that you have not made any basic syntactic errors.
#
#—————
# SELINUX NOTES:
#
# If you want to use the useradd/groupadd family of binaries please run:
# setsebool -P samba_domain_controller on
#
# If you want to share home directories via samba please run:
# setsebool -P samba_enable_home_dirs on
#
# If you create a new directory you want to share you should mark it as
# 『samba-share_t』 so that selinux will let you write into it.
# Make sure not to do that on system directories as they may already have
# been marked with othe SELinux labels.
#
# Use ls -ldZ /path to see which context a directory has
#
# Set labels only on directories you created!
# To set a label use the following: chcon -t samba_share_t /path
#
# If you need to share a system created directory you can use one of the
# following (read-only/read-write):
# setsebool -P samba_export_all_ro on
# or
# setsebool -P samba_export_all_rw on
#
# If you want to run scripts (preexec/root prexec/print command/…) please
# put them into the /var/lib/samba/scripts directory so that smbd will be
# allowed to run them.
# Make sure you COPY them and not MOVE them so that the right SELinux context
# is applied, to check all is ok use restorecon -R -v /var/lib/samba/scripts
#
#————–
#
#======================= Global Settings =====================================
[global]
#client code page = 950 鳥哥的設定會有這行,可是現在版本不支援,會出現錯誤訊息,不用輸入.
