SMB File Sharing Mystery
Lovell Mcilwain
lovell.mcilwain at gmail.com
Thu Jul 19 16:30:35 UTC 2007
On Jul 19, 2007, at 1:23 AM, Andy Green wrote:
> :
>>
>> On Jul 18, 2007, at 10:20 AM, Tim wrote:
>>
>>> On Wed, 2007-07-18 at 09:36 -0400, Lovell Mcilwain wrote:
>>>> [2007/06/26 20:35:45, 0] smbd/service.c:make_connection_snum(920)
>>>> '/home/lem/temp' does not exist or permission denied when
>>>> connecting
>>>> to [temp] Error was Permission denied
>>>
>>> Along with Mikkel's question about adding users to Samba, you may
>>> also
>>> have to change firewall rules to allow Samba connections through,
>>> and
>>> SELinux rules to allow sharing home space. I think the defaults are
>>> still to deny such things.
>>
>> How can I figure out which SELinux rule to edit?
>
> Editing the actual rules is pretty fearsome. But the rules define
> some
> "user settable switches" which are easy to change. Often these basic
> policy options are all you need to make selinux conform to common
> setups
> -- and it's nice that the list of these options can be discovered
> easily
> from the commandline. Use
>
> getsebool -a
>
I got a lot of stuff that listed out but here are the ones I saw
related to samba:
samba_domain_controller --> off
samba_enable_home_dirs --> off
samba_export_all_ro --> off
samba_export_all_rw --> off
samba_share_nfs --> off
> to get a list of the switches ("booleans") you can turn on or off, and
>
> setsebool <name>=on
>
I turned the following on and restarted the service
sudo setsebool samba_enable_home_dirs=on
sudo setsebool samba_enable_home_dirs=on
sudo setsebool samba_enable_home_dirs=on
> to enable it, =off disables it. If you additionally give -P, then it
> will be sticky across reboots. So it looks like you can try
>
> setsebool -P use_samba_home_dirs=on
>
> for example and restart IIRC the "smb" service.
>
sudo service smb restart
I still got the same issue. when I try to log in, it just keeps
giving me a long in prompt. I will try to take a look at the samba
selinux man page to see if it gives me any other hints.
> -Andy
>
> --
> fedora-list mailing list
> fedora-list at redhat.com
> To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
More information about the fedora-list
mailing list