Sharing Folders And Mounting Shares With SetGID / Samba

OK this is kinda long, so I will shorten it as much as I can, as to not be long-winded.

My current network at home:
1 - CentOS 7 desktop (server)
1 - Ubuntu 14.04 desktop
1 - Fedora 21 laptop
2 - Windows 7 desktops
some other various windows boxes also that don't get used regularly, but are on the network.

My 2 Linux desktops (which I use as servers, but they really aren't) have shared folders on them, which I share to the network via Samba (CIFS). I use Samba because Linux is smarter than Windows and Windows won't read NFS, so I share them as Samba so all devices can see them.

Generally speaking, if I share the folders on each box as 0777, I have no issues. But lately I have been wanting to implement some better security, so I wanted to SETGID and chown the shared folders from the local machine to a specific group, then change the folders to 2774.

My problem is that I keep getting permissions errors when trying to connect from the other Linux machines, and sometimes the Windows machines also. My main question is: do I CHMOD 2774 the local mount-point before mounting it? Or so I CHMOD 2774 the shared folder on the other server, then mount it locally to a folder whose permissions are different? Or do I CHMOD both of them the same?

basically the uis and gid ownerships change on a local folder when I mount a shared drive to that folder, so when I try to write or sometimes read that local folder, I get permissions errors.

I can provide any additional info needed.


Similar Content



Problem With Samba Share

Hello

I want to share a folder on my Fedora linux pc with a Windows 8 pc in the same network.

I have followed this guide : http://www.labtestproject.com/config...rver_on_fedora

but I am not able to see my share on my Fedora linux pc from the other Windows 8 PC.

This is my /etc/samba/smb.conf :

Code:
[global]
        workgroup = mygroup
        server string = HP Samba
;       netbios name = MYSERVER

;       interfaces = lo eth0 192.168.12.2/24 192.168.13.2/24
;       hosts allow = 127. 192.168.12. 192.168.13.

;       max protocol = SMB2
[My-Documents]
        path = /home/Jonas/Desktop/My-Documents
        read only = no
;       browseable = yes
        guest ok = yes


The workgroup name is the same as the workgroup name on the Windows PC.

Firewall on Fedora linux pc is down.

I do get the following output when restarting smb :
Code:
apr 27 12:27:49 jonashp.domain.local systemd[1]: Starting Samba SMB Daemon...
apr 27 12:27:49 jonashp.domain.local smbd[4324]: [2015/04/27 12:27:49.686796,  0] ../source3/param/loadparm.c:3034(lp_set_enum_parm)
apr 27 12:27:49 jonashp.domain.local smbd[4324]: WARNING: Ignoring invalid value 'share' for parameter 'security'
apr 27 12:27:49 jonashp.domain.local smbd[4324]: [2015/04/27 12:27:49.687187,  0] ../source3/smbd/server.c:1286(main)
apr 27 12:27:49 jonashp.domain.local smbd[4324]: standard input is not a socket, assuming -D option
apr 27 12:27:49 jonashp.domain.local systemd[1]: Started Samba SMB Daemon.

I thought it would be that simple...

Borked Ubuntu With Putty SSH Cmd Line

I am not sure what happened here, and I find it oddly disturbing that a Putty session from Window could do this, but here is what I did -

I was attempting to open a ssh redirect session from Putty command line on my W7 work PC to my home PC running Ubuntu 14.04. I've done this before with the Putty GUI and had no issues at all, but this time I was using cmd line and it never did connect. I ran this command:
Code:
putty -ssh -D 1080 -P 22 domain.com

The Putty window opened but never connected. I tried twice and when it didn't connect, I gave up and went back to the GUI. I connected with the GUI just fine, but after connecting an SSH session to my Ubuntu server at home, I noticed it was acting odd.

Long story short: It was in a "read-only" mode, saying the file system was read-only. I couldn't run apt-get update or even create a new folder in my Home folder or desktop. I remotely rebooted the machine and it never came back online.

When I got home I checked it, and it told me that Ubuntu had found some errors, and was asking if I wanted to correct them. I said yes and it took a short while, but then finally let me log back in.

After this, the box is about 90-95% back to normal except for a couple of odd things that I don't understand.

The main issue is that my Samba shared drives are no longer working. The fstab file looks the same and can connect to other machines, but nothing can connect back to the Ubuntu box. The folder permissions are correct also. I have a CentOS7 box, a Fedora laptop and a W7 box - none of them can connect to my Ubuntu box. I only run Samba and connect with it, even from Linux boxes, just to make it simple (since Windows is stupid and can't use NFS) - this has always worked in the past. Now for the life of me, I can't figure out why nothing will connect.

Is there a logfile or trouble-shooter I could look at it see what happened? It should be in /var/log somewhere, but I don't know where to start. SSH? Samba? The entire filesystem was read-only for a short while, so is there a FS or System log in /var/log?

I am kinda confused on this one, any help is appreciated.

Centos File Permission Issue

Hello There


I have an issue in file permission,I have configured an samba share drive,
created user and then shared it with other network computer(WINDOWS 7)

whenever an user creates an folder or file (like Excel) it shows up in read only mode..

I have ran the command :- chmod -R 777 <sharedFolder>

still when the users create a new folder, other cannot edit or modify the file

need help

Can't Access Windows Share From Linux

Hi all. I can't connect to my Win 8.1 box from Linux Mint. I can ping the Win box successfully. I can access my Linux share from my Win box. It seems like the problem is with windows. I've been working on this problem for about three days now with no luck. I've uninstalled Norton Security in my Win box. I've deactivated Microsoft's firewall. Not helping. My smb.conf is:

[homes]
read only = no
security = domain
workgroup = WORKGROUP

[share]
comment = Shared Data
path = /home/gary/share
gues ok = yes
writeable = no
browseable = yes

To make things simple i created only one shared folder on my Win box, asm. On Linux i type: sudo mount.cifs //GARYZ97/asm /home/gary/share -o user=Gary ; Gary is apparently my correct Windows username. BTW, i've also tried gary.
Linux responds with: [sudo] password for gary: jj ; this is my correct sudo password
Next response is: Password for Gary@//GARYZ97/asm: ; here i have tried my Microsoft Account password; i've tried just hitting enter; i've tried jj my Linux password. I'm at my wits end. What am i doing wrong? I've googled so many different sites but no one seems to have the problem i have. Please help. I don't want to pull out all my hair. I can access my Linux share from Windows, edit it, save it, and i see the changes on my Linux box. I know i'm being repetitive here but i just can't access my Windows share from Linux. I have run testparm on smb.conf and no problems there. Almost forgot. After entering what i believe is my correct Windows password i get: mount error(115): Operation now in progress, and then on the next line, Refer to the mount.cifs(8) manual page (e.g. man mount.cifs)

Samba Shares Not Available To Windows Machines On The Network

Linux 14.04 server set up following instructions on http://www.havetheknowhow.com

I have been trying to connect to the samba shares from two windows machines. The server is visible but when I try to connect it requests a logon and no matter what I enter it fails. I have been using webmin to set this up and the samba version is 4.1.6-ubuntu.
One note, webmin did not show any samba user groups.

all systems show "WORKGROUP" as the workgroup

Restrict File Share Access To Only Certain LAN IP Addresses?

Hello
I have a few folders that I would like allow only access to certain ip schema
like for example
-folder "Products" allow access only to 10.10.20.x
-folder "Customers" allow access only to 10.10.21.x

Can this be dome using Samba?

machines connecting are windows machine from different networks coming true vpn

Thank you
-Fred

Samba Mount Headache

I banging my head, I am unable to mount samba share. Here is the info
Samba share is in RHEL 6.5
# vi /etc/samba/smb.conf
[sambashare]
comment = samba share
path = /smbdemo
guest ok = yes
browseable = yes

# ls -dZ /smbdemo/
drwxrwxrwx. root root system_ubject_r:samba_share_t:s0 /smbdemo/

# getsebool -a | grep samba
samba_create_home_dirs --> on
samba_domain_controller --> off
samba_enable_home_dirs --> on
samba_export_all_ro --> on
samba_export_all_rw --> on
samba_portmapper --> off
samba_run_unconfined --> off
samba_share_fusefs --> off
samba_share_nfs --> off
sanlock_use_samba --> off
use_samba_home_dirs --> off
virt_use_samba --> off


