From owner-freebsd-questions@FreeBSD.ORG Sun Jun 13 04:15:04 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 622BE106566B for ; Sun, 13 Jun 2010 04:15:04 +0000 (UTC) (envelope-from rjhjr0@gmail.com) Received: from mail-gy0-f182.google.com (mail-gy0-f182.google.com [209.85.160.182]) by mx1.freebsd.org (Postfix) with ESMTP id 18E2D8FC13 for ; Sun, 13 Jun 2010 04:15:03 +0000 (UTC) Received: by gyh20 with SMTP id 20so2254374gyh.13 for ; Sat, 12 Jun 2010 21:15:03 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:date:from:to:subject :message-id:mail-followup-to:references:mime-version:content-type :content-disposition:in-reply-to:user-agent; bh=Hn6qvVGAcaFrtHcA4KYNIrgFO43My432aQFW4/pAK00=; b=QnkpBaRj0dPcNp2GYuExc7oy4p6WjuHnCvbM+Mlv+R1+MBGh8OLrWQmA8EbqfCgncP E2PJto9qK5KaajBaa1R81dmgNgdZG2CVOytbFqfxqo8y1E01eAbO/8YBIB7sMWk10rdo mYRwjYL12Ybv4Lt9gDjBLSzilc35kwxe3Imzc= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=date:from:to:subject:message-id:mail-followup-to:references :mime-version:content-type:content-disposition:in-reply-to :user-agent; b=wbo/9UJMWctPI5T2aiHOeHfv4Jyr7toX9AJbEeqU16WOBRR4zLG33wsqyB2U3vu/la 9WNgwd1Uc62z2TVlBmALID5rWL5lqfX6C35evxlV593LBSI95ES1qKM0FlJ+crDW/tfL Bk19JETZ2U7Pu7+zF83v7tBiQdvtw69y9pEPY= Received: by 10.151.73.41 with SMTP id a41mr5429086ybl.117.1276402503078; Sat, 12 Jun 2010 21:15:03 -0700 (PDT) Received: from localhost (ip98-163-115-74.dc.dc.cox.net [98.163.115.74]) by mx.google.com with ESMTPS id v2sm22266258ybh.4.2010.06.12.21.15.02 (version=TLSv1/SSLv3 cipher=RC4-MD5); Sat, 12 Jun 2010 21:15:02 -0700 (PDT) Date: Sun, 13 Jun 2010 00:15:00 -0400 From: Bob Hall To: freebsd-questions@FreeBSD.org Message-ID: <20100613041500.GA71284@stainmore> Mail-Followup-To: Bob Hall , freebsd-questions@FreeBSD.org References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4.2.3i Cc: Subject: Re: Directory Passwords X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 13 Jun 2010 04:15:04 -0000 On Sat, Jun 12, 2010 at 02:52:59PM -0400, Mike Robins wrote: > Hi there, I currently am running a FreeBSD/Samba server for my company > with public shares for all of the employees to keep their work related > documents in. I'm wondering if it is possible for me to keep these shares > public and add a password to each sub directory in the public share? This > would mean I could give each department a sub directory that only they > would know the password to and keep the sensitive documents away from > public view. Any password known to a group of people quickly becomes public knowledge. If you really need to restrict access to a share, this won't do it securely. In jobs I've had where it was necessary to restrict access to network shares, there was a central security server that was aware of me after I successfully logged on to my computer, and automatically gave me access to any share that a project manager had given me rights to, while blocking me from any share to which no project manager had given me rights. I'm pretty sure you can integrate Samba into such a system, but how to do it is a Samba related question, not a FreeBSD question. Best of luck.