Ich habe Samba-Server auf CentOS 7.4 und angeblich eingerichtet erlaubt es in SELinux.
Ich kann erfolgreich auf anonyme Freigaben im Root-Dateisystem zugreifen, aber nicht auf Verzeichnisse auf gemounteten NTFS-Partitionen zugreifen. In Win10 bekomme ich
Sie haben keine Zugriffsberechtigung für 192.16.1.119soft
So mounte ich NTFS-Freigaben in fstab
UUID=3636E6FC36E6BC4D /media/SYSTEM ntfs rw,auto,users,exec,nls=utf8,umask=003,gid=1000,uid=1000 0 0
Hier ist meine smb.conf
[global]
workgroup = WORKGROUP
server string = Centy Samba %v
netbios name = centos
security = user
map to guest = bad user
dns proxy = no
log level = 3
log file = /var/log/smblog
#============================ Share Definitions ==============================
[Anonymous]
path = /samba/anonymous
browsable = yes
writable = yes
guest ok = yes
read only = no
[soft]
path = /media/SYSTEM/soft
read only = no
guest ok = yes
writable = yes
browsable = yes
Hier ist das Protokoll:
../source3/nmbd/nmbd_elections.c:41(send_election_dgram)
send_election_dgram: Sending election packet for workgroup WORKGROUP on subnet 192.168.122.1
../source3/nmbd/nmbd_elections.c:41(send_election_dgram)
send_election_dgram: Sending election packet for workgroup WORKGROUP on subnet 192.168.122.1
../source3/nmbd/nmbd_elections.c:41(send_election_dgram)
send_election_dgram: Sending election packet for workgroup WORKGROUP on subnet 192.168.122.1
../source3/nmbd/nmbd_elections.c:201(run_elections)
run_elections: >>> Won election for workgroup WORKGROUP on subnet 192.168.122.1 <<<
../source3/nmbd/nmbd_become_lmb.c:538(become_local_master_browser)
become_local_master_browser: Starting to become a master browser for workgroup WORKGROUP on subnet 192.168.122.1
../source3/nmbd/nmbd_become_lmb.c:540(become_local_master_browser)
become_local_master_browser: first stage - attempt to register ^1^2__MSBROWSE__^2^1
../source3/nmbd/nmbd_serverlistdb.c:411(write_browse_list)
write_browse_list: Wrote browse list into file /var/lib/samba/browse.dat
../source3/nmbd/nmbd_incomingrequests.c:323(process_node_status_request)
process_node_status_request: status request for name *<00> from IP 192.168.1.1 on subnet UNICAST_SUBNET.
../source3/nmbd/nmbd_namelistdb.c:263(add_name_to_subnet)
add_name_to_subnet: Added netbios name __MSBROWSE__<01> with first IP 192.168.122.1 ttl=0 nb_flags=80 to subnet 192.168.122.1
../source3/nmbd/nmbd_become_lmb.c:453(become_local_master_stage1)
become_local_master_stage1: go to stage 2: register the WORKGROUP<1d> name.
