Last active
April 13, 2022 17:08
-
-
Save vch42/588720b87110e2d81feee6a96120ad52 to your computer and use it in GitHub Desktop.
samba4 install from sources script
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # samba4_install.sh | |
| if [ -z $1 ]; then | |
| echo "Missing version number to install..."; | |
| echo "eg. ./samba4_install.sh 4.0.0"; | |
| echo " "; | |
| exit 1; | |
| fi | |
| # Install dependencies | |
| time apt-get install -y acl attr autoconf bison build-essential \ | |
| debhelper dnsutils docbook-xml docbook-xsl flex gdb krb5-user \ | |
| libacl1-dev libaio-dev libattr1-dev libblkid-dev libbsd-dev \ | |
| libcap-dev libcups2-dev libgnutls28-dev libjson-perl \ | |
| libldap2-dev libncurses5-dev libpam0g-dev libparse-yapp-perl \ | |
| libpopt-dev libreadline-dev perl perl-modules pkg-config \ | |
| python-all-dev python-dev python-dnspython python-crypto \ | |
| xsltproc zlib1g-dev \ | |
| libgpgme11-dev python-gpgme python-m2crypto \ | |
| libsystemd-dev \ | |
| ntp | |
| # Download samba4 sources | |
| wget https://download.samba.org/pub/samba/stable/samba-$1.tar.gz | |
| # Extract archive | |
| tar -zxvf samba-$1.tar.gz | |
| # Due to a bug in the Debian xsltproc package (Debian Bug #750593), | |
| # Samba fails to build the smb.conf man page and a Segmentation fault error is displayed on 32-bit platforms. | |
| # To work around the problem, a line will be commented out of the source code. | |
| # Please note, this will produce a build without a default smb.conf. | |
| if [ "$(uname -m)" != "x86_64" ]; then | |
| sed -ie "s@SMBDOTCONF_MANPAGE(bld, 'manpages/smb.conf.5')@#SMBDOTCONF_MANPAGE(bld, 'manpages/smb.conf.5')@" samba-$1/docs-xml/wscript_build | |
| echo "================================================================" | |
| echo "System is affected by Debian Bug #750593 - xsltproc package !!!" | |
| echo "Will produce a build without a default smb.conf !" | |
| echo "================================================================" | |
| sleep 6 | |
| fi | |
| # Build & Install | |
| cd samba-$1 | |
| rm -f buildtime.log | |
| echo 'Configure start: ' $(date) > buildtime.log | |
| #Paths: | |
| # #BINDIR: /usr/bin | |
| # #SBINDIR: /usr/sbin | |
| # | |
| # #CONFIGFILE: /etc/samba/smb.conf | |
| # #SMB_PASSWD_FILE: /etc/samba/smbpasswd | |
| # #LMHOSTSFILE: /etc/samba/lmhosts | |
| # | |
| # #LIBDIR: /usr/lib/x86_64-linux-gnu | |
| # #MODULESDIR: /usr/lib/x86_64-linux-gnu/samba | |
| # | |
| # SHLIBEXT: so | |
| # | |
| # #LOCKDIR: /var/run/samba | |
| # #PIDDIR: /var/run/samba | |
| # | |
| # #STATEDIR: /var/lib/samba | |
| # #PRIVATE_DIR: /var/lib/samba/private | |
| # | |
| # #CACHEDIR: /var/cache/samba | |
| # #LOGFILEBASE: /var/log/samba | |
| time ./configure \ | |
| --enable-fhs \ | |
| --prefix=/usr --exec-prefix=/usr \ | |
| --sysconfdir=/etc --localstatedir=/var \ | |
| --with-lockdir=/var/run/samba \ | |
| --libdir=/usr/lib/x86_64-linux-gnu \ | |
| --with-systemd --with-regedit --enable-debug | |
| echo 'Make start: ' $(date) >> buildtime.log | |
| make -j4 | |
| echo 'Install start: ' $(date) >> buildtime.log | |
| make -j4 install | |
| echo 'All done: ' $(date) >> buildtime.log | |
| cp ./packaging/systemd/*.service /lib/systemd/system/ | |
| cp ./packaging/systemd/samba.sysconfig /etc/samba/ | |
| back=$(pwd) | |
| cd /lib/systemd/system | |
| sed -i \ | |
| -e 's@ExecReload=/usr/bin/kill -HUP $MAINPID@ExecReload=/bin/kill -HUP $MAINPID@' \ | |
| -e 's@EnvironmentFile=-/etc/sysconfig/samba@EnvironmentFile=-/etc/samba/samba.sysconfig@' \ | |
| -e 's@Type=notify@Type=forking@' \ | |
| nmb.service smb.service samba.service winbind.service | |
| sed -i -e 's@PIDFile=/run/nmbd.pid@PIDFile=/var/run/samba/nmbd.pid@' nmb.service | |
| sed -i -e 's@PIDFile=/run/smbd.pid@PIDFile=/var/run/samba/smbd.pid@' smb.service | |
| sed -i -e 's@PIDFile=/run/samba.pid@PIDFile=/var/run/samba/samba.pid@' samba.service | |
| sed -i -e 's@PIDFile=/run/winbindd.pid@PIDFile=/var/run/samba/winbindd.pid@' winbind.service | |
| systemctl daemon-reload | |
| #systemctl enable samba.service | |
| #systemctl enable smb.service | |
| #systemctl enable nmb.service | |
| #systemctl enable winbind.service | |
| mkdir /var/lib/samba/ntp_signd/ | |
| chown root:ntp /var/lib/samba/ntp_signd/ | |
| chmod 750 /var/lib/samba/ntp_signd/ | |
| ls -ld /var/lib/samba/ntp_signd/ | |
| cat <<EOT > /etc/ntp.conf | |
| # Local clock (Note: This is not the localhost address!) | |
| server 127.127.1.0 | |
| fudge 127.127.1.0 stratum 10 | |
| # The source, where we are receiving the time from | |
| server 192.168.1.254 iburst prefer | |
| server ro.pool.ntp.org iburst | |
| server europe.pool.ntp.org iburst | |
| driftfile /var/lib/ntp/ntp.drift | |
| logfile /var/log/ntp | |
| ntpsigndsocket /var/lib/samba/ntp_signd/ | |
| # Access control | |
| # Default restriction: Only allow querying time (incl. ms-sntp) from this machine | |
| restrict default kod nomodify notrap nopeer mssntp | |
| # Allow everything from localhost | |
| restrict 127.0.0.1 | |
| # Allow that our time source can only provide time and do nothing else | |
| restrict 192.168.1.254 mask 255.255.255.255 nomodify notrap nopeer noquery | |
| restrict ro.pool.ntp.org mask 255.255.255.255 nomodify notrap nopeer noquery | |
| restrict europe.pool.ntp.org mask 255.255.255.255 nomodify notrap nopeer noquery | |
| EOT | |
| service ntp restart | |
| cd $back; cd .. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment