From 85c23c3368328d769274936dcd9b77d4acf59111 Mon Sep 17 00:00:00 2001 From: bubulle Date: Wed, 8 Aug 2012 07:11:25 +0000 Subject: Load samba-3.6.7 into branches/samba/upstream. git-svn-id: svn://svn.debian.org/svn/pkg-samba/branches/samba/upstream@4161 fc4039ab-9d04-0410-8cac-899223bdd6b0 --- docs/htmldocs/manpages/smb.conf.5.html | 300 ++++++++++++++++----------------- 1 file changed, 150 insertions(+), 150 deletions(-) (limited to 'docs/htmldocs') diff --git a/docs/htmldocs/manpages/smb.conf.5.html b/docs/htmldocs/manpages/smb.conf.5.html index 5a1b39b25c..144310ffce 100644 --- a/docs/htmldocs/manpages/smb.conf.5.html +++ b/docs/htmldocs/manpages/smb.conf.5.html @@ -972,7 +972,7 @@ cache directory (G)

This parameter is a synonym for case sensitive.

case sensitive (S) -

See the discussion in the section name mangling.

Default: case sensitive = no +

See the discussion in the section name mangling.

Default: case sensitive = auto

@@ -2000,10 +2000,10 @@ enable asu support (G) an [ADMIN$} file share. Disabling this parameter allows for creating an [ADMIN$] file share in smb.conf.

Default: enable asu support = no -

+

enable core files (G) -

This parameter specifies whether core dumps should be written +

This parameter specifies whether core dumps should be written on internal exits. Normally set to yes. You should never need to change this.

Default: enable core files = yes @@ -2026,15 +2026,15 @@ enable privileges (G) Please read the extended description provided in the Samba HOWTO documentation.

Default: enable privileges = yes -

+

enable spoolss (G) -

Inverted synonym for disable spoolss.

Default: enable spoolss = yes +

Inverted synonym for disable spoolss.

Default: enable spoolss = yes -

+

encrypt passwords (G) -

This boolean controls whether encrypted passwords +

This boolean controls whether encrypted passwords will be negotiated with the client. Note that Windows NT 4.0 SP3 and above and also Windows 98 will by default expect encrypted passwords unless a registry entry is changed. To use encrypted passwords in @@ -2057,10 +2057,10 @@ encrypt passwords (G) causes smbd to authenticate against another server.

Default: encrypt passwords = yes -

+

enhanced browsing (G) -

This option enables a couple of enhancements to +

This option enables a couple of enhancements to cross-subnet browse propagation that have been added in Samba but which are not standard in Microsoft implementations.

The first enhancement to browse propagation consists of a regular @@ -2134,7 +2134,7 @@ fake directory create times (S) ensures directories always predate their contents and an NMAKE build will proceed as expected.

Default: fake directory create times = no -

+

fake oplocks (S)

Oplocks are the way that SMB clients get permission @@ -2221,13 +2221,13 @@ force directory security mode (S)

Example: force directory security mode = 700 -

+

group -

This parameter is a synonym for force group.

+

This parameter is a synonym for force group.

force group (S) -

This specifies a UNIX group name that will be +

This specifies a UNIX group name that will be assigned as the default primary group for all users connecting to this service. This is useful for sharing files by ensuring that all access to files on service will use the named group for @@ -2277,10 +2277,10 @@ force printername (S) not be able to delete printer connections from their local Printers folder.

Default: force printername = no -

+

force security mode (S) -

+

This parameter controls what UNIX permission bits can be modified when a Windows NT client is manipulating the UNIX permission on a file using the native NT security dialog box.

@@ -2334,10 +2334,10 @@ force user (S)

Example: force user = auser -

+

fstype (S) -

+

This parameter allows the administrator to configure the string that specifies the type of filesystem a share is using that is reported by smbd(8) when a client queries the filesystem type for a share. The default type is NTFS for compatibility @@ -2363,10 +2363,10 @@ get quota command (G)

Example: get quota command = /usr/local/sbin/query_quota -

+

getwd cache (G) -

This is a tuning option. When this is enabled a +

This is a tuning option. When this is enabled a caching algorithm will be used to reduce the time taken for getwd() calls. This can have a significant impact on performance, especially when the wide smbconfoptions parameter is set to no.

Default: getwd cache = yes @@ -2392,13 +2392,13 @@ guest account (G)

Example: guest account = ftp -

+

public -

This parameter is a synonym for guest ok.

+

This parameter is a synonym for guest ok.

guest ok (S) -

If this parameter is yes for +

If this parameter is yes for a service, then no password is required to connect to the service. Privileges will be those of the guest account.

This parameter nullifies the benefits of setting restrict anonymous = 2 @@ -2408,10 +2408,10 @@ guest ok (S)

only guest -

This parameter is a synonym for guest only.

+

This parameter is a synonym for guest only.

guest only (S) -

If this parameter is yes for +

If this parameter is yes for a service, then only guest connections to the service are permitted. This parameter will have no effect if guest ok is not set for the service.

See the section below on security for more information about this option.

Default: guest only = no @@ -2447,7 +2447,7 @@ hide files = /.*/DesktopFolderDB/TrashFor%m/resource.frk/

Default: hide files = # no file are hidden -

+

hide special files (S)

@@ -2461,10 +2461,10 @@ hide unreadable (S)

This parameter prevents clients from seeing the existance of files that cannot be read. Defaults to off.

Default: hide unreadable = no -

+

hide unwriteable files (S) -

+

This parameter prevents clients from seeing the existance of files that cannot be written to. Defaults to off. Note that unwriteable directories are shown as usual.

Default: hide unwriteable files = no @@ -2555,10 +2555,10 @@ hosts deny (S)

Example: hosts deny = 150.203.4. badhost.mynet.edu.au -

+

idmap backend (G) -

+

The idmap backend provides a plugin interface for Winbind to use varying backends to store SID/uid/gid mapping tables.

@@ -2670,7 +2670,7 @@ idmap config (G)

This parameter is a synonym for idmap gid.

idmap gid (G) -

+

The idmap gid parameter specifies the range of group ids for the default idmap configuration. It is now deprecated in favour of idmap config * : range. @@ -2681,7 +2681,7 @@ idmap gid (G)

idmap negative cache time (G) -

This parameter specifies the number of seconds that Winbind's +

This parameter specifies the number of seconds that Winbind's idmap interface will cache negative SID/uid/gid query results.

Default: idmap negative cache time = 120 @@ -2702,7 +2702,7 @@ idmap uid (G)

include (G) -

+

This allows you to include one config file inside another. The file is included literally, as though typed in place.

@@ -2736,7 +2736,7 @@ inherit acls (S) Windows ACLs correctly.

Default: inherit acls = no -

+

inherit owner (S)

The ownership of new files and directories @@ -2748,7 +2748,7 @@ inherit owner (S) delete them and to ensure that newly create files in a user's roaming profile directory are actually owner by the user.

Default: inherit owner = no -

+

inherit permissions (S)

@@ -2777,10 +2777,10 @@ init logon delayed hosts (G)

Example: init logon delayed hosts = 150.203.5. myhost.mynet.de -

+

init logon delay (G) -

+

This parameter specifies a delay in milliseconds for the hosts configured for delayed initial samlogon with init logon delayed hosts. @@ -2861,10 +2861,10 @@ Basically you should only use this option if you strike difficulties.

Defa

Example: keepalive = 600 -

+

kerberos method (G) -

+

Controls how kerberos tickets are verified.

Valid options are:

  • secrets only - use only the secrets.tdb for ticket verification (default)

  • system keytab - use only the system keytab @@ -2881,7 +2881,7 @@ kerberos method (G) specify the location of the keytab file.

    Default: kerberos method = secrets only -

+

kernel change notify (S)

This parameter specifies whether Samba should ask the @@ -2929,10 +2929,10 @@ lanman auth (G) permited. Not all clients support NTLMv2, and most will require special configuration to use it.

Default: lanman auth = no -

+

large readwrite (G) -

This parameter determines whether or not +

This parameter determines whether or not smbd(8) supports the new 64k streaming read and write variant SMB requests introduced with Windows 2000. Note that due to Windows 2000 client redirector bugs @@ -2990,7 +2990,7 @@ ldap debug level (G)

ldap debug threshold (G) -

+

This parameter controls the Samba debug level at which the ldap library debug output is printed in the Samba logs. See the description of @@ -2999,18 +2999,18 @@ ldap debug threshold (G)

Example: ldap debug threshold = 5 -

+

ldap delete dn (G) -

This parameter specifies whether a delete +

This parameter specifies whether a delete operation in the ldapsam deletes the complete entry or only the attributes specific to Samba.

