prenaux/smb.conf

## smb.conf
#
# Sample configuration file for the Samba suite for Debian GNU/Linux.
#
#
# This is the main Samba configuration file. You should read the
# smb.conf(5) manual page in order to understand the options listed
# here. Samba has a huge number of configurable options most of which
# are not shown in this example
#
# Some options that are often worth tuning have been included as
# commented-out examples in this file.
#  - When such options are commented with ";", the proposed setting
#    differs from the default Samba behaviour
#  - When commented with "#", the proposed setting is the default
#    behaviour of Samba but the option is considered important
#    enough to be mentioned here
#
# NOTE: Whenever you modify this file you should run the command
# "testparm" to check that you have not made any basic syntactic
# errors.

#======================= Global Settings =======================

[global]

# Special configuration for Apple's Time Machine
# catia		- maps MacOS filename encodings to a form most Linux filesystems support
# fruit		- provides Apple’s proprietary extensions to SMB
# acl_xattr	- stores NTFS Access Control Lists (ACLs) in Extended Attributes (EAs)
# streams_xattr	- stores NTFS alternate data streams in POSIX xattrs
vfs objects = catia fruit streams_xattr
fruit:aapl = yes
fruit:advertise_fullsync = true
fruit:time machine = yes
fruit:resource = xattr
fruit:nfs_aces = no
fruit:model = Xserve
# Security
interfaces = 192.168.0.0/16 fe80::208:9bff:fef9:648b%eth0/64
bind interfaces only = yes
server role = standalone server
workgroup = WORKGROUP
client min protocol = SMB2_02
server min protocol = SMB2_02
server max protocol = SMB3_11
encrypt passwords = yes
;smb encrypt = off
smb ports = 445
restrict anonymous = 2
unix password sync = yes
pam password change = yes
passwd program = /usr/bin/passwd %u
passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
# Unneeded features
disable netbios = yes
enhanced browsing = no
host msdfs = no
load printers = no
printcap cache time = 0
printcap name = /dev/null
# dcerpc endpoint servers = epmapper, wkssvc, rpcecho, samr, netlogon, lsarpc, drsuapi, dssetup, unixinfo, browser, eventlog6, backupkey, dnsserver
dcerpc endpoint servers = rpcecho
# server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate, dns
server services = rpc
rpc_server:epmapper = disabled
rpc_server:winreg = disabled
rpc_server:lsarpc = disabled
rpc_server:samr = disabled
rpc_server:netlogon = disabled
rpc_server:netdfs = disabled
rpc_server:dssetup = disabled
rpc_server:wkssvc = disabled
rpc_server:spoolss = disabled
rpc_server:svcctl = disabled
rpc_server:ntsvcs = disabled
rpc_server:eventlog = disabled
rpc_server:initshutdown = disabled
rpc_server:mdssvc = disabled
allow dns updates = disabled
dns proxy = no
enable core files = no
name resolve order = host bcast
# Performance
;use sendfile = yes

#### Debugging/Accounting ####

# This tells Samba to use a separate log file for each machine
# that connects
   log file = /var/log/samba/log.%m
   log level = 1

# Cap the size of the individual log files (in KiB).
   max log size = 1000

# We want Samba to only log to /var/log/samba/log.{smbd,nmbd}.
# Append syslog@1 if you want important messages to be sent to syslog too.
   logging = file

# Do something sensible when Samba crashes: mail the admin a backtrace
   panic action = /usr/share/samba/panic-action %d

############ Misc ############

# Some defaults for winbind (make sure you're not using the ranges
# for something else.)
;   idmap config * :              backend = tdb
;   idmap config * :              range   = 3000-7999
;   idmap config YOURDOMAINHERE : backend = tdb
;   idmap config YOURDOMAINHERE : range   = 100000-999999
;   template shell = /bin/bash

#======================= Share Definitions =======================

[Time Machine]
path = /data/backup/timemachine/%U
valid users = %U
browseable = Yes
writable = Yes
read only = No
inherit acls = Yes
spotlight = No
block size = 524288
dfree command = /usr/local/bin/dfree
dfree cache time = 120
	#
	# Sample configuration file for the Samba suite for Debian GNU/Linux.
	#
	#
	# This is the main Samba configuration file. You should read the
	# smb.conf(5) manual page in order to understand the options listed
	# here. Samba has a huge number of configurable options most of which
	# are not shown in this example
	#
	# Some options that are often worth tuning have been included as
	# commented-out examples in this file.
	# - When such options are commented with ";", the proposed setting
	# differs from the default Samba behaviour
	# - When commented with "#", the proposed setting is the default
	# behaviour of Samba but the option is considered important
	# enough to be mentioned here
	#
	# NOTE: Whenever you modify this file you should run the command
	# "testparm" to check that you have not made any basic syntactic
	# errors.

	#======================= Global Settings =======================

	[global]

	# Special configuration for Apple's Time Machine
	# catia - maps MacOS filename encodings to a form most Linux filesystems support
	# fruit - provides Apple’s proprietary extensions to SMB
	# acl_xattr - stores NTFS Access Control Lists (ACLs) in Extended Attributes (EAs)
	# streams_xattr - stores NTFS alternate data streams in POSIX xattrs
	vfs objects = catia fruit streams_xattr
	fruit:aapl = yes
	fruit:advertise_fullsync = true
	fruit:time machine = yes
	fruit:resource = xattr
	fruit:nfs_aces = no
	fruit:model = Xserve
	# Security
	interfaces = 192.168.0.0/16 fe80::208:9bff:fef9:648b%eth0/64
	bind interfaces only = yes
	server role = standalone server
	workgroup = WORKGROUP
	client min protocol = SMB2_02
	server min protocol = SMB2_02
	server max protocol = SMB3_11
	encrypt passwords = yes
	;smb encrypt = off
	smb ports = 445
	restrict anonymous = 2
	unix password sync = yes
	pam password change = yes
	passwd program = /usr/bin/passwd %u
	passwd chat = Enter\snew\s\spassword:* %n\n Retype\snew\s\spassword:* %n\n password\supdated\ssuccessfully .
	# Unneeded features
	disable netbios = yes
	enhanced browsing = no
	host msdfs = no
	load printers = no
	printcap cache time = 0
	printcap name = /dev/null
	# dcerpc endpoint servers = epmapper, wkssvc, rpcecho, samr, netlogon, lsarpc, drsuapi, dssetup, unixinfo, browser, eventlog6, backupkey, dnsserver
	dcerpc endpoint servers = rpcecho
	# server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbindd, ntp_signd, kcc, dnsupdate, dns
	server services = rpc
	rpc_server:epmapper = disabled
	rpc_server:winreg = disabled
	rpc_server:lsarpc = disabled
	rpc_server:samr = disabled
	rpc_server:netlogon = disabled
	rpc_server:netdfs = disabled
	rpc_server:dssetup = disabled
	rpc_server:wkssvc = disabled
	rpc_server:spoolss = disabled
	rpc_server:svcctl = disabled
	rpc_server:ntsvcs = disabled
	rpc_server:eventlog = disabled
	rpc_server:initshutdown = disabled
	rpc_server:mdssvc = disabled
	allow dns updates = disabled
	dns proxy = no
	enable core files = no
	name resolve order = host bcast
	# Performance
	;use sendfile = yes

	#### Debugging/Accounting ####

	# This tells Samba to use a separate log file for each machine
	# that connects
	log file = /var/log/samba/log.%m
	log level = 1

	# Cap the size of the individual log files (in KiB).
	max log size = 1000

	# We want Samba to only log to /var/log/samba/log.{smbd,nmbd}.
	# Append syslog@1 if you want important messages to be sent to syslog too.
	logging = file

	# Do something sensible when Samba crashes: mail the admin a backtrace
	panic action = /usr/share/samba/panic-action %d

	############ Misc ############

	# Some defaults for winbind (make sure you're not using the ranges
	# for something else.)
	; idmap config * : backend = tdb
	; idmap config * : range = 3000-7999
	; idmap config YOURDOMAINHERE : backend = tdb
	; idmap config YOURDOMAINHERE : range = 100000-999999
	; template shell = /bin/bash

	#======================= Share Definitions =======================

	[Time Machine]
	path = /data/backup/timemachine/%U
	valid users = %U
	browseable = Yes
	writable = Yes
	read only = No
	inherit acls = Yes
	spotlight = No
	block size = 524288
	dfree command = /usr/local/bin/dfree
	dfree cache time = 120
No results found