# apt-get update
# apt-get install samba smbclient smbfs swat
# cat > /etc/samba/smb.conf
#---[ begin: smb.conf ]-------------------------------------------
[global]
server string = Home Samba
netbios name = Home
Workgroup = SCHOOL
security = user
encrypt passwords = yes
wins support = yes
#---[ Lixeira - secao global ]-------------------------------------
vfs object = recycle
recycle:keeptree = yes
recycle:versions = yes
recycle:repository = /home/lixeira_smb/
#---[ Auditoria no samba - logs / secao global ]--------------
log level = 1
log file = /var/log/samba.log
max log size = 1000
vfs object = full_audit recycle
recycle:keeptree = yes
recycle:versions = yes
recycle:repository = /home/lixeira_smb/%U
full_audit:success = open, opendir, write, unlink, rename, mkdir, rmdir
full_audit:prefix = %u|%I|%S
full_audit:failure = none
full_audit:facility = local5
full_audit:priority = notice
#---[ english ]-----------------------------------------------------
[english_smb]
path = /home/english_smb
writeable = yes
browseable = yes
#---[ computing ]--------------------------------------------------
[computing_smb]
path = /home/computing_smb
writeable = yes
browseable = yes
#---[ lixeira ]-------------------------------------------------------
[lixeira_smb]
path = /home/lixeira_smb/
recycle:repository = .recycle
browseable = yes
writeable = yes
#---[ end: smb.conf ]----------------------------------------------
ctrl + d ( salvar e sair do arquivo )
_____________________________________________________________________
# mkdir /home/computing_smb
# chmod 777 –R /home/computing_smb
_____________________________________________________________________
# chmod 777 –R /home/english_smb
_____________________________________________________________________
# chmod 777 –R /home/lixeira_smb
_____________________________________________________________________
Adicionando usuário no sistema.
# adduser ewb – senha: 123
Adicionando usuário no Samba.
# smbpasswd -a ewb – Senha: 123=
Adicione a linha abaixo no final do arquivo rsyslog.conf
# nano /etc/rsyslog.conf
local5.notice /var/log/samba-full_audit.log
ctrl + x + y enter ( salvar e sair do arquivo )
Reiniciando o samba.
# /etc/init.d/rsyslog restart
Verificando se o samba esta rodando
# ps ax | grep smb
6676 ? Ss 0:00 /usr/sbin/smbd -D
6682 ? S 0:00 /usr/sbin/smbd -D
Visualizando os parâmetros do samba.
# /etc/init.d/samba
Usage: /etc/init.d/samba {start|stop|reload|restart|force-reload|status}
# /etc/init.d/samba restart
Stopping Samba daemons: nmbd smbd.
Starting Samba daemons: nmbd smbd.
No Windows 7
Clique em Iniciar
Digite: \\192.168.1.13 ( ip do servidor )
_____________________________________________________________________
Visualizando o log do samba.
# tail -f /var/log/samba-full_audit.log
Jun 24 19:52:16 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|.
Jun 24 19:52:16 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|open|ok|w|site.txt
Jun 24 19:52:16 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|open|ok|r|.
Jun 24 19:52:16 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|open|ok|r|.
Jun 24 19:52:16 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|open|ok|r|.
Jun 24 19:52:16 ewb smbd[6032]: ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 19:52:16 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 19:52:16 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 19:52:16 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 19:52:16 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 19:52:36 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|open|ok|r|squid - english.doc
Jun 24 19:52:36 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|open|ok|w|squid - english.doc
Jun 24 19:52:36 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|open|ok|r|squid - english.doc
Jun 24 19:52:36 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 19:52:39 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|open|ok|r|Home -
Debian Server.docx
Jun 24 19:52:42 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 19:52:46 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 19:52:48 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 19:52:52 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 19:52:52 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|open|ok|r|.
Jun 24 19:52:52 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 19:52:52 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 19:52:52 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|open|ok|r|.
Jun 24 19:52:52 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 19:52:52 ewb smbd[6032]: ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 19:52:52 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|open|ok|r|===
Zimbra ===.txt
Jun 24 19:52:52 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Foi
arrastado o arquivo Squid – Configuração
.... para dentro do diretório computing_smb
_____________________________________________________________________
Veja a letra W de Write ( escrever,
gravar )
# tail -f /var/log/samba-full_audit.log
Jun 24 19:59:12 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|open|ok|r|.
Jun 24 19:59:12 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|.
Jun
24 19:59:12 ewb smbd[6032]: ewb|192.168.1.14|computing_smb|open|ok|w|Squid – Configuracao
básica e Autenticando usuários na base Ldap.mht
_____________________________________________________________________
Apagamos
dois arquivos do diretório computing_smb,
os arquivos: site.txt e Squid – Configuração .... Quando
listar unlink quer dizer que um arquivo foi apagado
do diretório e foi para a lixeira.
# tail -f /var/log/samba-full_audit.log
Jun 24 20:02:15 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 20:02:16 ewb smbd[6032]: ewb|192.168.1.14|computing_smb|open|ok|r|.
Jun 24 20:02:16 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 20:02:16 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|unlink|ok|site.txt
Jun 24 20:02:16 ewb smbd[6032]: ewb|192.168.1.14|computing_smb|open|ok|r|.
Jun 24 20:02:16 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|.
Jun 24 20:02:16 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 20:02:16 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|.
Jun 24 20:02:20 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 20:02:20 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|open|ok|r|.
Jun 24 20:02:20 ewb smbd[6032]:
ewb|192.168.1.14|computing_smb|opendir|ok|./
Jun 24 20:02:21 ewb smbd[6032]: ewb|192.168.1.14|computing_smb|open|ok|r|.
Jun
24 20:02:21 ewb smbd[6032]: ewb|192.168.1.14|computing_smb|unlink|ok|Squid – Configuracao basica e Autenticando usua¡rios na base
Ldap.mht
_____________________________________________________________________
Filstrando log pelo nome debian
#
tail -f /var/log/samba-full_audit.log | grep debian
_____________________________________________________________________
Listando usuários do samba.
#
pdbedit -Lw
nobody:65534:XXXXXXXXXXXXXXXXXXX:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:[U ]:LCT-00000000:
ewb:1003:XXXXXXXXXXXXXXXXXXXXXXXXX:7A4AFC77351EF2E9293865FBBA1F2199:[U ]:LCT-4E212BA9:
squid:1001:XXXXXXXXXXXXXXXXXXXXXX:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:[U ]:LCT-00000000:
jurandir:1000:XXXXXXXXXXXXXXXXXXXXX:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:[U ]:LCT-00000000:
squiduser:4294967295:XXXXXXXXXXXXXX:XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX:[U ]:LCT-00000000:
# pdbedit -L |
cut -d \: -f1
nobody
ewb
squid
jurandir
squiduser
Para
excluir o usuário ewb do Samba:
# smbpasswd -x ewb
# userdel ewb
# smbclient -L localhost -U%
Domain=[SCHOOL] OS=[Unix] Server=[Samba 3.5.6]
Sharename Type Comment
------------- ----- -----------
english_smb Disk
computing_smb
Disk
lixeira_smb Disk
IPC$ IPC
IPC Service (Home Samba)
HP_DESKJET_710C Printer HP
DESKJET 710C
Domain=[SCHOOL] OS=[Unix] Server=[Samba 3.5.6]
Server Comment
------- -----------
HOME Home Samba
Workgroup Master
------------ -------
SCHOOL HOME
_____________________________________________________________________
# smbstatus
Samba version 3.5.6
PID
Username Group Machine
-------------------------------------------------------------------
24022 ewb
ewb ewb
(::ffff:192.168.1.14)
Service
pid machine Connected at
-------------------------------------------------------
IPC$
24022 ewb Thu Jul 21 14:22:29 2011
No locked files
_____________________________________________________________________
# pdbedit -v ewb
Unix username: ewb
NT username:
Account Flags: [U]
User SID: S-1-5-21-3556316487-3252857515-153963366-1000
Primary Group SID: S-1-5-21-3556316487-3252857515-153963366-513
Full Name:
Home Directory: \\home\ewb
HomeDir Drive:
Logon Script:
Profile Path: \\home\ewb\profile
Domain: HOME
Account desc:
Workstations:
Munged dial:
Logon time: 0
Logoff time: 9223372036854775807 seconds since the Epoch
Kickoff time: 9223372036854775807 seconds since the Epoch
Password last set: Sun,
17 Jul 2011 09:16:51 EDT
Password can change: Sun,
17 Jul 2011 09:16:51 EDT
Password must change: never
Last bad password : 0
