Changeset 2bfe939
- Timestamp:
- 10/28/2004 05:50:36 AM (20 years ago)
- Branches:
- 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 12.0, 12.1, 6.0, 6.1, 6.2, 6.2.0, 6.2.0-rc1, 6.2.0-rc2, 6.3, 6.3-rc1, 6.3-rc2, 6.3-rc3, 7.10, 7.4, 7.5, 7.6, 7.6-blfs, 7.6-systemd, 7.7, 7.8, 7.9, 8.0, 8.1, 8.2, 8.3, 8.4, 9.0, 9.1, basic, bdubbs/svn, elogind, gnome, kde5-13430, kde5-14269, kde5-14686, kea, ken/TL2024, ken/inkscape-core-mods, ken/tuningfonts, krejzi/svn, lazarus, lxqt, nosym, perl-modules, plabs/newcss, plabs/python-mods, python3.11, qt5new, rahul/power-profiles-daemon, renodr/vulkan-addition, systemd-11177, systemd-13485, trunk, upgradedb, xry111/intltool, xry111/llvm18, xry111/soup3, xry111/test-20220226, xry111/xf86-video-removal
- Children:
- bad03ecd
- Parents:
- 2a7d6c3e
- Files:
-
- 5 edited
Legend:
- Unmodified
- Added
- Removed
-
general.ent
r2a7d6c3e r2bfe939 1 <!ENTITY day "2 7">1 <!ENTITY day "28"> 2 2 <!ENTITY month "10"> 3 3 <!ENTITY year "2004"> … … 211 211 <!-- rsync (chaptet 18) --> 212 212 <!ENTITY openldap-version "2.2.17"> 213 <!ENTITY samba3-version "3.0. 4">213 <!ENTITY samba3-version "3.0.7"> 214 214 <!ENTITY xinetd-version "2.3.13"> 215 215 -
introduction/welcome/changelog.xml
r2a7d6c3e r2bfe939 22 22 23 23 <itemizedlist> 24 25 <listitem><para>October 28th, 2004 [randy]: Updated to 26 Samba-3.0.7.</para></listitem> 24 27 25 28 <listitem><para>October 27th, 2004 [randy]: Added new package -
introduction/welcome/credits.xml
r2a7d6c3e r2bfe939 151 151 152 152 <listitem><para>Cyrus-SASL, DejaGnu, DocBook-utils, Ethereal, Expect, Heimdal, 153 HTML Tidy, JadeTeX, SGMLSpm Perl module, SLIB and Sysstat:153 HTML Tidy, JadeTeX, SGMLSpm Perl module, SLIB, Stunnel and Sysstat: 154 154 <emphasis>Randy McMurchy</emphasis></para></listitem> 155 155 … … 169 169 Imlib2, LZO, MC, NASM, Nautilus CD Burner, OpenQuicktime, 170 170 Speex, Zenity, compface, gcalctool, gucharmap, id3lib, kde-i18n, 171 kdeaccessibility, kdebindings, kdesdk, kdevelop, libFAME,172 liba52, libdv, libdvdcss, libdvdread, libmad, libmikmod , libmpeg3 and173 quanta:<emphasis>Igor Zivkovic</emphasis></para></listitem>171 kdeaccessibility, kdebindings, kdesdk, kdevelop, kdewebdev, libFAME, 172 liba52, libdv, libdvdcss, libdvdread, libmad, libmikmod and libmpeg3: 173 <emphasis>Igor Zivkovic</emphasis></para></listitem> 174 174 175 175 <listitem><para>tripwire: <emphasis>Manfred Glombowski</emphasis></para> -
postlfs/security/stunnel.xml
r2a7d6c3e r2bfe939 67 67 install -d -m 700 -o stunnel -g stunnel /var/lib/stunnel/run</command></userinput></screen> 68 68 69 <note><para>A signed Certificate of Authority and a Private Key is necessary70 to run the <command>stunnel</command> daemon. If you own, or have already71 created a signed Certificate of Authority you wish to use, copy it to72 <filename>tools/stunnel.pem</filename> in the source directory before starting73 the build, otherwise you will be prompted to create one. The69 <note><para>A signed <acronym>SSL</acronym> Certificate and a Private Key is 70 necessary to run the <command>stunnel</command> daemon. If you own, or have 71 already created a signed <acronym>SSL</acronym> Certificate you wish to use, 72 copy it to <filename>tools/stunnel.pem</filename> in the source directory 73 before starting the build, otherwise you will be prompted to create one. The 74 74 <filename>.pem</filename> file must be formatted as shown below:</para> 75 75 -
server/other/samba3.xml
r2a7d6c3e r2bfe939 7 7 <!ENTITY samba3-download-http "http://us1.samba.org/samba/ftp/samba-&samba3-version;.tar.gz"> 8 8 <!ENTITY samba3-download-ftp "ftp://ftp.samba.org/pub/samba/samba-&samba3-version;.tar.gz"> 9 <!ENTITY samba3-size "14.4 MB"> 10 <!ENTITY samba3-buildsize "123 MB"> 11 <!ENTITY samba3-time "10.5 SBU"> 12 9 <!ENTITY samba3-size "15.0 MB"> 10 <!ENTITY samba3-buildsize "136 MB"> 11 <!ENTITY samba3-time "2.04 SBU"> 13 12 ]> 14 13 … … 26 25 <para>The <application>Samba</application> package provides file and print 27 26 services to <acronym>SMB</acronym>/<acronym>CIFS</acronym> clients and 28 Windows networking to Linux clients.</para> 27 Windows networking to Linux clients. <application>Samba</application> can also 28 be configured as a Windows NT 4.0 Domain Controller replacement 29 (with caveats working with NT <acronym>PDC</acronym>'s and 30 <acronym>BDC</acronym>'s), a file/print server acting as a member of a 31 Windows NT 4.0 or Active Directory domain and a NetBIOS (rfc1001/1002) 32 nameserver (which amongst other things provides 33 <acronym>LAN</acronym> browsing support).</para> 29 34 30 35 <sect3><title>Package information</title> … … 33 38 <listitem><para>Download (FTP): <ulink url="&samba3-download-ftp;"/></para></listitem> 34 39 <listitem><para>Download size: &samba3-size;</para></listitem> 35 <listitem><para>Estimated Disk space required: &samba3-buildsize;</para></listitem>40 <listitem><para>Estimated disk space required: &samba3-buildsize;</para></listitem> 36 41 <listitem><para>Estimated build time: &samba3-time;</para></listitem></itemizedlist> 37 42 </sect3> 38 43 39 < sect3><title>Additional downloads</title>44 <!-- <sect3><title>Additional downloads</title> 40 45 <itemizedlist spacing='compact'> 41 46 <listitem><para>Maintainer Recommended Patch: <ulink 42 47 url="&patch-root;/samba-&samba3-version;-maintainer-1.patch"/></para></listitem> 43 48 </itemizedlist> 44 </sect3> 49 </sect3> --> 45 50 46 51 <sect3> … … 48 53 <sect4> 49 54 <title>Optional</title> 50 <para> 55 <para><xref linkend="popt"/>, 51 56 <xref linkend="Linux_PAM"/>, 52 57 <xref linkend="openldap"/>, … … 55 60 <xref linkend="libxml2"/>, 56 61 <xref linkend="mysql"/> or <xref linkend="postgresql"/>, 57 <xref linkend="Python"/>, and 58 <ulink url="http://valgrind.kde.org/">Valgrind</ulink> 59 </para> 62 <xref linkend="Python"/>, 63 <xref linkend="xinetd"/>, 64 <ulink url="http://valgrind.kde.org/">Valgrind</ulink> and 65 <xref linkend="stunnel"/> (used to encrypt access to SWAT)</para> 60 66 </sect4> 61 67 </sect3> … … 69 75 commands:</para> 70 76 71 <screen><userinput><command>patch -Np1 -i ../samba-&samba3-version;-maintainer-1.patch && 72 cd source && 77 <screen><userinput><command>cd source && 73 78 install -d /var/cache/samba && 74 79 ./configure \ … … 81 86 make && 82 87 make install && 88 chmod 644 /usr/include/libsmbclient.h && 83 89 install -m755 nsswitch/libnss_win{s,bind}.so /lib && 84 90 ln -sf libnss_winbind.so /lib/libnss_winbind.so.2 && 85 91 ln -sf libnss_wins.so /lib/libnss_wins.so.2 && 86 cp ../examples/smb.conf.default /etc/samba</command></userinput></screen> 92 cp ../examples/smb.conf.default /etc/samba && 93 install -m644 ../docs/*.pdf /usr/share/samba 94 if [ -f nsswitch/pam_winbind.so ]; then 95 install -m755 nsswitch/pam_winbind.so /lib/security 96 fi</command></userinput></screen> 87 97 88 98 <note><para>You may want to run <command>configure</command> with the … … 93 103 94 104 <sect2> 95 <title> Installation command explanations</title>105 <title>Command explanations</title> 96 106 97 107 <para><command>install -d /var/cache/samba</command>: This directory is … … 100 110 101 111 <para><parameter>--sysconfdir=/etc</parameter>: Sets the configuration 102 file directory to avoid the default of <filename class="directory">/usr/etc</filename>.</para> 112 file directory to avoid the default of 113 <filename class="directory">/usr/etc</filename>.</para> 103 114 104 115 <para><parameter>--localstatedir=/var</parameter>: Sets the variable 105 data directory to avoid the default of <filename class="directory">/usr/var</filename>.</para> 116 data directory to avoid the default of 117 <filename class="directory">/usr/var</filename>.</para> 106 118 107 119 <para><option>--with-fhs</option>: Assigns all other file paths in a manner … … 113 125 <acronym>SMB</acronym> (Windows) shares becomes no more complex than mounting 114 126 remote <acronym>NFS</acronym> shares.</para> 127 128 <para><option>--with-pam</option>: Use this parameter to link 129 <application>Linux-<acronym>PAM</acronym></application> into the build. This 130 also builds the <filename class='libraryfile'>pam_winbind.so</filename> 131 <application><acronym>PAM</acronym></application> module. You can find 132 instructions on how to configure and use the module by running 133 <command>man winbindd</command>.</para> 115 134 116 135 <para><command>install -m755 nsswitch/libnss_win{s,bind}.so /lib</command>: … … 134 153 <title>Configuring <application>Samba</application></title> 135 154 136 <para>Because of the various uses for <application>Samba</application>, 137 complete configuration is well beyond the scope of the BLFS book. 138 In fact, many complete books have been written on this topic alone. 139 The included documentation, a popular book published by O'Reilly, 140 can be viewed by pointing your web browser to 141 <ulink url="file:///usr/share/samba/swat/using_samba/toc.html" />. 142 </para> 143 144 <para>The built in <acronym>SWAT</acronym> (Samba Web Administration Tool) 145 utility can be used for basic configuration, however, before 146 using <acronym>SWAT</acronym> you must add an entry to 147 <filename>/etc/services</filename> and make changes to your 148 <command>inetd</command>/<command>xinetd</command> 155 <sect3><title>Configuration overview and available documentation</title> 156 157 <para>Due to the complexity and the many various uses for 158 <application>Samba</application>, complete configuration is well beyond the 159 scope of the BLFS book. Advanced configurations including setting up Primary 160 and Backup Domain Controllers are advanced topics and cannot be adequately 161 covered in BLFS (it should be noted, however, that a 162 <application>Samba</application> BDC cannot be used as a fallback for a 163 <application>Windows</application> <acronym>PDC</acronym>, and conversely, a 164 <application>Windows</application> <acronym>BDC</acronym> cannot be used as a 165 fallback for a <application>Samba</application> <acronym>PDC</acronym>). Many 166 complete books have been written on these topics alone.</para> 167 168 <para>There is quite a bit of documentation available which covers many of 169 these advanced configurations. Point your web browser to the links below to 170 view some of the documentation included with the 171 <application>Samba</application> package:</para> 172 173 <itemizedlist spacing='compact'> 174 <listitem><para>Using Samba, 2nd Edition; a popular book published by O'Reilly 175 <ulink url="file:///usr/share/samba/swat/using_samba/toc.html"/></para> 176 </listitem> 177 178 <listitem><para>The Official Samba HOWTO and Reference Guide 179 <ulink url="file:///usr/share/samba/swat/help/Samba-HOWTO-Collection/index.html"/></para> 180 </listitem> 181 182 <listitem><para>Samba-3 by Example 183 <ulink url="file:///usr/share/samba/swat/help/Samba-Guide/index.html"/></para> 184 </listitem> 185 186 <listitem><para>The Samba-3 man Pages 187 <ulink url="file:///usr/share/samba/swat/help/samba.7.html"/></para> 188 </listitem> 189 </itemizedlist> 190 </sect3> 191 192 <sect3><title>Configuring SWAT</title> 193 194 <para>The built in <acronym>SWAT</acronym> 195 (<application>Samba</application> Web Administration Tool) utility can be used 196 for basic configuration of the <application>Samba</application> installation, 197 but because it may be inconvenient, undesireable or perhaps even impossible 198 to gain access to the console, BLFS recommends setting up access to 199 <acronym>SWAT</acronym> using <application>Stunnel</application>.