[Samba] Samba + OpenLdap replication problem
Hi all, not sure if I can ask here, because this sounds to me more an OpenLdap than a Samba problem, but it involves samba too. I've got a domain controller based on Fedora 2, samba 3.0.7-2.FC2 and openldap-2.1.29-1, which serves 60 users in a domain. Now I'm trying to set up a backup domain controller, based on the same software, on another machine. I stop Openldap on the master, dump the ldap database (slapcat /root/Master.ldif), move the file on the slave machine and try to import it (slapadd -l Master.ldif -f /etc/openldap/slapd.conf), but the last command ends with thi error [EMAIL PROTECTED] root]# slapadd -l Master.ldif -f /etc/openldap/slapd.conf slapadd: bad configuration file! Has anyone anyone of never had experience of an error like this? Thanks Bye... Mattia -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: [cups.general] Re: Windows Clients keep finished jobs in Queue
Hello list! I couldn't track it down completly, but perhaps it's enaugh for the team members... The reason for this is, that the job notify messages are not send to the client. When the job is started, two PRINTER_NOTIFY2 messages are send to the client (JOB_STATUS_QUEUED and JOB_STATUS_SPOOLING). When the job is deleted (printing.c/pjob_delete()) another job status message is queued (JOB_STATUS_DELETING|JOB_STATUS_DELETED). But this message never goes out. The next time, the print_notify_messages()-function is invoked (from the timeout_processing()-function), the message coming out is a MSG_PRINTER_UPDATE message, not a PRINTER_NOTIFY2. It looks like the earlier message is overwritten before the process could transmit it to the client. As a workaround, the printjobs disappear, when a print_notify_send_messages(0) - call is added to pjob_delete(). I don't think, that's the solution - I don't have an idea about the side-effects. I hope this points one of the gurus to the right direction. Sorry for my english. Greets, Martin On Thursday 30 September 2004 10:54, Hamish wrote: Misty Stanley-Jones wrote: On Wednesday 29 September 2004 09:29, Ryan Suarez wrote: I'm also seeing this problem. We're running samba 3.0.7 with CUPS 1.1.20. The clients printing are WinXP Professional SP1. The jobs printed are still displayed in the Windows printer status window, even though it's been printed already and disappears from the CUPS printer queue list. You will note that if you refresh, they disappear. I see the problem too with 3.0.6. Have not tested with 3.0.7 yet. I think it's also with WinNT clients. Another person on this list reported the same refresh problem with files in Explorer too. Misty I am having the same problem. Refresh does not clear the jobs, and CUPS shows the jobs as printed. It is interesting to have a complete history of the printer, but this confuses users! Deleting the jobs works, but is there a way to stop them filling up the windows printer queue? -- Martin Zielinski [EMAIL PROTECTED] Software Development SEH Computertechnik GmbH www.seh.de -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Server not responding after Samba upgrade
I used to run Samba 2.2.9 on Debian Woody. Yesterday I upgraded it (with all necessary packages) to 3.0.7. Since then, Samba on that server do not respond to netbios queries, only to direct access via IP. Also, when I try to resolv its name using nmblookup, I cannot find it. When I access to server via IP address everything works fine. Hi again, Yet I did not solved problem. I noticed one thing. Although nmbd is running (it exists as process), swat says it is not running. So most probably problem is with nmbd, but i do not know what to try. -- Eng. Dusan Djordjevic (RHCE) -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Repost: ads_connect: No such file or directory
Johan de Vries wrote: When I do a: net ads join -Uadministrator I get: [2004/10/01 13:21:07, 0] utils/net_ads.c:ads_startup(183) ads_connect: No such file or directory It appears the file: ads_connect is missing Where is ads_connect coming from ? Do I need more compile options ? Kerberos 1.2.7-10 is installed (rpm) including the development (rpm) OpenLdap 2.0.27-8 is installed (rpm) including the development (rpm) The way to read this is from source file utils/net_ads.c inside function ads_startup, line (183) the error message returned by the call to the ads_connect function is No such file or directory Can't say I've seen this error at this place. Without digging deeper, it's either looking for one of the krb5 configuration files or one of the samba parameters for ldap is pointing to a non-existant file. Couple things to check Run testparm and look for errors in samba config. Follow the writeup in the The Official Samba-3 HOWTO and Reference Guide Samba ADS Domain Membership Earlier versions of MIT kerberos prior to 3 something, [libdefaults] at a minimum should look like this [libdefaults] default_realm = YOUR.KERBEROS.REALM default_tgs_enctypes = des-cbc-crc des-cbc-md5 default_tkt_enctypes = des-cbc-crc des-cbc-md5 permitted_enctypes = des-cbc-crc des-cbc-md5 If you get a more current kerberos, add rc4-hmac as the first enctype Regards, Doug -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Domain Trust Logins
Am I using winbind? in what way exactly? As I understand it the Samba server couldn't be a PDC for its own separate domain if I was to use winbind and make it a member of another win2003 domain. Is it possible to use winbind in such a way that it can provide for authentication of uses in a win2003 trusted domain without requiring the samba server to be a member of that domain? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of John H Terpstra Sent: 01 October 2004 18:38 To: [EMAIL PROTECTED] Subject: Re: [Samba] Domain Trust Logins On Friday 01 October 2004 09:02, Lee Baker wrote: Config: Samba 3 trusts a win2003 domain. XP workstations joined to Samba PDC domain. When a user in the 2003 domain tries to login using an XP workstation and choosing the 2003 domain in the log onto box this fails unless the user also has a Linux user account. Is there a way around this? Is this just the way it works? Are you using winbind? If not, that explains your observations. - John T. -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 OpenLDAP by Example, ISBN: 0131488732 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Server not responding after Samba upgrade
Dusan Djordjevic wrote: I used to run Samba 2.2.9 on Debian Woody. Yesterday I upgraded it (with all necessary packages) to 3.0.7. Since then, Samba on that server do not respond to netbios queries, only to direct access via IP. Also, when I try to resolv its name using nmblookup, I cannot find it. When I access to server via IP address everything works fine. Hi again, Yet I did not solved problem. I noticed one thing. Although nmbd is running (it exists as process), swat says it is not running. So most probably problem is with nmbd, but i do not know what to try. Did you tried to startup manually from command prompt? Just try to run as root nmbd -D and see what happen. Good Luck. David Ferreira -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: R: [Samba] WindowsXP SP2 shuts down while trying to log into samba 3.0.6 domain
