samba实例

一、实现在服务器建立文件和文件夹，但不能使用服务器的shell

1.

修改smb.conf

修改：

   [homes]
        comment = Home Directories
        browseable = no
        writeable = yes
        valid users = %S
;       valid users = MYDOMAIN/%S

 

2.加入用户

useradd tom -s /dev/null

smbpasswd -a tom

 

3.linux验证

smbclient -L 192.168.0.99 -U tom%tom

smbclient //192.168.0.99/tom -U tom%tom 

 

useradd jack

smbpasswd -a jack 

 

4. windows验证

在运行中输入//192.168.0.99/tom 输入jack/jack

在运行中输入//192.168.0.99/jack 输入jack/jack

在运行中输入//192.168.0.99/tom 输入tom/tom

 

二、建立共享目录student,只有teacher组可以读写，student组只能查看

 

 

1.建立用户组,并把人员加入组

  groupadd teachers

  groupadd students

  usermod -g students tom

  usermod -g students jack

 

useradd zhang
useradd wang
usermod -g teachers zhang       
usermod -g teachers wang

 

smbpasswd -a zhang

smbpasswd -a wang

 

2.建立文件夹并更改权限

 mkdir /home/student/

 chgrp students /home/student/

 chmod 757 student

chmod g+s student                 -------------使属组具有该用户权限

 

3.配置smb服务

 在smb.conf末尾加入

 [students]
         comment = students
         path = /home/student
         valid users = @students @teachers   -----------限定用户组
         write list = @teachers                         -----------写入权限限定用户组

 

 

 4.验证

  smbclient -L 192.168.0.99

  smbclient -L 192.168.0.99 -U jack%jack

  smbclient -L 192.168.0.99 -U tom%tom

  smbclient -L 192.168.0.99 -U zhang%zhang

  smbclient -L 192.168.0.99 -U wang%wang

 

  Windows中通过网上邻居进行验证

 

    

 三、两个部门各有文件夹，且人员不能互访对方文件夹，但领导可以访问两个文件夹

   

  1.建立组合用户

     groupadd sales
     groupadd markets

     userdel -r tom
     userdel -r jack
     userdel -r zhang
     userdel -r wang
     pdbedit -x tom                ----------删除smb服务中的用户
     pdbedit -x jack
     pdbedit -x zhnag
     pdbedit -x zhang
     pdbedit -x wang
     groupdel teachers
     groupdel students

 

     for user in tom jack
     do
     useradd -g sales $user
     smbpasswd -a $user
     done

 

    for user in tom jack
     do
     useradd -g markets $user
     smbpasswd -a $user
     done

 
    useradd eco
    smbpasswd -a eco

 

   

  2.建立文件夹和权限

    mkdir /home/sales/
     mkdir /home/markets
     chgrp sales /home/sales/
     chgrp markets /home/markets/ 
     chmod g+s /home/sales/
     chmod g+s /home/markets/

     chown eco sales

     chown eco markets

     chmod 770 markets

     chmod 770 sales

 

 3. 配置smb.conf

     加入

        [sales]
         comment = sales
         path = /home/sales
         valid users = @sales eco
         write list = @sales eco
         create mask = 770
         direcory mask = 770

 

      [markets]
         comment = markets
         path = /home/markets
         valid users = @markets eco
         write list = @markets eco
         create mask = 770
         direcory mask = 770

 

 4.重新启动服务

 

 5.验证

  

  四 、测试工具

  1.testpram

  2.netstat  -ltunp | grep service   ----查看服务端口

    netstat  -ltunp | grep smb

     netstat  -ltunp | grep nmb