Samba服务配置文件中涉及到的配置命令列表。请大家进行补充说明？

lanmaster · 发表于 2003-8-13 17:24:17

今天找到一些关于对SAMBA进行配置应用参数，其中一部分本人知道，并对其进行说明，还有一大问分本人不知道，发到论坛里，希望大家进行补充说明
如果发现本解释的有错误，请给予指正。

在下面所列出的，等号后没有内容的是系统没有设置或为空的（本人理解）

coding system =                            #
client code page = 936      #设置SAMBA所使用的字符集（默认是：850，936是简体中文）
code page directory = /usr/share/samba/codepages #
workgroup = CCGD.COM #设置SAMBA工作组；
netbios name = CCGD.COM #netbios名子；
netbios aliases =                                    #设置samba服务的别名，（netbios的别名，在网络里同netbios一样做用）；
netbios scope = #
server string = Samba Server #SAMBA服务器说明；
interfaces = 192.168.0.35/24 172.169.0.1/24 #SABMA服务器的网络接口设置，即网卡的IP地址；
bind interfaces only = No #
security = USER #设置共享级别；
encrypt passwords = Yes #使用加密密码进行SAMBA访问；
update encrypted = No #
allow trusted domains = Yes #
hosts equiv = #
min passwd length = 5 #设置密码的最小长度；
map to guest = Never #
null passwords = No #是否使用空密码；
obey pam restrictions = Yes #
password server = #进行密码验证的服务器（即当security = server/domain时用到此选项，用来设置服务器名子）
smb passwd file = /etc/samba/smbpasswd #加密密码验证文件存放位置；
root directory = #设置root访问时的主目录，系统默认是不允许root进行访问的；
pam password change = Yes #
passwd program = /usr/bin/passwd %u #
passwd chat = *New*password* %n\n *Retype*new*password* %n\n *passwd:*all*authentication*tokens*updated*successfully* #
passwd chat debug = No #
username map = /etc/samba/smbusers #SAMBA用户
password level = 0 #
username level = 0 #
unix password sync = Yes #
restrict anonymous = No #
lanman auth = Yes #
use rhosts = No #
admin log = No #是否启用管理记录文件；
log level = 0 #
syslog = 1 #
syslog only = No #是否只做系统日志的记录；
log file = /var/log/samba/%m.log #日志文件的存放路径；
max log size = 100 #日志文件的大小（KB）
timestamp logs = Yes #
debug hires timestamp = No #
debug pid = No #
debug uid = No #
protocol = NT1 #
large readwrite = No #
max protocol = NT1 #
min protocol = CORE #
read bmpx = No #
read raw = Yes #
write raw = Yes #
nt smb support = Yes #
nt pipe support = Yes #
nt status support = Yes #
announce version = 4.5 #
announce as = NT #
max mux = 50 #
max xmit = 65535 #
name resolve order = lmhosts host wins bcast #
max packet = 65535 #
max ttl = 259200 #
max wins ttl = 518400 #
min wins ttl = 21600 #
time server = No #设置成时间服务器
unix extensions = No #
change notify timeout = 60 #
deadtime = 0 #
getwd cache = Yes #
keepalive = 300 #
lpq cache time = 10 #
max smbd processes = 0 #
max disk size = 0 #
max open files = 10000 #
read size = 16384 #
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 #
stat cache size = 50 #
use mmap = Yes #
total print jobs = 0 #
load printers = Yes #
printcap name = /etc/printcap #
disable spoolss = No #
enumports command = #
addprinter command = #
deleteprinter command = #
show add printer wizard = Yes #
os2 driver map = #
strip dot = No #
mangling method = hash #
character set = #
mangled stack = 50 #
stat cache = Yes #
domain admin group = #
domain guest group = #
machine password timeout = 604800 #
add user script = #
delete user script = #
logon script = logon.bat #设置用户登录脚本文件名（构建虚拟NT域时所需）；
logon path = \\%L\%U\.profile.pds #设置登录用户配置文件（构建虚拟NT域时所需）；
logon drive = #
logon home = \\%N\%U #设置用户配置文件的主目录；
domain logons = Yes #启用域登录；
os level = 64 #设置操作系统级别；
lm announce = Auto #
lm interval = 60 #
preferred master = True #A
local master = Yes #B
domain master = True #C A、B、C把Samba设置成域主浏览器；
browse list = Yes #
enhanced browsing = Yes #
dns proxy = No #
wins proxy = No #
wins server = #用来指定WINS服务器（IP地址）；
wins support = Yes #将Samba设置成WINS服务器；
wins hook = #
kernel oplocks = Yes #
lock spin count = 3 #
lock spin time = 10 #
oplock break wait time = 0 #
add share command = #
change share command = #
delete share command = #
config file = #
preload = #
lock dir = /var/cache/samba #
pid directory = /var/run/samba #
utmp directory = #
wtmp directory = #
utmp = No #
default service = #
message command = #
dfree command = #
valid chars = #
remote announce = #
remote browse sync = #
socket address = 0.0.0.0 #
homedir map = auto.home #
time offset = 0 #
NIS homedir = No #
source environment = #
panic action = #
hide local users = No #
winbind uid = #
winbind gid = #
template homedir = /home/%D/%U #
template shell = /bin/false #
winbind separator = \ #
winbind cache time = 15 #
winbind enum users = Yes #
winbind enum groups = Yes #
winbind use default domain = No #
comment = #
path = #
alternate permissions = No #
username = #
guest account = nobody #设置游客账号的用户名；
invalid users = #无效用户（即不能访问该Samba服务器的用户）；
valid users = #有效用户（即可以访问该Samba服务器的用户）；
admin users = #设置管理员账号；
read list = #设置具有只读权限的用户列表；
write list = #设置具有写权限的用户列表；
printer admin = #设置打印机管理员；
force user = #强行设置文件及文件夹的属主用户；
force group = #强行设置文件及文件的属主级；
read only = Yes #设置共享文件或文件夹仅有只读；
create mask = 0744 #设置创建文件时的默认权限；
force create mode = 00 #
security mask = 0777 #
force security mode = 00 #
directory mask = 0755 #设置创建文件夹时的默认权限；
force directory mode = 00 #
directory security mask = 0777 #
force directory security mode = 00 #
force unknown acl user = 00 #
inherit permissions = No #
inherit acls = No #
guest only = No #设置共享只允许GUEST账号访问；
guest ok = No #设置是否允许GUEST账号访问；
only user = No #
hosts allow = 192.168.0. 172.169.0. 127. #设置允许访问SAMBA有网络；
hosts deny =                                        #设置不允许访问SAMBA有网络；
status = Yes #SAMBA的运行状态；
nt acl support = Yes #
block size = 1024 #
max connections = 0 #
min print space = 0 #
strict allocate = No #
strict sync = No #
sync always = No #
write cache size = 0 #
max print jobs = 1000 #
printable = No #
postscript = No #
printing = bsd #
print command = lpr -r -P%p %s #
lpq command = lpq -P%p #
lprm command = lprm -P%p %j #
lppause command = #
lpresume command = #
queuepause command = #
queueresume command = #
printer name = #
use client driver = No #
default devmode = No #
printer driver = #
printer driver file = /etc/samba/printers.def #
printer driver location = #
default case = lower #
case sensitive = No #对字符的大小定是否敏感;
preserve case = Yes #
short preserve case = Yes #
mangle case = No #
mangling char = #
hide dot files = Yes #
hide unreadable = No #
delete veto files = No #
veto files = #
hide files = #在客户端进行访问的时候是不显示隐藏文件;
veto oplock files = #
map system = No #
map hidden = No #
map archive = Yes #
mangled names = Yes #
mangled map = #
browseable = Yes #
blocking locks = Yes #
csc policy = manual #
fake oplocks = No #
locking = Yes #
oplocks = Yes #
level2 oplocks = Yes #
oplock contention limit = 2 #
posix locking = Yes #
strict locking = No #
share modes = Yes #
copy = #
include = #引用其它配置文件；
exec = #
preexec close = No #
postexec = #
root preexec = #设置用户访问共享以root身份执行的命令；
root preexec close = No #关闭的ROOT用户执行shell命令；
root postexec = #设置当用户退出共享时root身份执行的命令；
available = Yes #设置共享是否可用；
volume = #设置卷标；
fstype = NTFS #
set directory = No #
wide links = Yes #是不允许进行符号连接；
follow symlinks = Yes #
dont descend = #
magic script = #
magic output = #
delete readonly = No #是否可以删除只读文件；
dos filemode = No #
dos filetimes = No #
dos filetime resolution = No #
fake directory create times = No #
vfs object = #
vfs options = #

