Klaimant ? | Voila, j'ai un projet tutoré a rendre en fin d'année sur le thème d'un server Linux complet pour une entreprise.
J'ai installé divers protocoles pour les utilisateurs, mais certains me posent des probllèmes que je n'ai pas su résoudre à l'aide de howto.
Donc voila, pour Samba, j'arrive à voir le workgroup, sous win98 il me demande un mot de passe, sous nt/2000, il me dit que l'ordinateur n'est pas accesible : smb.conf
Code :
- #======================= Global Settings =======================
- [global]
- # Change this for the workgroup/NT-domain name your Samba server will part of
- workgroup = Workgroup
- # server string is the equivalent of the NT Description field
- server string = WebGraph
- # If you want to automatically load your printer list rather
- # than setting them up individually then you'll need this
- ; load printers = yes
- # You may wish to override the location of the printcap file
- ; printcap name = /etc/printcap
- # 'printing = cups' works nicely
- ; printing = bsd
- guest account = nobody
- invalid users = root
- # This tells Samba to use a separate log file for each machine
- # that connects
- log file = /var/log/samba/log.%m
- # Put a capping on the size of the log files (in Kb).
- max log size = 1000
- # If you want Samba to log though syslog only then set the following
- # parameter to 'yes'. Please note that logging through syslog in
- # Samba is still experimental.
- ; syslog only = no
- # We want Samba to log a minimum amount of information to syslog. Everything
- # should go to /var/log/samba/log.{smb,nmb} instead. If you want to log
- # through syslog you should set the following parameter to something higher.
- syslog = 0
- # "security = user" is always a good idea. This will require a Unix account
- # in this server for every user accessing the server. See
- # security_level.txt for details.
- ; security = user
- # You may wish to use password encryption. Please read ENCRYPTION.txt,
- # Win95.txt and WinNT.txt in the Samba documentation. Do not enable this
- # option unless you have read those documents
- encrypt passwords = false
- # Using the following line enables you to customise your configuration
- # on a per machine basis. The %m gets replaced with the netbios name
- # of the machine that is connecting
- ; include = /home/samba/etc/smb.conf.%m
- # Most people will find that this option gives better performance.
- # See speed.txt and the manual pages for details
- # You may want to add the following on a Linux system:
- # SO_RCVBUF=8192 SO_SNDBUF=8192
- socket options = TCP_NODELAY
- # --- Browser Control Options ---
- # Please _read_ BROWSING.txt and set the next four parameters according
- # to your network setup. The defaults are specified below (commented
- # out.) It's important that you read BROWSING.txt so you don't break
- # browsing in your network!
- # set local master to no if you don't want Samba to become a master
- # browser on your network. Otherwise the normal election rules apply
- ; local master = yes
- # OS Level determines the precedence of this server in master browser
- # elections. The default value should be reasonable
- ; os level = 20
- # Domain Master specifies Samba to be the Domain Master Browser. This
- # allows Samba to collate browse lists between subnets. Don't use this
- # if you already have a Windows NT domain controller doing this job
- ; domain master = auto
- # Preferred Master causes Samba to force a local browser election on startup
- # and gives it a slightly higher chance of winning the election
- ; preferred master = auto
- # --- End of Browser Control Options ---
- # Windows Internet Name Serving Support Section:
- # WINS Support - Tells the NMBD component of Samba to enable it's WINS Server
- ; wins support = no
- # WINS Server - Tells the NMBD components of Samba to be a WINS Client
- # Note: Samba can be either a WINS Server, or a WINS Client, but NOT both
- ; wins server = w.x.y.z
- # This will prevent nmbd to search for NetBIOS names through DNS.
- dns proxy = no
- # What naming service and in what order should we use to resolve host names
- # to IP addresses
- ; name resolve order = lmhosts host wins bcast
- # Name mangling options
- ; preserve case = yes
- ; short preserve case = yes
- # This boolean parameter controlls whether Samba attempts to sync. the Unix
- # password with the SMB password when the encrypted SMB password in the
- # /etc/samba/smbpasswd file is changed.
- ; unix password sync = false
- # For Unix password sync. to work on a Debian GNU/Linux system, the following
- # parameters must be set (thanks to Augustin Luton <aluton@hybrigenics.fr> for
- # sending the correct chat script for the passwd program in Debian Potato).
- passwd program = /usr/bin/passwd %u
- passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n .
- # This boolean controls whether PAM will be used for password changes
- # when requested by an SMB client instead of the program listed in
- # 'passwd program'. The default is 'no'.
- ; pam password change = no
- # The following parameter is useful only if you have the linpopup package
- # installed. The samba maintainer and the linpopup maintainer are
- # working to ease installation and configuration of linpopup and samba.
- ; message command = /bin/sh -c '/usr/bin/linpopup "%f" "%m" %s; rm %s' &
- obey pam restrictions = yes
- # Some defaults for winbind (make sure you're not using the ranges
- # for something else.)
- ; winbind uid = 10000-20000
- ; winbind gid = 10000-20000
- ; template shell = /bin/bash
- #======================= Share Definitions =======================
- [homes]
- comment = Home Directories
- browseable = no
- # By default, the home directories are exported read-only. Change next
- # parameter to 'yes' if you want to be able to write to them.
- writable = no
- # File creation mask is set to 0700 for security reasons. If you want to
- # create files with group=rw permissions, set next parameter to 0775.
