1; Configuration file for smbd. 2; ============================================================================ 3; For the format of this file and comprehensive descriptions of all the 4; configuration option, please refer to the man page for smb.conf(5). 5; 6; The following configuration should suit most systems for basic usage and 7; initial testing. It gives all clients access to their home directories and 8; allows access to all printers specified in /etc/printcap. 9; 10; Things you need to check: 11; -------------------------- 12; 13; 1: Check the path to your printcap file. If you are using a system that does 14; not use printcap (eg., Solaris), create a file containing lines of the 15; form 16; 17; printername|printername|printername| 18; 19; where each "printername" is the name of a printer you want to provide 20; access to. Then alter the "printcap =" entry to point to the new file. 21; 22; If using Solaris, the following command will generate a suitable printcap 23; file: 24; 25; lpc status | grep ":" | sed s/:/\|/ > myprintcap 26; 27; 2: Make sure the "print command" entry is correct for your system. This 28; command should submit a file (represented by %s) to a printer 29; (represented by %p) for printing and should REMOVE the file after 30; printing. 31; 32; One most systems the default will be OK, as long as you get "printing =" 33; right. 34; 35; It is also a good idea to use an absolute path in the print command 36; as there is no guarantee the search path will be set correctly. 37; 38; 3: Make sure the "printing =" option is set correctly for your system. 39; Possible values are "sysv", "bsd" or "aix". 40; 41; 4: Make sure the "lpq command" entry is correct for your system. The default 42; may not work for you. 43; 44; 5: Make sure that the user specified in "guest account" exists. Typically 45; this will be a user that cannot log in and has minimal privileges. 46; Often the "nobody" account doesn't work (very system dependant). 47; 48; 6: You should consider the "security =" option. See a full description 49; in the main documentation and the smb.conf(5) manual page 50; 51; 7: Look at the "hosts allow" option, unless you want everyone on the internet 52; to be able to access your files. 53; 54[global] 55 printing = bsd 56 printcap name = /etc/printcap 57 load printers = yes 58 guest account = pcguest 59; This next option sets a separate log file for each client. Remove 60; it if you want a combined log file. 61 log file = /usr/local/samba/log.%m 62 63; You will need a world readable lock directory and "share modes=yes" 64; if you want to support the file sharing modes for multiple users 65; of the same files 66; lock directory = /usr/local/samba/var/locks 67; share modes = yes 68 69[homes] 70 comment = Home Directories 71 browseable = no 72 read only = no 73 create mode = 0750 74 75[printers] 76 comment = All Printers 77 browseable = no 78 printable = yes 79 public = no 80 writable = no 81 create mode = 0700 82 83; you might also want this one, notice that it is read only so as not to give 84; people without an account write access. 85; 86; [tmp] 87; comment = Temporary file space 88; path = /tmp 89; read only = yes 90; public = yes 91 92; 93; Other examples. 94; 95; A private printer, usable only by fred. Spool data will be placed in fred's 96; home directory. Note that fred must have write access to the spool directory, 97; wherever it is. 98;[fredsprn] 99; comment = Fred's Printer 100; valid users = fred 101; path = /homes/fred 102; printer = freds_printer 103; public = no 104; writable = no 105; printable = yes 106; 107; A private directory, usable only by fred. Note that fred requires write 108; access to the directory. 109;[fredsdir] 110; comment = Fred's Service 111; path = /usr/somewhere/private 112; valid users = fred 113; public = no 114; writable = yes 115; printable = no 116; 117; A publicly accessible directory, but read only, except for people in 118; the staff group 119;[public] 120; comment = Public Stuff 121; path = /usr/somewhere/public 122; public = yes 123; writable = no 124; printable = no 125; write list = @staff 126; 127; a service which has a different directory for each machine that connects 128; this allows you to tailor configurations to incoming machines. You could 129; also use the %u option to tailor it by user name. 130; The %m gets replaced with the machine name that is connecting. 131;[pchome] 132; comment = PC Directories 133; path = /usr/pc/%m 134; public = no 135; writeable = yes 136; 137; 138; A publicly accessible directory, read/write to all users. Note that all files 139; created in the directory by users will be owned by the default user, so 140; any user with access can delete any other user's files. Obviously this 141; directory must be writable by the default user. Another user could of course 142; be specified, in which case all files would be owned by that user instead. 143;[public] 144; path = /usr/somewhere/else/public 145; public = yes 146; only guest = yes 147; writable = yes 148; printable = no 149; 150; 151; The following two entries demonstrate how to share a directory so that two 152; users can place files there that will be owned by the specific users. In this 153; setup, the directory should be writable by both users and should have the 154; sticky bit set on it to prevent abuse. Obviously this could be extended to 155; as many users as required. 156;[myshare] 157; comment = Mary's and Fred's stuff 158; path = /usr/somewhere/shared 159; valid users = mary fred 160; public = no 161; writable = yes 162; printable = no 163; create mask = 0765 164 165 166 167 168