736 Part V . Running Servers user account (Yahoo web space)
736 Part V . Running Servers user account to every client user who will use the Samba server, therefore providing basically the same file permissions to a user account through Samba as the same user would get if he or she were logged in directly to Linux. share The share value for security works best for just print sharing or for providing file access that is more public (guest sharing). A client doesn t need to provide a valid username and password to access the server. However, the user typically has a guest level of permission to access and change files. See the Assigning Guest Accounts sidebar in this chapter for further information. server From the client s point of view, this is the same as user security in that the client still has to provide a valid username/password combination to use the Samba server at all. The difference is on the server side. With server security, the username/password is sent to another SMB server for validation. If that fails, Samba tries to validate the client using user security. domain From the client s point of view, this also looks the same as user security. This setting is used only if the Samba server has been added to a Windows NT domain (using the smbpasswd command). When a client tries to connect to the Samba server in this mode, its username and password are sent to a Windows NT Primary or Backup Domain controller. This is accomplished the same way that a Windows NT server would perform validation. Valid Linux user accounts must still be set up. . Encrypt passwords Controls whether encrypted passwords can be negotiated with the client. This is on (Yes) by default. For domain security, this value must be Yes. Later versions of Windows NT (4.0 SP3 or later) and Windows 98 and Windows 2000 expect encrypted passwords to be on. . Update encrypted Allows users who log in with a plain-text password to automatically have their passwords updated to encrypted passwords when they log in. Normally, this option is off. Turn it on when you want an installation using plain-text passwords to have everyone updated to encrypted password authentication. It saves users the trouble of running the smbpasswd command directly from the server. After everyone is updated, this feature can be turned off. When this option is on, the Encrypt passwords option should be set to No. . Obey PAM restrictions Turn this on (Yes) if you want to use PAM for account and session management. Even if activated, PAM is not used if the encrypted passwords feature is turned on (encrypt passwords = yes). (PAM stands for Pluggable Authentication Modules and is used for authenticating host computers and users.) . PAM password change Indicates to use the PAM password change control flag for Samba. If this is on (Yes), SMB clients will use PAM instead of the program listed in the Password Program value for changing SMB passwords.
We would like to recommend you tested and proved virtual web hosting services, which you will surely find to be of great quality.