###############################################################################
name = acpid
-version = 2.0.9
-release = 5
+version = 2.0.16
+release = 1
+
+# ACPI is only available on x86 architectures.
+sup_arches = x86_64 i686
groups = System/Daemons
url = http://tedfelix.com/linux/acpid-netlink.html
end
source_dl = http://tedfelix.com/linux/
+sources = %{thisapp}.tar.xz
build
- build
- sed -e "s/-Werror//g" -i Makefile
- make CC=gcc RPM_OPT_FLAGS="%{CFLAGS}" %{PARALLLEISMFLAGS}
- end
-
install_cmds
mkdir -pv %{BUILDROOT}/etc/acpi/{actions,events}
cp -vf %{DIR_SOURCE}/power %{BUILDROOT}/etc/acpi/events/
cp -vf %{DIR_SOURCE}/power.sh %{BUILDROOT}/etc/acpi/actions/
-
- mkdir -pv %{BUILDROOT}/etc/sysconfig
- cp -vf %{DIR_SOURCE}/acpid.sysconfig %{BUILDROOT}/etc/sysconfig/acpid
end
end
packages
package %{name}
groups += Base
+
+ script postin
+ /usr/bin/systemctl daemon-reload >/dev/null 2>&1 || :
+
+ # ACPI is enabled by default.
+ /usr/bin/systemctl --no-reload enable acpid.service >/dev/null 2>&1 || :
+ end
+
+ script preun
+ /usr/bin/systemctl --no-reload disable acpid.service >/dev/null 2>&1 || :
+ /usr/bin/systemctl stop acpid.service >/dev/null 2>&1 || :
+ end
+
+ script postun
+ /usr/bin/systemctl daemon-reload >/dev/null 2>&1 || :
+ end
+
+ script postup
+ /usr/bin/systemctl daemon-reload >/dev/null 2>&1 || :
+ /usr/bin/systemctl try-restart acpid.service >/dev/null 2>&1 || :
+ end
end
package %{name}-debuginfo
--- /dev/null
+diff -up acpid-2.0.15/Makefile.am.mk acpid-2.0.15/Makefile.am
+--- acpid-2.0.15/Makefile.am.mk 2012-02-17 04:37:12.109907134 +0100
++++ acpid-2.0.15/Makefile.am 2012-03-16 11:27:15.127573044 +0100
+@@ -20,7 +20,7 @@ acpi_listen_SOURCES = acpi_listen.c log.
+
+ dist_man8_MANS = acpid.8 acpi_listen.8
+
+-dist_doc_DATA = COPYING Changelog README TESTPLAN TODO
++dist_doc_DATA =
+
+ # Just docs to add to the dist.
+ # One problem with this is that it includes all files in the samples dir
+diff -up acpid-2.0.15/Makefile.in.mk acpid-2.0.15/Makefile.in
+--- acpid-2.0.15/Makefile.in.mk 2012-03-16 11:28:53.568421905 +0100
++++ acpid-2.0.15/Makefile.in 2012-03-16 11:29:21.679378750 +0100
+@@ -276,7 +276,7 @@ acpid_SOURCES = acpid.c acpi_ids.c conne
+
+ acpi_listen_SOURCES = acpi_listen.c log.c ud_socket.c
+ dist_man8_MANS = acpid.8 acpi_listen.8
+-dist_doc_DATA = COPYING Changelog README TESTPLAN TODO
++dist_doc_DATA =
+
+ # Just docs to add to the dist.
