FROM arm64v8/alpine COPY qemu-aarch64-static /usr/bin/ MAINTAINER David Personette # Install samba RUN apk --no-cache --no-progress upgrade && \ apk --no-cache --no-progress add bash samba shadow tini tzdata && \ addgroup -S smb && \ adduser -S -D -H -h /tmp -s /sbin/nologin -G smb -g 'Samba User' smbuser &&\ file="/etc/samba/smb.conf" && \ sed -i 's|^;* *\(log file = \).*| \1/dev/stdout|' $file && \ sed -i 's|^;* *\(load printers = \).*| \1no|' $file && \ sed -i 's|^;* *\(printcap name = \).*| \1/dev/null|' $file && \ sed -i 's|^;* *\(printing = \).*| \1bsd|' $file && \ sed -i 's|^;* *\(unix password sync = \).*| \1no|' $file && \ sed -i 's|^;* *\(preserve case = \).*| \1yes|' $file && \ sed -i 's|^;* *\(short preserve case = \).*| \1yes|' $file && \ sed -i 's|^;* *\(default case = \).*| \1lower|' $file && \ sed -i '/Share Definitions/,$d' $file && \ echo ' pam password change = yes' >>$file && \ echo ' map to guest = bad user' >>$file && \ echo ' usershare allow guests = yes' >>$file && \ echo ' create mask = 0664' >>$file && \ echo ' force create mode = 0664' >>$file && \ echo ' directory mask = 0775' >>$file && \ echo ' force directory mode = 0775' >>$file && \ echo ' force user = smbuser' >>$file && \ echo ' force group = smb' >>$file && \ echo ' follow symlinks = yes' >>$file && \ echo ' load printers = no' >>$file && \ echo ' printing = bsd' >>$file && \ echo ' printcap name = /dev/null' >>$file && \ echo ' disable spoolss = yes' >>$file && \ echo ' strict locking = no' >>$file && \ echo ' aio read size = 0' >>$file && \ echo ' aio write size = 0' >>$file && \ echo ' vfs objects = acl_xattr catia fruit recycle streams_xattr' \ >>$file && \ echo ' recycle:keeptree = yes' >>$file && \ echo ' recycle:maxsize = 0' >>$file && \ echo ' recycle:repository = .deleted' >>$file && \ echo ' recycle:versions = yes' >>$file && \ echo '' >>$file && \ echo ' # Security' >>$file && \ echo ' client ipc max protocol = SMB3' >>$file && \ echo ' client ipc min protocol = SMB2_10' >>$file && \ echo ' client max protocol = SMB3' >>$file && \ echo ' client min protocol = SMB2_10' >>$file && \ echo ' server max protocol = SMB3' >>$file && \ echo ' server min protocol = SMB2_10' >>$file && \ echo '' >>$file && \ echo ' # Time Machine' >>$file && \ echo ' fruit:delete_empty_adfiles = yes' >>$file && \ echo ' fruit:metadata = stream' >>$file && \ echo ' fruit:model = MacSamba' >>$file && \ echo ' fruit:posix_rename = yes' >>$file && \ echo ' fruit:resource = file' >>$file && \ echo ' fruit:time machine = yes' >>$file && \ echo ' fruit:veto_appledouble = no' >>$file && \ echo ' fruit:wipe_intentionally_left_blank_rfork = yes' >>$file && \ echo '' >>$file && \ rm -rf /tmp/* COPY samba.sh /usr/bin/ EXPOSE 137/udp 138/udp 139 445 HEALTHCHECK --interval=60s --timeout=15s \ CMD smbclient -L \\localhost -U % -m SMB3 VOLUME ["/etc", "/var/cache/samba", "/var/lib/samba", "/var/log/samba",\ "/run/samba"] ENTRYPOINT ["/sbin/tini", "--", "/usr/bin/samba.sh"]