</para> 200 201 <para>First you must add entries to <filename>/etc/services</filename> and 202 modify the <command>inetd</command>/<command>xinetd</command> 149 203 configuration.</para> 150 204 151 <para>Add the swat entry to <filename>/etc/services</filename> with the 152 following command: </para> 153 154 <screen><userinput><command>echo "swat 901/tcp" >> /etc/services</command></userinput></screen> 205 <para>Add swat and swat_tunnel entries to 206 <filename>/etc/services</filename> with the following commands:</para> 207 208 <screen><userinput><command>echo "swat 901/tcp" >> /etc/services && 209 echo "swat_tunnel 902/tcp" >> /etc/services</command></userinput></screen> 155 210 156 211 <para>If <command>inetd</command> is used, the following command will add the 157 swat entry to <filename>/etc/inetd.conf</filename>: </para>158 159 <screen><userinput><command>echo "swat stream tcp nowait.400 root /usr/sbin/swat swat" \212 swat_tunnel entry to <filename>/etc/inetd.conf</filename>: </para> 213 214 <screen><userinput><command>echo "swat_tunnel stream tcp nowait.400 root /usr/sbin/swat swat" \ 160 215 >> /etc/inetd.conf</command></userinput></screen> 161 216 <para>Issue a <command>killall -HUP inetd</command> to reread the … … 163 218 164 219 <para>If <command>xinetd</command> is used, the following command will 165 add the swat entry to <filename>/etc/xinetd.conf</filename>: </para> 220 add the swat_tunnel entry to <filename>/etc/xinetd.conf</filename> (you may 221 need to modify or remove the <quote>only_from</quote> line to include the 222 desired host[s]):</para> 166 223 167 224 <screen><userinput><command>cat >> /etc/xinetd.conf << "EOF"</command> 168 service swat 225 service swat_tunnel 169 226 { 170 port = 90 1227 port = 902 171 228 socket_type = stream 172 229 wait = no … … 181 238 changed <filename>xinetd.conf</filename> file.</para> 182 239 183 <para><acronym>SWAT</acronym> can be launched by pointing your web 184 browser to <ulink url="http://localhost:901"/>.</para> 240 <para>Next, you must add an entry for the swat service to the 241 <filename>/etc/stunnel/stunnel.conf</filename> file:</para> 242 243 <screen><userinput><command>cat >> /etc/stunnel/stunnel.conf << "EOF"</command> 244 [swat] 245 accept = 901 246 connect = 902 247 248 <command>EOF</command></userinput></screen> 249 250 <para>Restart the <command>stunnel</command> daemon using the following 251 command:</para> 252 253 <screen><userinput><command>/etc/rc.d/init.d/stunnel restart</command></userinput></screen> 254 255 <para><acronym>SWAT</acronym> can be launched by pointing your web browser to 256 <userinput>https://<replaceable>[CA_DN_field]</replaceable>:901</userinput>. 257 Substitute the hostname listed in the <acronym>DN</acronym> field of the 258 <acronym>CA</acronym> certificate used with 259 <application>Stunnel</application> for 260 <replaceable>[CA_DN_field]</replaceable>.</para> 261 262 <note><para>If you linked 263 <application>Linux-<acronym>PAM</acronym></application> into the 264 <application>Samba</application> build, you'll need to create an 265 <filename>/etc/pam.d/samba</filename> file.