../source3/nmbd/nmbd_namelistdb.c:263(add_name_to_subnet)
add_name_to_subnet: Added netbios name __MSBROWSE__<01> with first IP 192.168.122.1 ttl=0 nb_flags=80 to subnet UNICAST_SUBNET
../source3/nmbd/nmbd_namelistdb.c:263(add_name_to_subnet)
add_name_to_subnet: Added netbios name WORKGROUP<1d> with first IP 192.168.122.1 ttl=0 nb_flags= 0 to subnet 192.168.122.1
../source3/nmbd/nmbd_become_lmb.c:354(become_local_master_stage2)
become_local_master_stage2: registered as master browser for workgroup WORKGROUP on subnet 192.168.122.1
../source3/nmbd/nmbd_sendannounce.c:70(broadcast_announce_request)
broadcast_announce_request: sending announce request for workgroup WORKGROUP to subnet 192.168.122.1
../source3/nmbd/nmbd_namelistdb.c:263(add_name_to_subnet)
add_name_to_subnet: Added netbios name WORKGROUP<1d> with first IP 192.168.122.1 ttl=0 nb_flags= 0 to subnet UNICAST_SUBNET
../source3/nmbd/nmbd_become_lmb.c:397(become_local_master_stage2)
*****
Samba name server CENTOS is now a local master browser for workgroup WORKGROUP on subnet 192.168.122.1
*****
../source3/nmbd/nmbd_sendannounce.c:170(send_local_master_announcement)
send_local_master_announcement: type 849a03 for name CENTOS on subnet 192.168.122.1 for workgroup WORKGROUP
../source3/nmbd/nmbd_sendannounce.c:189(send_workgroup_announcement)
send_workgroup_announcement: on subnet 192.168.122.1 for workgroup WORKGROUP
../source3/nmbd/nmbd_incomingrequests.c:459(process_name_query_request)
process_name_query_request: Name query from 192.168.1.100 on subnet 192.168.1.105 for name MEZCAL<20>
../source3/nmbd/nmbd_incomingrequests.c:459(process_name_query_request)
process_name_query_request: Name query from 192.168.1.100 on subnet 192.168.1.105 for name MEZCAL<20>
../source3/nmbd/nmbd_incomingrequests.c:459(process_name_query_request)
process_name_query_request: Name query from 192.168.1.100 on subnet 192.168.1.105 for name WORKGROUP<1b>
../source3/nmbd/nmbd_serverlistdb.c:411(write_browse_list)
write_browse_list: Wrote browse list into file /var/lib/samba/browse.dat
../source3/nmbd/nmbd_incomingrequests.c:459(process_name_query_request)
process_name_query_request: Name query from 192.168.1.100 on subnet 192.168.1.105 for name WORKGROUP<1b>
../source3/nmbd/nmbd_incomingrequests.c:323(process_node_status_request)
process_node_status_request: status request for name *<00> from IP 192.168.1.1 on subnet UNICAST_SUBNET.
../lib/util/access.c:361(allow_access)
Allowed connection from 192.168.1.100 (192.168.1.100)
../source3/smbd/oplock.c:1329(init_oplocks)
init_oplocks: initializing messages.
../source3/smbd/process.c:1959(process_smb)
Transaction 0 of length 178 (0 toread)
../source3/smbd/smb2_negprot.c:290(smbd_smb2_request_process_negprot)
Selected protocol SMB3_11
../auth/gensec/gensec_start.c:977(gensec_register)
GENSEC backend 'gssapi_spnego' registered
../auth/gensec/gensec_start.c:977(gensec_register)
GENSEC backend 'gssapi_krb5' registered
../auth/gensec/gensec_start.c:977(gensec_register)
GENSEC backend 'gssapi_krb5_sasl' registered
../auth/gensec/gensec_start.c:977(gensec_register)
GENSEC backend 'spnego' registered
../auth/gensec/gensec_start.c:977(gensec_register)
GENSEC backend 'schannel' registered
../auth/gensec/gensec_start.c:977(gensec_register)
GENSEC backend 'naclrpc_as_system' registered
../auth/gensec/gensec_start.c:977(gensec_register)
GENSEC backend 'sasl-EXTERNAL' registered
../auth/gensec/gensec_start.c:977(gensec_register)
GENSEC backend 'ntlmssp' registered
../auth/gensec/gensec_start.c:977(gensec_register)
GENSEC backend 'ntlmssp_resume_ccache' registered
../auth/gensec/gensec_start.c:977(gensec_register)
GENSEC backend 'http_basic' registered
../auth/gensec/gensec_start.c:977(gensec_register)
GENSEC backend 'http_ntlm' registered
../auth/ntlmssp/ntlmssp_util.c:69(debug_ntlmssp_flags)
Got NTLMSSP neg_flags=0xe2088297
../auth/ntlmssp/ntlmssp_server.c:454(ntlmssp_server_preauth)
Got user=[pepe] domain=[ISIDA] workstation=[ISIDA] len1=24 len2=244
../source3/param/loadparm.c:3847(lp_load_ex)
lp_load_ex: refreshing parameters
../source3/param/loadparm.c:543(init_globals)
Initialising global parameters
../source3/param/loadparm.c:2761(lp_do_section)
Processing section "[global]"
../source3/param/loadparm.c:2778(lp_do_section)
Processing section "[Anonymous]"
../source3/param/loadparm.c:2778(lp_do_section)
Processing section "[soft]"
../source3/param/loadparm.c:1596(lp_add_ipc)
adding IPC service
../source3/auth/auth.c:189(auth_check_ntlm_password)
check_ntlm_password: Checking password for unmapped user [ISIDA][pepe]@[ISIDA] with the new password interface
../source3/auth/auth.c:192(auth_check_ntlm_password)
check_ntlm_password: mapped user is: [ISIDA][pepe]@[ISIDA]
../source3/auth/check_samsec.c:399(check_sam_security)
check_sam_security: Couldn't find user 'pepe' in passdb.
