Samba3.X-Swat配置

  
  


   
   
 

   
   
# This file controls the state of SELinux on the system.  

   
   
# SELINUX= can take one of these three values:  

   
   
#     enforcing - SELinux security policy is enforced.  

   
   
#     permissive - SELinux prints warnings instead of enforcing.  

   
   
#     disabled - No SELinux policy is loaded.  

   
   
SELINUX=enforcing #这里改成disabled  

   
   
# SELINUXTYPE= can take one of these two values:  

   
   
#     targeted - Targeted processes are protected,  

   
   
#     mls - Multi Level Security protection.  

   
   
SELINUXTYPE=targeted 
  
  

注：这里我只不过把它全整个关掉，samba中如何设置Selinux参见：http://fedoraproject.org/wiki/SELinux/samba

第二步：安装Samba及Swat

[root@localhost ~]# yum install -y samba-*

[root@localhost ~]# rpm -qa|awk '/samba/' 

  
  


   
   
samba-winbind-clients-3.5.10-115.el6_2.x86_64  

   
   
samba-swat-3.5.10-115.el6_2.x86_64 #SWAT包也安装成功了  

   
   
samba-3.5.10-115.el6_2.x86_64  

   
   
samba-domainjoin-gui-3.5.10-115.el6_2.x86_64  

   
   
samba-winbind-devel-3.5.10-115.el6_2.x86_64  

   
   
samba-common-3.5.10-115.el6_2.x86_64  

   
   
samba-winbind-3.5.10-115.el6_2.x86_64  

   
   
samba-doc-3.5.10-115.el6_2.x86_64  

   
   
samba-client-3.5.10-115.el6_2.x86_64  

   
   
samba-winbind-krb5-locator-3.5.10-115.el6_2.x86_64 
  
  

[root@localhost ~]# yum install xinetd* #安装它是通过xine服务来启动SWAT

[root@localhost ~]# vi /etc/xinetd.d/swat

  
  


   
   
# default: off  

   
   
# description: SWAT is the Samba Web Admin Tool. Use swat \  

   
   
#              to configure your Samba server. To use SWAT, \  

   
   
#              connect to port 901 with your favorite web browser.  

   
   
service swat  

   
   
{  

   
   
        port            = 901 

   
   
        socket_type     = stream 

   
   
        wait            = no   

   
   
        only_from       = 0.0.0.0 #默认是127.0.0.1  

   
   
        user            = root 

   
   
        server          = /usr/sbin/swat  

   
   
        log_on_failure  += USERID  

   
   
        disable         = no #默认是YES  

   
   
} 
  
  

[root@localhost ~]# service xinetd restart #重启xinetd，并启动Swat服务

[root@localhost ~]# netstat -lnpt|awk '/901/' #查检901端口是否开放

  
  


   
   
tcp        0      0 :::901                      :::*                        LISTEN      9880/xinetd     
  
  

第三步：登录SWAT （切记：iptables里面开放901或关闭iptables)

输入你的IP加901端口号，登录帐号是ROOT出现如下界面证明你配置成功了。

[root@localhost ~]# useradd smbuser #创建用户

[root@localhost ~]# smbpasswd -a smbuser #提升用户

[root@localhost ~]# mkdir /usr/local/share_dir #创建共享目录

[root@localhost ~]# chown smbuser:smbuser -R /usr/local/share_dir/ #设置权限

创建共享目录

设置共享目录

 设置完成以后需要重起Samba服务

第四步：Samba调式讲解

1：smbpasswd 命令创建的用户数据存在哪儿

答：[root@localhost ~]# smbd -b | grep PRIVATE_DIR
   PRIVATE_DIR: /var/lib/samba/private

2：Samba的主配置文件smb.conf在哪儿

答：[root@localhost ~]# smbd -b | grep smb.conf
   CONFIGFILE: /etc/samba/smb.conf

3：Samba如何检查配置是否正确

答：[root@localhost ~]# testparm -s /etc/samba/smb.conf

Load smb config files from /etc/samba/smb.conf
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
Processing section "[homes]"
Processing section "[printers]"
Loaded services file OK.
Server role: ROLE_STANDALONE
[global]
        workgroup = MYGROUP
        server string = Samba Server Version %v
        log file = /var/log/samba/log.%m
        max log size = 50
        cups options = raw

[homes]
        comment = Home Directories
        read only = No
        browseable = No

[printers]
        comment = All Printers
        path = /var/spool/samba
        printable = Yes
        browseable = No