{"id":262,"date":"2010-06-22T16:18:19","date_gmt":"2010-06-22T13:18:19","guid":{"rendered":"http:\/\/skeletor.org.ua\/?p=262"},"modified":"2012-09-18T17:11:28","modified_gmt":"2012-09-18T14:11:28","slug":"%d0%b7%d0%b0%d1%81%d1%82%d0%b0%d0%b2%d0%bb%d1%8f%d0%b5%d0%bc-%d1%81%d0%bb%d1%83%d1%88%d0%b0%d1%82%d1%8c-%d1%81%d0%b0%d0%bc%d0%b1%d1%83-%d1%82%d0%be%d0%bb%d1%8c%d0%ba%d0%be-%d0%bd%d0%b0-%d0%be%d0%bf","status":"publish","type":"post","link":"https:\/\/skeletor.org.ua\/?p=262","title":{"rendered":"\u0417\u0430\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u043c \u0441\u043b\u0443\u0448\u0430\u0442\u044c \u0441\u0430\u043c\u0431\u0443 \u0442\u043e\u043b\u044c\u043a\u043e \u043d\u0430 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0451\u043d\u043d\u044b\u0445 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0430\u0445"},"content":{"rendered":"

\u0413\u043b\u044f\u043d\u0443\u043b \u043d\u0435\u0434\u0432\u0430\u043d\u043e \u0432 \u043b\u043e\u0433\u0438 \u0441\u0430\u0431\u044b \u0438 \u043e\u0445\u043d\u0443\u043b :). \u0412 \u043f\u0430\u043f\u043a\u0435 \u043e\u043a\u043e\u043b\u043e 100 000 \u0444\u0430\u0439\u043b\u043e\u0432. \u042d\u0442\u043e \u0432\u0441\u0435, \u043a\u0442\u043e \u043b\u043e\u043c\u0438\u043b\u0441\u044f \u043d\u0430 \u043c\u043e\u044e \u0441\u0430\u043c\u0431\u0443 (\u0441\u0435\u0440\u0432\u0430\u043a \u0441 \u0441\u0430\u043c\u0431\u043e\u0439 \u0441\u043c\u043e\u0442\u0440\u0438\u0442 \u0432 \u043c\u0438\u0440). \u041d\u0443\u0436\u043d\u043e \u043a\u0430\u043a-\u0442\u043e \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0438\u043d\u0438\u0442\u044c \u044d\u0442\u043e \u0434\u0435\u043b\u043e, \u0437\u0430\u043a\u0440\u044b\u0442\u044c \u043f\u043e\u0440\u0442 \u043d\u0430\u0440\u0443\u0436\u0443. \u0423\u043a\u0430\u0437\u044b\u0432\u0430\u0435\u043c \u0441\u0430\u043c\u0431\u0435, \u043a\u0430\u043a\u043e\u0439 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 \u0441\u043b\u0443\u0448\u0430\u0442\u044c (\u0430 \u0442\u043e \u043f\u043e \u0434\u0435\u0444\u043e\u043b\u0442\u0443 \u043e\u043d\u0430 \u0441\u043b\u0443\u0448\u0430\u0435\u0442 \u0432\u0441\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u0435, \u043a\u0440\u043e\u043c\u0435 loopback’a<\/strong>).<\/p>\n

<\/p>\n

bind interfaces only = yes
\ninterfaces = rl0
\nsocket address = 10.0.3.33
\n<\/code>
\n\u041a\u0441\u0442\u0430\u0442\u0438, \u043f\u043e\u0441\u043b\u0435 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0438 \u044d\u0442\u0438\u0445 \u043f\u0430\u0440\u0430\u043c\u0435\u0442\u0440\u043e\u0432 – \u0441\u0430\u043c\u0431\u0443 \u043d\u0443\u0436\u043d\u043e \u043f\u0435\u0440\u0435\u0437\u0430\u043f\u0443\u0441\u0442\u0438\u0442\u044c (\u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c\u00a0restart<\/strong>, \u0430 \u043d\u0435reload<\/strong>), \u0442\u0430\u043a \u043a\u0430\u043a \u0434\u0435\u043c\u043e\u043d\u044b \u0434\u043e\u043b\u0436\u043d\u044b \u043f\u0440\u0435\u043a\u0440\u0430\u0442\u0438\u0442\u044c \u0441\u043b\u0443\u0448\u0430\u0442\u044c \u0434\u0440\u0443\u0433\u0438\u0435 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u044b.<\/p>\n