../source3/auth/auth.c:332(auth_check_ntlm_password)
check_ntlm_password: Authentication for user [pepe] -> [pepe] FAILED with error NT_STATUS_NO_SUCH_USER, authoritative=1
../auth/auth_log.c:760(log_authentication_event_human_readable)
Auth: [SMB2,(null)] user [ISIDA][pepe] at [Sat, 09 Jun 2018 02:58:47.401161 EDT] with [NTLMv2] status [NT_STATUS_NO_SUCH_USER] workstation [ISIDA] remote host [ipv4:192.168.1.100:9520] mapped to [ISIDA][pepe]. local host [ipv4:192.168.1.105:445]
../auth/auth_log.c:591(log_no_json)
log_no_json: JSON auth logs not available unless compiled with jansson
../source3/auth/auth_util.c:1626(do_map_to_guest_server_info)
No such user pepe [ISIDA] - using guest account
../lib/util/access.c:361(allow_access)
Allowed connection from 192.168.1.100 (192.168.1.100)
../source3/smbd/service.c:595(make_connection_snum)
Connect path is '/media/BACKUP/soft' for service [soft]
../source3/smbd/vfs.c:113(vfs_init_default)
Initialising default vfs hooks
../source3/smbd/vfs.c:139(vfs_init_custom)
Initialising custom vfs hooks from [/[Default VFS]/]
../source3/smbd/service.c:841(make_connection_snum)
isida (ipv4:192.168.1.100:9520) connect to service soft initially as user nobody (uid=99, gid=99) (pid 1876)
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../lib/util/access.c:361(allow_access)
Allowed connection from 192.168.1.100 (192.168.1.100)
../source3/smbd/service.c:595(make_connection_snum)
Connect path is '/samba/anonymous' for service [Anonymous]
../source3/smbd/vfs.c:113(vfs_init_default)
Initialising default vfs hooks
../source3/smbd/vfs.c:139(vfs_init_custom)
Initialising custom vfs hooks from [/[Default VFS]/]
../source3/smbd/service.c:841(make_connection_snum)
isida (ipv4:192.168.1.100:9520) connect to service Anonymous initially as user nobody (uid=99, gid=99) (pid 1876)
../source3/rpc_server/srv_pipe.c:748(api_pipe_bind_req)
api_pipe_bind_req: srvsvc -> srvsvc rpc service
../source3/rpc_server/srv_pipe.c:356(check_bind_req)
check_bind_req for srvsvc context_id=0
../source3/rpc_server/srv_pipe.c:399(check_bind_req)
check_bind_req: srvsvc -> srvsvc rpc service
../source3/rpc_server/srv_pipe.c:1528(api_rpcTNP)
api_rpcTNP: rpc command: SRVSVC_NETSHAREGETINFO
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_FS_DRIVER_REQUIRED] || at ../source3/smbd/smb2_ioctl.c:309
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_OBJECT_NAME_NOT_FOUND] || at ../source3/smbd/smb2_create.c:293
../source3/smbd/dir.c:657(dptr_create)
creating new dirptr 0 for path ., expect_close = 0
../source3/smbd/dir.c:1228(smbd_dirptr_get_entry)
smbd_dirptr_get_entry mask=[*] found . fname=. (.)
../source3/smbd/dir.c:1228(smbd_dirptr_get_entry)
smbd_dirptr_get_entry mask=[*] found .. fname=.. (..)
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[9] status[STATUS_NO_MORE_FILES] || at ../source3/smbd/smb2_query_directory.c:155
../source3/smbd/smb2_notify.c:250(smbd_smb2_notify_send)
smbd_smb2_notify_send: notify change called on ., filter = DIR_NAME, recursive = 0
../source3/smbd/smb2_notify.c:250(smbd_smb2_notify_send)
smbd_smb2_notify_send: notify change called on ., filter = FILE_NAME|ATTRIBUTES|LAST_WRITE, recursive = 0
../source3/rpc_server/srv_pipe.c:748(api_pipe_bind_req)
api_pipe_bind_req: srvsvc -> srvsvc rpc service
../source3/rpc_server/srv_pipe.c:356(check_bind_req)
check_bind_req for srvsvc context_id=0
../source3/rpc_server/srv_pipe.c:399(check_bind_req)
check_bind_req: srvsvc -> srvsvc rpc service
../source3/rpc_server/srv_pipe.c:1528(api_rpcTNP)
api_rpcTNP: rpc command: SRVSVC_NETSHAREENUMALL
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_CANCELLED] || at ../source3/smbd/smb2_notify.c:123
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_CANCELLED] || at ../source3/smbd/smb2_notify.c:123
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_FS_DRIVER_REQUIRED] || at ../source3/smbd/smb2_ioctl.c:309
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_FS_DRIVER_REQUIRED] || at ../source3/smbd/smb2_ioctl.c:309
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
../source3/nmbd/nmbd_incomingrequests.c:323(process_node_status_request)
process_node_status_request: status request for name *<00> from IP 192.168.1.1 on subnet UNICAST_SUBNET.
../source3/smbd/service.c:1120(close_cnum)
isida (ipv4:192.168.1.100:9520) closed connection to service IPC$
../source3/nmbd/nmbd_incomingrequests.c:323(process_node_status_request)
process_node_status_request: status request for name *<00> from IP 192.168.1.1 on subnet UNICAST_SUBNET.
../source3/nmbd/nmbd_sendannounce.c:212(send_host_announcement)
send_host_announcement: type 819a03 for host CENTOS on subnet 192.168.1.105 for workgroup WORKGROUP
../source3/nmbd/nmbd_incomingrequests.c:323(process_node_status_request)
process_node_status_request: status request for name *<00> from IP 192.168.1.1 on subnet UNICAST_SUBNET.
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../lib/util/access.c:361(allow_access)
Allowed connection from 192.168.1.100 (192.168.1.100)
../source3/smbd/service.c:595(make_connection_snum)
Connect path is '/tmp' for service [IPC$]
../source3/smbd/vfs.c:113(vfs_init_default)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../lib/util/access.c:361(allow_access)
Allowed connection from 192.168.1.100 (192.168.1.100)
../source3/smbd/service.c:595(make_connection_snum)
Connect path is '/tmp' for service [IPC$]
../source3/smbd/vfs.c:113(vfs_init_default)
Initialising default vfs hooks
../source3/smbd/vfs.c:139(vfs_init_custom)
Initialising custom vfs hooks from [/[Default VFS]/]
../source3/smbd/service.c:841(make_connection_snum)
isida (ipv4:192.168.1.100:9520) connect to service IPC$ initially as user nobody (uid=99, gid=99) (pid 1876)
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../source3/rpc_server/srv_pipe.c:748(api_pipe_bind_req)
api_pipe_bind_req: srvsvc -> srvsvc rpc service
../source3/rpc_server/srv_pipe.c:356(check_bind_req)
check_bind_req for srvsvc context_id=0
../source3/rpc_server/srv_pipe.c:399(check_bind_req)
check_bind_req: srvsvc -> srvsvc rpc service
../source3/rpc_server/srv_pipe.c:1528(api_rpcTNP)
api_rpcTNP: rpc command: SRVSVC_NETSHAREGETINFO
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_FS_DRIVER_REQUIRED] || at ../source3/smbd/smb2_ioctl.c:309
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../source3/smbd/service.c:120(set_current_service)
chdir (/media/BACKUP/soft) failed, reason: Permission denied
../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
../source3/nmbd/nmbd_incomingrequests.c:323(process_node_status_request)
process_node_status_request: status request for name *<00> from IP 192.168.1.1 on subnet UNICAST_SUBNET.
