Win2k doesn't reply sids set just because WinXP doesn't request
owner and group sids. You can check the "Securify Information"
field of Win2k packet #201. In Samba3.0 alpha21, I have check
the code. We don't check this field, always return owner and group
sids. I have ever tried to return the same
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Fri, 14 Feb 2003, William Jojo wrote:
>
>
> what do the following values in local.h do with respect to a single smbd
> or are they absolute limits? please explain...
>
> #define MAX_DIRECTORY_HANDLES 2048
>
> #define MAX_OPEN_DIRECTORIES 256
>
Win2k doesn't reply sids set just because WinXP doesn't request
owner and group sids. You can check the "Securify Information"
field of Win2k packet #201. In Samba3.0 alpha21, I have check
the code. We don't check this field, always return owner and group
sids. I have ever tried to return the same
The 0xc018 and 0xc022 are most likely string deliminators and a one byte
flag. This makes sense since it always seems to be either 0xc018 or 0xc022
(0xc022 == 0xc018 | 0x04) What the meaning of these flags is remains to be
seen.
The net ads lookup code is really out of date anyway. I've con
With the following patch, it works for me now. However, there are still
mysteries like what 0xc018 and 0xc022 means in the received netlogon
responses. My fix is to split the "domain" into "forest" and "domain", where
the new "domain" is the child/grandchild under "forest". The ultimate doma
"Hall, Ken (ECSS)" wrote:
>
> We're using Samba 2.2.5 and 2.2.7 in SECURITY=DOMAIN mode.
>
> This morning we lost contact with our PDC, and for about 2 hours, users
> were unable to logon. After chasing this down, we determined that we
> were also unable to contact the WINS server defined in smb
In reply to myself:
That's not a very general solution. You run into the same problem if
the OU string contains "/".
I see two possibilities: supply the full OU string (yuck), or provide
some means to escape characters.
Any better ideas?
Ken
Ken Cross
Network
On Mon, 24 Feb 2003, Hall, Ken (ECSS) wrote:
> We're using Samba 2.2.5 and 2.2.7 in SECURITY=DOMAIN mode.
>
> This morning we lost contact with our PDC, and for about 2 hours, users
> were unable to logon. After chasing this down, we determined that we
> were also unable to contact the WINS serve
Samba-folk:
I've run into a problem using "net ads join OU", where OU is an
Organizational Unit.
An OU can have virtually any name, e.g., "Planes, Trains, &
Automobiles". When returned from the Active Directory, it's in the form
"Planes\, Trains\, & Automobiles". That's the only form that it
We're using Samba 2.2.5 and 2.2.7 in SECURITY=DOMAIN mode.
This morning we lost contact with our PDC, and for about 2 hours, users were unable to
logon. After chasing this down, we determined that we were also unable to contact the
WINS server defined in
smb.conf. Our backup WINS server was av
I don't think the Win2K example needs to look up user info. I wonder if this
is really a correct comparison.
I noticed that the example file being opened on FreeBSD has an owner and
group sid: root.wheel, while the win2k capture shows a file with a zero
offset for the sids, and no sids set. Compar
On Thu, 20 Feb 2003, Panko, Kevin wrote:
> We have a share with mount points beneath it. Free disk space is incorrect
> because samba always returns the free space in the top level directory of
> the share. It is the same problem discussed before in this thread:
>
> http://groups.google.com/grou
This patch (includes portion of the previous patch) checks for
ENCTYPE_ARCFOUR_HMAC_MD5 in libads/sasl.c (named differently to
MIT).
-- Luke
Index: configure.in
===
RCS file: /cvsroot/samba/source/configure.in,v
retrieving revision
On Mon, Feb 24, 2003 at 08:01:39PM +1100, Luke Howard wrote:
>
> >You may want to omit the USE_KEYTAB patch to passdb/secrets.c: we don't
> >actually use that, and without support for updating the secret, it may
> >be of limited use.
>
> Actually, there are a couple of memory leaks in secrets_fe
>You may want to omit the USE_KEYTAB patch to passdb/secrets.c: we don't
>actually use that, and without support for updating the secret, it may
>be of limited use.
Actually, there are a couple of memory leaks in secrets_fetch_keytab_password(),
too so if you intend to include it -- let me send
15 matches
Mail list logo