Bad password count : 0
Logon hours : FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
_____________________________________________________________________
# smbclient -L //192.168.1.13 -U ewb
Enter ewb's password:
Domain=[SCHOOL] OS=[Unix] Server=[Samba 3.5.6]
Sharename Type
Comment
--------- ----
-------
english_smb Disk
computing_smb
Disk
lixeira_smb Disk
IPC$ IPC IPC
Service (Home Samba)
HP_DESKJET_710C Printer HP DESKJET
710C
DESKJET-710C Printer HEWLETT-PACKARD DESKJET 710C
Domain=[SCHOOL]
OS=[Unix] Server=[Samba 3.5.6]
Server Comment
--------- -----------
EWB
HOME Home Samba
Workgroup Master
------------ --------
SCHOOL
HOME
_____________________________________________________________________
# pdbedit -a jurandir
new password:
retype new password:
Unix username:
jurandir
NT username:
Account Flags:
[U ]
User SID:
S-1-5-21-4053651450-1166239556-497385669-3000
Primary Group SID:
S-1-5-21-4053651450-1166239556-497385669-513
Full Name:
jurandir
Home Directory:
\\home\jurandir
HomeDir Drive:
Logon Script:
Profile Path:
\\home\jurandir\profile
Domain:
DEBIAN
Account desc:
Workstations:
Munged dial:
Logon time:
0
Logoff time:
9223372036854775807 seconds since the Epoch
Kickoff time:
9223372036854775807 seconds since the Epoch
Password last set:
Tue, 30 Aug 2011 21:33:17 EDT
Password can change:
Tue, 30 Aug 2011 21:33:17 EDT
Password must change: never
Last bad password
: 0
Bad password count
: 0
Logon hours
: FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF
_____________________________________________________________________
Listando configuração atual do
Samba.
# testparm
Load smb config files from /etc/samba/smb.conf
rlimit_max: rlimit_max (1024) below minimum Windows
limit (16384)
Processing section "[english_smb]"
Processing section "[computing_smb]"
Processing section "[lixeira_smb]"
Processing section "[printers]"
Loaded services file OK.
WARNING: You have some share names that are longer
than 12 characters.
These may not be accessible to some older clients.
(Eg. Windows9x, WindowsMe, and smbclient prior to
Samba 3.0.)
Server role: ROLE_STANDALONE
Press enter to see a dump of your service definitions
[global]
workgroup = SCHOOL
netbios
name = HOME
server
string = Home Samba
log level
= 1
log file
= /var/log/samba.log
max log
size = 1000
wins
support = Yes
full_audit:priority = notice
full_audit:facility = local5
full_audit:failure = none
full_audit:prefix = %u|%I|%S
full_audit:success
= open, opendir, write, unlink, rename, mkdir, rmdir
recycle:repository = /home/lixeira_smb/%U
recycle:versions = yes
recycle:keeptree = yes
vfs
objects = full_audit, recycle
[english_smb]
path =
/home/english_smb
read
only = No
[computing_smb]
path =
/home/computing_smb
read
only = No
[lixeira_smb]
path =
/home/lixeira_smb/
read
only = No
recycle:repository = .recycle
[printers]
comment
= Todas as Impressoras
path =
/var/spool/samba
guest ok
= Yes
printable
= Yes
browseable = No
_____________________________________________________________________
Acessando a interface gráfica do SWAT.
http://192.168.1.13:901/
_____________________________________________________________________
-----------------------------------------------------------------------------------------------------------------------------------------
===[ Sharing Knowledge ]=== - Obrigado - Thank you - Danke - Merci - Grazie - Gracias - arigatou gozaimasu
“We make a living by what we get, but we make a life by what we give.” - Give and you will receive - just share :)
-----------------------------------------------------------------------------------------------------------------------------------------
“We make a living by what we get, but we make a life by what we give.” - Give and you will receive - just share :)
-----------------------------------------------------------------------------------------------------------------------------------------
Nenhum comentário:
Postar um comentário