Comments on: Setting up a Minimal Samba Server in Fedora Core 12 http://techblog.touchbasic.com/html/setting-up-a-minimal-samba-server-in-fedora-core-12/ Techblog is collection of articles covering a wide variety of tech related topics including: Linux, Microsoft, Google, web development, web design, open source, wordpress, security, and more. Sun, 29 Jan 2012 02:25:58 +0000 hourly 1 http://wordpress.org/?v=3.2.1 By: julianne http://techblog.touchbasic.com/html/setting-up-a-minimal-samba-server-in-fedora-core-12/comment-page-1/#comment-36456 julianne Thu, 27 Oct 2011 11:27:21 +0000 http://techblog.touchbasic.com/html/?p=505#comment-36456 Nice blog! Is your theme custom made or did you download it from somewhere? A theme like yours with a few simple adjustements would really make my blog stand out. Please let me know where you got your theme. Thank you Nice blog! Is your theme custom made or did you download it from somewhere? A theme like yours with a few simple adjustements would really make my blog stand out. Please let me know where you got your theme. Thank you

]]> By: elran http://techblog.touchbasic.com/html/setting-up-a-minimal-samba-server-in-fedora-core-12/comment-page-1/#comment-36238 elran Sat, 12 Mar 2011 18:53:11 +0000 http://techblog.touchbasic.com/html/?p=505#comment-36238 You're welcome Carl & Razvantim. @Razvantim - yeah, seLinux can be a pain. i wanted to be able to tweak it enough so that i could leave it on while others were recommending shutting it off completely/perminantly just because it was too complicated. Anyway, glad to see others are making use of this how-to. My minimal FC12 Samba server is still rock solid & it's been 1 year since i wrote this post. I can't even remember the last time i had to reboot it ;) You’re welcome Carl & Razvantim.

@Razvantim – yeah, seLinux can be a pain. i wanted to be able to tweak it enough so that i could leave it on while others were recommending shutting it off completely/perminantly just because it was too complicated.

Anyway, glad to see others are making use of this how-to.

My minimal FC12 Samba server is still rock solid & it’s been 1 year since i wrote this post. I can’t even remember the last time i had to reboot it ;)

]]> By: razvantim http://techblog.touchbasic.com/html/setting-up-a-minimal-samba-server-in-fedora-core-12/comment-page-1/#comment-36235 razvantim Thu, 10 Mar 2011 09:07:02 +0000 http://techblog.touchbasic.com/html/?p=505#comment-36235 Thanks. Your solution worked perfectly. In the process I've also learned more on seLinux Thanks. Your solution worked perfectly. In the process I’ve also learned more on seLinux

]]> By: Carl Williams http://techblog.touchbasic.com/html/setting-up-a-minimal-samba-server-in-fedora-core-12/comment-page-1/#comment-36162 Carl Williams Sun, 08 Aug 2010 05:09:36 +0000 http://techblog.touchbasic.com/html/?p=505#comment-36162 Thanks for the information, very appreciated Thanks for the information, very appreciated

]]> By: elran http://techblog.touchbasic.com/html/setting-up-a-minimal-samba-server-in-fedora-core-12/comment-page-1/#comment-36113 elran Sun, 11 Apr 2010 23:32:09 +0000 http://techblog.touchbasic.com/html/?p=505#comment-36113 thanks for pointing that out. of course, we're not running any desktop environment in this setup, KDE, or other. This is a minimal text-based install. thanks for pointing that out.
of course, we’re not running any desktop environment in this setup, KDE, or other. This is a minimal text-based install.

]]> By: Harsh Vadgama http://techblog.touchbasic.com/html/setting-up-a-minimal-samba-server-in-fedora-core-12/comment-page-1/#comment-36112 Harsh Vadgama Sun, 11 Apr 2010 20:36:49 +0000 http://techblog.touchbasic.com/html/?p=505#comment-36112 I would like to point out that selinux will give you problems if you mount and ntfs/fat32 partition. There is no need to mount these partitions manually by the way. In Kde the automount using ntfs-3g. So this is what i do 1. In point 10 include setsebool -P samba_share_fusefs 1 2. The command chcon -t samba_share_t /path-to-mounted-directories is not needed if you automount. In anycase it gives you permision errors. 3. Restart smb. 4. Type command ausearch -m avc -ts today | audit2why 5. every 9th line tells you what it needs so what ever is written after the # execute it. (i.e set all the sebools mentioned) 6. write down the time after you finish setting all those sebools. 7. Once you have finished setting all the sebools, and written down the time -- run your command again. verify if it works or not. (it likely will still fail, but you need to collect the info) 8. Type ausearch -m avc -ts 14:53 |audit2allow -RM mysamba --- Use the timestamp that you wrote down instead of "14:53" To enforce the policy just execute it as stated (e.g. semodule -i mysamba.pp) 9. you can run ausearch as often as needed. it just pulls out the avc's that match your timestamp. (-ts) DONE!!!!! By the way i needed any guest to see my folders so i just edited it as follows security = share # passdb backend = tdbsam guest account = nobody Worked great. No need to disable selinux. I would like to point out that selinux will give you problems if you mount and ntfs/fat32 partition.
There is no need to mount these partitions manually by the way. In Kde the automount using ntfs-3g. So this is what i do

1. In point 10 include

setsebool -P samba_share_fusefs 1

2. The command chcon -t samba_share_t /path-to-mounted-directories is not needed if you automount. In anycase it gives you permision errors.

3. Restart smb.

4. Type command
ausearch -m avc -ts today | audit2why

5. every 9th line tells you what it needs so what ever is written after the # execute it. (i.e set all the sebools mentioned)

6. write down the time after you finish setting all those sebools.

7. Once you have finished setting all the sebools, and written down the time — run your command again. verify if it works or not. (it likely will still fail, but you need to collect the info)

8. Type
ausearch -m avc -ts 14:53 |audit2allow -RM mysamba

— Use the timestamp that you wrote down instead of “14:53″

To enforce the policy just execute it as stated (e.g. semodule -i mysamba.pp)

9. you can run ausearch as often as needed. it just pulls out the avc’s that match your timestamp. (-ts)

DONE!!!!!

By the way i needed any guest to see my folders so i just edited it as follows

security = share
# passdb backend = tdbsam
guest account = nobody

Worked great. No need to disable selinux.

]]> By: Alejo http://techblog.touchbasic.com/html/setting-up-a-minimal-samba-server-in-fedora-core-12/comment-page-1/#comment-36033 Alejo Thu, 28 Jan 2010 22:19:07 +0000 http://techblog.touchbasic.com/html/?p=505#comment-36033 Very Good ! Very Good !

]]>