SWAT and SSL for Samba

weixin_33695450

于 2014-04-14 17:51:58 发布

阅读量113

点赞数

原文链接：http://blog.51cto.com/chenshengang/1395480

版权

SWAT and SSL for Samba

SWAT and SSL

Lots of people have asked about how to setup SWAT with SSL to allow for secure remote administration of Samba. Here is a method that works, courtesy ofMarkus Krieger

My modifications to the swat setup are as following:

install OpenSSL

generate certificate and private key

root# /usr/bin/openssl req -new -x509 -days 365 -nodes -config /usr/share/doc/packages/stunnel/stunnel.cnf -out /etc/stunnel/stunnel.pem -keyout /etc/stunnel/stunnel.pem

remove swat-entry from [x]inetd

start stunnel

root# stunnel -p /etc/stunnel/stunnel.pem -d 901 -l /usr/local/samba/bin/swat swat

afterwards i simply contact swat by using the URL "https://myhost:901", accept the certificate and the SSL connection is up

Sources:

stunnel: http://www.stunnel.org/

openssl: http://www.openssl.org/

转载于:https://blog.51cto.com/chenshengang/1395480