1
Servidores / Re: Usuáiros diferentes não podem apagar arquivos....(samba)
« Online: 26 de Novembro de 2009, 13:41 »
resolvido era a segurança da pasta do windows
Sejam todos bem-vindos e fiquem atentos às regras de utilização do fórum e política de privacidade.
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
root:x:0:
daemon:x:1:
bin:x:2:
sys:x:3:
adm:x:4:cassiano
tty:x:5:
disk:x:6:
lp:x:7:
mail:x:8:
news:x:9:
uucp:x:10:
man:x:12:
proxy:x:13:
kmem:x:15:
dialout:x:20:cassiano
fax:x:21:
voice:x:22:
cdrom:x:24:cassiano
floppy:x:25:
tape:x:26:
sudo:x:27:
audio:x:29:pulse
dip:x:30:
www-data:x:33:
backup:x:34:
operator:x:37:
list:x:38:
irc:x:39:
src:x:40:
gnats:x:41:
shadow:x:42:
utmp:x:43:
video:x:44:
sasl:x:45:
plugdev:x:46:cassiano
staff:x:50:
games:x:60:
users:x:100:
nogroup:x:65534:
libuuid:x:101:
syslog:x:102:
klog:x:103:
scanner:x:104:
nvram:x:105:
fuse:x:106:
ssl-cert:x:107:
lpadmin:x:108:cassiano
crontab:x:109:
mlocate:x:110:
ssh:x:111:
avahi-autoipd:x:112:
gdm:x:113:
netdev:x:114:
pulse:x:115:
pulse-access:x:116:
pulse-rt:x:117:
saned:x:118:
messagebus:x:119:
polkituser:x:120:
avahi:x:121:
haldaemon:x:122:
admin:x:123:cassiano
cassiano:x:1000:
sambashare:x:124:cassiano
dhcpd:x:125:
rodrigo:x:1001:
mysql:x:126:
Debian-exim:x:127:
munin:x:128:
nagios:x:129:
maquinas:x:1002:
ntadmin:x:1003:
teste:x:1004:
ntgroup:x:1005:bentoxvi
rodfall:x:1006:
INFO$:x:1009:
ane:x:1011:
arquivos:x:1012:ane,rodrigo,angelica,gui,guilherme,daniel,rosangela,barbara,marcelo,adriana
angelica:x:1013:
gui:x:1014:
guilherme:x:1015:
rosangela:x:1016:
flavia:x:1017:
daniel:x:1018:
barbara:x:1020:
dp:x:1021:guilherme,angelica,rosangela,marcelo,flavia
financeiro:x:1022:ane,flavia,adriana
estoque:x:1023:flavia,gui
informatica:x:1024:rodrigo,root,flavia
recepcao:x:1025:barbara,flavia
administracao:x:1026:daniel,flavia,ane
marketing:x:1027:flavia
arquivos/:x:1028:
projetos:x:1029:flavia
angelica$:x:1031:
xp:x:1032:
dp2$:x:1034:
diretoria:x:1035:daniel
diretor:x:1007:
lisiane$:x:1036:
dpanalista$:x:1037:
ntp:x:130:
informaitca:x:1008:
serv$:x:1038:
dp3$:x:1039:
marcelo:x:1040:
proj:x:1041:
guest:x:1010:
DPAnalista$:x:1042:
test:x:1019:
sec$:x:1043:
god:x:502:rodfall
winbindd_priv:x:131:
dp4$:x:1045:
estoque$:x:1046:
convidado:x:1047:
micro01$:x:1048:
ane$:x:1049:
financeiro$:x:1050:
pykota:x:132:
micro02$:x:1051:
dp1$:x:1052:
adriana:x:1030:
[global]
workgroup = VATICANO
netbios name = SERVLINUX
server string = Pequena Casa da Crianca
interfaces = lo, eth0
bind interfaces only = Yes
obey pam restrictions = Yes
passdb backend = tdbsam
pam password change = Yes
passwd program = /usr/bin/paswd %u
