Re: SMB File Sharing Mystery

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 


On Jul 19, 2007, at 1:23 AM, Andy Green wrote:


:


On Jul 18, 2007, at 10:20 AM, Tim wrote:


On Wed, 2007-07-18 at 09:36 -0400, Lovell Mcilwain wrote:

[2007/06/26 20:35:45, 0] smbd/service.c:make_connection_snum(920)
'/home/lem/temp' does not exist or permission denied when connecting 
to [temp] Error was Permission denied
Along with Mikkel's question about adding users to Samba, you may also have to change firewall rules to allow Samba connections through, and 
SELinux rules to allow sharing home space.  I think the defaults are
still to deny such things.


How can I figure out which SELinux rule to edit?
Editing the actual rules is pretty fearsome. But the rules define some 
"user settable switches" which are easy to change.  Often these basic
policy options are all you need to make selinux conform to common setups -- and it's nice that the list of these options can be discovered easily 
from the commandline.  Use

getsebool -a
I got a lot of stuff that listed out but here are the ones I saw related to samba: 
samba_domain_controller --> off
samba_enable_home_dirs --> off
samba_export_all_ro --> off
samba_export_all_rw --> off
samba_share_nfs --> off

to get a list of the switches ("booleans") you can turn on or off, and

setsebool <name>=on


I turned the following on and restarted the service
sudo setsebool samba_enable_home_dirs=on
sudo setsebool samba_enable_home_dirs=on
sudo setsebool samba_enable_home_dirs=on


to enable it, =off disables it.  If you additionally give -P, then it
will be sticky across reboots.  So it looks like you can try

setsebool -P use_samba_home_dirs=on

for example and restart IIRC the "smb" service.


sudo service smb restart
I still got the same issue. when I try to log in, it just keeps giving me a long in prompt. I will try to take a look at the samba selinux man page to see if it gives me any other hints. 
-Andy

--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list


--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
[Index of Archives]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [Fedora Magazine]     [Fedora News]     [Fedora Summer Coding]     [Fedora Laptop]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Maintainers]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Fonts]     [ATA RAID]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [SSH]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Tux]     [Yosemite News]     [Gnome Users]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [Asterisk PBX]     [Fedora Sparc]     [Fedora Universal Network Connector]     [Libvirt Users]     [Fedora ARM]

  Powered by Linux