# Samba3 Konfiguration
[global]
# Identifikation des Servers und der Arbeitsgruppe
#
workgroup = lenz.local
netbiosname = LENZBRB_PDC
server string = Samba(PDC)@lenz.local
#
# Grundeinstellungen für die einzelnen Shares. Um eine höhere Sicherheit zu gewähren, wird global erst einmal
# alles verboten und in den jeweiligen Shares die Rechte dann vergeben
#
browseable = no
public = yes
writeable = no
guest ok = yes
#
# Die Log-Files für Samba
#
log file = /var/samba/log.%m
#
# Browsing
#
domain master = yes
local master = yes
preferred master = yes
os level = 69
#
# Sicherheit & Zeit
#
passdb backend = smbpasswd
security = user
time server = yes
#
# Logon Einstellungen für Windows 9x/NT/2000/ME
#
logon path = \\LENZBRB_PDC\profiles\%U.pds
logon home = \\LENZBRB_PDC\profiles\%U
logon script = users.bat
domain logons = Yes
update encrypted = yes
password level = 4
unix password sync = yes
passwd program = /usr/bin/passwd %u
add machine script = /usr/sbin/useradd -c Machine -d /var/lib/nobody -s /bin/false %m$
#
# Die Administratoren des PDC
#
domain admin users = root, administrator, Administrator, ADMINISTRATOR
#
# Performance Einstellungen
#
deadtime = 15
keep alive = 180
read raw = yes
write raw = yes
socket options = TCP_NODELAY
getwd cache = yes
#
# WINS (überprüfen ob notwendig)
#
wins support = yes
#
# Dateinamen (diese Optionen gehören in den Bereich der Shares
# ausserdem sind alle auf Standard-Werten und damit überflüssig - noch zu überprüfen)
#
case sensitive = no
default case = lower
preserve case = yes
short preserve case = yes
mangle case = no
#
# Logging-Optionen
#
log level = 3
max log size = 5000
#
# Locking-Optionen
#
oplocks = yes
fake oplocks = no
level2 oplocks = False
#
# Drucker Einstellungen
#
printing = cups
load printers = yes
#
[homes]
path = /home/%u
comment = Benutzer-Verzeichnisse
browseable = no
writeable = yes
#
[netlogon]
path = /home/netlogon
browseable = no
writeable = no
comment = NetLogON
write list = root
#
[profiles]
path = /home/profiles
browseable = no
writeable = yes
store dos attributes = Yes
create mask = 0777
directory mask = 0777
comment = Benutzerprofile
#
[public]
path = /home/public
browseable = yes
writeable = yes
guest ok = yes
public = yes
create mask = 0777
directory mask = 0777
inherit permissions = yes
comment = Öffentlicher Ordner
#
[beton]
path = /home/groups/beton
browseable = yes
read list = @beton @erdbau @azubi
write list = @beton
create mask = 0770
directory mask = 0660
comment = Bereich Beton
#
[erdbau]
path = /home/groups/erdbau
browseable = yes
read list = @beton @erdbau @azubi
write list = @erdbau
create mask = 0770
directory mask = 0660
comment = Bereich Erdbau
#
[ifu]
path = /home/groups/ifu
browseable = yes
writeable = yes
read list = @ifu
write list = @ifu
inherit permissions = yes
comment = Bereich IFU
#
[sebu]
path = /home/groups/sebu
browseable = yes
writeable = yes
read list = @sebu
write list = @sebu
inherit permissions = yes
comment = Sekretariat und Buchhaltung
#
[azubi]
path = /home/groups/azubi
browseable = yes
writeable = yes
read list = @azubi @erdbau @beton
write list = @azubi @erdbau @beton
inherit permissions = yes
comment = Lehrlinge
#
[treiber]
path = /home/treiber
browseable = no
writeable = yes
read list = @azubi @erdbau @beton @sebu @ifu
write list = @erdbau @beton @ifu @sebu
inherit permissions = yes
comment = Treiber und Software
#
[programme]
path = /home/programme
browseable = no
writeable = yes
read list = @azubi @erdbau @beton @sebu @ifu
write list = @erdbau @beton @ifu @sebu
create mask = 0777
directory mask = 0777
comment = Programmdateien
Lesezeichen