summaryrefslogtreecommitdiffstats
path: root/docs-xml/smbdotconf/security
Commit message (Collapse)AuthorAgeFilesLines
* doc-xml: Add 'sharesec' reference to 'access based share enum'Andreas Schneider2015-03-021-1/+4
| | | | | | | | | | BUG: https://bugzilla.samba.org/show_bug.cgi?id=11127 Signed-off-by: Andreas Schneider <asn@samba.org> Reviewed-by: Michael Adam <obnox@samba.org> Autobuild-User(master): Andreas Schneider <asn@cryptomilk.org> Autobuild-Date(master): Mon Mar 2 14:33:33 CET 2015 on sn-devel-104
* docs: Explain that winbindd enforces smb signing by default.Andrew Bartlett2014-10-171-2/+5
| | | | | | Change-Id: I9341fa3bd7480836ac5e0c18e28458175b42d44a Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
* docs: Fix typos in smb.conf (inherit acls)Marc Muehlfeld2014-08-071-3/+3
| | | | | | | | | | Bug: https://bugzilla.samba.org/show_bug.cgi?id=10761 Signed-off-by: Marc Muehlfeld <mmuehlfeld@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org> Autobuild-User(master): David Disseldorp <ddiss@samba.org> Autobuild-Date(master): Thu Aug 7 00:52:42 CEST 2014 on sn-devel-104
* lib/param: Add new parameter "old password allowed period"Andrew Bartlett2014-04-021-0/+13
| | | | | | Change-Id: I46228b492ba71ba4f3fee380a1ccadb328e3ade1 Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Stefan Metzmacher <metze@samba.org>
* param: remove special cases for tls filesGarming Sam2014-02-125-5/+10
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Reviewed-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data for tls keyfile parameter - mark do not generate functionGarming Sam2014-02-031-0/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data for tls dh params file parameter - mark do not ↵Garming Sam2014-02-031-0/+1
| | | | | | | | generate function Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data for tls crlfile parameter - mark do not generate functionGarming Sam2014-02-031-0/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data for tls certfile parameter - mark do not generate ↵Garming Sam2014-02-031-0/+1
| | | | | | | | function Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data for tls cafile parameter - mark do not generate functionGarming Sam2014-02-031-0/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data into writeable for marking a synonymGarming Sam2014-02-031-0/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: fix type for samba kcc command parameterGarming Sam2014-02-021-1/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: fix type for server schannel parameterGarming Sam2014-02-021-1/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: fix type for krb5 port parameterGarming Sam2014-02-021-1/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: fix type for client signing parameterGarming Sam2014-02-021-1/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: fix type for client schannel parameterGarming Sam2014-02-021-1/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: fix type for create mask parameterGarming Sam2014-02-021-1/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: fix type for password server parameterGarming Sam2014-02-021-1/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: fix type for passdb backend parameterGarming Sam2014-02-021-1/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: fix type for force directory mode parameterGarming Sam2014-02-021-1/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: fix type for directory mask parameterGarming Sam2014-02-021-1/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data into server role parameterGarming Sam2014-02-021-0/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data into security parameterGarming Sam2014-02-021-0/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data into smb passwd file parameterGarming Sam2014-02-021-0/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data into private dir parameterGarming Sam2014-02-021-0/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data into passdb backend parameterGarming Sam2014-02-021-0/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data into ntp signd socket directory parameterGarming Sam2014-02-021-0/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data into dedicated keytab file parameterGarming Sam2014-02-021-0/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data into password server parameterGarming Sam2014-02-021-0/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: insert meta data into guest account parameterGarming Sam2014-02-021-0/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: change default of samba kcc command to use an entityAndrew Bartlett2014-01-311-1/+1
| | | | | | Change-Id: I63c10ca0efc83496ffcd720edc00bd711ce53eac Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: change default of ntp signd socket directory to use an entityAndrew Bartlett2014-01-311-1/+1
| | | | | | Change-Id: Id66dcd5b587c4c355961d8e9d10cdf0d1e17a6ad Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: change default in private directory to use an entityGarming Sam2014-01-311-1/+1
| | | | | | | Change-Id: I4d015f2a75d8f404e0db64382b6d71bb9b59b8e3 Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: change default in smb passwd file to use an entityGarming Sam2014-01-311-1/+1
| | | | | | | Change-Id: Ia81d677657ec0013c9cc7bfaecc2d88faf50f07c Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* param: fixup security default to AUTO to permit server role = domain memberGarming Sam2014-01-311-1/+1
| | | | | | | | When this is set to AUTO, it behaves as security = user unless server role = domain member has been set. Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* param: pad permissions to 3 digits and update docs to be consistentGarming Sam2014-01-302-2/+2
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Michael Adam <obnox@samba.org>
* docs: adjust default for kerberos method to match testparm outputGarming Sam2014-01-281-1/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
* docs: Change client signing default in docs to match s3 and lib/paramAndrew Bartlett2014-01-281-2/+2
| | | | | Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
* docs: Change smb encrypt default in docs to match s3 and lib/paramAndrew Bartlett2014-01-281-2/+2
| | | | | Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
* docs: fix and explain defaults for tls parametersAndrew Bartlett2014-01-285-6/+16
| | | | | | | These parameters are relative to the private directory if it does not start with a / Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
* docs: update check password script to be consistent with testparmGarming Sam2014-01-281-1/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
* docs: change default string slightly for passwd chat to match source codeGarming Sam2014-01-281-1/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
* docs: change default root directory to blankGarming Sam2014-01-281-1/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
* docs: include the type attribute for force create modeGarming Sam2014-01-281-0/+1
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
* docs: fix rename user script to be of the correct type (string)Garming Sam2014-01-281-2/+2
| | | | | | Signed-off-by: Garming Sam <garming@catalyst.net.nz> Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: Alexander Bokovoy <ab@samba.org>
* docs-xml: explain the interaction of 'client schannel' with 'require strong ↵Stefan Metzmacher2014-01-071-0/+5
| | | | | | | key = yes' Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
* docs-xml: explain the interaction between security = ads and other options.Stefan Metzmacher2014-01-071-1/+4
| | | | | | | It implies 'require strong key = yes' and 'client schannel = yes'. Signed-off-by: Stefan Metzmacher <metze@samba.org> Reviewed-by: Andrew Bartlett <abartlet@samba.org>
* lib/param: Consolidate code to enable smb signing on the server, always ↵Andrew Bartlett2013-11-221-2/+7
| | | | | | | | | | | | | | | enable on AD DC This uses the code from the source4/ SMB server (the NTVFS smb server) in common, to force SMB Signing to be on when we are an AD DC. Andrew Bartlett Signed-off-by: Andrew Bartlett <abartlet@samba.org> Reviewed-by: David Disseldorp <ddiss@samba.org> Autobuild-User(master): David Disseldorp <ddiss@samba.org> Autobuild-Date(master): Fri Nov 22 13:13:05 CET 2013 on sn-devel-104
* docs: remove duplicate "line" from smb.conf manpage.Günther Deschner2013-11-191-1/+1
| | | | | | | Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
* docs: remove duplicate "must" from smb.conf manpage.Günther Deschner2013-11-191-1/+1
| | | | | | | Guenther Signed-off-by: Günther Deschner <gd@samba.org> Reviewed-by: Andreas Schneider <asn@samba.org>
generated by cgit (git 2.34.1) at 2025-09-04 06:49:33 +0000