Default: ldap delete dn = no -

+

ldap deref (G) -

This option controls whether Samba should tell the LDAP library +

This option controls whether Samba should tell the LDAP library to use a certain alias dereferencing method. The default is auto, which means that the default setting of the ldap client library will be kept. Other possible values are @@ -3021,10 +3021,10 @@ ldap deref (G)

Example: ldap deref = searching -

+

ldap follow referral (G) -

This option controls whether to follow LDAP referrals or not when +

This option controls whether to follow LDAP referrals or not when searching for entries in the LDAP database. Possible values are on to enable following referrals, off to disable this, and @@ -3109,10 +3109,10 @@ ldap replication sleep (G) The value is specified in milliseconds, the maximum value is 5000 (5 seconds).

Default: ldap replication sleep = 1000 -

+

ldapsam:editposix (G) -

+

Editposix is an option that leverages ldapsam:trusted to make it simpler to manage a domain controller eliminating the need to set up custom scripts to add and manage the posix users and groups. This option will instead directly manipulate the ldap tree to create, remove and modify user and group entries. @@ -3190,7 +3190,7 @@ ldapsam:editposix (G)

Default: ldapsam:editposix = no -

+

ldapsam:trusted (G)

@@ -3252,10 +3252,10 @@ ldap ssl (G) for more information on ldap ssl ads.

Default: ldap ssl = start tls -

+

ldap suffix (G) -

Specifies the base for all ldap suffixes and for storing the sambaDomain object.

+

Specifies the base for all ldap suffixes and for storing the sambaDomain object.

The ldap suffix will be appended to the values specified for the ldap user suffix, ldap group suffix, ldap machine suffix, and the ldap idmap suffix. Each of these should be given only a DN relative to the @@ -3264,10 +3264,10 @@ ldap suffix (G)

Example: ldap suffix = dc=samba,dc=org -

+

ldap timeout (G) -

+

This parameter defines the number of seconds that Samba should use as timeout for LDAP operations.

Default: ldap timeout = 15 @@ -3282,7 +3282,7 @@ ldap user suffix (G)

Example: ldap user suffix = ou=people -

+

level2 oplocks (S)

This parameter controls whether Samba supports @@ -3340,7 +3340,7 @@ lm interval (G)

load printers (G) -

A boolean variable that controls whether all +

A boolean variable that controls whether all printers in the printcap will be loaded for browsing by default. See the printers section for more details.

Default: load printers = yes @@ -3358,10 +3358,10 @@ local master (G) will participate in elections for local master browser.

Setting this value to no will cause nmbd never to become a local master browser.

Default: local master = yes -

+

lock dir -

This parameter is a synonym for lock directory.

+

This parameter is a synonym for lock directory.

lock directory (G)

This option specifies the directory where lock @@ -3418,7 +3418,7 @@ log file (G)

debuglevel -

This parameter is a synonym for log level.

+

This parameter is a synonym for log level.

log level (G)

@@ -3526,7 +3526,7 @@ logon path = \\PROFILESERVER\PROFILE\%U

Default: logon path = \\%N\%U\profile -

+

logon script (G)

@@ -3577,7 +3577,7 @@ log writeable files on exit (G) consistency checks on.

Default: log writeable files on exit = no -

+

lppause command (S)

This parameter specifies the command to be @@ -3623,7 +3623,7 @@ lpq cache time (G)

lpq command (S) -

This parameter specifies the command to be +

This parameter specifies the command to be executed on the server host in order to obtain lpq -style printer status information.

This command should be a program or script which takes a printer name as its only parameter and outputs printer @@ -3645,7 +3645,7 @@ lpq command (S)

Example: lpq command = /usr/bin/lpq -P%p -

+

lpresume command (S)

This parameter specifies the command to be @@ -3766,7 +3766,7 @@ mangle prefix (G)

Example: mangle prefix = 4 -

+

mangling char (S)

This controls what character is used as @@ -3801,10 +3801,10 @@ map acl inherit (S) POSIX ACL mapping code.

Default: map acl inherit = no -

+

map archive (S) -

+

This controls whether the DOS archive attribute should be mapped to the UNIX owner execute bit. The DOS archive bit is set when a file has been modified since its last backup. One @@ -3817,10 +3817,10 @@ map archive (S) create mask for details.

