====== Samba ======

''**/etc/fstab**''
   //server/share     /media/cifs/  cifs    rw,user,auto,credentials=/home/username/.smbcredentials,uid=1000,gid=100 1 2

   $ vim .smbcredentials

''**.smbcredentials**''
   username=foobar
   password=blabla

   $ chmod 600 .smbcredentials




pdbedit --pwd-must-change-time=timestamp username \\
timestamp je unix time ko mora spremenit password \\
ce das to na 0 pol bo moral spremenit \\


smb.conf

  strict syn = no
  sync always = no
  printable = no
  load printers = no
  preserve case = no
  default case = lower
  disable netbios = yes
  deadtime = 15

===== Creating Recycle Bin for Samba storage =====

The best option is to have a "Recycle bin" for every users on the samba server.
Here is an example of modifying the home directories of your users in samba configuration file

    [homes]
    comment = Home Directory
    valid users = %S
    browsable = no
    guest ok = no
    read only = no
    vfs object = recycle
    recycle:repository = RecycleBin
    recycle:keeptree = yes
    recycle:exclude = *.tmp, *.bak

The “vfs object” line calls in the plug-in that enables recycle bin capability.  On the other lines, you’re setting the name of the recycle bin directory, telling Samba to preserve the whole structure of any directories that a user may delete, and finally, telling it to not keep certain types of files. 


====  How can I list the currently active clients? ====
The winbindd deamon can log its status to the winbind log file upon request using the signal USR2.

If debuglevel is set to 2 or above, the windbindd dameon will also print the list of clients currently active.

   # killall -USR2 winbindd

The winbind log level can be set separately in the smb.conf (/etc/samba/smb.conf) file using the "log level" option, for example:

    log level = 2 winbind:3

<note important> **Reload the configuration in winbind by either sending a HUP signal to the winbindd daemon or by using "service winbind reload"**</note>

   # service winbind reload



===== samba + Windows Vista =====

<note important>
Microsoft's security policy on WIndwos Vista is interestingly set by default to exclude mapping to Samba shares. To fix this click **START | Run | secpol.msc**. Go to Local Policies | Security Options and find Network Security: LAN Manager authentication level \\
Change the settings from Send NTLMv2 response only to Send LM & NTLM - use NTLMv2 session security if negotiated. 
Vista defaults to only send the more secure NTLMv2 protocol, which Samba (and, incidentally, some NAS devices) do not support.
</note>