unix password sync = Yes
syslog = 0
log file = /var/log/samba/log.%m
max log size = 1000
time server = Yes
socket options =
printcap name = cups
add machine script = /usr/bin/adduser -n -r -g machines -d /dev/null -s /bin/false %U
logon script = %U.bat
logon path = X:
logon home = \\10.1.1.21\%U
domain logons = Yes
os level = 100
preferred master = Yes
domain master = True
wins support = Yes
usershare allow guests = Yes
panic action = /usr/share/samba/panic-action %d
admin users = rodfall, gui, guilherme, cassiano, daniel, flavia, ane, rosangela, marcelo, angelica, barbara, root,adriana
###CUPS
printing = cups
load printers = yes
[printers]
comment = Todas Impressoras
path = /var/spool/samba
print command = -P %p -o raw %s -r
print ok = Yes
guest ok = Yes
writable = No
printable = Yes
browseable = yes
valid users = rodfall, flavia, angelica, ane, gui, guilherme, rosangela, barbara, daniel, marcelo
[print$]
path = /var/smb/printers
readonly = yes
write list = rodfall
inherit permissions = yes
[netlogon]
comment = ServicoLogon
path = /var/samba/netlogon
guest ok = Yes
browseable = No
[profiles]
path = /var/profiles
read only = No
create mask = 0600
directory mask = 0700
browseable = No
[homes]
comment = Home Directories
valid users = %S
read only = No
create mask = 0700
directory mask = 0700
browseable = No
[arquivos]
path = /mnt/arquivos
valid users = +arquivos
write list = +arquivos
recycle:keeptree = yes
recycle:repository = lixeira
[dp]
path = /mnt/dp
valid users = +dp, +administracao
write list = +dp
recycle:keeptree = yes
recycle:repository = lixeira
[administracao]
path = /mnt/administracao
valid users = +administracao
write list = +administracao
recycle:keeptree = yes
recycle:repository = lixeira
[estoque]
path = /mnt/estoque
valid users = +estoque, +administracao
write list = +estoque
recycle:keeptree = yes
recycle:repository = lixeira
[financeiro]
path = /mnt/financeiro
valid users = +financeiro, +administracao
write list = +financeiro
recycle:keeptree = yes
recycle:repository = lixeira
[informatica]
path = /mnt/informatica
valid users = +informatica, +administracao
write list = +informatica
recycle:keeptree = yes
recycle:repository = lixeira
[recepcao]
path = /mnt/recepcao
valid users = +recepcao, +administracao
write list = +recepcao
recycle:keeptree = yes
recycle:repository = lixeira
[projetos]
path = mnt/projetos
valid users = +projetos, +adminsitracao
write list = +projetos
recycle:keeptree = yes
recycle:repository = lixeira
#adduser exemplo
# smbpasswd -a exemplo
RETORNO DO LINUXUnable to Modify TDB passwd: NT_SATUS_UNSUCCEFULL!
Falied to add entry for user exemplo.