Accessing this share from another Red Hat Box 6.4 (samba-client)
# smbclient -L 192.168.1.10 -U don [Works perfectly]

Now, when I try to mount the share as:

# mount.cifs //192.168.1.9/smbdemo /opt/test/ -o user=don
Password:
Retrying with upper case share name
mount error(6): No such device or address
Refer to the mount.cifs(8) manual page (e.g. man mount.cifs)

# smbclient //192.168.1.9/smbdemo -U don
Enter don's password:
Domain=[BARNES] OS=[Unix] Server=[Samba 3.6.23-14.el6_6]
tree connect failed: NT_STATUS_BAD_NETWORK_NAME

I searched in google but no avail.

Getting Through SAMBA Security

Ugh - been working on this for days

I have a SAMBA server running on a Raspberry Pi. Should be pretty much up to date - retrieved today.

Want to get Windows 7 and Android smartphones to be able to access, but neither can. Ideally, I would like to generate no password challenge, but that does not seem to be on the agenda. Windows 7 cannot seem to send the account name in a way SAMBA understands. The Android phones similarly have no luck getting credentials to SAMBA.

Tried many, many variations, read many, many pieces of advice. Most recent smb.conf attached.

FYI
1) I have tried with and without SECURITY=USER
2) did smbpasswd -an nobody
3) the share has CHMOD 775
4) testparm seems happy

Any help appreciated.

Jonathan

Can't Access Samba Share

I have set up a SFTP which I can connect to, go to the right directory and read/write files to.

The full path is home/sftpuser/SFTP/Customer
The user "sftpuser" I am connecting with is in the group "ftpusers" which has read/write access.

That works fine.

Here is my sshd_config:
Code:
Match Group ftpusers ChrootDirectory /home/%u/
 ForceCommand internal-sftp
  AllowAgentForwarding no
  AllowTcpForwarding no
  X11Forwarding no

However, I made a samba share of the folder Customer, when I go to the IP adress on a Windows machine "\\10.0.0.1\" I can see the folder Customer, when entering it requests user/pass and afterwards gives an error: you have not the right permissions.

In Webmin:
Customer /home/sftpuser/SFTP/Customer Read/write to everyone

My smb.conf:
Code:
[global]
    syslog = 0
    log file = /var/log/samba/log.%m
    read raw = no
    write raw = no
    passdb backend = tdbsam
    workgroup = DOMAIN
    usershare allow guests = yes
    socket options = TCP_NODELAY
    pam password change = yes
    passwd program = /usr/bin/passwd %u
    unix password sync = yes
    obey pam restrictions = yes
    passwd chat = *Enter\snew\s*\spassword:* %n\n *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
    server role = standalone server
    server string = %h server (Samba, Ubuntu)
    max log size = 1000
    map to guest = bad user
    panic action = /usr/share/samba/panic-action %d
    dns proxy = no



[Customer]
    force create mode = 755
    browsable = yes
    public = yes
    path = /home/sftpuser/SFTP/Customer
    force directory mode = 755
    writeable = yes
    valid users = @ftpusers
    force group = ftpusers
    write list = @ftpusers

I have been struggling for 3 days and am totally out of ideas.

LS -L for the folder:
Code:
total 4
drwxrwx---+ 2 sftpuser ftpusers 4096 Apr  9 11:35 Customer

Why Can't My Windows Clients Write To My Samba Shares (Unbuntu 14.04)

I'm struggling with Samba with a new NAS/Media server I am trying to build. I have created some shares on my Unbuntu server with Samba that are visible and browseable from my home Windows 8.1 clients but when I try to write to any of them I receive a "try again" error.

I want to be able to copy files from my PC to my new Unbuntu server's shares. For now I have one user only on my Unbuntu server that's in the sudo group. From Windows I have tried to map network drive with "different credentials" but no matter what I try from Windows I still can't copy or move files from Windows to the shares.

Thank you