Results 1 to 5 of 5

Thread: Samba share within ecrypted home folder

  1. #1
    Join Date
    Mar 2008
    Location
    Indianapolis
    Beans
    4
    Distro
    Ubuntu 7.10 Gutsy Gibbon

    Lightbulb Samba share within ecrypted home folder

    Is there any way that I can have a share within an encrypted home folder?
    I actually want the data within the share to be encrypted and accessible to network users as a safe place to put pii.
    Thanks much!

  2. #2
    Join Date
    Dec 2009
    Beans
    5,534

    Re: Samba share within ecrypted home folder

    I don't actually know as I have never encrypted my home folder but you could try something:

    In your share definition in smb.conf add the following line:
    Code:
    force user = morbius
    Change morbius to the name of the owner of the home directory.
    Then restart samba:
    Code:
    sudo service smbd restart
    After the remote user is authenticated or if you have this set up as a guest share he will be converted to morbius. Presumably morbius has access to the encrypted directory and so should the remote user.

    Anyway, just a thought.

  3. #3
    Join Date
    Mar 2008
    Location
    Indianapolis
    Beans
    4
    Distro
    Ubuntu 7.10 Gutsy Gibbon

    Re: Samba share within ecrypted home folder

    Thanks, I'll give it try.

  4. #4
    Join Date
    Oct 2009
    Beans
    Hidden!
    Distro
    Ubuntu 12.04 Precise Pangolin

    Re: Samba share within ecrypted home folder

    It probably won't work unless the user is logged in.
    Come to #ubuntuforums! We have cookies! | Basic Ubuntu Security Guide

    Tomorrow's an illusion and yesterday's a dream, today is a solution...

  5. #5
    Join Date
    Mar 2008
    Location
    Indianapolis
    Beans
    4
    Distro
    Ubuntu 7.10 Gutsy Gibbon

    Re: Samba share within ecrypted home folder

    Well, it is working, I'm not sure if it is working the way I want it to though, my only concern is whether the authentication takes place before it forces the account. Currently my settings are approximately like this:

    [Share_name]
    path = /home/username!/share
    read only = no
    Public = no
    writable = yes
    valid users = domain\user +domain\user group
    force user = username!

    So from what I see the local account create the files, which better then it not working at all, but it'd be great if I could see domain credentials so tracking/auditing of file access and ownership could be done. But my goal has been achieved, files can be stored in an encrypted folder and accessed by users across the network to a share. Thank you sir.
    Last edited by morrison1977; May 18th, 2012 at 09:24 PM.

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •