1. 所有員工都能夠在公司內流動辦公,但不管在哪電腦上工作,都要把自己檔案存在 samba 檔案服器上.
2. 各部門辦公人員擁有各自的主目錄,用於存放私有文件(工作相關),其他人禁止訪問.
3. 所有的使用者都不允許使用伺服器的 shell(安全考慮).
4. 製造部、財務部、管理部,都有各自的檔案目錄.
5. 各部門目錄下提供「對外」、「公共文件」、「受控文件」三個子目錄.
對外: <1>允許公司所有工作人員訪問,但不能修改檔案.
<2>本部門文員負責維護資料
公共文件:<1>本部門員工可以訪問,領導層可以訪問,但不能修改.
<2> 本部門文員負責維護資料
受控文件:<1>本部門主管、公司領導可以訪問、其他員工禁止.
<2>本部門主管負責維護資料
注:財務部受控文件只允許總經理、財務部總監、主管訪問;管理部受控文件只允許總經理、主管訪問
6. 公共區域:<1>所有員工均可訪問
<2>網路部負責維護
7. 交換區域:<1>所有員工均可讀可寫,禁止刪除其它員工檔案.
2>網路部負責維護mdkir /home/samba/zhizao caiwu guanli public swap
mkdir /home/samba/zhizao/guest public private
mkdir /home/samba/caiwu/guest public private
mkdir /home/samba/guanli/guest public privategroupadd zhizao caiwu guanli lingdao network
useradd s /bin/false wy zg zj jl
usermod g zhizao,caiwu,guanli wy
usermod g zhizao,caiwu,guanli zg
usermod g caiwu zj
usermod g lingdao jlchmod 1777 /home/samba/swap
chmod 755 /home/samba/zhizao caiwu guanli
chmod 775 /home/samba/public
chgrp network /home/samba/public
chmod 755 /home/samba/zhizao/guest
chown wy.zhizao /home/samba/zhizao/guest
chmod 750 /home/samba/zhizao/public private
chown zg.lingdao /home/samba/zhizao/private
setfacl m g:lingdao:rx /home/samba/zhizao/public
chmod 755 /home/samba/caiwu/guest
chown wy.caiwu /home/samba/caiwu/guest/guest
chmod 750 /home/samba/caiwu/public
chown wy.caiwu /home/samba/caiwu/public
setfacl m g:lingdao:rx /home/samba/caiwu/public
chmod 700 /home/samba/caiwu/private
chown zg /home/samba/caiwu/private
setfacl m u:zj:rx /home/samba/caiwu/private
setfacl m u:jl:rx /home/samba/caiwu/private
chmod 755 /home/samba/guanli/guest
chown wy.guanli /home/samba/guanli/guest
chmod 750 /home/samba/guanli/public
chown wy.guanli /home/samba/guanli/public
setfacl m g:lingdao:rx /home/samba/guanli/public
chmod 700 /home/samba/guanli/private
chown zg /home/samba/guanli/private
setfacl m u:jl:rx /home/samba/guanli/private[homes]
comment = home directories
browseable = no
writable = yes
[製造部]
path = /home/samba/zhizao
writable = yes
browseable = yes
[對外]
path = /home/samba/zhizao/guest
admin users = wy
browseable = no
[公共文件]
path = /home/samba/zhizao/public
valid users = @zhizao @lingdao
admin users = wy
browseable = no
[受控文件]
path = /home/samba/zhizao/private
valid users = zg @lingdao
admin users = zg
browseable = no
[財務部]
path = /home/samba/caiwu
writable = yes
browseable = yes
[對外]
path = /home/samba/caiwu/guest
admin users = wy
browseable = no
[公共文件]
path = /home/samba/caiwu/public
valid users = @caiwu @lingdao
admin users = wy
browseable = no
[受控文件]
path = /home/samba/caiwu/private
valid users = zg zj jl
admin users = zg
browseable = no
[管理部]
path = /home/samba/guanli
writable = yes
browseable = yes
[對外]
path = /home/samba/guanli/guest
admin users = wy
browseable = no
[公共文件]
path = /home/samba/guanli/public
valid users = @guanli @lingdao
admin users = wy
browseable = no
[受控文件]
path = /home/samba/guanli/private
valid users = zg jl
admin users = zg
browseable = no
[公共區域]
path = /home/samba/public
public = yes
admin users = @network
[交換區域]
path = /home/samba/swap
writeable = yes
public = yes
admin users = @network
企業微信應用案例
操作步驟 配置可信網域名稱並將驗證檔案放置到根目錄下。js sdk認證過程 配置可信可信網域名稱 js sdk使用許可權簽名演算法 獲取企業的jsapi ticket 請求方式 get https 請求url jsapi ticket jsapiticket noncestr noncestr ta...
samba學習筆記及案例
一 安裝軟體 samba伺服器軟體包 rpm ivh samba 3.0.23c 2.i386.rpm samba客戶端工具 rpm ivh samba client 3.0.23c 2.i386.rpm 通用工具和庫 rpm ivh samba common 3.0.23c 2.i386.rpm ...
企業案例二
1 打包某個獨立表空間 root db01 usr local mysql data tar zcf world.tar.gz world 2 將打包的檔案傳輸到一台資料庫 root db01 usr local mysql data scp world.tar.gz 172.16.1.52 tmp...