diff options
Diffstat (limited to 'hosts/vidhar/samba.nix')
| -rw-r--r-- | hosts/vidhar/samba.nix | 25 |
1 files changed, 21 insertions, 4 deletions
diff --git a/hosts/vidhar/samba.nix b/hosts/vidhar/samba.nix index 0ddf56a3..ffca9c6d 100644 --- a/hosts/vidhar/samba.nix +++ b/hosts/vidhar/samba.nix | |||
| @@ -14,28 +14,45 @@ | |||
| 14 | guest account = nobody | 14 | guest account = nobody |
| 15 | bind interfaces only = yes | 15 | bind interfaces only = yes |
| 16 | interfaces = lo lan | 16 | interfaces = lo lan |
| 17 | server signing = mandatory | ||
| 18 | server min protocol = SMB3 | ||
| 19 | server smb encrypt = required | ||
| 17 | ''; | 20 | ''; |
| 18 | shares = { | 21 | shares = { |
| 19 | homes = { | 22 | homes = { |
| 20 | comment = "Home Directories"; | 23 | comment = "Home directory for %S"; |
| 21 | path = "/home/%S"; | 24 | path = "/home/%S"; |
| 22 | browseable = "no"; | 25 | browseable = false; |
| 23 | "valid users" = "%S"; | 26 | "valid users" = "%S"; |
| 24 | "read only" = "no"; | 27 | "read only" = false; |
| 25 | "create mask" = "0700"; | 28 | "create mask" = "0700"; |
| 26 | "directory mask" = "0700"; | 29 | "directory mask" = "0700"; |
| 27 | "vfs objects" = "shadow_copy2"; | 30 | "vfs objects" = "shadow_copy2"; |
| 28 | "shadow:snapdir" = ".zfs/snapshot"; | 31 | "shadow:snapdir" = ".zfs/snapshot"; |
| 32 | "shadow:snapdirseverywhere" = true; | ||
| 29 | "shadow:sort" = "desc"; | 33 | "shadow:sort" = "desc"; |
| 30 | "shadow:format" = "%Y-%m-%dT%H:%M:%SZ"; | 34 | "shadow:format" = "%Y-%m-%dT%H:%M:%SZ"; |
| 31 | }; | 35 | }; |
| 32 | eos = { | 36 | eos = { |
| 33 | comment = "Disk image of eos"; | 37 | comment = "Disk image of legacy eos"; |
| 34 | browseable = true; | 38 | browseable = true; |
| 35 | "valid users" = "mherold"; | 39 | "valid users" = "mherold"; |
| 36 | writeable = "true"; | 40 | writeable = "true"; |
| 37 | path = "/srv/eos"; | 41 | path = "/srv/eos"; |
| 38 | }; | 42 | }; |
| 43 | home-eos = { | ||
| 44 | comment = "Home directoriy for %u on PXE booted EOS"; | ||
| 45 | path = "/srv/cifs/home-eos/%u"; | ||
| 46 | volume = "%u@eos"; | ||
| 47 | browseable = true; | ||
| 48 | "read only" = false; | ||
| 49 | "create mask" = "0700"; | ||
| 50 | "directory mask" = "0700"; | ||
| 51 | "vfs objects" = "shadow_copy2"; | ||
| 52 | "shadow:snapdir" = ".zfs/snapshot"; | ||
| 53 | "shadow:sort" = "desc"; | ||
| 54 | "shadow:format" = "%Y-%m-%dT%H:%M:%SZ"; | ||
| 55 | }; | ||
| 39 | }; | 56 | }; |
| 40 | }; | 57 | }; |
| 41 | services.samba-wsdd = { | 58 | services.samba-wsdd = { |