</para></note> 266 </sect3> 267 268 <sect3><title>Printing to <acronym>SMB</acronym> clients</title> 269 270 <para>If you use <application><acronym>CUPS</acronym></application> for print 271 services, and you wish to print to a printer attached to an 272 <acronym>SMB</acronym> client, you need to create an <acronym>SMB</acronym> 273 backend device. To create the device, issue the following command:</para> 274 275 <screen><userinput><command>ln -sf /usr/bin/smbspool /usr/lib/cups/backend/smb</command></userinput></screen> 276 </sect3> 277 278 <sect3><title>Installing bootscripts</title> 185 279 186 280 <para>For your convenience, boot scripts have been provided for … … 201 295 202 296 <screen><userinput><command>make install-winbind</command></userinput></screen> 297 </sect3> 203 298 204 299 </sect2> … … 208 303 209 304 <para>The <application>Samba</application> package contains 305 <command>findsmb</command>, 210 306 <command>make_smbcodepage</command>, 211 307 <command>make_unicodemap</command>, … … 214 310 <command>nmbd</command>, 215 311 <command>nmblookup</command>, 312 <command>ntlm_auth</command>, 313 <command>pdbedit</command>, 314 <command>profiles</command>, 216 315 <command>rpcclient</command>, 217 316 <command>smbcacls</command>, 218 317 <command>smbclient</command>, 219 318 <command>smbcontrol</command>, 319 <command>smbcquotas</command>, 220 320 <command>smbd</command>, 321 <command>smbmnt</command>, 322 <command>smbmount</command>, 221 323 <command>smbpasswd</command>, 222 324 <command>smbspool</command>, 223 325 <command>smbstatus</command>, 326 <command>smbtar</command>, 327 <command>smbtree</command>, 328 <command>smbumount</command>, 224 329 <command>swat</command>, 330 <command>tdbbackup</command>, 331 <command>tdbdump</command>, 225 332 <command>testparm</command>, 226 333 <command>testprns</command>, 227 334 <command>wbinfo</command> and 228 <command>winbindd.</command></para></sect2> 335 <command>winbindd</command>.</para> 336 337 </sect2> 229 338 230 339 <sect2> 231 340 <title>Description</title> 341 <sect3><title>findsmb</title> 342 <para><command>findsmb</command> lists information about machines that respond 343 to <acronym>SMB</acronym> name queries on a subnet.</para></sect3> 232 344 <sect3><title>make_smbcodepage</title> 233 345 <para><command>make_smbcodepage</command> converts text descriptions of code … … 238 350 <sect3><title>mount.smbfs</title> 239 351 <para><command>mount.smbfs</command> provides <command>/bin/mount</command> 240 with a way to mount remote Windows (or Samba) fileshares.</para></sect3> 352 with a way to mount remote Windows (or 353 <application>Samba</application>) fileshares.</para></sect3> 241 354 <sect3><title>net</title> 242 <para><command>net</command> is a tool for administration of Samba and remote 243 CIFS servers, similar to the net utility for DOS/Windows.</para></sect3> 355 <para><command>net</command> is a tool for administration of 356 <application>Samba</application> and remote <acronym>CIFS</acronym> servers, 357 similar to the net utility for <acronym>DOS</acronym>/Windows.</para></sect3> 244 358 <sect3><title>nmbd</title> 245 <para><command>nmbd</command> is the Samba Net<acronym>BIOS</acronym> name246 server.</para></sect3>359 <para><command>nmbd</command> is the <application>Samba</application> 360 Net<acronym>BIOS</acronym> name server.</para></sect3> 247 361 <sect3><title>nmblookup</title> 248 362 <para><command>nmblookup</command> is used to query 249 363 Net<acronym>BIOS</acronym> names and map them to <acronym>IP</acronym> 250 364 addresses.</para></sect3> 365 <sect3><title>ntlm_auth</title> 366 <para><command>ntlm_auth</command> is a tool to allow external access to 367 Winbind's <acronym>NTLM</acronym> authentication function.</para></sect3> 368 <sect3><title>pdbedit</title> 369 <para><command>pdbedit</command> is a tool used to manage the 370 <acronym>SAM</acronym> database.</para></sect3> 371 <sect3><title>profiles</title> 372 <para><command>profiles</command> is a utility that reports and changes 373 <acronym>SID</acronym>s in Windows registry files. It currently only supports 374 NT.