我有一个完美的工作在Ubuntu的SAMBA(版本4.3.11)共享。
SAMBA股份对任何用户(本地内部网)
只要我joinencryption设置, stream量encryption,但突然间,它开始提示凭据 。
[global] server signing = mandatory smb encrypt = mandatory client signing = mandatory ... 以下是示例共享设置:
[Share1] path = /mnt1/Share1 guest ok = Yes browseable = no writable = yes force user = ShareUser force group = ShareGroup create mask = 0770 directory mask = 0770 hosts allow = ...list of IPs for white-listing.... hosts deny = 0.0.0.0/0 delete readonly = yes
这里是全局设置:
[global] server signing = mandatory smb encrypt = mandatory client signing = mandatory oplocks = yes level2 oplocks = no # New Windows switches dos filemode = yes dos filetime resolution = yes dos filetimes = yes map acl inherit = yes inherit acls = yes inherit owner = yes inherit permissions = yes store dos attributes = yes follow symlinks=yes wide links = yes unix extensions = no strict locking = no aio read size = 16384 aio write size = 16384 log file = /var/log/samba/samba.log log level = 2 guest account = nobody map to guest = Bad User case sensitive = yes
我想拥有一个有encryption但不需要授权的共享
任何帮助表示赞赏。
通过networkingencryption需要一个唯一的密钥来encryption数据包,并在另一端使用相同的唯一密钥进行解密。 签名和encryption密钥对于用户是唯一的,并在用户为每个连接进行身份validation时生成。
想出了一些更多的细节。
开启encryption和访客开启(无authentication)是不可能的。
(来自SAMBA来源):
if (guest && x->global->encryption_required) { DEBUG(1,("reject guest session as encryption is required\n")); return NT_STATUS_ACCESS_DENIED; }
和
if (guest_session && encryption_required) { DEBUG(1,("reject guest as encryption is required for service %s\n", service)); return NT_STATUS_ACCESS_DENIED; }