../source3/smbd/service.c:1120(close_cnum)
Handelt es sich um eine NTFS-Mount-Beschränkung?
Verwandte:„.bashrc“-äquivalente Datei, die von allen Shells gelesen wird?AKTUALISIERUNG: Hier ist das neue Protokoll nach Tukan-Änderungen
Akzeptierte Antwort:
Sie verwenden ein unbekanntes Konto:
check_ntlm_password: Authentication for user [pepe] -> [pepe] FAILED with error NT_STATUS_NO_SUCH_USER, authoritative=1
also Ihr Zugang zu soft ist als Gast Sie haben Gastzugriff in Samba zugelassen, aber die Berechtigungen im Dateisystem scheinen nicht dafür eingerichtet zu sein.
Standardmäßig ist der Gastbenutzer nobody Sie müssen also Ihre Dateisystemberechtigungen festlegen, um den Zugriff zu ermöglichen. Oder ändern Sie, wie Sie versuchen, auf die Freigabe zuzugreifen.
Nach den über Kommentare hinzugefügten Informationen scheint es, dass wir eine detailliertere Lösung benötigen. Im Moment mounten Sie das NTFS-Dateisystem mit einem expliziten Eigentümer – behandeln seine Eigentümer im Wesentlichen wie ein vFAT-Dateisystem. Aber dieser Eigentümer stimmt nicht mit dem Konto überein, das Sie über Samba für den Zugriff auf das Dateisystem definiert haben, sodass Samba-Konten nicht auf das Dateisystem zugreifen können. Entweder müssen diese übereinstimmen oder Sie müssen die NTFS-Dateisystemberechtigungen verwenden und den erzwungenen Mount-Besitz entfernen.
Verwandte:Warum tötet der folgende Befehl ein System?Lassen Sie uns den Weg einschlagen, der weniger Änderungen an Ihrem System erfordert. Es handelt sich eher um einen Ansatz für Privatanwender als um einen Ansatz für viele Benutzer („Unternehmen“).
-
Lassen Sie den NTFS-Mount unverändert, damit Sie weiterhin owner=1000, group=1000 erzwingen.
-
Sagen Sie Samba, dass authentifizierte Benutzer beim Zugriff auf die entsprechende Freigabe als Eigentümer =1000, Gruppe =1000 behandelt werden müssen, indem Sie den
force usereinfügen Direktive:[global] ... security = user map to guest = bad user # Use "guest" account for unknown users ; guest account = nobody # Implicit default unless you override it [soft] path = /media/SYSTEM/soft read only = no writable = yes browsable = yes guest ok = yes # Allow unknown users to access this share force user = 1000 # Samba authenticates, but filesystem access is as uid=1000
Beachten Sie, dass einem gültigen Benutzer mit einem ungültigen Passwort der Zugriff verweigert wird, aber einem ungültigen Benutzer (mit beliebigem Passwort) der Zugriff gewährt wird. Dies haben Sie hier mit Ihrer map to guest = bad user definiert und guest ok = yes . Ich würde Ihnen dringend empfehlen, eines davon so zu ändern, dass es entweder map to guest = never lautet oder guest ok = no .
In Ihrer /etc/fstab Ich würde vorschlagen, dass Sie die uid entfernen , gid , und umask Einstellungen für das NTFS-Dateisystem, da Sie dann den force user entfernen können und force group Einstellungen in Samba. Aber Sie haben vielleicht einen guten Grund für diese Werte, also habe ich sie in meiner Antwort nicht geändert.