GNU bug report logs -
#54561
[PATCH 0/4] Add service declarations for Samba
Previous Next
Reported by: Simon Streit <simon <at> netpanic.org>
Date: Fri, 25 Mar 2022 08:49:01 UTC
Severity: normal
Tags: patch
Done: Lars-Dominik Braun <lars <at> 6xq.net>
Bug is archived. No further changes may be made.
Full log
View this message in rfc822 format
I have a local service definition for samba i wanted to upstream
at some point. Your service looks better then mine though.
> +(define (samba-activation config)
> + (let ((package (samba-configuration-package config))
> + (config-file (samba-configuration-config-file config)))
> + (with-imported-modules '((guix build utils))
> + (let ((lib-directory "/var/lib/samba")
> + (log-directory "/var/log/samba")
> + (run-directory "/var/run/samba")
> + (smb.conf "/etc/samba/smb.conf"))
> + #~(begin
> + (use-modules (guix build utils))
> +
> + (mkdir-p #$log-directory)
> + (mkdir-p #$run-directory)
> + (mkdir-p (string-append #$lib-directory "/private"))
> + (mkdir-p "/etc/samba")
> + (copy-file #$config-file #$smb.conf)
> + (system* (string-append #$package "/bin/testparm")
> + "--suppress-prompt" #$smb.conf))))))
Is it a good idea to create all those directories with the default
umask? I always wanted to investigate which of those directories
contains sensitive data. I never got around to.
Another thing i wanted to investigate: can samba and friends be run
as non-root users? I think it would be a good idea to do that if
possible.
fyi: I currently use samba as an AD DC.
This bug report was last modified 2 years and 235 days ago.
Previous Next
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson.