Chris, I tried the following in my smb.conf, taking your advice. But even my new share [ee140] also does not prompt for username & password. Both [Engineering] & [ee140] shares from below are browsable and behave the same way, looks like. I assume there must be a lot of people who configure their Samba environment this way but can't find any of 'em when I googled it. [global] workgroup = Engineering netbios name = smb1 security = user map to guest = bad user [Engineering] path = /engineering available = yes browsable = yes writeable = yes guest ok = yes readonly = no [ee140] path = /engineering/ee140 browsable = yes writeable = yes guest ok = no readonly = no valid users = user1, user2 Thanks for your help. - Kevin
> From: [email protected] > Date: Tue, 5 Oct 2010 15:48:46 -0500 > Subject: Re: [Samba] subfolder sharing with "valid users" > To: [email protected] > CC: [email protected] > > add/change these in global, that will approximate security-share > > security=user > map to guest=bad user > > however, all users should auth, all the time. it's the post-win98 way > of doing things. > > On Tue, Oct 5, 2010 at 3:44 PM, Keun Song <[email protected]> wrote: > > > > > > > > Jeremy, > > > > > > Thanks for your answer. > > > > I actually tried creating a different share per subfolder but I couldn't > > override the "security = share in [global]" setting in individual share > > with "security = user" or vice versa. > > > > If I had "security = share in [global]", then I couldn't enable login > > prompt for any of the individual share and that's what I need. > > > > > > I'd appreciate your help! > > > > Thanks. > > > > > > - Kevin > > > > > > > >> Date: Tue, 5 Oct 2010 09:51:40 -0700 > >> From: [email protected] > >> To: [email protected] > >> CC: [email protected] > >> Subject: Re: [Samba] subfolder sharing with "valid users" > >> > >> On Mon, Oct 04, 2010 at 11:58:34PM -0700, Keun Song wrote: > >> > > >> > > >> > Hi, > >> > > >> > > >> > I'm currently using the following smb.conf file so that everyone can > >> > browse any subfolder without a login prompt under /engineering. (I have > >> > neither AD-based nor Winbind-based authentication now) > >> > Even, as long as the UNIX permission is 777, anyone can write onto some > >> > folders somewhere down under this folder. > >> > > >> > > >> > [global] > >> > workgroup = Engineering > >> > netbios name = smb1 > >> > security = share > >> > > >> > [interface] > >> > path = /engineering > >> > available = yes > >> > browsable = yes > >> > writeable = yes > >> > guest ok = yes > >> > readonly = no > >> > > >> > > >> > Now I need to tighten the per-folder security so that I grant access for > >> > select users per folder. > >> > > >> > Under the /engineering folder, I'd like to have different combinations > >> > of security: > >> > > >> > /engineering/electrical (want this readable by everyone) > >> > /engineering/electrical/ee140 (want this to prompt for username & > >> > password per user) > >> > /engineering/electrical/ee150 (want everything under this browsable and > >> > readable by everyone) > >> > etc. > >> > > >> > That is, how can I make it such that the top-level folder (/engineering) > >> > is still readable (w/o login prompt) by everyone and only some select > >> > subfolders prompt for login/password? > >> > > >> > Thank you for your answer in advance! > >> > >> You need to have different shares for these folders. > >> > >> Jeremy. > > > > -- > > To unsubscribe from this list go to the following URL and read the > > instructions: https://lists.samba.org/mailman/options/samba > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
