** Noble R.M. <rmn@???> [2007-11-12 10:22]:
> > You don't need to create individual shares for each user's home
> > directory. Having a [homes] share will automagically create the home
> share
> > for you - see smb.conf(5), fairly near the beginning.
>
> The [homes] section is set up like that anyway.
>
> > To give him r/w access to all users' home directories (one wonders
> /why/
> > he feels he needs that, but anyway...), I'd set up a share that he can
> > write to that points to /home (assuming all your users' home
> directories
> > reside under /home). You may well run into issues with files brian
> creates
> > in /home/notbrian that are owned by brian and cannot be deleted by
> > notbrian. This can be overcome with the correct "create mask" (and
> > similar) settings, but then you start to compromise security to some
> > extent.
>
> The reason we do this is because occasionally brian likes to send us
> files and its easier for him drop them in the home folder of the
> appropriate user than to email/usb them etc.
** end quote [Noble R.M.]
In which case it giving him access to the individual home directories
the best solution? I would have thought that a separate share
specifically for sharing files around would make most sense. If you
don't wish to allow everyone to read/write some files then create an
individual directory below that share for each user (or just those that
require the facility). The permissions on these directories would allow
full read/write access to the user and write only access to anyone that
needs to drop files in there. This would be tidier than sharing home
directories even though it may seem to be duplicating the facility. With
this you could also have directories with group read/write access, not
just individual users. For convenience you can create a symlink into
individual home directories if you like, although that may get to be a
bit messy if you have too many users to manage. Better to get everyone
to map the shared access directory structure.
--
Paul Tansom | Aptanet Ltd. |
http://www.aptanet.com/ | 023 9238 0001
======================================================================
Registered in England | Company No: 4905028 | Registered Office:
Crawford House, Hambledon Road, Denmead, Waterlooville, Hants, PO7 6NU