+ # One problem with this is that it includes all files in the samples dir
+++ /dev/null
-diff -up acpid-2.0.2/Makefile.makefile acpid-2.0.2/Makefile
-diff -up acpid-2.0.2/Makefile.makefile acpid-2.0.2/Makefile
-diff -up acpid-2.0.2/Makefile.makefile acpid-2.0.2/Makefile
-diff -up acpid-2.0.2/Makefile.makefile acpid-2.0.2/Makefile
-diff -up acpid-2.0.2/Makefile.makefile acpid-2.0.2/Makefile
---- acpid-2.0.2/Makefile.makefile 2010-01-27 00:36:23.000000000 +0100
-+++ acpid-2.0.2/Makefile 2010-02-25 16:01:39.641024017 +0100
-@@ -31,8 +31,9 @@ MAN8GZ = $(MAN8:.8=.8.gz)
-
- DOCS = COPYING Changelog README TESTPLAN TODO
-
--CFLAGS = -W -Wall -Werror -Wundef -Wshadow -D_GNU_SOURCE $(OPT) \
-- -fno-strict-aliasing -g $(DEFS)
-+CFLAGS = -W -Wall -Werror -Wundef -Wshadow -D_GNU_SOURCE -O2 $(OPT) \
-+ -fno-strict-aliasing -g $(DEFS) $(RPM_OPT_FLAGS) -fPIE
-+LDFLAGS = -pie -Wl,-z,relro
- DEFS = -DVERSION="\"$(VERSION)\""
-
- all: $(PROGS)
-@@ -46,8 +47,8 @@ man: $(MAN8)
-
- install_docs:
- mkdir -p $(DESTDIR)/$(DOCDIR)
-- for a in $(DOCS); do install -m 0644 $$a $(DESTDIR)/$(DOCDIR) ; done
-- cp -a samples $(DESTDIR)/$(DOCDIR)
-+ #for a in $(DOCS); do install -m 0644 $$a $(DESTDIR)/$(DOCDIR) ; done
-+ #cp -a samples $(DESTDIR)/$(DOCDIR)
-
- install: $(PROGS) man install_docs
- mkdir -p $(DESTDIR)/$(SBINDIR)
Description=ACPI Event Daemon
After=syslog.target
-# This could probably benefit from socket activation, but honestly I think it
-# is time for acpid to go away, and hence I am not planning to spend the time
-# to add socket activation here. We use Type=forking to ensure that the
-# communication sockets are in place before boot proceeds with any service
-# needing this service. Would acpid support socket activation we could use
-# Type=simple here.
-
[Service]
Type=forking
-EnvironmentFile=/etc/sysconfig/acpid
-ExecStart=/usr/sbin/acpid $OPTIONS
+ExecStart=/usr/sbin/acpid
[Install]
WantedBy=multi-user.target
name = authconfig
version = 6.2.2
-release = 2
+release = 3
groups = System/Base
url = https://fedorahosted.org/authconfig
packages
package %{name}
- requires += newt-python
+ requires
+ libpwquality
+ newt-python
+ end
end
package %{name}-devel
name = c_icap
version = 0.1.7
-release = 1
+release = 2
maintainer = Christian Schmidt <christian.schmidt@ipfire.org>
groups = Networking/Daemons
packages
package %{name}
+ requires = %{name}_modules
end
package %{name}-debuginfo
###############################################################################
name = clamav
-version = 0.97
-release = 3
+version = 0.97.4
+release = 1
groups = System Environment/Daemons
url = http://www.clamav.net
packages
package %{name}
+ requires
+ %{name}-libs = %{thisver}
+ end
end
package %{name}-libs
template LIBS
+
+ requires
+ %{name}-databases = %{thisver}
+ end
end
package %{name}-devel
package %{name}-debuginfo
template DEBUGINFO
end
+
+ package %{name}-databases
+ summary = Clamav Virus Databases.
+ description
+ Shipped virus databases needed for virus scanning.
+ end
+
+ files
+ %{localstatedir}/lib/%{name}
+ end
+ end
end
name = coreutils
version = 8.16
-release = 3
+release = 4
groups = System/Base
url = http://www.gnu.org/software/coreutils/
autoconf --force
end
- # FIXME broken
- #test
- # make check
- #end
+ test
+ make check
+ end
make_install_targets += install-man
--- /dev/null
+diff -Nur a/tests/Makefile.am b/tests/Makefile.am
+--- a/tests/Makefile.am 2012-03-24 19:22:13.000000000 +0100
++++ b/tests/Makefile.am 2012-04-28 15:42:22.861910633 +0200
+@@ -24,7 +24,6 @@
+
+ root_tests = \
+ chown/basic \
+- cp/cp-a-selinux \
+ cp/preserve-gid \
+ cp/special-bits \
+ cp/cp-mv-enotsup-xattr \
+@@ -195,7 +194,6 @@
+ misc/groups-version \
+ misc/head-c \
+ misc/head-pos \
+- misc/id-context \
+ misc/id-groups \
+ misc/md5sum \
+ misc/md5sum-bsd \
+@@ -408,12 +406,10 @@
+ du/trailing-slash \
+ du/two-args \
+ id/gnu-zero-uids \
+- id/no-context \
+ install/basic-1 \
+ install/create-leading \
+ install/d-slashdot \
+ install/install-C \
+- install/install-C-selinux \
+ install/strip-program \
+ install/trap \
+ ln/backup-1 \
name = dhcp
version = 4.2.2
-release = 1
+release = 2
groups = Networking/Daemons
url = http://isc.org/products/DHCP/
--- /dev/null
+# This file is part of systemd.