\u041d\u0438\u0436\u0435 \u043f\u0440\u0438\u0432\u0435\u0434\u0443 \u0441\u043f\u0440\u0430\u0432\u0443 \u043f\u043e \u043a\u0430\u0436\u0434\u043e\u043c\u0443 \u043f\u0430\u0440\u0430\u043c\u0435\u0442\u0440\u0443, \u043d\u0430 \u0432\u0441\u044f\u043a\u0438\u0439 \u0441\u043b\u0443\u0447\u0430\u0439, \u0447\u0442\u043e \u0431\u044b \u0437\u043d\u0430\u0442\u044c, \u0447\u0442\u043e \u043f\u0438\u0441\u0430\u0442\u044c.<\/p>\n

bind interfaces only (G)<\/span><\/p>\n

This global parameter allows the Samba admin to limit what<\/span>
\n interfaces on a machine will serve SMB requests. It affects file<\/span>
\n service smbd(8) and name service nmbd(8) in a slightly different<\/span>
\n ways.<\/span><\/p>\n

For name service it causes nmbd to bind to ports 137 and 138 on the<\/span>
\n interfaces listed in the interfaces parameter.\u00a0 nmbd also binds to<\/span>
\n the “all addresses” interface (0.0.0.0) on ports 137 and 138 for<\/span>
\n the purposes of reading broadcast messages. If this option is not<\/span>
\n set then nmbd will service name requests on all of these sockets.<\/span>
\n If bind interfaces only is set then nmbd will check the source<\/span>
\n address of any packets coming in on the broadcast sockets and<\/span>
\n discard any that don’t match the broadcast addresses of the<\/span>
\n interfaces in the interfaces parameter list. As unicast packets are<\/span>
\n received on the other sockets it allows nmbd to refuse to serve<\/span>
\n names to machines that send packets that arrive through any<\/span>
\n interfaces not listed in the interfaces list. IP Source address<\/span>
\n spoofing does defeat this simple check, however, so it must not be<\/span>
\n used seriously as a security feature for nmbd.<\/span><\/p>\n

For file service it causes smbd(8) to bind only to the interface<\/span>
\n list given in the interfaces parameter. This restricts the networks<\/span>
\n that smbd will serve to packets coming in those interfaces. Note<\/span>
\n that you should not use this parameter for machines that are<\/span>
\n serving PPP or other intermittent or non-broadcast network<\/span>
\n interfaces as it will not cope with non-permanent interfaces.<\/span><\/p>\n

If bind interfaces only is set then unless the network address<\/span>
\n 127.0.0.1 is added to the interfaces parameter list smbpasswd(8)<\/span>
\n and swat(8) may not work as expected due to the reasons covered<\/span>
\n below.<\/span><\/p>\n

To change a users SMB password, the smbpasswd by default connects<\/span>
\n to the localhost – 127.0.0.1 address as an SMB client to issue the<\/span>
\n password change request. If bind interfaces only is set then unless<\/span>
\n the network address 127.0.0.1 is added to the interfaces parameter<\/span>
\n list then<\/span>
\n smbpasswd will fail to connect in it’s default mode.\u00a0 smbpasswd<\/span>
\n can be forced to use the primary IP interface of the local host by<\/span>
\n using its smbpasswd(8) -r remote machine parameter, with remote<\/span>
\n machine set to the IP name of the primary interface of the local<\/span>
\n host.<\/span><\/p>\n

The swat status page tries to connect with smbd and nmbd at the<\/span>
\n address 127.0.0.1 to determine if they are running. Not adding<\/span>
\n 127.0.0.1 will cause<\/span>
\n smbd and nmbd to always show “not running” even if they really<\/span>
\n are. This can prevent<\/span>
\n swat from starting\/stopping\/restarting smbd and nmbd.<\/span><\/p>\n

Default: bind interfaces only = no<\/span><\/p>\n

interfaces (G)<\/span><\/p>\n

This option allows you to override the default network interfaces<\/span>
\n list that Samba will use for browsing, name registration and other<\/span>
\n NBT traffic. By default Samba will query the kernel for the list of<\/span>
\n all active interfaces and use any interfaces except 127.0.0.1 that<\/span>
\n are broadcast capable.<\/span><\/p>\n

The option takes a list of interface strings. Each string can be in<\/span>
\n any of the following forms:<\/span><\/p>\n

o\u00a0\u00a0 a network interface name (such as eth0). This may include<\/span>
\n shell-like wildcards so eth* will match any interface starting<\/span>
\n with the substring “eth”<\/span><\/p>\n

o\u00a0\u00a0 an IP address. In this case the netmask is determined from the<\/span>
\n list of interfaces obtained from the kernel<\/span><\/p>\n

o\u00a0\u00a0 an IP\/mask pair.<\/span><\/p>\n

o\u00a0\u00a0 a broadcast\/mask pair.<\/span><\/p>\n

The “mask” parameters can either be a bit length (such as 24 for a<\/span>
\n C class network) or a full netmask in dotted decimal form.<\/span><\/p>\n

The “IP” parameters above can either be a full dotted decimal IP<\/span>
\n address or a hostname which will be looked up via the OS’s normal<\/span>
\n hostname resolution mechanisms.<\/span><\/p>\n

By default Samba enables all active interfaces that are broadcast<\/span>
\n capable except the loopback adaptor (IP address 127.0.0.1).<\/span><\/p>\n

The example below configures three network interfaces corresponding<\/span>
\n to the eth0 device and IP addresses 192.168.2.10 and 192.168.3.10.<\/span>
\n The netmasks of the latter two interfaces would be set to<\/span>
\n 255.255.255.0.<\/span><\/p>\n

Default: interfaces =<\/span><\/p>\n

Example: interfaces = eth0 192.168.2.10\/24<\/span>
\n 192.168.3.10\/255.255.255.0<\/span><\/p>\n

socket address (G)<\/span><\/p>\n

This option allows you to control what address Samba will listen<\/span>
\n for connections on. This is used to support multiple virtual<\/span>
\n interfaces on the one server, each with a different configuration.<\/span><\/p>\n

Setting this option should never be necessary on usual Samba<\/span>
\n servers running only one nmbd.<\/span><\/p>\n

By default Samba will accept connections on any address.<\/span><\/p>\n

Default: socket address =<\/span><\/p>\n

Example: socket address = 192.168.2.20<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"

\u0413\u043b\u044f\u043d\u0443\u043b \u043d\u0435\u0434\u0432\u0430\u043d\u043e \u0432 \u043b\u043e\u0433\u0438 \u0441\u0430\u0431\u044b \u0438 \u043e\u0445\u043d\u0443\u043b :). \u0412 \u043f\u0430\u043f\u043a\u0435 \u043e\u043a\u043e\u043b\u043e 100 000 \u0444\u0430\u0439\u043b\u043e\u0432. \u042d\u0442\u043e \u0432\u0441\u0435, \u043a\u0442\u043e \u043b\u043e\u043c\u0438\u043b\u0441\u044f \u043d\u0430 \u043c\u043e\u044e \u0441\u0430\u043c\u0431\u0443 (\u0441\u0435\u0440\u0432\u0430\u043a \u0441 \u0441\u0430\u043c\u0431\u043e\u0439 \u0441\u043c\u043e\u0442\u0440\u0438\u0442 \u0432 \u043c\u0438\u0440). \u041d\u0443\u0436\u043d\u043e \u043a\u0430\u043a-\u0442\u043e \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0438\u043d\u0438\u0442\u044c \u044d\u0442\u043e \u0434\u0435\u043b\u043e, \u0437\u0430\u043a\u0440\u044b\u0442\u044c \u043f\u043e\u0440\u0442 \u043d\u0430\u0440\u0443\u0436\u0443. \u0423\u043a\u0430\u0437\u044b\u0432\u0430\u0435\u043c \u0441\u0430\u043c\u0431\u0435, \u043a\u0430\u043a\u043e\u0439 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441 \u0441\u043b\u0443\u0448\u0430\u0442\u044c (\u0430 \u0442\u043e \u043f\u043e \u0434\u0435\u0444\u043e\u043b\u0442\u0443 \u043e\u043d\u0430 \u0441\u043b\u0443\u0448\u0430\u0435\u0442 \u0432\u0441\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b\u0435, \u043a\u0440\u043e\u043c\u0435 loopback’a).<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[10],"tags":[],"class_list":["post-262","post","type-post","status-publish","format-standard","hentry","category-others"],"_links":{"self":[{"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=\/wp\/v2\/posts\/262","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=262"}],"version-history":[{"count":3,"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=\/wp\/v2\/posts\/262\/revisions"}],"predecessor-version":[{"id":2914,"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=\/wp\/v2\/posts\/262\/revisions\/2914"}],"wp:attachment":[{"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=262"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=262"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/skeletor.org.ua\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=262"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}