Tony Breeds ha scritto: I recently asked a similar question. My symptoms were similar but different. My solution was to set: use sendfile = no and restart samba. See if it's the same sort of problem for you? Unfurtunately that didn't work. Actually it seems that something goes wrong with name resolution. I tried once again to login on the SP2 machine, and I get output in two different files (log.192.168.1.12 and log.studio), see logfiles below. I forgot to specify that SP2 firewall is disabled and there is no other firewall on the SP2 machine. Nicola --- log.192.168.1.12 --- [2004/10/04 11:55:55, 0] lib/util_sock.c:get_peer_addr(1000) getpeername failed. Error was Transport endpoint is not connected [2004/10/04 11:55:55, 0] lib/access.c:check_access(328) [2004/10/04 11:55:55, 0] lib/util_sock.c:get_peer_addr(1000) getpeername failed. Error was Transport endpoint is not connected Denied connection from (0.0.0.0) [2004/10/04 11:55:55, 1] smbd/process.c:process_smb(1085) [2004/10/04 11:55:55, 0] lib/util_sock.c:get_peer_addr(1000) getpeername failed. Error was Transport endpoint is not connected Connection denied from 0.0.0.0 [2004/10/04 11:55:55, 0] lib/util_sock.c:write_socket_data(430) write_socket_data: write failure. Error = Connection reset by peer [2004/10/04 11:55:55, 0] lib/util_sock.c:write_socket(455) write_socket: Error writing 5 bytes to socket 5: ERRNO = Connection reset by peer [2004/10/04 11:55:55, 0] lib/util_sock.c:send_smb(647) Error writing 5 bytes to client. -1. (Connection reset by peer) [2004/10/04 11:58:02, 0] lib/util_sock.c:get_peer_addr(1000) getpeername failed. Error was Transport endpoint is not connected [2004/10/04 11:58:02, 0] lib/access.c:check_access(328) [2004/10/04 11:58:02, 0] lib/util_sock.c:get_peer_addr(1000) getpeername failed. Error was Transport endpoint is not connected Denied connection from (0.0.0.0) [2004/10/04 11:58:02, 1] smbd/process.c:process_smb(1085) [2004/10/04 11:58:02, 0] lib/util_sock.c:get_peer_addr(1000) getpeername failed. Error was Transport endpoint is not connected Connection denied from 0.0.0.0 [2004/10/04 11:58:02, 0] lib/util_sock.c:write_socket_data(430) write_socket_data: write failure. Error = Connection reset by peer [2004/10/04 11:58:02, 0] lib/util_sock.c:write_socket(455) write_socket: Error writing 5 bytes to socket 5: ERRNO = Connection reset by peer [2004/10/04 11:58:02, 0] lib/util_sock.c:send_smb(647) Error writing 5 bytes to client. -1. (Connection reset by peer) --- log.studio --- [2004/10/04 12:03:13, 0] lib/util_sock.c:read_socket_data(384) read_socket_data: recv failure for 4. Error = Connection reset by peer -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Server not responding after Samba upgrade
Dusan Djordjevic wrote: On Monday 04 October 2004 09:54, David Ferreira wrote: Dusan Djordjevic wrote: I used to run Samba 2.2.9 on Debian Woody. Yesterday I upgraded it (with all necessary packages) to 3.0.7. Since then, Samba on that server do not respond to netbios queries, only to direct access via IP. Also, when I try to resolv its name using nmblookup, I cannot find it. When I access to server via IP address everything works fine. Hi again, Yet I did not solved problem. I noticed one thing. Although nmbd is running (it exists as process), swat says it is not running. So most probably problem is with nmbd, but i do not know what to try. Did you tried to startup manually from command prompt? Just try to run as root nmbd -D and see what happen. Yes, it starts in that case also. Problem is that, although process exists, it is not working properly. And running the command nmblookup machinename it should give it something like this: #nmblookup machinename querying machinename on 192.168.1.255 192.168.1.22 machinename00 # did you have on your smb.conf any of this parameters? dns proxy wins proxy wins server wins support anyway, I think your problem must be related to winbind, not wins, because I think you don't have any wins server in your network. Is that right? Is winbind daemond running? something remarkable on log files? increase verbose level of logs if not, and please, give more specs about your system and network configuration. clients work properly? what are the OS of clients? some firewall update on smb server? Did you have try to downgrade to check if working? David Ferreira -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] winbind invalid request size error
Hi Samba gurus. I'm running Samba 3.0.7 on linux. This is driving me nuts, no matter what I do, I can't get rid of these: [2004/10/04 11:02:01, 0] nsswitch/winbindd.c:process_loop(737) process_loop: Invalid request size from pid 16277: 1304 bytes sent, should be 1824 This usually means that you are running old wbinfo, pam_winbind or libnss_winbind clients [2004/10/04 11:02:01, 0] nsswitch/winbindd.c:process_loop(737) process_loop: Invalid request size from pid 16279: 1304 bytes sent, should be 1824 This usually means that you are running old wbinfo, pam_winbind or libnss_winbind clients I've even gone to the point of removing libnss_winbind.so.2 and pam_winbind.so completely (i dont need them), yet still it complains. I also search the list archives and one person suggested restarting nscd, i tried that too (even turned it right off), yet still my winbind logs are plagued with these bloody warnings. Since im having other problems getting samba working i'd like to rule this out as the problem. Where else should i be looking? Tim. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Server not responding after Samba upgrade
did you have on your smb.conf any of this parameters? dns proxy wins proxy wins server wins support I have plain workgroup. For testing purposes, I have samba on problematic server and only one Win XP client (not SP2). I also use my laptop with linux for testing. Logs do not show anything problematic. Everything works fine. When I try to resolve some other machine name from that problematic server, it works. No firewalls or anything similar. Nothing of that settings up there. In browse list, in /var/cache/samba/browse.dat nmbd writes name of workgroup and server itself, but it cannot resolve its own name. winbind is not running, i do not need it in workgroup. -- Eng. Dusan Djordjevic (RHCE) -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Can't join domain
Hi, I've install samba 3.0.7, Openldap, nss_ldap,pam_ldap, smbldap-tools on sarge. I've got a issue for join the domain on local or with windows xp. I'm trying to made a PDC for windows workstations, i've follow instructions from the Happy guide, smbldap howto, . Everything seems to works except, join the domain and authentificate users with ldap. This is what i've done : smbpasswd -w smbpass - Setting stored password for cn=Manager,dc=bic,dc=pf in secrets.tdb net rpc info net getlocalsid. put the sid in smbldap_conf.pm do a smbldap-populate ( everythin works after with gq i can see my groups,users,...) smbldap-passwd Administrator for set Administrator password. net groupmap list Domain Admins (S-1-5-21-1052293064-3474105952-3995511642-512) - Domain Admins Domain Users (S-1-5-21-1052293064-3474105952-3995511642-513) - Domain Users Domain Guests (S-1-5-21-1052293064-3474105952-3995511642-514) - Domain Guests Administrators (S-1-5-21-1052293064-3474105952-3995511642-544) - Administrators users (S-1-5-21-1052293064-3474105952-3995511642-545) - Users Guests (S-1-5-21-1052293064-3474105952-3995511642-546) - Guests Power Users (S-1-5-21-1052293064-3474105952-3995511642-547) - Power Users Account Operators (S-1-5-21-1052293064-3474105952-3995511642-548) - Account Operators Server Operators (S-1-5-21-1052293064-3474105952-3995511642-549)- Server Operators Print Operators (S-1-5-21-1052293064-3474105952-3995511642-550) - Print Operators Backup Operators (S-1-5-21-1052293064-3474105952-3995511642-551)- Backup Operators Replicator (S-1-5-21-1052293064-3474105952-3995511642-552) - Replicator Domain Computers (S-1-5-21-1052293064-3474105952-3995511642-553) - Domain Computers net rpc user Administrator nobody I can bind Anonymously smbclient3 -L localhost -U% Domain=[BIC] OS=[Unix] Server=[Samba 3.0.2a] Sharename Type Comment - --- netlogon Disk Network Logon Service print$ Disk pdf-generator Printer PDF Generator (only valid users) tmpDisk Temporary file space public Disk Public Stuff IPC$ IPC IPC Service (Samba Server 3.0.2a) ADMIN$ IPC IPC Service (Samba Server 3.0.2a) Domain=[BIC] OS=[Unix] Server=[Samba 3.0.2a] Server Comment ---- BORA BIC master computer CARANGUE Samba Server 3.0.2a WorkgroupMaster ---- BIC CARANGUE smbldap-usermod -u 0 Administrator apply on windows xp, the seal modification with regedit Made machine dn the same than People in smb.conf, regarding the problem i've read on all documenation ( i made also search my nss ldap to all the base dn). i've tried also to authentificate with ssh in local and it's work. But i can't manage to join the domain or authentificate Administrator When i do on my pdc server : net rpc join Administrator Create of workstation account failed User specified does not have administrator privileges Unable to join domain BIC. Any help would be very and very appreciate, is made one weeks on this issue. Regards Vincent PS: Sorry for my bad english -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Poor linux client performance (comparing to XP)
