====== Samba ======
===== Installer =====
  # aptitude update
  # aptitude install samba

===== Compte guest =====
  # adduser --system --no-create-home --ingroup nogroup --disabled-login smbguest
Verifions:
  # id smbguest
  uid=115(smbguest) gid=65534(nogroup) groupes=65534(nogroup)
  # passwd -S smbguest
  smbguest L 10/29/2007 0 99999 7 -1

===== Config simple avec ''guest'' =====
Editer ''/etc/samba/smb.conf'' .

  [global]
        workgroup = <NOM_DU_WORKGROUP>
        server string = %h server (Samba %v)
        map to guest = Bad User
        null passwords = Yes
        obey pam restrictions = Yes
        guest account = smbguest
        passwd program = /usr/bin/passwd %u
        passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n .
        syslog = 0
        log file = /var/log/samba/log.%m
        max log size = 1000
        dns proxy = No
        ldap ssl = no
        panic action = /usr/share/samba/panic-action %d
        invalid users = root
        hosts allow = 192.168., 127.0
  
  [homes]
        comment = Home Directories
        create mask = 0755
        browseable = No
  
  [printers]
        comment = All Printers
        path = /tmp
        create mask = 0700
        printable = Yes
        browseable = No
  
  [print$]
        comment = Printer Drivers
        path = /var/lib/samba/printers
  
  [public]
        path = /home/thierry/smbshare/public
        guest only = Yes
        guest ok = Yes

====== Samba et Active Directory ======

Liens: 
  *http://wiki.samba.org/index.php/Samba_&_Active_Directory
  *http://www.surlyjake.com/linux/samba/join-debian-lenny-to-active-directory-using-samba/

===== ntp =====

  # aptitude install ntp

===== acl ======
  # aptitude install acl


===== kerberos =====
  # aptitude install krb5-config krb5-user

FIXME: krb5.conf

  # kinit administrateur@THIERRY-JAOUEN.FR
  Password for administrateur@THIERRY-JAOUEN.FR:

  # klist
  Ticket cache: FILE:/tmp/krb5cc_0
  Default principal: administrateur@THIERRY-JAOUEN.FR
  
  Valid starting     Expires            Service principal
  10/05/10 23:13:38  10/06/10 09:18:21  krbtgt/THIERRY-JAOUEN.FR@THIERRY-JAOUEN.FR
            renew until 10/06/10 23:13:38
  
  Kerberos 4 ticket cache: /tmp/tkt0
  klist: You have no tickets cached


FIXME :  # aptitude install libpam-krb5

===== samba =====

  # aptitude install samba winbind

Laisser les réponses par defaut: on va tout changer.

  # /etc/init.d/samba stop
  # /etc/init.d/winbind stop

FIXME : creer la conf **''/etc/samba/smb.conf''**

FIXME : /etc/nsswitch.conf

==== tips ====

Liste des users:
  # wbinfo -u
Liste des groupes:
  # wbinfo -g

Changer les droits sur un répertoire, une "home" d'un user par exemple:
  # mkdir /mnt/home-mon-domaine/tjaouen
  # chown tjaouen:"utilisa. du domaine" /mnt/home-mon-domaine/tjaouen
  # ls -lart /mnt/home-mon-domaine
  drwxr-xr-x 2 tjaouen utilisa. du domaine 4096 oct  6 11:27 tjaouen


  

===== vite dit =====
==== map ID ====

Le fichier de "map" entre les ID Windows et les ID Posix:
  /var/lib/winbindd_idmap.tdb