This is a list of files and directories that are neither visible nor accessible. Each entry in the list must be separated by a '/', which allows spaces to be included in the entry. '*' and '?' can be used to specify multiple files or directories as in DOS wildcards. can also be used as a parametric option where NAME in veto files : NAME = specifies a user or group name with the same syntax as . This parametric form can be specified multiple times for different users or groups. This means that "veto files : NAME" set both in the [global] and the share section add up, whereas normally options set in a share section overwrite the default in the [global] section. Each filename must be a unix path, not a DOS path and must not include the unix directory separator '/'. Note that the option is applicable in vetoing files. One feature of the veto files parameter that it is important to be aware of is Samba's behaviour when trying to delete a directory. If a directory that is to be deleted contains nothing but veto files this deletion will fail unless you also set the parameter to yes. Setting this parameter will affect the performance of Samba, as it will be forced to check all files and directories for a match as they are scanned. Examples of use include: ; Veto any files containing the word Security, ; any ending in .tmp, and any directory containing the ; word root. veto files = /*Security*/*.tmp/*root*/ ; Veto some files for anyone and some files for specific users and groups veto files = /vetoforall1/ veto files : USER = /vetotoforuser/ veto files : GROUP = /vetoforgroup/ veto files : UNIVERSITY\Alumnis = /somefile.txt/ veto files : john@university.org = /anotherfile.txt/ veto files : S-1-5-21-123-456-789-1000 = /secretfile.txt/ ; Veto the Apple specific files that a NetAtalk server ; creates. veto files = /.AppleDouble/.bin/.AppleDesktop/Network Trash Folder/ hide files case sensitive No files or directories are vetoed