Welcome to the IPFire Wiki

This wiki is a community-maintained resource about everything there is to know about IPFire. Join us and help us improving it!

Looking for something?

Use the search and find answers to everything about IPFire. If you cannot find what you are looking for, join our community and talk to fellow IPFire users, developers and everybody else involved in the project.

IPFire Community

Samba in general

Why Samba?

In times of intercommunication and rapidly growing data volumes, a central document repository should be a goal to be achieved.

To simplify the configuration of this file server, a user interface was developed, which easily handles similar to SWAT releases and users.

There are 3 different types of configurations:

Share-Security-Mode

In this mode, shares will be created that can be accessed by each member in the network without a password guest ok = true. This it is not recommended because of safety reasons, as every user can change or delete files. Therefore this mode should only be used for unimportant or temporarily data.

User-Security-Mode

In this mode the shares are protected with passwords and only authorized users can access the data.
At the same time a mixture with public Shares also is possible map to guest. The list of all available shares can always be seen. The login will only be checked with the first access of the shares.

Primary Domain Controller (PDC)

In this mode its possible to access the server with a regular Windows user account.

Its possible to create your own configuration, for your own needs and without using the Webinterface.
For a detailed description of the security modes please have a closer look at here.

Security aspects

The data in the samba shares are often stored on the server with a direct Internet connection, remember (and be aware) that this is may be dangerous.

To improve safety, the developers implement a feature to bind Samba to dedicated interfaces bind interfaces only = true. So it is possible to for example completely block the access from the blue network and the access from the Internet is also prohibited and therefore not possible. According to the standards only the green network and “localhost” are configured for the use with Samba.

Advanced users may build up client dependend access protection (what a phrase ;-) with Tcpwrapper.

Find more configuration details at here or follow these links:

Note: The IPFire team is not responsible for the content of external pages!

Edit Page ‐ Yes, you can edit!

Older Revisions • August 19 at 6:40 pm • Jon