DSM-G600, DNS-3xx and NSA-220 Hack Forum

I'm in the same boat as epswing.  I just got a DNS-323 & put two 500GB mirrored drives in it.  I tried to set up user access & it will only allow a user to be in one group at a time & I can't give read only access to most users & read-write to select users on specific volumes.  There's got to be a relatively easy way to do this.  I would think this would be a basic configuration that almost everyone would want to set up.  Has anyone made a custom firmware to accomplish this?

Thanks!

Mike

Thanks Mig!

I got fonz's fun plug running & I think I know what Samba options I need to change, but I'm not sure how to find/edit the smb.conf file?  I can find the ffp dir & I have telnet open with just a / # sign prompt.  I'm using an XP box to do this, so I believe I'll need a special text editor to do this also.  Which one do you suggest?

Thanks again,

Mike

Well, I modified the smb.conf & group files & added the copy & restart lines to fun_plug & that part seems to have worked fine.  Unfortunately I can't login to view any files!  Here're the changes I made to smb.conf & groups.  Can anyone tell me what I did wrong?  I was able to access the web_page folder using my username & password, but not volume_1 or any other folders.

/etc/samba # cat smb.conf
[ global ]
interfaces = egiga0
unix charset = ISO8859-1
workgroup = PMP
netbios name = dlink-C8F25D
server string = DNS-323
hosts allow =
hosts deny =
security = user
encrypt passwords = yes
max log size = 0
socket options = TCP_NODELAY SO_RCVBUF=65536 SO_SNDBUF=65536
max xmit = 65535
create mask = 0777
directory mask  = 0777
force create mode = 0777
force directory mode = 0777
load printers = Yes
printcap name = /usr/local/LPRng/etc/printcap
min print space = 2000
max print jobs = 1000
printing = lprng
print command = /usr/local/LPRng/bin/lpr -P%p -r %s
lpq command = /usr/local/LPRng/bin/lpq -P%p
lprm command = /usr/local/LPRng/bin/lprm -P%p %j
lppause command = /usr/local/LPRng/sbin/lpc hold %p %j
lpresume command = /usr/local/LPRng/sbin/lpc release %p %j
queuepause command = /usr/local/LPRng/sbin/lpc -P%p stop
queueresume command = /usr/local/LPRng/sbin/lpc -P%p start
use sendfile =yes


[ web_page ]
comment = Enter Our Web Page Setting
path = /mnt/web_page
valid users =
read only = yes
guest ok = yes

[printers]
path = /mnt/HD_a2/.lpd
guest ok = Yes
printable = Yes
use client driver = Yes
browseable = No

[ Volume_1 ]
comment =
path = /mnt/HD_a2
valid users = @Everyone-RO
read list = @Everyone-RO
read only = yes
guest ok = no
oplocks =  yes
map archive = yes

[ Public ]
comment =
path = /mnt/HD_a2/Public
valid users = @Everyone-RW
write list = @Everyone-RW
read only = no
guest ok = yes
oplocks =  yes
map archive = yes

[ Quality ]
comment =
path = /mnt/HD_a2/Quality
valid users = @Quality-RW, @Everyone-RO
read list = Everyone-RO
write list = Quality-RW
read only = yes
guest ok = no
oplocks =  yes
map archive = yes

[ QuickBooks ]
comment =
path = /mnt/HD_a2/QuickBooks
valid users = @Quickbooks-RW
write list = @Quickbooks-RW
read only = yes
guest ok = no
oplocks = no
map archive = yes

Group:

/etc/samba # cat /etc/group
root:x:0:root
500:x:500:admin
501:x:501:nobody
QuickBooks:x:702:Majid Gemma Kathy
Quality:x:703:Mike
Everyone:x:704:Mike Lin Shipping Majid Gemma Kathy Production
utmp:x:22:

Thanks Mig, I see it now.  I'll give it a shot in the morning.

I just noticed that if I put \\IPaddress I can see the folders that are on Volume_1, but I can't login to any of them.  If I use a correct username & password & press OK it brings me back to the same login window, but if I use an incorrect username or password I get an error message that says the device is unavailable. 

Any more ideas on what it could be?

Thanks!

Mike

Just noticed that user was in lower case, I changed it to upper case & restarted smb, but no luck with that either.

Last edited by fsjmike (2008-08-15 17:14:18)

I think I'm getting closer!

The post I was using to set up USER access had @sharegroup-RO or -RW under valid users.  I just tried removing the -RO & -RW & now I can view everything, but I can't create files where I should be able to.  I also removed my username from all the volumes & just left myself in the groups I'm supposed to be in.

Last edited by fsjmike (2008-08-15 17:48:19)

That is because \\<dns>\Public is a share and \\<dns>\Volume_1\Public is the share "Volume_1" and the subdirectory "Public".  Your user only has access to share "Public" not share "Volume_1".

See the write up I did in post 7 of this thread: http://dns323.kood.org/forum/t2739-Netw … -Work.html