Default: map archive = yes -

+

map hidden (S) -

+

This controls whether DOS style hidden files should be mapped to the UNIX world execute bit.

Note that this requires the create mask to be set such that the world execute @@ -3865,10 +3865,10 @@ map system (S) create mask for details.

Default: map system = no -

+

map to guest (G) -

This parameter is only useful in SECURITY = +

This parameter is only useful in SECURITY = security modes other than security = share and security = server - i.e. user, and domain.

This parameter can take four different values, which tell @@ -3910,10 +3910,10 @@ map to guest (G)

Example: map to guest = Bad User -

+

map untrusted to domain (G) -

+

If a client connects to smbd using an untrusted domain name, such as BOGUS\user, smbd replaces the BOGUS domain with it's SAM name before attempting to authenticate that user. In the case where smbd is acting as @@ -3931,10 +3931,10 @@ map untrusted to domain (G) effect.

Default: map untrusted to domain = no -

+

max connections (S) -

This option allows the number of simultaneous connections to a service to be limited. +

This option allows the number of simultaneous connections to a service to be limited. If max connections is greater than 0 then connections will be refused if this number of connections to the service are already open. A value of zero mean an unlimited number of connections may be made.

Record lock files are used to implement this feature. The lock files will be stored in @@ -3942,7 +3942,7 @@ max connections (S)

Example: max connections = 10 -

+

max disk size (G)

This option allows you to put an upper limit @@ -3971,10 +3971,10 @@ max log size (G)

Example: max log size = 1000 -

+

max mux (G) -

This option controls the maximum number of +

This option controls the maximum number of outstanding simultaneous SMB operations that Samba tells the client it will allow. You should never need to set this parameter.

Default: max mux = 50 @@ -4022,10 +4022,10 @@ max protocol (G)

Example: max protocol = LANMAN1 -

+

max reported print jobs (S) -

+

This parameter limits the maximum number of jobs displayed in a port monitor for Samba printer queue at any given moment. If this number is exceeded, the excess jobs will not be shown. A value of zero means there is no limit on the number of @@ -4067,10 +4067,10 @@ max ttl (G) requesting a name using either a broadcast packet or from a WINS server. You should never need to change this parameter. The default is 3 days.

Default: max ttl = 259200 -

+

max wins ttl (G) -

This option tells smbd(8) when acting as a WINS server +

This option tells smbd(8) when acting as a WINS server (wins support = yes) what the maximum 'time to live' of NetBIOS names that nmbd will grant will be (in seconds). You should never need to change this @@ -4079,7 +4079,7 @@ max wins ttl (G)

max xmit (G) -

This option controls the maximum packet size +

This option controls the maximum packet size that will be negotiated by Samba. The default is 16644, which matches the behavior of Windows 2000. A value below 2048 is likely to cause problems. You should never need to change this parameter from its default value. @@ -4090,7 +4090,7 @@ max xmit (G)

message command (G) -

This specifies what command to run when the +

This specifies what command to run when the server receives a WinPopup style message.

This would normally be a command that would deliver the message somehow. How this is to be done is up to your imagination.

An example is: @@ -4154,7 +4154,7 @@ min protocol (G)

Example: min protocol = NT1 -

+

min receivefile size (G)

This option changes the behavior of smbd(8) when processing SMBwriteX calls. Any incoming @@ -4169,7 +4169,7 @@ nonzero. The maximum value is 128k. Values greater than 128k will be silently se

min wins ttl (G) -

This option tells nmbd(8) +

This option tells nmbd(8) when acting as a WINS server (wins support = yes) what the minimum 'time to live' of NetBIOS names that nmbd will grant will be (in seconds). You should never need to change this parameter. The default @@ -4197,10 +4197,10 @@ msdfs root (S) and so on. For more information on setting up a Dfs tree on Samba, refer to the MSDFS chapter in the Samba3-HOWTO book.

Default: msdfs root = no -

+

multicast dns register (G) -

If compiled with proper support for it, Samba will +

If compiled with proper support for it, Samba will announce itself with multicast DNS services like for example provided by the Avahi daemon.

This parameter allows disabling Samba to register itself.

Default: multicast dns register = yes @@ -4249,15 +4249,15 @@ name resolve order (G)

Example: name resolve order = lmhosts bcast host -

+

ncalrpc dir (G) -

This directory will hold a series of named pipes to allow RPC over inter-process communication.