Hello, I haven't found anything useful googling around so I decided to ask here. I have a Linux server running Samba on 100Mbit/s ethernet. If I connect to it using WinXP, mount some share and download files from it it reaches about 9MB/s transfer rate. Using FTP gives even higher transfer rates. BUT when I use linux to connect to (linux!) server, mount shares and download files then transfer speed reaches only about 3-4 MB/s. Using smbclient is a bit faster (0.5-1MB but not always). Using other linux workstations (faster machine) i could only boost transfer rate to 5.0-5.5MB/s. Server and workstation machines are using 2.4.27 and samba 2.2.12 (slackware distro). Is anyone familiar with this issue? Best regards, Bostjan Skufca -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba + OpenLdap replication problem
not sure if I can ask here, because this sounds to me more an OpenLdap than a Samba problem, but it involves samba too. Nope, it's just openldap at this point. It's hard to say exactly what your issue is without knowing how your slapd.conf files are set up. -- Paul Gienger Office: 701-281-1884 Applied Engineering Inc. Information Systems Consultant Fax:701-281-1322 URL: www.ae-solutions.commailto: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Re: Samba + OpenLdap replication problem
Mattia wrote: [EMAIL PROTECTED] root]# slapadd -l Master.ldif -f /etc/openldap/slapd.conf slapadd: bad configuration file! Try adding -d 15 to your slapadd command for more verbose explanation of the error. Igor -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Samba + OpenLdap replication problem
[EMAIL PROTECTED] root]# slapadd -l Master.ldif -f /etc/openldap/slapd.conf slapadd: bad configuration file! Try adding -d 15 to your slapadd command for more verbose explanation of the error. For instructing someone who isn't very ldap aware, you should also note that this will make the server appear to 'hang' when you start it up. That is, if you restart the daemon after setting a debug level it will not return the console to you until such time as you ctrl-c/kill the server process. -- Paul Gienger Office: 701-281-1884 Applied Engineering Inc. Information Systems Consultant Fax:701-281-1322 URL: www.ae-solutions.commailto: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba + OpenLdap replication problem
Paul Gienger wrote: not sure if I can ask here, because this sounds to me more an OpenLdap than a Samba problem, but it involves samba too. Nope, it's just openldap at this point. It's hard to say exactly what your issue is without knowing how your slapd.conf files are set up. Thanks Paul. Here are slapd.conf files on master and slave servers ** MASTER ** # $OpenLDAP: pkg/ldap/servers/slapd/slapd.conf,v 1.23.2.8 2003/05/24 23:19:14 kurt Exp $ # # See slapd.conf(5) for details on configuration options. # This file should NOT be world readable. # include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include /etc/openldap/schema/nis.schema include /etc/openldap/schema/samba.schema include /etc/openldap/schema/redhat/autofs.schema allow bind_v2 pidfile /var/run/slapd.pid argsfile /var/run/slapd.args ### # ldbm and/or bdb database definitions ### databaseldbm suffix dc=mydomain,dc=myorg,dc=it rootdn cn=Manager,dc=mydomain,dc=myorg,dc=it # Cleartext passwords, especially for the rootdn, should # be avoided. See slappasswd(8) and slapd.conf(5) for details. # Use of strong authentication encouraged. rootpw mypass # The database directory MUST exist prior to running slapd AND # should only be accessible by the slapd and slap tools. # Mode 700 recommended. directory /var/lib/ldap # Indices to maintain for this database index objectClass eq index cnpres,sub,eq index snpres,sub,eq index uid pres,sub,eq index displayName pres,sub,eq index uidNumber eq index gidNumber eq index memberUid eq index sambaSID eq index sambaPrimaryGroupSID eq index sambaDomainName eq index default sub # # Replicas of this database # # replogfile /var/log/slurpd.replog replica host=bdc.mydomain.myorg.it:389 tls=no binddn=cn=replicator,dc=mydomain,dc=myorg,dc=it bindmethod=simple credentials=password access to dn=.*,dc=mydomain,dc=myorg,dc=it by dn=cn=replicator,dc=mydomain,dc=myorg,dc=it write by self write by *read access to dn=dc=mydomain,dc=myorg,dc=it by dn=cn=replicator,dc=mydomain,dc=myorg,dc=it write by self write by *read ** SLAVE *** # $OpenLDAP: pkg/ldap/servers/slapd/slapd.conf,v 1.23.2.8 2003/05/24 23:19:14 kurt Exp $ # # See slapd.conf(5) for details on configuration options. # This file should NOT be world readable. # include /etc/openldap/schema/core.schema include /etc/openldap/schema/cosine.schema include /etc/openldap/schema/inetorgperson.schema include /etc/openldap/schema/nis.schema include /etc/openldap/schema/samba.schema include /etc/openldap/schema/redhat/autofs.schema allow bind_v2 pidfile /var/run/slapd.pid argsfile /var/run/slapd.args ### # ldbm and/or bdb database definitions ### databaseldbm suffix dc=mydomain,dc=myorg,dc=it rootdn cn=Manager,dc=mydomain,dc=myorg,dc=it # Cleartext passwords, especially for the rootdn, should # be avoided. See slappasswd(8) and slapd.conf(5) for details. # Use of strong authentication encouraged. rootpw mypass # The database directory MUST exist prior to running slapd AND # should only be accessible by the slapd and slap tools. # Mode 700 recommended. directory /var/lib/ldap/replica updatedncn=Manager,dc=mydomain,dc=myorg,dc=it updateref ldap://bdc.mydomain.myorg.it # Indices to maintain for this database index objectClass eq index cnpres,sub,eq index snpres,sub,eq index uid pres,sub,eq index displayName pres,sub,eq index uidNumber eq index gidNumber eq index memberUid eq index sambaSID eq index sambaPrimaryGroupSID eq index sambaDomainName eq index default sub # # Replicas of this database # # access to dn=.*,dc=mydomain,dc=myorg,dc=it by dn=cn=replicator,dc=mydomain,dc=myorg,dc=it write by self
Re: [Samba] Re: Samba + OpenLdap replication problem
Igor Belyi wrote: Mattia wrote: [EMAIL PROTECTED] root]# slapadd -l Master.ldif -f /etc/openldap/slapd.conf slapadd: bad configuration file! Try adding -d 15 to your slapadd command for more verbose explanation of the error. Igor Igor, thanks a lot! Now it's much clearer [EMAIL PROTECTED] root]# slapadd -l Master.ldif -f /etc/openldap/slapd.conf -d 15 slapadd init: initiated tool. bdb_initialize: initialize BDB backend bdb_initialize: Sleepycat Software: Berkeley DB 4.2.52: (December 3, 2003) dnNormalize: cn=Subschema dnNormalize: cn=subschema could not open config file /etc/openldap/schema/samba.schema: No such file or directory (2) slapadd: bad configuration file! in fact now I remember I had to manually copy this file in the right directory when I've installed the master too... now it works great [EMAIL PROTECTED] root]# slapadd -l Master.ldif -f /etc/openldap/slapd.conf [EMAIL PROTECTED] root]# Thanks to all for the help Bye... Mattia -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Poor linux client performance (comparing to XP)
Denis Vlasenko schrieb: On Monday 04 October 2004 12:49, [EMAIL PROTECTED] wrote: Hello, I haven't found anything useful googling around so I decided to ask here. I have a Linux server running Samba on 100Mbit/s ethernet. If I connect to it using WinXP, mount some share and download files from it it reaches about 9MB/s transfer rate. Using FTP gives even higher transfer rates. BUT when I use linux to connect to (linux!) server, mount shares and download files then transfer speed reaches only about 3-4 MB/s. Using smbclient is a bit faster (0.5-1MB but not always). Using other linux workstations (faster machine) i could only boost transfer rate to 5.0-5.5MB/s. Server and workstation machines are using 2.4.27 and samba 2.2.12 (slackware distro). Is anyone familiar with this issue? You may want to dig more facts: * is server CPU 100% loaded or not? Client CPU? * does bandwidth increase if you download several large files from same share in parallel? You may use attached program to collect various statistics. I compiled it with dietlibc. -- vda hi have you killed the so called web service on the xp client, this is highly recommended for better performance, read the samba faqs about this regards -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Poor linux client performance (comparing to XP)
XP is not problematic, linux is Regards, Bostjan On Monday 04 of October 2004 13:37, [EMAIL PROTECTED] wrote: Denis Vlasenko schrieb: On Monday 04 October 2004 12:49, [EMAIL PROTECTED] wrote: Hello, I haven't found anything useful googling around so I decided to ask here. I have a Linux server running Samba on 100Mbit/s ethernet. If I connect to it using WinXP, mount some share and download files from it it reaches about 9MB/s transfer rate. Using FTP gives even higher transfer rates. BUT when I use linux to connect to (linux!) server, mount shares and download files then transfer speed reaches only about 3-4 MB/s. Using smbclient is a bit faster (0.5-1MB but not always). Using other linux workstations (faster machine) i could only boost transfer rate to 5.0-5.5MB/s. Server and workstation machines are using 2.4.27 and samba 2.2.12 (slackware distro). Is anyone familiar with this issue? You may want to dig more facts: * is server CPU 100% loaded or not? Client CPU? * does bandwidth increase if you download several large files from same share in parallel? You may use attached program to collect various statistics. I compiled it with dietlibc. -- vda hi have you killed the so called web service on the xp client, this is highly recommended for better performance, read the samba faqs about this regards -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] smbmount ignores uid option
Hi, I have the problem that smbmount ignores the uid option. I use the following command for mounting a share which is located on a samba 3 server. mount -t smbfs -o username=dfritz,uid=dfritz //i61fs1/dfritz /mnt/tmp/ A directory listing of the mounted shrare looks like: drwxr-xr-x 1 dfritz root 4.0K Oct 4 15:39 . drwxr-xr-x 4 root root 4.0K Apr 6 18:04 .. -r 1 6501 602 220K Sep 2 17:10 04-16-1.txt drwxr-xr-x 1 6501 6020 Oct 4 13:58 Software -rw-r- 1 6501 602 589K Aug 7 2003 dokumentation.chm -rw-r- 1 6501 602 4.6M Jul 23 13:55 index.chm drwxr-x--- 1 6501 6020 Oct 4 13:57 tmp The uid 6501 and the gid 602 do not exist on my local maschine. 6501 is the uid of the user account on the server who owns the files. It seems to me, that the uid option sets only the ownership of the mountpoint but not of the files on the mounted share. The described problem exists only on my compute (Suse 9.1, Samba 3.0.2a) but not on any other computer (OS X and several linuxes) Any Hints? Dominik -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Poor linux client performance (comparing to XP)
Bostjan Skufca @ domenca.com schrieb: When using 1 client, it is 95% idle, when using 2 clients it is 85% idle. When using 2 clients the throughput roughly doubled (from ~4MB/s to ~8MB/s) Is anyone familiar with this issue? Yes, this has been observed a lot. It's as far as i know based on smb packet size. smbfs will only use 4096 Bytes in one smb packet, whereas a windows client will use much larger packets, up to 60K). (Take ethreal to look at it) -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Point'n'Print: adddriver / WERR_ACCESS_DENIED
Dear list, This problem has been bugging me for days now, I've got Cups version 1.1.21 and Samba 3.0.7 installed and working. There is a single Laserjet 4100 attached to the network, printing via Cups or Cups/Samba works fine. The problems are with getting Point'n'Print to work. I've been scouring the net, archived posts of this list, read the official Samba manual, to no avail. The problem is always the same; I can successfully copy the drivers into the W32X86 directory using e.g. smbclient, but issuing the adddriver command via rpcclient rpcclient newserver -N -U'root%**' -c 'adddriver Windows NT x86 printer:cupsdrvr.dll:printer.ppd:cupsui.dll:cups.hlp:NULL:RAW:NULL' Always returns: result was WERR_ACCESS_DENIED I've tried using the GUI method but when I get to the Advanced tab the 'New Driver' button is grayed out. Best regards, Philip Here's my smb.conf: ---[snip]- [global] # Replace MYWORKGROUPNAME with your workgroup/domain workgroup = NOVASOFT # Of course this has no REAL purpose other than letting # everyone know its not Windows! # %v prints the version of Samba we are using. server string = Samba Server %v # We are going to use cups, so we are going to put it in here ;-) load printers = yes printing = cups printcap name = cups use client driver = no # We want a log file and we do not want it to get bigger than 50kb. log file = /var/log/samba/log.%m max log size = 50 # We are going to set some options for our interfaces... socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 # This is a good idea, what we are doing is binding the # samba server to our local network. # For example, if eth0 is our local network device interfaces = lo eth0 bind interfaces only = yes # Now we are going to specify who we allow, we are afterall # very security conscience, since this configuration does # not use passwords! hosts allow = 127.0.0.1 195.163.190.192/27 hosts deny = 0.0.0.0/0 # Other options for this are USER, DOMAIN, ADS, and SERVER # The default is user security = user # No passwords, so we're going to use a guest account! guest account = samba guest ok = yes # We now will implement the on access virus scanner. # NOTE: By putting this in our [Global] section, we enable # scanning of ALL shares, you could optionally move # these to a specific share and only scan it. # For Samba 3.x vfs object = vscan-clamav vscan-clamav: config-file = /etc/samba/vscan-clamav.conf # Now we setup our print drivers information! [print$] comment = Printer Drivers # this path holds the driver structure path = /etc/samba/drivers guest ok = yes browseable = yes read only = yes # Modify this to username,root if you don't want root to # be the only printer admin) write list = maph,root [HP_Laserjet_4100] comment = HP LaserJet Network Printer printable = yes path = /var/spool/samba public = yes guest ok = yes guest account = samba printer admin = maph,root # Now we setup our printers share. This should be # browseable, printable, public. [printers] comment = All Printers path = /var/spool/samba browseable = no public = yes guest ok = yes writeable = no printable = yes printer admin = maph,root -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Point'n'Print: adddriver / WERR_ACCESS_DENIED
Hello Philip, try putting the printer admin parameter into the global section. It's a global parameter that cannot be used per share. Greetings, Martin On Monday 04 October 2004 16:00, Philip Maurer wrote: Dear list, This problem has been bugging me for days now, I've got Cups version 1.1.21 and Samba 3.0.7 installed and working. There is a single Laserjet 4100 attached to the network, printing via Cups or Cups/Samba works fine. The problems are with getting Point'n'Print to work. I've been scouring the net, archived posts of this list, read the official Samba manual, to no avail. The problem is always the same; I can successfully copy the drivers into the W32X86 directory using e.g. smbclient, but issuing the adddriver command via rpcclient rpcclient newserver -N -U'root%**' -c 'adddriver Windows NT x86 printer:cupsdrvr.dll:printer.ppd:cupsui.dll:cups.hlp:NULL:RAW:NULL' Always returns: result was WERR_ACCESS_DENIED I've tried using the GUI method but when I get to the Advanced tab the 'New Driver' button is grayed out. Best regards, Philip Here's my smb.conf: ---[snip]- [global] # Replace MYWORKGROUPNAME with your workgroup/domain workgroup = NOVASOFT # Of course this has no REAL purpose other than letting # everyone know its not Windows! # %v prints the version of Samba we are using. server string = Samba Server %v # We are going to use cups, so we are going to put it in here ;-) load printers = yes printing = cups printcap name = cups use client driver = no # We want a log file and we do not want it to get bigger than 50kb. log file = /var/log/samba/log.%m max log size = 50 # We are going to set some options for our interfaces... socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 # This is a good idea, what we are doing is binding the # samba server to our local network. # For example, if eth0 is our local network device interfaces = lo eth0 bind interfaces only = yes # Now we are going to specify who we allow, we are afterall # very security conscience, since this configuration does # not use passwords! hosts allow = 127.0.0.1 195.163.190.192/27 hosts deny = 0.0.0.0/0 # Other options for this are USER, DOMAIN, ADS, and SERVER # The default is user security = user # No passwords, so we're going to use a guest account! guest account = samba guest ok = yes # We now will implement the on access virus scanner. # NOTE: By putting this in our [Global] section, we enable # scanning of ALL shares, you could optionally move # these to a specific share and only scan it. # For Samba 3.x vfs object = vscan-clamav vscan-clamav: config-file = /etc/samba/vscan-clamav.conf # Now we setup our print drivers information! [print$] comment = Printer Drivers # this path holds the driver structure path = /etc/samba/drivers guest ok = yes browseable = yes read only = yes # Modify this to username,root if you don't want root to # be the only printer admin) write list = maph,root [HP_Laserjet_4100] comment = HP LaserJet Network Printer printable = yes path = /var/spool/samba public = yes guest ok = yes guest account = samba printer admin = maph,root # Now we setup our printers share. This should be # browseable, printable, public. [printers] comment = All Printers path = /var/spool/samba browseable = no public = yes guest ok = yes writeable = no printable = yes printer admin = maph,root -- Martin Zielinski [EMAIL PROTECTED] Software Development SEH Computertechnik GmbH www.seh.de -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Poor linux client performance (comparing to XP)
Is there any patch (official/unofficial) available to fix this issue? On Monday 04 of October 2004 15:46, Holger Krull wrote: Bostjan Skufca @ domenca.com schrieb: When using 1 client, it is 95% idle, when using 2 clients it is 85% idle. When using 2 clients the throughput roughly doubled (from ~4MB/s to ~8MB/s) Is anyone familiar with this issue? Yes, this has been observed a lot. It's as far as i know based on smb packet size. smbfs will only use 4096 Bytes in one smb packet, whereas a windows client will use much larger packets, up to 60K). (Take ethreal to look at it) -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] winbind sid - uid/gid mapping
as far as I understood the manual correct, the mapping between windows sid and linux uid/gid when using a ldap backend is done under ou=idmap. so, winbind is working well, but I can't see any entries between the ldap ou=imap. where are the entries? cu, thorsten -- Thorsten Scherf [EMAIL PROTECTED] signature.asc Description: Dies ist ein digital signierter Nachrichtenteil -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] (no subject)
I am setting up Samba between a Windows XP and Fedora Core 2 machine the FC2 machine is showing in network neighborhood. But when I double click on it I get a permissions error for \\leitrim although I have run the commands below on the FC2 box with no errors. The FC2 box is leitrim and the XP machine is kevinden. I can also ping both ways and am also not able to browse from the FC2 box to the XP box. I'm not looking for any special setup since I host websites during build on the FC2 box and develop in Dreamweaver on the XP box. # Samba config file created using SWAT # from 127.0.0.1 (127.0.0.1) # Date: 2004/10/02 23:23:09 # Global parameters [global] security = SHARE [test] comment = for testing only path = /usr/local/samba read only = No guest ok = Yes [root at leitrim root]# smbclient -L leitrim Password: Domain=[WORKGROUP] OS=[Unix] Server=[Samba 3.0.7-2.FC2] Sharename Type Comment - --- test Disk for testing only IPC$ IPC IPC Service (Samba 3.0.7-2.FC2) ADMIN$ IPC IPC Service (Samba 3.0.7-2.FC2) Domain=[WORKGROUP] OS=[Unix] Server=[Samba 3.0.7-2.FC2] Server Comment - --- LEITRIM Samba 3.0.7-2.FC2 Workgroup Master - --- WORKGROUP LEITRIM [root at leitrim root]# smbclient -L leitrim Password: Domain=[WORKGROUP] OS=[Unix] Server=[Samba 3.0.7-2.FC2] Sharename Type Comment - --- test Disk for testing only IPC$ IPC IPC Service (Samba 3.0.7-2.FC2) ADMIN$ IPC IPC Service (Samba 3.0.7-2.FC2) Domain=[WORKGROUP] OS=[Unix] Server=[Samba 3.0.7-2.FC2] Server Comment - --- LEITRIM Samba 3.0.7-2.FC2 Workgroup Master - --- WORKGROUP LEITRIM [root at leitrim root]# smbstatus Samba version 3.0.7-2.FC2 PID Username Group Machine --- Service pid machine Connected at --- No locked files [root at leitrim root]# net lookup leitrim 192.168.0.7 [root at leitrim root]# net lookup kevinden 192.168.0.8 [root at leitrim root]# smbclient -L leitrim Password: Domain=[WORKGROUP] OS=[Unix] Server=[Samba 3.0.7-2.FC2] Sharename Type Comment - --- test Disk for testing only IPC$ IPC IPC Service (Samba 3.0.7-2.FC2) ADMIN$ IPC IPC Service (Samba 3.0.7-2.FC2) Domain=[WORKGROUP] OS=[Unix] Server=[Samba 3.0.7-2.FC2] Server Comment - --- LEITRIM Samba 3.0.7-2.FC2 Workgroup Master - --- WORKGROUP LEITRIM [root at leitrim root]# smbclient -L kevinden Password: Domain=[KEVINDEN] OS=[Windows 5.1] Server=[Windows 2000 LAN Manager] Sharename Type Comment - --- E$ Disk Default share IPC$ IPC Remote IPC D$ Disk Default share print$ Disk Printer Drivers SharedDocs Disk ADMIN$ Disk Remote Admin C$ Disk Default share Printer Printer HP OfficeJet K60 Domain=[KEVINDEN] OS=[Windows 5.1] Server=[Windows 2000 LAN Manager] Server Comment - --- Workgroup Master - --- [root at leitrim root]# What am I missing? Thanks -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Poor linux client performance (comparing to XP)
On Monday 04 October 2004 16:15, Bostjan Skufca @ domenca.com wrote: When using 1 client, it is 95% idle, when using 2 clients it is 85% idle. When using 2 clients the throughput roughly doubled (from ~4MB/s to ~8MB/s) Sounds like network isn't utilized to full potential. Rather strange, samba uses TCP for file copying AFAIK and TCP should adapt nicely to bandwidth/delay charasteristics of the link. Do http downloads from same server to same client behave the same as samba download? Did you try to disable TCP_NODELAY and/or sendfile? Do tcpdump on single download stream, look close at packet timestamps and also post it here along with your findings and try to bring attention from _real_ TCP gurus (as oppsed to me). PS: nice tool btw You just uncovered my evil plan: I am trying to secretly spread it all around the world. -- vda -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] smbmount and UTF-8 characters
Hello list! Sorry to be a pain, but I've hunted high and low and can't seem to find the answer. I have a Slackware 10 system and a Microsoft Windows 2000 system. On the Windows 2000 system are lots of files with extended characters - like (tm), (r) and characters with umlauts. I used the locale command and set LC_ALL=en_US.UTF8. I am running KDE and in the Konqueror browser I can use smb:// to connect to a share on the Windows system. All extended characters display as expected. If I use the smbmount command to mount these shares, and then use Konqueror to browse to /mnt/projects I can not longer see the extended characters. An example of one of the many variants of smbmount I have used: smbmount //systemx/projects /mnt/projects/ -o username=**,password=**,workgroup=,codepage=cp850,iocharset= utf8 The filesystem for /mnt/projects is reiserfs, which I understand supports utf8 just fine, though I have not used any explicit mount options. Can anybody guide me towards the magic that will make this work? If it makes any difference, I am trying to mount many shares for the purpose of using s-tar to archive old files. Many thanks, Russell -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Server not responding after Samba upgrade
Dusan Djordjevic wrote: did you have on your smb.conf any of this parameters? dns proxy wins proxy wins server wins support I have plain workgroup. For testing purposes, I have samba on problematic server and only one Win XP client (not SP2). I also use my laptop with linux for testing. Logs do not show anything problematic. Everything works fine. When I try to resolve some other machine name from that problematic server, it works. No firewalls or anything similar. Nothing of that settings up there. In browse list, in /var/cache/samba/browse.dat nmbd writes name of workgroup and server itself, but it cannot resolve its own name. winbind is not running, i do not need it in workgroup. Have you tried adding use sendfile = no in your smb.conf? have you added wins in /etc/nsswitch.conf in section hosts:? -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] idmap with NT4.0
Hi all, I have read about this but is not so clear if I can or I can not map windows user to an LDAPbackend structure via winbind instead they are store in idmap_winbind.tdb file, so I can connect by another samba domain server with the same uid/gid, I know that it is transparent for the user, but it is important if I want to replicate data to onother samba member domain and keep the same user database.It is all in the same LAN and I can not to avoid the Nt server for politicaly reasons, it always keep the SAM. There a guide to do it step by step? Thanks a lot, Marco. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Re: commit changes to removable media + error copying
I have found this: http://uranus.it.swin.edu.au/~jn/linux/automount.htm but still in the dark to resolving this -- thanks On Sun, 3 Oct 2004 13:26:46 -0500, Chris McKeever [EMAIL PROTECTED] wrote: SAMBA 2.2.8A I am automounting a 6-in-1 smartmedia reader such as: /etc/auto..master /mnt/auto /etc/auto.misc --timeout=1 /etc/auto.misc carda -fstype=msdos,rw,nosuid,nodev,umask=000 :/dev/sda1 I am also making that a samba share: [card_a] comment = Removable Card Media path = /mnt/auto/carda browseable = yes public = no read only = no oplocks = no level2 oplocks = no force directory mode = 0777 create mask = 777 force group = domain-users When browsing to the directory, it will automount and display the files. I can update/delete/change the files. However, in order for the changes to commit, I need to browse away from share for the timeout period (1 second) or leave the card in the reader for about a minute. Is there a way to have the changes commit so it could be more transparent to the end user?? also - if I try to copy the file (control-c/control-v) I receive the error message: cannot copy FILENAME: invalid file handle The only log files I see are: [2004/10/03 13:23:50, 0] smbd/fileio.c:seek_file(42) seek_file: (64mb.mp3) sys_lseek failed. Error was Invalid argument but it doesnt necessarily coincide with the times I try to do the cut-n-paste however, if I copy between two different cards in the reader (CF-SD) then it works fine Thanks in advance Chris -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Server not responding after Samba upgrade
On Monday 04 October 2004 16:10, David Ferreira wrote: Dusan Djordjevic wrote: did you have on your smb.conf any of this parameters? dns proxy wins proxy wins server wins support I have plain workgroup. For testing purposes, I have samba on problematic server and only one Win XP client (not SP2). I also use my laptop with linux for testing. Logs do not show anything problematic. Everything works fine. When I try to resolve some other machine name from that problematic server, it works. No firewalls or anything similar. Nothing of that settings up there. In browse list, in /var/cache/samba/browse.dat nmbd writes name of workgroup and server itself, but it cannot resolve its own name. winbind is not running, i do not need it in workgroup. Have you tried adding use sendfile = no in your smb.conf? have you added wins in /etc/nsswitch.conf in section hosts:? I think i found a problem. Since I run samba on virtual interface, i use options: interfaces = 192.168.0.50 127.0.0.1 bind interfaces only = Yes socket address = 192.168.0.50 When I disable socket address, everything works normally. -- Eng. Dusan Djordjevic (RHCE) -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Network browsing with through OpenVPN
Hi all, I have succesfully joined together three LANs using OpenVPN over Linux (Debian) gateways at the 'exit' of each one of these LANs. The VPN seems to be OK, as I can ping network hosts from one LAN to another using their private IP addresses with no problem at all. However network browsing through the VPN is not working. The network diagram for my setup is at http://www.igloo.cl/~pink/network.jpg if you're willing to take a look at it. This is the detailed setup I have: * I have three networks with a public IP address each, called '2norte', '4norte' and '6norte', respectively. * Each of the Linux gateways has five network interfaces: two physical (eth0 and eth1), for Internet and LAN connections, the loopback interface (lo) and two virtual interfaces for the VPN link (tun0 and tun1). They all accept all kind of traffic, both incoming and outgoing, as there are NO firewall filtering rules on them (yet) except for masquerading of outgoing connections to the Internet. * On the tunX interfaces the gateways have 10.0.0.X IP addresses, which are the VPN links. * Each of the LANs has a WORKGROUP style Windows network, which has mixed Win98 and XP clients. All the LANs has configured the same workgroup name. * On each LAN there is a wireless access point which only ocasionally serves to floating clients, mostly XP machines and my OS X iBook. * On each of them the Linux gateway acts as a DHCP server for its local segment, and is also configured as a Samba server, with both 'local master = yes' and 'preferred master = yes', and 'os level = 65'. * The 6norte gateway is configured as the WINS server ('wins support = yes'), the other two gateways are pointing at it ('wins server = 192.168.1.1'). Also 6norte is configured as the domain master browser ('domain master = yes'), while the other two has this explicitly set to 'no'. All the DHCP servers has the specified IP address 192.168.1.1 as their WINS server ('option netbios-name-servers 192.168.1.1;' on dhcpd.conf) * Only recently I added the 'remote announce' and 'remote browse sync' parameters to each of the gateways samba configuration, with the respective other two gateways IPs as parameters. This is an excerpt of my different smb.conf files for each one of the three gateways: 6norte: [global] workgroup = MYWORKGRP netbios name = 6NORTE-SERV wins support = yes interfaces = eth0 lo tun0 tun1 bind interfaces only = yes domain master = yes local master = yes preferred master = yes os level = 65 remote announce = 192.168.0.1 192.168.2.1 remote browse sync = 192.168.0.1 192.168.2.1 name resolve order = wins bcast lmhosts host 4norte: [global] workgroup = MYWORKGRP netbios name = 4NORTE-SERV wins support = no wins server = 192.168.1.1 remote announce = 192.168.1.1 192.168.0.1 remote browse sync = 192.168.1.1 192.168.0.1 interfaces = eth1 lo tun0 tun1 bind interfaces only = yes domain master = no local master = yes preferred master = yes os level = 65 name resolve order = wins bcast lmhosts host 2norte: [global] workgroup = CUERNAVACA netbios name = 2NORTE-SERV wins support = no wins server = 192.168.1.1 remote announce = 192.168.1.1 192.168.2.1 remote browse sync = 192.168.1.1 192.168.2.1 interfaces = eth0 lo tun0 tun1 bind interfaces only = yes domain master = no local master = yes preferred master = yes os level = 65 name resolve order = wins bcast lmhosts host Sorry for the rather long mail but I wanted to give as much detail as possible. Regards, -- Carlos Oliva G. Igloo Sistemas Ltda. [EMAIL PROTECTED] - http://www.igloo.cl Tel/Fax: +56 32 684798 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] winbind apache require group
Hello, Perhaps I should rephrase my question as the last yielded no responses. Is it possible to use samba and winbind with apache to require membership in a specific Windows domain group to authenticate to a realm. Similar to using 'require groups' with an .htaccess file and a UNIX group, I'd like to use 'require group' in an .htaccess file and a Windows domain group. Any information is greatly appreciated. Thanks, -eric -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Poor linux client performance (comparing to XP)
Bostjan Skufca @ domenca.com schrieb: Is there any patch (official/unofficial) available to fix this issue? None that i know about. You could try using mount.cifs. Is anyone familiar with this issue? Yes, this has been observed a lot. It's as far as i know based on smb packet size. smbfs will only use 4096 Bytes in one smb packet, whereas a windows client will use much larger packets, up to 60K -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] SuSE 9.1 Pro
Is anyone aware of any specific problems with SuSE 9.1 Pro in regards to running Samba as a domain controller? I have been trying for a couple of weeks to get it setup but keep running into one roadblock or another. Half of the time I can't see the DC at all unless I disable the SuSE Firewall altogether, other times I am able to see the DC just not connect if I have ports 137, 138, 139 and 445 open. I haven't been able to find much help online or in the various forums that I frequent and was wondering if anyone knew of any specific probelms with SuSE 9.1 that I might not be aware of. Thanks in advance. -- Chuck Chauvin Network Administrator [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Scaleable LDAP Backends for Samba; Domain Controllers group access
As far as I know, it *HAS* to be done this way because the posixGroup schema is way out of date (it wont take a dn as a member). That is true, well the out of date part. It doesn't have to be done this way. This info according to the gurus on the OpenLDAP list. In effect we have to keep a duplicate set of group records for those that will have access to the database. No. Duplicate is bad, only a matter of time till someone screws it up, and debugging the ensuing wierdness will be a real headache. For example, if you want to give group based access to a group like Domain Controllers, you would have to keep a duplicate record using a different objectClass. Recent versions of NSS LDAP support RFC2307BIS, where groups can contain member attributes rather than memberuid attributes. So OS groups can be objectclass groupOfNames rather than posixAccount. The schema is busted however, since posixGroup is structural. So load - objectclass ( 1.3.6.1.4.1.6921.1.18 NAME 'nssBisGroup' DESC 'Adds POSIX Attributes To A GroupOfNames' SUP top AUXILIARY MUST ( cn, gidNumber ) MAY ( userPassword, description ) ) Since groupOfNames already requires cn, you just add a gidNumber and the objectclass to groups that you want to be OS groups. And set the NSS configuration to: nss_map_objectclass posixGroup nssBisGroup pam_member_attribute member -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Samba 3x for Solaris
I'm tyring to get samba compliled and installed on a Sun V880 server Solaris 8. I've been running Version 2.7 for some time .. no problem.. COmpany recently switched to Windows 2000 Domain with Active Directory services. I need to put this server into the ADS domain. I've read that if the ADS domain was native that I should be able to join this ADS domain using net join (Version 3x) or using the smbpasswd -J etc .. to attach to the ADS domain. This fails when trying to authenticate to the domain. Do I need to get a compiled version --with-ADS support.. or should Version 2.x work with native mode ADS environment? If I need ADS compiled into the Source .. has anyone used the Solaris Kerebos and got it work with Samba.. I've been looking around for some time and not found definative details on how to make this all work .. any help would be greatly appreciated.. -doug sylliaasen Sony Electronics -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Upgrade from 2.2.8 to 3; users lack SIDs
I recently have upgraded from Samba 2.2.8 to 3.0.7. I am using LDAP as a backend, but I'm running into a problem. Namely, since my user entries have no sambaSID attribute, Samba decides they don't exist. (At least, that's how it looks in the logs, included below.) I've looked through the conversion script that's included with Samba 3, but it just uses the rid attribute, which I also don't have assigned in any of my users. Is there any way to algorithmically convert a unix uid to an sid? I'd like to just run a script through all of my users to grab the uid, convert to an rid, prepend my system sid, and write it to the sambaSID attribute. Here's the log excerpt that lead me to believe that it's having problems with the SID: [...snip...] [2004/10/04 14:57:39, 10] passdb/pdb_get_set.c:pdb_set_nt_username(679) pdb_set_nt_username: setting nt username stpierre, was [2004/10/04 14:57:39, 10] passdb/pdb_get_set.c:pdb_set_init_flags(525) element 15 - now SET [2004/10/04 14:57:39, 10] lib/smbldap.c:smbldap_get_single_attribute(309) smbldap_get_single_attribute: [sambaSID] = [does not exist] [2004/10/04 14:57:39, 10] lib/smbldap.c:smbldap_get_single_attribute(309) smbldap_get_single_attribute: [sambaPrimaryGroupSID] = [does not exist] [2004/10/04 14:57:39, 10] passdb/pdb_get_set.c:pdb_set_group_sid(588) pdb_set_group_sid: setting group sid S-1-5-21-2507527290-1625623118-1076039497-513 [2004/10/04 14:57:39, 10] passdb/pdb_compat.c:pdb_set_group_sid_from_rid(100) pdb_set_group_sid_from_rid: setting group sid S-1-5-21-2507527290-1625623118-1076039497-513 from rid 513 [2004/10/04 14:57:39, 1] passdb/pdb_ldap.c:init_sam_from_ldap(539) init_sam_from_ldap: no sambaSID or sambaSID attribute found for this user stpierre [2004/10/04 14:57:39, 1] passdb/pdb_ldap.c:ldapsam_getsampwnam(1278) ldapsam_getsampwnam: init_sam_from_ldap failed for user 'stpierre'! [2004/10/04 14:57:39, 3] smbd/sec_ctx.c:pop_sec_ctx(386) pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 [2004/10/04 14:57:39, 3] auth/auth_sam.c:check_sam_security(244) check_sam_security: Couldn't find user 'stpierre' in passdb file. [2004/10/04 14:57:39, 5] auth/auth.c:check_ntlm_password(271) check_ntlm_password: sam authentication for user [stpierre] FAILED with error NT_STATUS_NO_SUCH_USER [2004/10/04 14:57:39, 3] auth/auth_winbind.c:check_winbind_security(80) check_winbind_security: Not using winbind, requested domain [NWU_TEST] was for this SAM. [2004/10/04 14:57:39, 10] auth/auth.c:check_ntlm_password(259) check_ntlm_password: winbind had nothing to say [2004/10/04 14:57:39, 2] auth/auth.c:check_ntlm_password(312) check_ntlm_password: Authentication for user [stpierre] - [stpierre] FAILED with error NT_STATUS_NO_SUCH_USER [...snip...] I've googled for the algorithm, but everyone else seems to be more interested in converting sids to uids. Any ideas? Thanks. Chris St. Pierre Unix Systems Administrator Nebraska Wesleyan University 402.465.7549 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Network browsing with through OpenVPN
Just a guess but it's probably a routing table issue. Your pings are probably transversing via the physical paths. jay -Original Message- From: Carlos Oliva G. [mailto:[EMAIL PROTECTED] Sent: Monday, October 04, 2004 12:56 PM To: [EMAIL PROTECTED] Subject: [Samba] Network browsing with through OpenVPN Hi all, I have succesfully joined together three LANs using OpenVPN over Linux (Debian) gateways at the 'exit' of each one of these LANs. The VPN seems to be OK, as I can ping network hosts from one LAN to another using their private IP addresses with no problem at all. However network browsing through the VPN is not working. The network diagram for my setup is at http://www.igloo.cl/~pink/network.jpg if you're willing to take a look at it. This is the detailed setup I have: * I have three networks with a public IP address each, called '2norte', '4norte' and '6norte', respectively. * Each of the Linux gateways has five network interfaces: two physical (eth0 and eth1), for Internet and LAN connections, the loopback interface (lo) and two virtual interfaces for the VPN link (tun0 and tun1). They all accept all kind of traffic, both incoming and outgoing, as there are NO firewall filtering rules on them (yet) except for masquerading of outgoing connections to the Internet. * On the tunX interfaces the gateways have 10.0.0.X IP addresses, which are the VPN links. * Each of the LANs has a WORKGROUP style Windows network, which has mixed Win98 and XP clients. All the LANs has configured the same workgroup name. * On each LAN there is a wireless access point which only ocasionally serves to floating