好像有点多。请大家多多支持啊

lanmaster · 发表于 2003-8-13 17:30:05

对不起，先占个位置！:p :p :p :p :p

stanlogin · 发表于 2003-8-14 08:21:42

此贴加精华，希望楼主能做些补充~

lanmaster · 发表于 2003-8-14 08:24:27

谢谢版式主的支持。正在实验中，我会继续补充！

lanmaster · 发表于 2003-8-15 08:15:01

password level = 0 #这是设定针对一些SMB客户像OS/2之类而设的，这样的系统在发送用户密码的时候，
会把密码转换成大写再发送，这样就和samba的密码不一致，这个参数可以设定密码里允许的大写字母个数，这样samba就根据这个数目对接收到的密码进行大小写重组，
以重组过的密码尝试验证密码的正确性。n越大，组合的次数就越多，验证时间就越长，安全性也会因此变得越低。例如n=2，用户的密码是abcd，但发送出去其实是ABCD，
samba就会把这个ABCD进行大小写重组，组合后的结果可以是: Abcd, aBcd, abCd, abcD, abcd, ABcd, AbCd, AbcD,aBCd,aBcD,abCD。
所以如果没有必要，就把n定为是零。这样的话samba只尝试两次，一个是接收到的密码，另一个尝试的是这个密码都是小写的情况。
username level = 0 #意义同上；

* load printers = Yes #设置是否自动共享打印机（如果设置为YES 则不需要下面设置PRINTER共享字段；
* printcap name = /etc/printcap #定义打印机描述信息文件及存储位置；
* remote announce = #向网络喧告自己（host/subnet)；
* remote browse sync = #设定从哪里得到同步浏览列表；
max connections = 0 #设定同时连接共享的最大连接数；

hzbiz · 发表于 2004-7-19 11:02:43

Good!

开始就不晚 · 发表于 2008-5-16 17:48:54

顶一下！！
这么多的命令，先收藏了

alonersir · 发表于 2008-5-23 17:57:08

正在找这个，谢谢了。

billpeng · 发表于 2008-5-23 21:26:38

有用............

		自动登录	找回密码
密码			注册