LX0-104 · Question #449
Within smb. conf, which security setting will NOT require that a client connect using a valid usernarne and password before connecting to a shared resource?
The correct answer is B. security=share. In Samba's smb.conf, the security = share setting allows clients to connect to a shared resource without requiring a valid username and password, as authentication is based on the share itself, often enabling guest access.
Question
Options
- Asecurity = user
- Bsecurity=share
- Csecurity = server
- Dsecurity=guest
How the community answered
(31 responses)- A3% (1)
- B87% (27)
- C3% (1)
- D6% (2)
Why each option
In Samba's `smb.conf`, the `security = share` setting allows clients to connect to a shared resource without requiring a valid username and password, as authentication is based on the share itself, often enabling guest access.
The `security = user` setting requires clients to authenticate with a valid username and password against the Samba server's user database.
When `security = share` is configured in `smb.conf`, Samba authenticates clients based on the shared resource rather than individual user accounts. This mode allows for 'guest' access, where clients can connect to shares configured with `guest ok = yes` without providing specific user credentials.
The `security = server` setting requires Samba to authenticate clients by passing their credentials to another SMB server.
`security = guest` is not a valid top-level security setting in `smb.conf`; `guest ok = yes` is a share-level option used in conjunction with other security modes (typically `security = user`) to allow unauthenticated access to specific shares.
Concept tested: Samba security modes for client authentication
Source: https://www.samba.org/samba/docs/current/manpages/smb.conf.5.html
Topics
Community Discussion
No community discussion yet for this question.