+#
+# systemd is free software; you can redistribute it and/or modify it
+# under the terms of the GNU General Public License as published by
+# the Free Software Foundation; either version 2 of the License, or
+# (at your option) any later version.
+
+[Unit]
+Description=dhclient on %I
+BindTo=dev-%I.device
+After=dev-%I.device network.service
+Requires=network.service
+
+[Service]
+ExecStart=/usr/sbin/dhclient %I
+UtmpIdentifier=%I
+KillMode=process
# CONFIG_GRKERNSEC_CHROOT_EXECLOG is not set
# CONFIG_GRKERNSEC_AUDIT_PTRACE is not set
# CONFIG_GRKERNSEC_AUDIT_CHDIR is not set
-CONFIG_GRKERNSEC_AUDIT_MOUNT=y
+# CONFIG_GRKERNSEC_AUDIT_MOUNT is not set
CONFIG_GRKERNSEC_SIGNAL=y
CONFIG_GRKERNSEC_FORKFAIL=y
-CONFIG_GRKERNSEC_TIME=y
+# CONFIG_GRKERNSEC_TIME is not set
CONFIG_GRKERNSEC_PROC_IPADDR=y
#
name = kernel
version = 3.2.12
-release = 3
+release = 4
thisapp = linux-%{version}
maintainer = Michael Tremer <michael.tremer@ipfire.org>
--- /dev/null
+###############################################################################
+# IPFire.org - An Open Source Firewall Solution #
+# Copyright (C) - IPFire Development Team <info@ipfire.org> #
+###############################################################################
+
+name = libpwquality
+version = 1.0.0
+release = 1
+
+groups = System/Base
+url = https://fedorahosted.org/libpwquality/
+license = BSD or GPL+
+summary = A library for password generation and password quality checking.
+
+description
+ This is a library for password quality checks and generation of random
+ passwords that pass the checks. This library uses the cracklib and
+ cracklib dictionaries to perform some of the checks.
+end
+
+source_dl = http://fedorahosted.org/releases/l/i/libpwquality/
+sources = %{thisapp}.tar.bz2
+
+build
+ requires
+ cracklib-devel
+ gettext
+ pam-devel
+ python-devel
+ end
+end
+
+packages
+ package %{name}
+
+ package python-%{name}
+ summary = Python bindings for the libpwquality library.
+ description
+ This is pwquality Python module that provides Python bindings
+ for the libpwquality library. These bindings can be used
+ for easy password quality checking and generation of random
+ pronounceable passwords from Python applications.
+ end
+
+ files
+ %{libdir}/python*
+ end
+ end
+
+ package %{name}-devel
+ template DEVEL
+ end
+
+ package %{name}-debuginfo
+ template DEBUGINFO
+ end
+end
name = lvm2
version = 2.02.95
-release = 1
+release = 2
thisapp = LVM2.%{version}
groups = System/Base
end
configure_options += \
+ --with-usrlibdir=%{libdir} \
--enable-pkgconfig
end
name = make
version = 3.81
-release = 2
+release = 3
maintainer = Michael Tremer <michael.tremer@ipfire.org>
groups = Development/Tools
sources = %{thisapp}.tar.bz2
build
- configure_options += \
- --mandir=/usr/share
-
test
sed -e "s/-w/& /" -i tests/scripts/features/recursion
make check
###############################################################################
name = mc
-version = 4.8.2
+version = 4.8.3
release = 1
groups = Applications/System
name = ncurses
version = 5.9
-release = 7
+release = 8
groups = System/Base
url = http://invisible-island.net/ncurses/ncurses.html
--enable-hard-tabs \
--enable-xmc-glitch \
--enable-colorfgbg \
- --with-terminfo-dirs=/etc/terminfo:/usr/share/terminfo:/lib/terminfo \
+ --with-terminfo-dirs=%{sysconfdir}/terminfo:%{datadir}/terminfo \
--enable-overwrite \
--enable-pc-files \
--with-termlib=tinfo
chmod -v 755 %{BUILDROOT}%{libdir}/lib*.so.*.*
- mkdir -pv %{BUILDROOT}/{etc,lib}/terminfo
-
- # move few basic terminfo entries to /lib
- baseterms=
- for termname in \
- ansi dumb linux vt100 vt100-nav vt102 vt220 vt52; do
- for t in $(find %{BUILDROOT}/usr/share/terminfo \
- -samefile %{BUILDROOT}/usr/share/terminfo/${termname::1}/$termname); do
- baseterms="$baseterms $(basename $t)"
- done
- done
- for termname in ${baseterms}; do
- termpath=terminfo/${termname::1}/${termname}
- mkdir -pv %{BUILDROOT}/lib/terminfo/${termname::1}
- mv -v %{BUILDROOT}/usr/share/${termpath} %{BUILDROOT}/lib/${termpath}
- ln -svf $(dirname /usr/share/${termpath} | \
- sed 's,\(^/\|\)[^/][^/]*,..,g')/lib/${termpath} \
- %{BUILDROOT}/usr/share//${termpath}
- done
-
- # can't replace directory with symlink, symlink all headers
- #mkdir %{BUILDROOT}/usr/include/ncurses{,w}
- #for l in %{BUILDROOT}/usr/include/*.h; do
- # ln -s ../$(basename $l) %{BUILDROOT}/usr/include/ncurses
- # ln -s ../$(basename $l) %{BUILDROOT}/usr/include/ncursesw
- #done
+ mkdir -pv %{BUILDROOT}/etc/terminfo
# don't require -ltinfo when linking with --no-add-needed
for l in %{BUILDROOT}%{libdir}/libncurses{,w}.so; do
conflicts = ncurses<=5.9-1
files
- /lib/terminfo
/usr/share/terminfo/*/Eterm*
/usr/share/terminfo/*/aterm
/usr/share/terminfo/*/bterm
/usr/share/terminfo/*/vwmterm
/usr/share/terminfo/*/wsvt25*
/usr/share/terminfo/*/xfce
- /usr/share/terminfo/*/xterm xterm-*
+ /usr/share/terminfo/*/xterm
+ /usr/share/terminfo/*/xterm-*
end
end
name = openssh
version = 5.9p1
-release = 4
+release = 5
groups = Application/Internet
url = http://www.openssh.com/portable.html
end
script prein
- getent group sshd_keys >/dev/null || groupadd -r ssh_keys || :
+ getent group ssh_keys >/dev/null || groupadd -r ssh_keys
end
end
script preun
/bin/systemctl --no-reload disable sshd.service >/dev/null 2>&1 || :
- /bin/systemctl --no-reload disable sshd-keygen.service >/dev/null 2>&1 || :
/bin/systemctl stop sshd.service >/dev/null 2>&1 || :
- /bin/systemctl stop sshd-keygen.service >/dev/null 2>&1 || :
end
script postun
Description=SSH server keys generation.
After=syslog.target
Before=sshd.service
+BindTo=sshd.service
[Service]
Type=oneshot
ExecStart=/usr/sbin/sshd-keygen
RemainAfterExit=yes
-
-[Install]
-WantedBy=multi-user.target
After=syslog.target network.target auditd.service
[Service]
-ExecStart=/usr/sbin/sshd -D $OPTIONS
+ExecStartPre=/usr/sbin/sshd-keygen
+ExecStart=/usr/sbin/sshd -D
ExecReload=/bin/kill -HUP $MAINPID
[Install]
+++ /dev/null
-[Unit]
-Description=OpenSSH Server Socket
-Conflicts=sshd.service
-
-[Socket]
-ListenStream=22
-Accept=yes
-
-[Install]
-WantedBy=sockets.target
+++ /dev/null
-[Unit]
-Description=OpenSSH per-connection server daemon
-After=syslog.target auditd.service
-
-[Service]
-EnvironmentFile=/etc/sysconfig/sshd
-ExecStart=-/usr/sbin/sshd -i $OPTIONS
-StandardInput=socket
###############################################################################
name = samba
-version = 3.6.4
+version = 3.6.5
release = 1
maintainer = Christian Schmidt <christian.schmidt@ipfire.org>
install_cmds
mkdir -pv %{BUILDROOT}%{sysconfdir}/samba
echo "127.0.0.1 localhost" > %{BUILDROOT}%{sysconfdir}/samba/lmhosts
+ cp -vf %{DIR_SOURCE}/smb.conf %{BUILDROOT}/%{sysconfdir}/%{name}
end
end
packages
package %{name}
+ prerequires = systemd-units
+ configfiles = /etc/smb.conf
+ requires += %{name}-libs = %{thisver}
+ end
package %{name}-libs
template LIBS
--- /dev/null
+#%PAM-1.0
+auth required pam_nologin.so
+auth include password-auth
+account include password-auth
+session include password-auth
+password include password-auth
--- /dev/null
+# This is the main Samba configuration file. For detailed information about the
+# options listed here, refer to the smb.conf(5) manual page. Samba has a huge
+# number of configurable options, most of which are not shown in this example.
+#
+# The Official Samba 3.2.x HOWTO and Reference Guide contains step-by-step
+# guides for installing, configuring, and using Samba:
+# http://www.samba.org/samba/docs/Samba-HOWTO-Collection.pdf
+#
+# The Samba-3 by Example guide has working examples for smb.conf. This guide is
+# generated daily: http://www.samba.org/samba/docs/Samba-Guide.pdf
+#
+# In this file, lines starting with a semicolon (;) or a hash (#) are
+# comments and are ignored. This file uses hashes to denote commentary and
+# semicolons for parts of the file you may wish to configure.
+#
+# Note: Run the "testparm" command after modifying this file to check for basic
+# syntax errors.
+#
+#---------------
+# Security-Enhanced Linux (SELinux) Notes:
+#
+# Turn the samba_domain_controller Boolean on to allow Samba to use the useradd
+# and groupadd family of binaries. Run the following command as the root user to
+# turn this Boolean on:
+# setsebool -P samba_domain_controller on
+#
+# Turn the samba_enable_home_dirs Boolean on if you want to share home
+# directories via Samba. Run the following command as the root user to turn this
+# Boolean on:
+# setsebool -P samba_enable_home_dirs on
+#
+# If you create a new directory, such as a new top-level directory, label it
+# with samba_share_t so that SELinux allows Samba to read and write to it. Do
+# not label system directories, such as /etc/ and /home/, with samba_share_t, as
+# such directories should already have an SELinux label.
+#
+# Run the "ls -ldZ /path/to/directory" command to view the current SELinux
+# label for a given directory.
+#
+# Set SELinux labels only on files and directories you have created. Use the
+# chcon command to temporarily change a label:
+# chcon -t samba_share_t /path/to/directory
+#
+# Changes made via chcon are lost when the file system is relabeled or commands
+# such as restorecon are run.
+#
+# Use the samba_export_all_ro or samba_export_all_rw Boolean to share system
+# directories. To share such directories and only allow read-only permissions:
+# setsebool -P samba_export_all_ro on
+# To share such directories and allow read and write permissions:
+# setsebool -P samba_export_all_rw on
+#
+# To run scripts (preexec/root prexec/print command/...), copy them to the
+# /var/lib/samba/scripts/ directory so that SELinux will allow smbd to run them.
+# Note that if you move the scripts to /var/lib/samba/scripts/, they retain
+# their existing SELinux labels, which may be labels that SELinux does not allow
+# smbd to run. Copying the scripts will result in the correct SELinux labels.
+# Run the "restorecon -R -v /var/lib/samba/scripts" command as the root user to
+# apply the correct SELinux labels to these files.
+#
+#--------------
+#
+#======================= Global Settings =====================================
+
+[global]
+
+# ----------------------- Network-Related Options -------------------------
+#
+# workgroup = the Windows NT domain name or workgroup name, for example, MYGROUP.
+#
+# server string = the equivalent of the Windows NT Description field.
+#
+# netbios name = used to specify a server name that is not tied to the hostname.
+#
+# interfaces = used to configure Samba to listen on multiple network interfaces.
+# If you have multiple interfaces, you can use the "interfaces =" option to
+# configure which of those interfaces Samba listens on. Never omit the localhost
+# interface (lo).
+#
+# hosts allow = the hosts allowed to connect. This option can also be used on a
+# per-share basis.
+#
+# hosts deny = the hosts not allowed to connect. This option can also be used on
+# a per-share basis.
+#
+# max protocol = used to define the supported protocol. The default is NT1. You
+# can set it to SMB2 if you want experimental SMB2 support.
+#
+ workgroup = MYGROUP
+ server string = Samba Server Version %v
+
+; netbios name = MYSERVER
+
+; interfaces = lo eth0 192.168.12.2/24 192.168.13.2/24
+; hosts allow = 127. 192.168.12. 192.168.13.
+
+; max protocol = SMB2
+
+# --------------------------- Logging Options -----------------------------
+#
+# log file = specify where log files are written to and how they are split.
+#
+# max log size = specify the maximum size log files are allowed to reach. Log
+# files are rotated when they reach the size specified with "max log size".
+#
+
+ # log files split per-machine:
+ log file = /var/log/samba/log.%m
+ # maximum size of 50KB per log file, then rotate:
+ max log size = 50
+
+# ----------------------- Standalone Server Options ------------------------
+#
+# security = the mode Samba runs in. This can be set to user, share
+# (deprecated), or server (deprecated).
+#
+# passdb backend = the backend used to store user information in. New
+# installations should use either tdbsam or ldapsam. No additional configuration
+# is required for tdbsam. The "smbpasswd" utility is available for backwards
+# compatibility.
+#
+
+ security = user
+ passdb backend = tdbsam
+
+
+# ----------------------- Domain Members Options ------------------------
+#
+# security = must be set to domain or ads.
+#
+# passdb backend = the backend used to store user information in. New
+# installations should use either tdbsam or ldapsam. No additional configuration
+# is required for tdbsam. The "smbpasswd" utility is available for backwards
+# compatibility.
+#
+# realm = only use the realm option when the "security = ads" option is set.
+# The realm option specifies the Active Directory realm the host is a part of.
+#
+# password server = only use this option when the "security = server"
+# option is set, or if you cannot use DNS to locate a Domain Controller. The
+# argument list can include My_PDC_Name, [My_BDC_Name], and [My_Next_BDC_Name]:
+#
+# password server = My_PDC_Name [My_BDC_Name] [My_Next_BDC_Name]
+#
+# Use "password server = *" to automatically locate Domain Controllers.
+
+; security = domain
+; passdb backend = tdbsam
+; realm = MY_REALM
+
+; password server = <NT-Server-Name>
+
+# ----------------------- Domain Controller Options ------------------------
+#
+# security = must be set to user for domain controllers.
+#
+# passdb backend = the backend used to store user information in. New
+# installations should use either tdbsam or ldapsam. No additional configuration
+# is required for tdbsam. The "smbpasswd" utility is available for backwards
+# compatibility.
+#
+# domain master = specifies Samba to be the Domain Master Browser, allowing
+# Samba to collate browse lists between subnets. Do not use the "domain master"
+# option if you already have a Windows NT domain controller performing this task.
+#
+# domain logons = allows Samba to provide a network logon service for Windows
+# workstations.
+#
+# logon script = specifies a script to run at login time on the client. These
+# scripts must be provided in a share named NETLOGON.
+#
+# logon path = specifies (with a UNC path) where user profiles are stored.
+#
+#
+; security = user
+; passdb backend = tdbsam
+
+; domain master = yes
+; domain logons = yes
+
+ # the following login script name is determined by the machine name
+ # (%m):
+; logon script = %m.bat
+ # the following login script name is determined by the UNIX user used:
+; logon script = %u.bat
+; logon path = \\%L\Profiles\%u
+ # use an empty path to disable profile support:
+; logon path =
+
+ # various scripts can be used on a domain controller or a stand-alone
+ # machine to add or delete corresponding UNIX accounts:
+
+; add user script = /usr/sbin/useradd "%u" -n -g users
+; add group script = /usr/sbin/groupadd "%g"
+; add machine script = /usr/sbin/useradd -n -c "Workstation (%u)" -M -d /nohome -s /bin/false "%u"
+; delete user script = /usr/sbin/userdel "%u"
+; delete user from group script = /usr/sbin/userdel "%u" "%g"
+; delete group script = /usr/sbin/groupdel "%g"
+
+
+# ----------------------- Browser Control Options ----------------------------
+#
+# local master = when set to no, Samba does not become the master browser on
+# your network. When set to yes, normal election rules apply.
