Вы находитесь на странице: 1из 8

Operating Systems - Windows

Samba
David Martínez
What Samba is about

 It allows a Unix system to move into a


Windows "Network Neighbourhood"
 CIFS (Common Internet File System)
 At the heart of CIFS is the Server Message
Block (SMB)
 Samba is an open source CIFS
implementation
 Samba and Windows are not the only ones
A bit of history

 NetBIOS provides an interface between


programs and the network hardware
 Allowed disk I/O to be redirected to the
NetBIOS interface
 Andrew had an application that required the
NetBIOS interface
 He wrote a packet sniffer, reverse engineered
the SMB protocol, and implemented it on the
Unix box (1992)
What Samba does (or CIFS)

 File & print services (the most important part)


 Authentication and Authorization (Windows NT
Domain system)
 The basic idea is that a user should only have to log
in once to have access to all of the authorized
services on the network.
 Name resolution - WINS (NetBIOS not DNS)
 Service announcement - browsable list of
services (file and print shares)
Samba components

 nmbd: NetBIOS names over the network.


 smbd: provides services, such as shares and
printing, over the network.
 smbfs: use an SMB file share as if it were a
hard disk on your own machine.
 smbclient: A simple SMB client, with an
interface similar to that of the FTP utility.
 swat: The Samba Web Administration Tool.
Config files

 smb.conf: the main configuration file (modified


with text editor or SWAT).
 smbpasswd: contains the names of users to
which smbd refers when asked to enforce user-
level access control.
 smbusers: provides the names of samba’s
administrative users and those users with
specialized Samba access.
 /etc/init.d/smb: Samba service control script.
Samba access modes

 Share: shared password access (least secure)


 User: authentication from the /etc/passwd or
/etc/shadow file.
 Server: requires authentication from a remote
server, which can be another UNIX or a
Windows NT server.
 Domain: uses a Windows NT Primary Domain
Controller (PDC) to obtain passwords.
 Samba can act as a PDC too
What Samba can't do (yet!)

 Active Directory Server (but yes as a client)


 Group Policy Objects (in Active Directory)
 Machine Policy Objects
 Logon Scripts in Active Directory
 Software Application and Access Controls in
Active Directory