Falied to Modify password entry for user exemplo
[global]
workgroup = VATICANO
netbios name = SERVLINUX
server string = Pequena Casa da Crianca
interfaces = lo, eth0
bind interfaces only = Yes
obey pam restrictions = Yes
passdb backend = tdbsam
pam password change = Yes
passwd program = /usr/bin/paswd %u
unix password sync = Yes
syslog = 0
log file = /var/log/samba/log.%m
max log size = 1000
time server = Yes
socket options =
printcap name = cups
add machine script = /usr/bin/adduser -n -r -g machines -d /dev/null -s /bin/false %U
logon script = %U.bat
logon path = X:
logon home = \\10.1.1.21\%U
domain logons = Yes
os level = 100
preferred master = Yes
domain master = Yes
wins support = Yes
usershare allow guests = Yes
panic action = /usr/share/samba/panic-action %d
admin users = +informatica, +estoque, +financeiro, +administrativo, +dp, +recepcao
####CUPS
winbind separator = +
idmap uid = 30000-40000
idmap gid = 30000-40000
winbind enum users = Yes
winbind enum groups = yes
template homedir =/home/winnt%D/%U
template shell = /bin/bash
winbind use default domain = yes
printcap name = /etc/printcap.cups
load printers = yes
printing = cups
[VIRTUAL]
comment = Terreo
read only = No
create mask = 0700
guest ok = Yes
printable = yes
guest only = yes
use client driver = yes
public = yes
path = var/spool/virtual/
postscript = Yes
print command = lpr -P %p -o raw %s -r
lpq command = lpstat -o %p
lprm command = cancel %p-%j
printing = cups
[printers]
comment = Todas Impressoras
path = /var/spool/samba
guest ok = Yes
printable = Yes
browseable = No
[netlogon]
comment = ServicoLogon
path = /var/samba/netlogon
guest ok = Yes
browseable = No
[profiles]
path = /var/profiles
read only = No
create mask = 0600
directory mask = 0700
browseable = No
[homes]
comment = Home Directories
valid users = %S
read only = No
create mask = 0700
directory mask = 0700
browseable = No
#
#
# Sample configuration file for the Common UNIX Printing System (CUPS)
# scheduler. See "man cupsd.conf" for a complete description of this
# file.
#
# Log general information in error_log - change "info" to "debug" for
# troubleshooting...
LogLevel warning
# Administrator user group...
SystemGroup lpadmin
# Only listen for connections from the local machine.
Listen localhost:631
Listen /var/run/cups/cups.sock
# Show shared printers on the local network.
Browsing Off
BrowseOrder allow,deny
BrowseAllow all
BrowseAddress @LOCAL
# Default authentication type, when authentication is required...
DefaultAuthType Basic
# Restrict access to the server...
<Location />
Order Deny,Allow
Deny All
Allow From 10.1.1.*
</Location>
# Restrict access to the admin pages...
<Location /admin>
Encryption Required
Order deny, allow
Deny All
Allow From 10.1.1.*
</Location>
# Restrict access to configuration files...
<Location /admin/conf>
AuthType Default
Require user @SYSTEM
Order deny,allow
Deny All
Allow From 10.1.1.*
</Location>
# Set the default printer/job policies...
<Policy default>
# Job-related operations must be done by the owner or an administrator...
<Limit Send-Document Send-URI Hold-Job Release-Job Restart-Job Purge-Jobs Set-Job-Attributes Create-Job-Subscription Renew-Subscription Cancel-Subscription Get-Notifications Reprocess-Job Cancel-Current-Job Suspend-Current-Job Resume-Job CUPS-Move-Job>
Require user @OWNER @SYSTEM
Order deny,allow
</Limit>
# All administration operations require an administrator to authenticate...
<Limit CUPS-Add-Modify-Printer CUPS-Delete-Printer CUPS-Add-Modify-Class CUPS-Delete-Class CUPS-Set-Default>
AuthType Default
Require user @SYSTEM
Order deny,allow
</Limit>
# All printer operations require a printer operator to authenticate...
<Limit Pause-Printer Resume-Printer Enable-Printer Disable-Printer Pause-Printer-After-Current-Job Hold-New-Jobs Release-Held-New-Jobs Deactivate-Printer Activate-Printer Restart-Printer Shutdown-Printer Startup-Printer Promote-Job Schedule-Job-After CUPS-Accept-Jobs CUPS-Reject-Jobs>
AuthType Default
Require user @SYSTEM
Order deny,allow
</Limit>
# Only the owner or an administrator can cancel or authenticate a job...
<Limit Cancel-Job CUPS-Authenticate-Job>
Require user @OWNER @SYSTEM
Order deny,allow
</Limit>
<Limit All>
Order deny,allow
</Limit>
</Policy>
#
#