</para></sect3> 251 375 <sect3><title>rpcclient</title> 252 376 <para><command>rpcclient</command> is used to execute … … 259 383 </acronym> access utility, similar to <acronym>FTP</acronym>.</para></sect3> 260 384 <sect3><title>smbcontrol</title> 261 <para><command>smbcontrol</command> is used to control running <command>smbd</command>, 262 <command>nmbd</command> and <command>winbindd</command> 263 daemons.</para></sect3> 385 <para><command>smbcontrol</command> is used to control running 386 <command>smbd</command>, <command>nmbd</command> and 387 <command>winbindd</command> daemons.</para></sect3> 388 <sect3><title>smbcquotas</title> 389 <para><command>smbcquotas</command> is used to manipulate NT quotas on 390 <acronym>SMB</acronym> file shares.</para></sect3> 264 391 <sect3><title>smbd</title> 265 392 <para><command>smbd</command> is the main 266 393 <application>Samba</application> daemon.</para></sect3> 394 <sect3><title>smbmnt</title> 395 <para><command>smbmnt</command> is a helper application used by the 396 <command>smbmount</command> program to do the actual mounting of 397 <acronym>SMB</acronym> shares. It can be installed setuid root if you want 398 normal users to be able to mount their <acronym>SMB</acronym> 399 shares.</para></sect3> 400 <sect3><title>smbmount</title> 401 <para><command>smbmount</command>, usually invoked as 402 <command>mount.smbfs</command> by the <command>mount</command> command when 403 using the <quote>-t smbfs</quote> option, mounts a Linux <acronym>SMB</acronym> 404 filesystem.</para></sect3> 267 405 <sect3><title>smbpasswd</title> 268 <para><command>smbpasswd</command> changes a user's <application>Samba269 < /application> password.</para></sect3>406 <para><command>smbpasswd</command> changes a user's 407 <application>Samba</application> password.</para></sect3> 270 408 <sect3><title>smbspool</title> 271 <para><command>smbspool</command> sends a print job to an <acronym>SMB272 < /acronym> printer.</para></sect3>409 <para><command>smbspool</command> sends a print job to an 410 <acronym>SMB</acronym> printer.</para></sect3> 273 411 <sect3><title>smbstatus</title> 274 412 <para><command>smbstatus</command> reports current 275 413 <application>Samba</application> connections.</para></sect3> 414 <sect3><title>smbtar</title> 415 <para><command>smbtar</command> is a shell script used for backing up 416 <acronym>SMB</acronym>/<acronym>CIFS</acronym> shares directly to Linux tape 417 drives or a file.</para></sect3> 418 <sect3><title>smbtree</title> 419 <para><command>smbtree</command> is a text-based <acronym>SMB</acronym> 420 network browser.</para></sect3> 421 <sect3><title>smbumount</title> 422 <para><command>smbumount</command> is used by normal users to unmount 423 <acronym>SMB</acronym> filesystems, provided that it is setuid 424 root.</para></sect3> 276 425 <sect3><title>swat</title> 277 <para><command>swat</command> is the Samba Web Administration Tool.</para> 278 </sect3> 426 <para><command>swat</command> is the 427 <application>Samba</application> Web Administration Tool.</para></sect3> 428 <sect3><title>tdbbackup</title> 429 <para><command>tdbbackup</command> is a tool for backing up or validating the 430 integrity of <application>Samba</application> <filename>.tdb</filename> 431 files.</para></sect3> 432 <sect3><title>tdbdump</title> 433 <para><command>tdbdump</command> is a tool used to print the contents of a 434 <application>Samba</application> <filename>.tdb</filename> file.</para></sect3> 279 435 <sect3><title>testparm</title> 280 436 <para><command>testparm</command> checks an <filename>smb.conf</filename> file … … 287 443 <sect3><title>winbindd</title> 288 444 <para><command>winbindd</command> resolves names from NT servers.</para></sect3> 445 289 446 </sect2> 290 447
Note:
See TracChangeset
for help on using the changeset viewer.