2016-07-20 20:35:30 +02:00
|
|
|
{config, ... }:{
|
|
|
|
users.users.smbguest = {
|
|
|
|
name = "smbguest";
|
2021-06-05 20:06:00 +02:00
|
|
|
uid = config.ids.uids.smbguest; # effectively systemUser
|
2016-09-02 12:47:53 +02:00
|
|
|
group = "share";
|
2016-07-20 20:35:30 +02:00
|
|
|
description = "smb guest user";
|
|
|
|
home = "/var/empty";
|
|
|
|
};
|
2016-09-02 12:47:53 +02:00
|
|
|
users.groups.share.members = [ "makefu" ];
|
2016-07-20 20:35:30 +02:00
|
|
|
|
|
|
|
networking.firewall.allowedTCPPorts = [
|
|
|
|
139 445 # samba
|
|
|
|
];
|
|
|
|
|
|
|
|
networking.firewall.allowedUDPPorts = [
|
|
|
|
137 138
|
|
|
|
];
|
|
|
|
services.samba = {
|
|
|
|
enable = true;
|
|
|
|
shares = {
|
|
|
|
share-home = {
|
|
|
|
path = "/home/share/";
|
|
|
|
"read only" = "no";
|
|
|
|
browseable = "yes";
|
|
|
|
"guest ok" = "yes";
|
|
|
|
};
|
|
|
|
};
|
|
|
|
extraConfig = ''
|
|
|
|
guest account = smbguest
|
|
|
|
map to guest = bad user
|
|
|
|
# disable printing
|
|
|
|
load printers = no
|
|
|
|
printing = bsd
|
|
|
|
printcap name = /dev/null
|
|
|
|
disable spoolss = yes
|
|
|
|
'';
|
|
|
|
};
|
|
|
|
}
|