+#
+# os level = determines the precedence the server has in master browser
+# elections. The default value should be reasonable.
+#
+# preferred master = when set to yes, Samba forces a local browser election at
+# start up (and gives itself a slightly higher chance of winning the election).
+#
+; local master = no
+; os level = 33
+; preferred master = yes
+
+#----------------------------- Name Resolution -------------------------------
+#
+# This section details the support for the Windows Internet Name Service (WINS).
+#
+# Note: Samba can be either a WINS server or a WINS client, but not both.
+#
+# wins support = when set to yes, the NMBD component of Samba enables its WINS
+# server.
+#
+# wins server = tells the NMBD component of Samba to be a WINS client.
+#
+# wins proxy = when set to yes, Samba answers name resolution queries on behalf
+# of a non WINS capable client. For this to work, there must be at least one
+# WINS server on the network. The default is no.
+#
+# dns proxy = when set to yes, Samba attempts to resolve NetBIOS names via DNS
+# nslookups.
+
+; wins support = yes
+; wins server = w.x.y.z
+; wins proxy = yes
+
+; dns proxy = yes
+
+# --------------------------- Printing Options -----------------------------
+#
+# The options in this section allow you to configure a non-default printing
+# system.
+#
+# load printers = when set you yes, the list of printers is automatically
+# loaded, rather than setting them up individually.
+#
+# cups options = allows you to pass options to the CUPS library. Setting this
+# option to raw, for example, allows you to use drivers on your Windows clients.
+#
+# printcap name = used to specify an alternative printcap file.
+#
+
+ load printers = yes
+ cups options = raw
+
+; printcap name = /etc/printcap
+ # obtain a list of printers automatically on UNIX System V systems:
+; printcap name = lpstat
+; printing = cups
+
+# --------------------------- File System Options ---------------------------
+#
+# The options in this section can be un-commented if the file system supports
+# extended attributes, and those attributes are enabled (usually via the
+# "user_xattr" mount option). These options allow the administrator to specify
+# that DOS attributes are stored in extended attributes and also make sure that
+# Samba does not change the permission bits.
+#
+# Note: These options can be used on a per-share basis. Setting them globally
+# (in the [global] section) makes them the default for all shares.
+
+; map archive = no
+; map hidden = no
+; map read only = no
+; map system = no
+; store dos attributes = yes
+
+
+#============================ Share Definitions ==============================
+
+[homes]
+ comment = Home Directories
+ browseable = no
+ writable = yes
+; valid users = %S
+; valid users = MYDOMAIN\%S
+
+[printers]
+ comment = All Printers
+ path = /var/spool/samba
+ browseable = no
+ guest ok = no
+ writable = no
+ printable = yes
+
+# Un-comment the following and create the netlogon directory for Domain Logons:
+; [netlogon]
+; comment = Network Logon Service
+; path = /var/lib/samba/netlogon
+; guest ok = yes
+; writable = no
+; share modes = no
+
+# Un-comment the following to provide a specific roving profile share.
+# The default is to use the user's home directory:
+; [Profiles]
+; path = /var/lib/samba/profiles
+; browseable = no
+; guest ok = yes
+
+# A publicly accessible directory that is read only, except for users in the
+# "staff" group (which have write permissions):
+; [public]
+; comment = Public Stuff
+; path = /home/samba
+; public = yes
+; writable = yes
+; printable = no
+; write list = +staff
--- /dev/null
+[Unit]
+Description=Samba NMB Daemon
+After=syslog.target network.target
+
+[Service]
+Type=forking
+PIDFile=/run/nmbd.pid
+ExecStart=/usr/sbin/nmbd
+
+[Install]
+WantedBy=multi-user.target
--- /dev/null
+[Unit]
+Description=Samba SMB Daemon
+After=syslog.target network.target nmb.service winbind.service
+
+[Service]
+Type=forking
+PIDFile=/run/smbd.pid
+LimitNOFILE=16384
+ExecStart=/usr/sbin/smbd
+
+[Install]
+WantedBy=multi-user.target
--- /dev/null
+[Unit]
+Description=Samba Winbind Daemon
+After=syslog.target network.target nmb.service
+
+[Service]
+Type=forking
+PIDFile=/run/winbindd.pid
+ExecStart=/usr/sbin/winbindd
+
+[Install]
+WantedBy=multi-user.target