. +

This directory will hold a series of named pipes to allow RPC over inter-process communication.

.

This will allow Samba and other unix processes to interact over DCE/RPC without using TCP/IP. Additionally a sub-directory 'np' has restricted permissions, and allows a trusted communication channel between Samba processes

Default: ncalrpc dir = ${prefix}/var/ncalrpc

Example: ncalrpc dir = /var/run/samba/ncalrpc -

+

netbios aliases (G)

This is a list of NetBIOS names that nmbd will @@ -4270,10 +4270,10 @@ netbios aliases (G)

Example: netbios aliases = TEST TEST1 TEST2 -

+

netbios name (G) -

+

This sets the NetBIOS name by which a Samba server is known. By default it is the same as the first component of the host's DNS name. If a machine is a browse server or logon server this name (or the first component of the hosts DNS name) will be the name that these services are advertised under. @@ -4338,7 +4338,7 @@ nt acl support (S)

ntlm auth (G) -

This parameter determines whether or not smbd(8) will attempt to +

This parameter determines whether or not smbd(8) will attempt to authenticate users using the NTLM encrypted password response. If disabled, either the lanman password hash or an NTLMv2 response will need to be sent by the client.

If this option, and lanman @@ -4355,24 +4355,24 @@ nt pipe support (G) pipes. This is a developer debugging option and can be left alone.

Default: nt pipe support = yes -

+

nt status support (G) -

This boolean parameter controls whether smbd(8) will negotiate NT specific status +

This boolean parameter controls whether smbd(8) will negotiate NT specific status support with Windows NT/2k/XP clients. This is a developer debugging option and should be left alone. If this option is set to no then Samba offers exactly the same DOS error codes that versions prior to Samba 2.2.3 reported.

You should not need to ever disable this parameter.

Default: nt status support = yes -

+

null passwords (G) -

Allow or disallow client access to accounts that have null passwords.

See also smbpasswd(5).

Default: null passwords = no +

Allow or disallow client access to accounts that have null passwords.

See also smbpasswd(5).

Default: null passwords = no -

+

obey pam restrictions (G) -

When Samba 3.0 is configured to enable PAM support +

When Samba 3.0 is configured to enable PAM support (i.e. --with-pam), this parameter will control whether or not Samba should obey PAM's account and session management directives. The default behavior is to use PAM for clear text authentication only @@ -4410,7 +4410,7 @@ oplock break wait time (G) DO NOT CHANGE THIS PARAMETER UNLESS YOU HAVE READ AND UNDERSTOOD THE SAMBA OPLOCK CODE.

Default: oplock break wait time = 0 -

+

oplock contention limit (S)

@@ -4477,10 +4477,10 @@ os level (G)

Example: os level = 65 -

+

pam password change (G) -

With the addition of better PAM support in Samba 2.2, +

With the addition of better PAM support in Samba 2.2, this parameter, it is possible to use PAM's password change control flag for Samba. If enabled, then PAM will be used for password changes when requested by an SMB client instead of the program listed in @@ -4509,10 +4509,10 @@ paranoid server security (G) this check, which involves deliberatly attempting a bad logon to the remote server.

Default: paranoid server security = yes -

+

passdb backend (G) -

This option allows the administrator to chose which backend +

This option allows the administrator to chose which backend will be used for storing user and possibly group information. This allows you to swap between different storage mechanisms without recompile.

The parameter value is divided into two parts, the backend's name, and a 'location' string that has meaning only to that particular backed. These are separated @@ -4556,7 +4556,7 @@ passdb expand explicit (G) %G_osver% in which %G would have been substituted by the user's primary group.

Default: passdb expand explicit = no -

+

passwd chat debug (G)

This boolean specifies if the passwd chat script @@ -4638,10 +4638,10 @@ passwd program (G)

Example: passwd program = /bin/passwd %u -

+

password level (G) -

Some client/server combinations have difficulty +

Some client/server combinations have difficulty with mixed-case passwords. One offending client is Windows for Workgroups, which for some reason forces passwords to upper case when using the LANMAN1 protocol, but leaves them alone when @@ -4744,7 +4744,7 @@ perfcount module (G)

This parameter specifies the perfcount backend to be used when monitoring SMB operations. Only one perfcount module may be used, and it must implement all of the apis contained in the smb_perfcount_handler structure defined in smb.h. -

No default

+

No default

pid directory (G)

@@ -4765,7 +4765,7 @@ posix locking (S) to "no", unless you are sharing from an NFS mount, which is not a good idea in the first place.

