CentOS 7.4 Acesso ao compartilhamento de samba negado

Question

CentOS 7.4 Acesso ao compartilhamento de samba negado

#1 resposta do (4 votos)

3

Eu configurei o servidor Samba no CentOS 7.4 e o supostamente permitiu no SELinux. Eu posso acessar com êxito o compartilhamento anônimo no sistema de arquivos raiz, mas não consigo acessar os diretórios na partição NTFS montada. No Win10 eu recebo

you do not have permission to access 2.16.1.119\soft

Veja como eu montei os compartilhamentos NTFS no fstab

UUID=3636E6FC36E6BC4D /media/SYSTEM ntfs rw,auto,users,exec,nls=utf8,umask=003,gid=1000,uid=1000    0   0

Aqui está o meu smb.conf

[global]

workgroup = WORKGROUP
server string = Centy Samba %v
netbios name = centos
security = user
map to guest = bad user
dns proxy = no
log level = 3
log file = /var/log/smblog
#============================ Share Definitions ==============================

[Anonymous]
path = /samba/anonymous
browsable = yes
writable = yes
guest ok = yes
read only = no

[soft]
path = /media/SYSTEM/soft
read only = no
guest ok = yes
writable = yes
browsable = yes

Aqui está o log:

 ../source3/nmbd/nmbd_elections.c:41(send_election_dgram)
  send_election_dgram: Sending election packet for workgroup WORKGROUP on subnet 192.168.122.1
 ../source3/nmbd/nmbd_elections.c:41(send_election_dgram)
  send_election_dgram: Sending election packet for workgroup WORKGROUP on subnet 192.168.122.1
 ../source3/nmbd/nmbd_elections.c:41(send_election_dgram)
  send_election_dgram: Sending election packet for workgroup WORKGROUP on subnet 192.168.122.1
 ../source3/nmbd/nmbd_elections.c:201(run_elections)
  run_elections: >>> Won election for workgroup WORKGROUP on subnet 192.168.122.1 <<<
 ../source3/nmbd/nmbd_become_lmb.c:538(become_local_master_browser)
  become_local_master_browser: Starting to become a master browser for workgroup WORKGROUP on subnet 192.168.122.1
 ../source3/nmbd/nmbd_become_lmb.c:540(become_local_master_browser)
  become_local_master_browser: first stage - attempt to register ^1^2__MSBROWSE__^2^1
 ../source3/nmbd/nmbd_serverlistdb.c:411(write_browse_list)
  write_browse_list: Wrote browse list into file /var/lib/samba/browse.dat
 ../source3/nmbd/nmbd_incomingrequests.c:323(process_node_status_request)
  process_node_status_request: status request for name *<00> from IP 192.168.1.1 on subnet UNICAST_SUBNET.
 ../source3/nmbd/nmbd_namelistdb.c:263(add_name_to_subnet)
  add_name_to_subnet: Added netbios name __MSBROWSE__<01> with first IP 192.168.122.1 ttl=0 nb_flags=80 to subnet 192.168.122.1
 ../source3/nmbd/nmbd_become_lmb.c:453(become_local_master_stage1)
  become_local_master_stage1: go to stage 2: register the WORKGROUP<1d> name.
 ../source3/nmbd/nmbd_namelistdb.c:263(add_name_to_subnet)
  add_name_to_subnet: Added netbios name __MSBROWSE__<01> with first IP 192.168.122.1 ttl=0 nb_flags=80 to subnet UNICAST_SUBNET
 ../source3/nmbd/nmbd_namelistdb.c:263(add_name_to_subnet)
  add_name_to_subnet: Added netbios name WORKGROUP<1d> with first IP 192.168.122.1 ttl=0 nb_flags= 0 to subnet 192.168.122.1
 ../source3/nmbd/nmbd_become_lmb.c:354(become_local_master_stage2)
  become_local_master_stage2: registered as master browser for workgroup WORKGROUP on subnet 192.168.122.1
 ../source3/nmbd/nmbd_sendannounce.c:70(broadcast_announce_request)
  broadcast_announce_request: sending announce request for workgroup WORKGROUP to subnet 192.168.122.1
 ../source3/nmbd/nmbd_namelistdb.c:263(add_name_to_subnet)
  add_name_to_subnet: Added netbios name WORKGROUP<1d> with first IP 192.168.122.1 ttl=0 nb_flags= 0 to subnet UNICAST_SUBNET
 ../source3/nmbd/nmbd_become_lmb.c:397(become_local_master_stage2)
  *****