- create mask = 0700
- # Directory creation mask is set to 0700 for security reasons. If you want to
- # create dirs. with group=rw permissions, set next parameter to 0775.
- directory mask = 0700
- # Un-comment the following and create the netlogon directory for Domain Logons
- # (you need to configure Samba to act as a domain controller too.)
- ;[netlogon]
- ; comment = Network Logon Service
- ; path = /home/samba/netlogon
- ; guest ok = yes
- ; writable = no
- ; share modes = no
- [printers]
- comment = All Printers
- browseable = no
- path = /tmp
- printable = yes
- public = no
- writable = no
- create mode = 0700
- [Partage]
- comment = partage en test
- path = /partage
- read only = no
- # A sample share for sharing your CD-ROM with others.
- ;[cdrom]
- ; comment = Samba server's CD-ROM
- ; writable = no
- ; locking = no
- ; path = /cdrom
- ; public = yes
- # The next two parameters show how to auto-mount a CD-ROM when the
- # cdrom share is accesed. For this to work /etc/fstab must contain
- # an entry like this:
- #
- # /dev/scd0 /cdrom iso9660 defaults,noauto,ro,user 0 0
- #
- # The CD-ROM gets unmounted automatically after the connection to the
- #
- # If you don't want to use auto-mounting/unmounting make sure the CD
- # is mounted on /cdrom
- #
- ; preexec = /bin/mount /cdrom
- ; postexec = /bin/umount /cdrom
|
Pour dhcpd, j'ai voulu logé les machines en utilisant les adresses MACs, les ordinateurs prennent bien en compte leur adresse IP, mais pas la passerelle par defaut. J'ai pas mal bidouiller, mais je vois pas d'ou viendrais l'erreur :
Code :
- # dhcpd.conf
- option domain-name "pu-pm.univ-fcomte.fr";
- option domain-name-servers 172.20.160.254;
- option broadcast-address 192.168.1.255;
- option subnet-mask 255.255.255.0;
- default-lease-time 600;
- max-lease-time 7200;
- option routers 192.168.1.1;
- option routers 192.168.0.1;
- subnet 172.20.160.0 netmask 255.255.255.0 {
- }
- subnet 192.168.0.0 netmask 255.255.255.0 {
- range 192.168.0.2 192.168.0.5;
- option subnet-mask 255.255.255.0;
- option routers 192.168.0.1;
- }
- subnet 192.168.1.0 netmask 255.255.255.0 {
- range 192.168.1.2 192.168.1.5;
- option subnet-mask 255.255.255.0;
- option routers 192.168.1.1;
- }
- host gtrnet10 {
- hardware ethernet 00:10:5A:A6:3C:08;
- fixed-address 192.168.0.10;
- }
- host gtrnet10 {
- hardware ethernet 00:10:5A:A6:3A:24;
- fixed-address 192.168.0.11;
- }
- host gtrnet10 {
- hardware ethernet 00:04:76:E3:1C:BF;
- fixed-address 192.168.1.12;
- option broadcast-address 192.168.1.255;
- option subnet-mask 255.255.255.0;
- option routers 192.168.1.1;
- }
- host gtrnet10 {
- hardware ethernet 00:10:5A:A6:3C:18;
- fixed-address 192.168.0.13;
- option routers 192.168.0.1;
- }
- # 00:10:5A:A6:35:C6
- # 00:10:5A:A6:34:47
|
Et enfin pour proftpd, j'ai du mal a totu config correctement, pour le anonymous et les users, pour que le anonymous n'est acces qu'a un dossier et que les users a leur home et a certains fichiers.
Code :
- ServerName "WebGraph"
- ServerType inetd
- DeferWelcome off
- ShowSymlinks on
- MultilineRFC2228 on
- DefaultServer on
- ShowSymlinks on
- AllowOverwrite on
- TimeoutNoTransfer 600
- TimeoutStalled 600
- TimeoutIdle 1200
- #DisplayLogin welcome.msg
- DisplayFirstChdir .message
- LsDefaultOptions "-l"
- DenyFilter \*.*/
- # Uncomment this if you are using NIS or LDAP to retrieve passwords:
- #PersistentPasswd off
- # Port 21 is the standard FTP port.
- Port 21
- # To prevent DoS attacks, set the maximum number of child processes
- # to 30. If you need to allow more than 30 concurrent connections
- # at once, simply increase this value. Note that this ONLY works
- # in standalone mode, in inetd mode you should use an inetd server
- # that allows you to limit maximum number of processes per service
- # (such as xinetd)
- MaxInstances 30
- # Set the user and group that the server normally runs at.
- User nobody
- Group nogroup
- # Normally, we want files to be overwriteable.
- <Directory /*>
- # Umask 022 is a good standard umask to prevent new files and dirs
- # (second parm) from being group and world writable.
- Umask 022 022
-
- AllowOverwrite on
- </Directory>
-
- # A basic anonymous configuration, no upload directories.
-
- <Anonymous ~ftp>
- AllowAll
- User ftp
- Group nogroup
- UserAlias anonymous ftp
-
-
- <Limit WRITE>
- DenyAll
- </Limit>
-
- <Directory uploads/*>
- <Limit READ>
- DenyAll
- </Limit>
- <Limit STOR>
- AllowAll
- </Limit>
- </Directory>
-
- </Anonymous>
|
Voila, tout çà tourne sur une debian 2.4.18-bf24.
Merci par avance pour toutes infos =)
Klaimant ---------------
Fais le ou ne le fais pas, mais il n'y a pas d'essai !!!
|