Default: posix locking = yes -

+

postexec (S)

This option specifies a command to be run @@ -4779,7 +4779,7 @@ postexec (S)

preexec close (S) -

+

This boolean option controls whether a non-zero return code from preexec should close the service being connected to.

Default: preexec close = no @@ -4790,7 +4790,7 @@ preexec close (S)

This parameter is a synonym for preexec.

preexec (S) -

This option specifies a command to be run whenever +

This option specifies a command to be run whenever the service is connected to. It takes the usual substitutions.

An interesting example is to send the users a welcome message every time they log in. Maybe a message of the day? Here is an example:

@@ -4802,10 +4802,10 @@ preexec (S)

Example: preexec = echo \"%u connected to %S from %m (%I)\" >> /tmp/log -

+

prefered master -

This parameter is a synonym for preferred master.

+

This parameter is a synonym for preferred master.

preferred master (G)

@@ -4831,10 +4831,10 @@ preload modules (G)

Example: preload modules = /usr/lib/samba/passdb/mysql.so -

+

auto services -

This parameter is a synonym for preload.

+

This parameter is a synonym for preload.

preload (G)

This is a list of services that you want to be @@ -4874,7 +4874,7 @@ printable (S)

printcap cache time (G) -

This option specifies the number of seconds before the printing +

This option specifies the number of seconds before the printing subsystem is again asked for the known printers.

Setting this parameter to 0 disables any rescanning for new or removed printers after the initial startup. @@ -4971,7 +4971,7 @@ print command (S)

printer admin (S) -

+

This lists users who can do anything to printers via the remote administration interfaces offered by MS-RPC (usually using a NT workstation). @@ -5006,7 +5006,7 @@ printer name (S)

Example: printer name = laserwriter -

+

printing (S)

This parameters controls how printer status information is @@ -5026,10 +5026,10 @@ printing (S) [printers] section.

Default: printing = Depends on the operating system, see testparm -v. -

+

printjob username (S) -

This parameter specifies which user information will be +

This parameter specifies which user information will be passed to the printing system. Usually, the username is sent, but in some cases, e.g. the domain prefix is useful, too.

Default: printjob username = %U @@ -5105,10 +5105,10 @@ queuepause command (S) path in the command as the PATH may not be available to the server.

No default

Example: queuepause command = disable %p -

+

queueresume command (S) -

This parameter specifies the command to be +

This parameter specifies the command to be executed on the server host in order to resume the printer queue. It is the command to undo the behavior that is caused by the previous parameter (queuepause command).

This command should be a program or script which takes @@ -5123,10 +5123,10 @@ queueresume command (S)

Example: queueresume command = enable %p -

+

read list (S) -

+

This is a list of users that are given read-only access to a service. If the connecting user is in this list then they will not be given write access, no matter what the read only option is set to. The list can include group names using the syntax described in the invalid users @@ -5148,7 +5148,7 @@ read only (S)

read raw (G) -

This parameter controls whether or not the server +

This parameter controls whether or not the server will support the raw read SMB requests when transferring data to clients.

If enabled, raw reads allow reads of 65535 bytes in one packet. This typically provides a major performance benefit. @@ -5290,10 +5290,10 @@ reset on zero vc (G)

Default: reset on zero vc = no -

+

restrict anonymous (G) -

The setting of this parameter determines whether user and +

The setting of this parameter determines whether user and group list information is returned for an anonymous connection. and mirrors the effects of the 

@@ -5558,10 +5558,10 @@ send spnego principal (G)
     
Note that Windows XP SP2 and later versions already ignored
     this value in all circumstances. 
Default: send spnego principal = no
 
-

+

server schannel (G) -

+

This controls whether the server offers or even demands the use of the netlogon schannel. server schannel = no does not offer the schannel, server schannel = auto offers the schannel but does not enforce it, and server schannel = yes denies access if the client is not able to speak netlogon schannel. This is only the case for Windows NT4 before SP4. @@ -5585,7 +5585,7 @@ server signing (G)

server string (G) -

This controls what string will show up in the printer comment box in print +

This controls what string will show up in the printer comment box in print manager and next to the IPC connection in net view. It can be any string that you wish to show to your users.

It also sets what will appear in browse lists next to the machine name.

A %v will be replaced with the Samba @@ -5606,7 +5606,7 @@ set directory (S) for details.

Default: set directory = no -

+

set primary group script (G)

Thanks to the Posix subsystem in NT a Windows User has a @@ -5634,10 +5634,10 @@ set quota command (G)

Example: set quota command = /usr/local/sbin/set_quota -

+

share:fake_fscaps (G) -

+

This is needed to support some special application that makes QFSINFO calls to check whether we set the SPARSE_FILES bit (0x40). If this bit is not set that particular application @@ -5696,7 +5696,7 @@ show add printer wizard (G)

shutdown script (G) -

This a full path name to a script called by +

This a full path name to a script called by smbd(8) that should start a shutdown procedure.

If the connected user posseses the SeRemoteShutdownPrivilege, right, this command will be run as root.

The %z %t %r %f variables are expanded as follows:

  • %z will be substituted with the @@ -5913,10 +5913,10 @@ strict allocate (S) files. Examples are ext3, ZFS, HFS+ and most others, so be aware if you activate this setting on those filesystems.

    Default: strict allocate = no -

+

strict locking (S) -

+

This is an enumerated type that controls the handling of file locking in the server. When this is set to yes, the server will check every read and write access for file locks, and deny access if locks exist. This can be slow on some systems. @@ -5979,7 +5979,7 @@ sync always (S) yes in order for this parameter to have any effect.

Default: sync always = no -

+

syslog only (G)

@@ -6259,7 +6259,7 @@ username map = /usr/local/samba/lib/users.map

This parameter is a synonym for username.

users -

This parameter is a synonym for username.

+

This parameter is a synonym for username.

username (S)

Multiple users may be specified in a comma-delimited @@ -6552,7 +6552,7 @@ veto oplock files = /.*SEM/

Default: veto oplock files = # No files are vetoed for oplock grants -

+

vfs object

This parameter is a synonym for vfs objects.

@@ -6568,7 +6568,7 @@ vfs objects (S)

volume (S) -

This allows you to override the volume label +

This allows you to override the volume label returned for a share. Useful for CDROMs with installation programs that insist on a particular volume label.

Default: volume = # the name of the share @@ -6592,7 +6592,7 @@ wide links (S) if you wish to change this coupling between the two parameters.

Default: wide links = no -

+

winbind cache time (G)

This parameter specifies the number of @@ -6767,7 +6767,7 @@ winbind rpc only (G)

winbind separator (G) -

This parameter allows an admin to define the character +

This parameter allows an admin to define the character used when listing a username of the form of DOMAIN \user. This parameter is only applicable when using the pam_winbind.so @@ -6792,7 +6792,7 @@ winbind trusted domains only (G) Refer to the idmap_nss(8) man page for more information.

Default: winbind trusted domains only = no -

+

winbind use default domain (G)

This parameter specifies whether the @@ -6832,10 +6832,10 @@ wins hook (G) addresses currently registered for that name. If this list is empty then the name should be deleted.

An example script that calls the BIND dynamic DNS update program nsupdate is provided in the examples - directory of the Samba source code.

No default

+ directory of the Samba source code.

No default

wins proxy (G) -

This is a boolean that controls if nmbd(8) will respond to broadcast name +

This is a boolean that controls if nmbd(8) will respond to broadcast name queries on behalf of other hosts. You may need to set this to yes for some older clients.

Default: wins proxy = no @@ -6861,10 +6861,10 @@ wins server (G)

Example: wins server = 192.9.200.1 192.168.2.61 -

+

wins support (G) -

This boolean controls if the nmbd(8) process in Samba will act as a WINS server. You should +

This boolean controls if the nmbd(8) process in Samba will act as a WINS server. You should not set this to yes unless you have a multi-subnetted network and you wish a particular nmbd to be your WINS server. Note that you should NEVER set this to yes @@ -6928,10 +6928,10 @@ write list (S)

Example: write list = admin, root, @staff -

+

write raw (G) -

This parameter controls whether or not the server +

This parameter controls whether or not the server will support raw write SMB's when transferring data from clients. You should never need to change this parameter.

Default: write raw = yes -- cgit v1.2.3