  Samba name server CENTOS is now a local master browser for workgroup WORKGROUP on subnet 192.168.122.1

  *****
 ../source3/nmbd/nmbd_sendannounce.c:170(send_local_master_announcement)
  send_local_master_announcement: type 849a03 for name CENTOS on subnet 192.168.122.1 for workgroup WORKGROUP
 ../source3/nmbd/nmbd_sendannounce.c:189(send_workgroup_announcement)
  send_workgroup_announcement: on subnet 192.168.122.1 for workgroup WORKGROUP
 ../source3/nmbd/nmbd_incomingrequests.c:459(process_name_query_request)
  process_name_query_request: Name query from 192.168.1.100 on subnet 192.168.1.105 for name MEZCAL<20>
 ../source3/nmbd/nmbd_incomingrequests.c:459(process_name_query_request)
  process_name_query_request: Name query from 192.168.1.100 on subnet 192.168.1.105 for name MEZCAL<20>
 ../source3/nmbd/nmbd_incomingrequests.c:459(process_name_query_request)
  process_name_query_request: Name query from 192.168.1.100 on subnet 192.168.1.105 for name WORKGROUP<1b>
 ../source3/nmbd/nmbd_serverlistdb.c:411(write_browse_list)
  write_browse_list: Wrote browse list into file /var/lib/samba/browse.dat
 ../source3/nmbd/nmbd_incomingrequests.c:459(process_name_query_request)
  process_name_query_request: Name query from 192.168.1.100 on subnet 192.168.1.105 for name WORKGROUP<1b>
 ../source3/nmbd/nmbd_incomingrequests.c:323(process_node_status_request)
  process_node_status_request: status request for name *<00> from IP 192.168.1.1 on subnet UNICAST_SUBNET.
 ../lib/util/access.c:361(allow_access)
  Allowed connection from 192.168.1.100 (192.168.1.100)
 ../source3/smbd/oplock.c:1329(init_oplocks)
  init_oplocks: initializing messages.
 ../source3/smbd/process.c:1959(process_smb)
  Transaction 0 of length 178 (0 toread)
 ../source3/smbd/smb2_negprot.c:290(smbd_smb2_request_process_negprot)
  Selected protocol SMB3_11
 ../auth/gensec/gensec_start.c:977(gensec_register)
  GENSEC backend 'gssapi_spnego' registered
 ../auth/gensec/gensec_start.c:977(gensec_register)
  GENSEC backend 'gssapi_krb5' registered
 ../auth/gensec/gensec_start.c:977(gensec_register)
  GENSEC backend 'gssapi_krb5_sasl' registered
 ../auth/gensec/gensec_start.c:977(gensec_register)
  GENSEC backend 'spnego' registered
 ../auth/gensec/gensec_start.c:977(gensec_register)
  GENSEC backend 'schannel' registered
 ../auth/gensec/gensec_start.c:977(gensec_register)
  GENSEC backend 'naclrpc_as_system' registered
 ../auth/gensec/gensec_start.c:977(gensec_register)
  GENSEC backend 'sasl-EXTERNAL' registered
 ../auth/gensec/gensec_start.c:977(gensec_register)
  GENSEC backend 'ntlmssp' registered
 ../auth/gensec/gensec_start.c:977(gensec_register)
  GENSEC backend 'ntlmssp_resume_ccache' registered
 ../auth/gensec/gensec_start.c:977(gensec_register)
  GENSEC backend 'http_basic' registered
 ../auth/gensec/gensec_start.c:977(gensec_register)
  GENSEC backend 'http_ntlm' registered
 ../auth/ntlmssp/ntlmssp_util.c:69(debug_ntlmssp_flags)
  Got NTLMSSP neg_flags=0xe2088297
 ../auth/ntlmssp/ntlmssp_server.c:454(ntlmssp_server_preauth)
  Got user=[pepe] domain=[ISIDA] workstation=[ISIDA] len1=24 len2=244
 ../source3/param/loadparm.c:3847(lp_load_ex)
  lp_load_ex: refreshing parameters
 ../source3/param/loadparm.c:543(init_globals)
  Initialising global parameters
 ../source3/param/loadparm.c:2761(lp_do_section)
  Processing section "[global]"
 ../source3/param/loadparm.c:2778(lp_do_section)
  Processing section "[Anonymous]"
 ../source3/param/loadparm.c:2778(lp_do_section)
  Processing section "[soft]"
 ../source3/param/loadparm.c:1596(lp_add_ipc)
  adding IPC service
 ../source3/auth/auth.c:189(auth_check_ntlm_password)
  check_ntlm_password:  Checking password for unmapped user [ISIDA]\[pepe]@[ISIDA] with the new password interface
 ../source3/auth/auth.c:192(auth_check_ntlm_password)
  check_ntlm_password:  mapped user is: [ISIDA]\[pepe]@[ISIDA]
 ../source3/auth/check_samsec.c:399(check_sam_security)
  check_sam_security: Couldn't find user 'pepe' in passdb.
 ../source3/auth/auth.c:332(auth_check_ntlm_password)
  check_ntlm_password:  Authentication for user [pepe] -> [pepe] FAILED with error NT_STATUS_NO_SUCH_USER, authoritative=1
 ../auth/auth_log.c:760(log_authentication_event_human_readable)
  Auth: [SMB2,(null)] user [ISIDA]\[pepe] at [Sat, 09 Jun 2018 02:58:47.401161 EDT] with [NTLMv2] status [NT_STATUS_NO_SUCH_USER] workstation [ISIDA] remote host [ipv4:192.168.1.100:9520] mapped to [ISIDA]\[pepe]. local host [ipv4:192.168.1.105:445] 
 ../auth/auth_log.c:591(log_no_json)
  log_no_json: JSON auth logs not available unless compiled with jansson
 ../source3/auth/auth_util.c:1626(do_map_to_guest_server_info)
  No such user pepe [ISIDA] - using guest account
 ../lib/util/access.c:361(allow_access)
  Allowed connection from 192.168.1.100 (192.168.1.100)
 ../source3/smbd/service.c:595(make_connection_snum)
  Connect path is '/media/BACKUP/soft' for service [soft]
 ../source3/smbd/vfs.c:113(vfs_init_default)
  Initialising default vfs hooks
 ../source3/smbd/vfs.c:139(vfs_init_custom)
  Initialising custom vfs hooks from [/[Default VFS]/]
 ../source3/smbd/service.c:841(make_connection_snum)
  isida (ipv4:192.168.1.100:9520) connect to service soft initially as user nobody (uid=99, gid=99) (pid 1876)
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../lib/util/access.c:361(allow_access)
  Allowed connection from 192.168.1.100 (192.168.1.100)
 ../source3/smbd/service.c:595(make_connection_snum)
  Connect path is '/samba/anonymous' for service [Anonymous]
 ../source3/smbd/vfs.c:113(vfs_init_default)
  Initialising default vfs hooks
 ../source3/smbd/vfs.c:139(vfs_init_custom)
  Initialising custom vfs hooks from [/[Default VFS]/]
 ../source3/smbd/service.c:841(make_connection_snum)
  isida (ipv4:192.168.1.100:9520) connect to service Anonymous initially as user nobody (uid=99, gid=99) (pid 1876)
 ../source3/rpc_server/srv_pipe.c:748(api_pipe_bind_req)
  api_pipe_bind_req: srvsvc -> srvsvc rpc service
 ../source3/rpc_server/srv_pipe.c:356(check_bind_req)
  check_bind_req for srvsvc context_id=0
 ../source3/rpc_server/srv_pipe.c:399(check_bind_req)
  check_bind_req: srvsvc -> srvsvc rpc service
 ../source3/rpc_server/srv_pipe.c:1528(api_rpcTNP)
  api_rpcTNP: rpc command: SRVSVC_NETSHAREGETINFO
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_FS_DRIVER_REQUIRED] || at ../source3/smbd/smb2_ioctl.c:309
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_OBJECT_NAME_NOT_FOUND] || at ../source3/smbd/smb2_create.c:293
 ../source3/smbd/dir.c:657(dptr_create)
  creating new dirptr 0 for path ., expect_close = 0
 ../source3/smbd/dir.c:1228(smbd_dirptr_get_entry)
  smbd_dirptr_get_entry mask=[*] found . fname=. (.)
 ../source3/smbd/dir.c:1228(smbd_dirptr_get_entry)
  smbd_dirptr_get_entry mask=[*] found .. fname=.. (..)
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[9] status[STATUS_NO_MORE_FILES] || at ../source3/smbd/smb2_query_directory.c:155
 ../source3/smbd/smb2_notify.c:250(smbd_smb2_notify_send)
  smbd_smb2_notify_send: notify change called on ., filter = DIR_NAME, recursive = 0
 ../source3/smbd/smb2_notify.c:250(smbd_smb2_notify_send)
  smbd_smb2_notify_send: notify change called on ., filter = FILE_NAME|ATTRIBUTES|LAST_WRITE, recursive = 0
 ../source3/rpc_server/srv_pipe.c:748(api_pipe_bind_req)
  api_pipe_bind_req: srvsvc -> srvsvc rpc service
 ../source3/rpc_server/srv_pipe.c:356(check_bind_req)
  check_bind_req for srvsvc context_id=0
 ../source3/rpc_server/srv_pipe.c:399(check_bind_req)
  check_bind_req: srvsvc -> srvsvc rpc service
 ../source3/rpc_server/srv_pipe.c:1528(api_rpcTNP)
  api_rpcTNP: rpc command: SRVSVC_NETSHAREENUMALL
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_CANCELLED] || at ../source3/smbd/smb2_notify.c:123
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_CANCELLED] || at ../source3/smbd/smb2_notify.c:123
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_FS_DRIVER_REQUIRED] || at ../source3/smbd/smb2_ioctl.c:309
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_FS_DRIVER_REQUIRED] || at ../source3/smbd/smb2_ioctl.c:309
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
 ../source3/nmbd/nmbd_incomingrequests.c:323(process_node_status_request)
  process_node_status_request: status request for name *<00> from IP 192.168.1.1 on subnet UNICAST_SUBNET.
 ../source3/smbd/service.c:1120(close_cnum)
  isida (ipv4:192.168.1.100:9520) closed connection to service IPC$
 ../source3/nmbd/nmbd_incomingrequests.c:323(process_node_status_request)
  process_node_status_request: status request for name *<00> from IP 192.168.1.1 on subnet UNICAST_SUBNET.
 ../source3/nmbd/nmbd_sendannounce.c:212(send_host_announcement)
  send_host_announcement: type 819a03 for host CENTOS on subnet 192.168.1.105 for workgroup WORKGROUP
 ../source3/nmbd/nmbd_incomingrequests.c:323(process_node_status_request)
  process_node_status_request: status request for name *<00> from IP 192.168.1.1 on subnet UNICAST_SUBNET.
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../lib/util/access.c:361(allow_access)
  Allowed connection from 192.168.1.100 (192.168.1.100)
 ../source3/smbd/service.c:595(make_connection_snum)
  Connect path is '/tmp' for service [IPC$]
 ../source3/smbd/vfs.c:113(vfs_init_default)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../lib/util/access.c:361(allow_access)
  Allowed connection from 192.168.1.100 (192.168.1.100)
 ../source3/smbd/service.c:595(make_connection_snum)
  Connect path is '/tmp' for service [IPC$]
 ../source3/smbd/vfs.c:113(vfs_init_default)
  Initialising default vfs hooks
 ../source3/smbd/vfs.c:139(vfs_init_custom)
  Initialising custom vfs hooks from [/[Default VFS]/]
 ../source3/smbd/service.c:841(make_connection_snum)
  isida (ipv4:192.168.1.100:9520) connect to service IPC$ initially as user nobody (uid=99, gid=99) (pid 1876)
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../source3/rpc_server/srv_pipe.c:748(api_pipe_bind_req)
  api_pipe_bind_req: srvsvc -> srvsvc rpc service
 ../source3/rpc_server/srv_pipe.c:356(check_bind_req)
  check_bind_req for srvsvc context_id=0
 ../source3/rpc_server/srv_pipe.c:399(check_bind_req)
  check_bind_req: srvsvc -> srvsvc rpc service
 ../source3/rpc_server/srv_pipe.c:1528(api_rpcTNP)
  api_rpcTNP: rpc command: SRVSVC_NETSHAREGETINFO
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_FS_DRIVER_REQUIRED] || at ../source3/smbd/smb2_ioctl.c:309
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../source3/smbd/service.c:120(set_current_service)
  chdir (/media/BACKUP/soft) failed, reason: Permission denied
 ../source3/smbd/smb2_server.c:3120(smbd_smb2_request_error_ex)
  smbd_smb2_request_error_ex: smbd_smb2_request_error_ex: idx[1] status[NT_STATUS_ACCESS_DENIED] || at ../source3/smbd/smb2_server.c:2472
 ../source3/nmbd/nmbd_incomingrequests.c:323(process_node_status_request)
  process_node_status_request: status request for name *<00> from IP 192.168.1.1 on subnet UNICAST_SUBNET.
 ../source3/smbd/service.c:1120(close_cnum)

Existe alguma limitação de montagem do NTFS?

ATUALIZAÇÃO: Aqui está o novo registro depois das modificações do tukan

ntfs samba shared-folders centos linux-kernel

por Suncatcher 09.06.2018 / 09:20

1 resposta

Tags ntfs samba shared-folders centos linux-kernel

É possível executar um comando bash do Windows através de uma conexão samba? Faça com que o debian “apt” (novo apt-get / aptitude frontend) armazene os arquivos .deb em '/ var / cache / apt / archives /'

score 4 · Accepted Answer

Você está usando uma conta desconhecida:

check_ntlm_password:  Authentication for user [pepe] -> [pepe] FAILED with error NT_STATUS_NO_SUCH_USER, authoritative=1

para que seu acesso a soft seja como convidado. Você permitiu o acesso de convidados no Samba, mas as permissões no sistema de arquivos não parecem estar configuradas para honrar isso.

Por padrão, o usuário convidado é nobody , portanto, você precisa definir as permissões do sistema de arquivos para permitir o acesso. Ou altere o modo como você está tentando acessar o compartilhamento.

Seguindo as informações adicionadas por comentários, parece que precisamos de uma solução mais detalhada. No momento, você monta o sistema de arquivos NTFS com um proprietário explícito - essencialmente tratando suas propriedades como um sistema de arquivos vFAT. Mas esse proprietário não corresponde à conta que você definiu por meio do Samba para acessar o sistema de arquivos, portanto, as contas do Samba não podem acessar o sistema de arquivos. Isso deve corresponder ou você precisa usar as permissões do sistema de arquivos NTFS e remover a propriedade de montagem forçada.

Vamos seguir o caminho que requer menos alterações no seu sistema. É uma abordagem de usuário doméstico em vez de uma abordagem de muitos usuários ("empresa em geral").

Deixar a montagem NTFS inalterada, para que você continue forçando owner = 1000, group = 1000.

Diga ao Samba que os usuários autenticados devem ser tratados como proprietário = 1000, grupo = 1000 ao acessar o compartilhamento correspondente, incluindo a diretiva force user :

[global]
...
security = user
map to guest = bad user     # Use "guest" account for unknown users
; guest account = nobody    # Implicit default unless you override it

[soft]
path = /media/SYSTEM/soft
read only = no
writable = yes
browsable = yes
guest ok = yes              # Allow unknown users to access this share
force user = 1000           # Samba authenticates, but filesystem access is as uid=1000

Observe que um usuário válido com uma senha inválida terá acesso recusado, mas um usuário inválido (com qualquer senha) terá acesso permitido. Isso é o que você definiu aqui com seu map to guest = bad user e guest ok = yes . Recomendamos vivamente que altere uma destas para ler map to guest = never ou guest ok = no .

Em seu /etc/fstab , sugiro que você considere remover as configurações uid , gid e umask do sistema de arquivos NTFS, pois você pode remover as configurações force user e force group no Samba. Mas você pode ter uma boa razão para esses valores, então eu não os mudei na minha resposta.