encrypt passwords = yes
unix charset = utf8
display charset = utf8
dos charset = cp950
smb passwd file = /usr/bin/smbpasswd #此檔位置請用locate smbpasswd去找
# ———————– Network Related Options ————————-
#
# workgroup = NT-Domain-Name or Workgroup-Name, eg: MIDEARTH
#
# server string is the equivalent of the NT Description field
#
# netbios name can be used to specify a server name not tied to the hostname
#
# Interfaces lets you configure Samba to use multiple interfaces
# If you have multiple network interfaces then you can list the ones
# you want to listen on (never omit localhost)
#
# Hosts Allow/Hosts Deny lets you restrict who can connect, and you can
# specifiy it as a per share option as well
#
workgroup = MSHOME #此行請依照自己M$的網路群組名設定
server string = Samba Server Version %v
; netbios name = BACKUPSERVER
; interfaces = lo eth0 192.168.12.2/24 192.168.13.2/24
; hosts allow = 127. 192.168.0.93 192.168.0.248 192.168.0.247 #此行是限定只有哪幾台主機才能連
# ————————— Logging Options —————————–
#
# Log File let you specify where to put logs and how to split them up.
#
# Max Log Size let you specify the max size log files should reach
# logs split per machine
; log file = /var/log/samba/%m.log
# max 50KB per log file, then rotate
; max log size = 50
# ———————– Standalone Server Options ————————
#
# Security can be set to user, share(deprecated) or server(deprecated)
#
# Backend to store user information in. New installations should
# use either tdbsam or ldapsam. smbpasswd is available for backwards
# compatibility. tdbsam requires no further configuration.
security = user
passdb backend = tdbsam
# ———————– Domain Members Options ————————
#
# Security must be set to domain or ads
#
# Use the realm option only with security = ads
# Specifies the Active Directory realm the host is part of
#
# Backend to store user information in. New installations should
# use either tdbsam or ldapsam. smbpasswd is available for backwards
# compatibility. tdbsam requires no further configuration.
#
# Use password server option only with security = server or if you can’t
# use the DNS to locate Domain Controllers
# The argument list may include:
# password server = My_PDC_Name [My_BDC_Name] [My_Next_BDC_Name]
# or to auto-locate the domain controller/s
# password server = *
; security = domain
; passdb backend = tdbsam
; realm = MY_REALM
; password server =
# ———————– Domain Controller Options ————————
#
# Security must be set to user for domain controllers
#
# Backend to store user information in. New installations should
# use either tdbsam or ldapsam. smbpasswd is available for backwards
# compatibility. tdbsam requires no further configuration.
#
# Domain Master specifies Samba to be the Domain Master Browser. This
# allows Samba to collate browse lists between subnets. Don’t use this
# if you already have a Windows NT domain controller doing this job
#
# Domain Logons let Samba be a domain logon server for Windows workstations.
#
# Logon Scrpit let yuou specify a script to be run at login time on the client
# You need to provide it in a share called NETLOGON
#
# Logon Path let you specify where user profiles are stored (UNC path)
#
# Various scripts can be used on a domain controller or stand-alone
# machine to add or delete corresponding unix accounts
#
; security = user
; passdb backend = tdbsam
; domain master = yes
; domain logons = yes
# the login script name depends on the machine name
; logon script = %m.bat
# the login script name depends on the unix user used
; logon script = %u.bat
; logon path = \\%L\Profiles\%u
# disables profiles support by specifing an empty path
; logon path =
; add user script = /usr/sbin/useradd 『%u』 -n -g users
; add group script = /usr/sbin/groupadd 『%g』
; add machine script = /usr/sbin/useradd -n -c 『Workstation (%u)』 -M -d /nohome -s /bin/false 『%u』
; delete user script = /usr/sbin/userdel 『%u』
; delete user from group script = /usr/sbin/userdel 『%u』 『%g』
; delete group script = /usr/sbin/groupdel 『%g』
# ———————– Browser Control Options —————————-
#
# set local master to no if you don’t want Samba to become a master
# browser on your network. Otherwise the normal election rules apply
#
# OS Level determines the precedence of this server in master browser
# elections. The default value should be reasonable
#
# Preferred Master causes Samba to force a local browser election on startup
# and gives it a slightly higher chance of winning the election
; local master = no
; os level = 33
; preferred master = yes
#—————————– Name Resolution ——————————-
# Windows Internet Name Serving Support Section:
# Note: Samba can be either a WINS Server, or a WINS Client, but NOT both
#
# – WINS Support: Tells the NMBD component of Samba to enable it’s WINS Server
#
# – WINS Server: Tells the NMBD components of Samba to be a WINS Client
#
# – WINS Proxy: Tells Samba to answer name resolution queries on
# behalf of a non WINS capable client, for this to work there must be
# at least one WINS Server on the network. The default is NO.
#
# DNS Proxy – tells Samba whether or not to try to resolve NetBIOS names
# via DNS nslookups.
; wins support = yes
; wins server = w.x.y.z
; wins proxy = yes
; dns proxy = yes
# ————————— Printing Options —————————–
#
# Load Printers let you load automatically the list of printers rather
# than setting them up individually
#
# Cups Options let you pass the cups libs custom options, setting it to raw
# for example will let you use drivers on your Windows clients
#
# Printcap Name let you specify an alternative printcap file
#
# You can choose a non default printing system using the Printing option
load printers = yes
cups options = raw
; printcap name = /etc/printcap
#obtain list of printers automatically on SystemV
; printcap name = lpstat
; printing = cups
# ————————— Filesystem Options —————————
#
# The following options can be uncommented if the filesystem supports
# Extended Attributes and they are enabled (usually by the mount option
# user_xattr). Thess options will let the admin store the DOS attributes
# in an EA and make samba not mess with the permission bits.
#
# Note: these options can also be set just per share, setting them in global
# makes them the default for all shares
; map archive = no
; map hidden = no
; map read only = no
; map system = no
; store dos attributes = yes
#============================ Share Definitions ==============================
#[home] 此部分疑似被我改壞,若是測試出現此folder warning,就到此行將此部分全部註解起來.
# comment = Home Directories
# browseable = no
# writable = yes
#; valid users = %S
#; valid users = MYDOMAIN\%S
[printers]
comment = All Printers
path = /var/spool/samba
browseable = no
guest ok = no
writable = no
printable = yes
[backup] #此folder照我要備份目錄增加
comment = backup
path = /backup
public = yes
browseable = yes
writable = yes
write list = +staff
# Un-comment the following and create the netlogon directory for Domain Logons
; [netlogon]
; comment = Network Logon Service
; path = /var/lib/samba/netlogon
; guest ok = yes
; writable = no
; share modes = no
此檔大部分都不變動
——————————————————————————–
testparm #測試是否可分享,正常不會出現warning
——————————————————————————-
Load smb config files from /etc/samba/smb.conf
Processing section 『[printers]』
Processing section 『[backup]』
Loaded services file OK.
Server role: ROLE_STANDALONE
Press enter to see a dump of your service definitions
[global]
dos charset = cp950
unix charset = utf8
display charset = utf8
workgroup = MSHOME
server string = Samba Server Version %v
smb passwd file = /usr/bin/smbpasswd
passdb backend = tdbsam
cups options = raw
[printers]
comment = All Printers
path = /var/spool/samba
printable = Yes
browseable = No
[backup]
comment = backup
path = /backup
write list = +staff
read only = No
guest ok = Yes
—————————————————————————
# Un-comment the following to provide a specific roving profile share
# the default is to use the user’s home directory
; [Profiles]
; path = /var/lib/samba/profiles
; browseable = no
; guest ok = yes
# A publicly accessible directory, but read only, except for people in
# the 『staff』 group
; [public] #這是預設的,不需改.
; comment = Public Stuff
; path = /home/samba
; public = yes
; writable = yes
; printable = no
; write list = +staff
—————————————————————————
chmod 700 /usr/bin/smbpasswd #將此檔改成可執行且只能由root修改
adduser -M administrator #先在系統裡增加使用者,使Samba可用, -M是不增加user的家目錄,另外,鳥哥的設定缺此一步驟,會發生smbpasswd -a administrator出現無法增加的錯誤,不知是否為版本問題.
會出現輸入密碼的提示,輸入完密碼後.
smbpasswd -a administrator #Samba裡增加使用者,一樣輸入密碼.
/etc/rc.d/init.d/smb restart #smb重新啟動
nmblookup MSHOME #找尋MSHOME裡有分享的電腦
接下來到192.168.0.248 開始->執行->\\192.168.0.212->Enter, 再輸入administrator及密碼後就可以看到了.
最好是做成網路磁碟機的方式.
![[Valid RSS]](http://madoka-ayukawa.com/valid-rss-rogers.png "Validate my RSS feed")