clients, mostly XP machines and my OS X iBook. * On each of them the Linux gateway acts as a DHCP server for its local segment, and is also configured as a Samba server, with both 'local master = yes' and 'preferred master = yes', and 'os level = 65'. * The 6norte gateway is configured as the WINS server ('wins support = yes'), the other two gateways are pointing at it ('wins server = 192.168.1.1'). Also 6norte is configured as the domain master browser ('domain master = yes'), while the other two has this explicitly set to 'no'. All the DHCP servers has the specified IP address 192.168.1.1 as their WINS server ('option netbios-name-servers 192.168.1.1;' on dhcpd.conf) * Only recently I added the 'remote announce' and 'remote browse sync' parameters to each of the gateways samba configuration, with the respective other two gateways IPs as parameters. This is an excerpt of my different smb.conf files for each one of the three gateways: 6norte: [global] workgroup = MYWORKGRP netbios name = 6NORTE-SERV wins support = yes interfaces = eth0 lo tun0 tun1 bind interfaces only = yes domain master = yes local master = yes preferred master = yes os level = 65 remote announce = 192.168.0.1 192.168.2.1 remote browse sync = 192.168.0.1 192.168.2.1 name resolve order = wins bcast lmhosts host 4norte: [global] workgroup = MYWORKGRP netbios name = 4NORTE-SERV wins support = no wins server = 192.168.1.1 remote announce = 192.168.1.1 192.168.0.1 remote browse sync = 192.168.1.1 192.168.0.1 interfaces = eth1 lo tun0 tun1 bind interfaces only = yes domain master = no local master = yes preferred master = yes os level = 65 name resolve order = wins bcast lmhosts host 2norte: [global] workgroup = CUERNAVACA netbios name = 2NORTE-SERV wins support = no wins server = 192.168.1.1 remote announce = 192.168.1.1 192.168.2.1 remote browse sync = 192.168.1.1 192.168.2.1 interfaces = eth0 lo tun0 tun1 bind interfaces only = yes domain master = no local master = yes preferred master = yes os level = 65 name resolve order = wins bcast lmhosts host Sorry for the rather long mail but I wanted to give as much detail as possible. Regards, -- Carlos Oliva G. Igloo Sistemas Ltda. [EMAIL PROTECTED] - http://www.igloo.cl Tel/Fax: +56 32 684798 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Message not delivered RE: Re: Approved
Ihre Nachricht Your message From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Date: Mon, 4 Oct 2004 21:45:58 +0200 Subject: Re: Approved wurde nicht zugestellt, ein Virus oder Wurm wurde entdeckt. was not delivered, a virus or worm was detected. Bitte antworten sie nicht an [EMAIL PROTECTED] Please do not answer to [EMAIL PROTECTED] Viren benutzen oft die Adressbuecher eines befallenen Szstems als Senderadresse. Insofern kann es sein, dass die Nachricht nicht von Ihrem System versendet wurde.Wurde ihre Mail-Adresse missbraucht, koennen Sie diese Nachricht loeschen. Virus often uses adressbooks of infected systems as sender-adress. So it is possible, that the message came not from your system. Was your address misused, you can delete this message. This message was generated by Mailsweeper. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] 3.x Solaris 8 lockups
Is anybody experiencing what I have twice now -- Samba 3.x running fine on Sparc/Solaris 8 for a week or more then one day out of the blue it'll just go all haywire? So haywire that in both my instances of this I had to change Samba versions to get the servers back to life. Long boring story short on any useful detail below... Recently I had to go from 2.x to 3.x series since there aren't going to be any more patches released for 2.x. I started in July with 3.0.2a obtained as a package from sunfreeware.com and it worked flawlessly for about a week. Then one day the smbd processes kept freezing and new ones would get spawned for the same already connected user. You had to use a -9 to get them all shut down. I needed to get it back in action quick since it is a production server so I couldn't really spend time troubleshooting. I had recently compiled 3.0.5 myself so I swapped that in, using the exact same smb.conf and what not. Blamed it on never knowing exactly what you're getting from sunfreeware and/or older version of samba. Never had a problem with that server since. A little over a week ago I migrated that server from 3.0.5 and 5 other servers from 2.x to version 3.0.7 which I compiled myself. I installed that same compile on all 6 servers. Everythings been great for the past 10 days or so since the upgrade then today all of a sudden one of the servers is acting like the one other one did back on me in July. Horrible performance from end users perspective, smbds not responding so new ones being launched until the server ran out of swap space, even after rebooting that server same problem today, stopped and started samba a few times, have to use pkill -9 smbd to get rid of them all, that server just refuses to run 3.0.7 today so I had to revert back to the 2.2.8a that I'd upgraded from. I really can't provide any detail since in both cases it was extremely urgent that I just get them working again ASAP and didn't have time to experiment and turn up the log level and what not. Outside of these two instances though its been great on all 6 servers and a couple test ones. Tom Schaefer -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Print Job Description feild
I need to modify the Job Description field of an outbound print job. I'm think this is different that the Job ID and Job Name fields, although I'm not sure. I am printing from Fedora Core 2 using the stock cups (1.1.20-11.1) and samba (3.0.7-2.FC2) to various Windows print servers. Any information would be helpful. Thanks. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Re: commit changes to removable media + error copying
On Sun, 3 Oct 2004 13:26:46 -0500, Chris McKeever [EMAIL PROTECTED] wrote: SAMBA 2.2.8A I am automounting a 6-in-1 smartmedia reader such as: /etc/auto..master /mnt/auto /etc/auto.misc --timeout=1 /etc/auto.misc carda -fstype=msdos,rw,nosuid,nodev,umask=000 :/dev/sda1 I am also making that a samba share: [card_a] comment = Removable Card Media path = /mnt/auto/carda browseable = yes public = no read only = no oplocks = no level2 oplocks = no force directory mode = 0777 create mask = 777 force group = domain-users When browsing to the directory, it will automount and display the files. I can update/delete/change the files. However, in order for the changes to commit, I need to browse away from share for the timeout period (1 second) or leave the card in the reader for about a minute. Is there a way to have the changes commit so it could be more transparent to the end user?? also - if I try to copy the file (control-c/control-v) I receive the error message: cannot copy FILENAME: invalid file handle this was an issue withthe cards being formatted msdos rather than vfat, that fixed that problem - now if I can figure out how to commit the changes to the mounted system quicker -- The only log files I see are: [2004/10/03 13:23:50, 0] smbd/fileio.c:seek_file(42) seek_file: (64mb.mp3) sys_lseek failed. Error was Invalid argument but it doesnt necessarily coincide with the times I try to do the cut-n-paste however, if I copy between two different cards in the reader (CF-SD) then it works fine Thanks in advance Chris -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Samba Shares not Refreshing contents
Hello List, I've seen this question multiple times in several forums, and no answers. I've just setup a couple of Linux (fedora core2)/Samba servers that are supposed to act as NAS (2.7 and 3.7 TB respectively), samba is working fine and it's perfectly integrated to the active directory and NT domain (win2003 environment). However I've got a problem refreshing the contents of any folders whenever I create a new folder or rename a file. I've got to manually refresh the explorer windows (pressing F5) to see the changes, Is there any way to make it work so explorer reloads the folder lists whenever they change? Basically, this is just an annoyance, 'because users won't use directly the samba shares. I want to upgrade our fileservers from win2003 to Linux/Samba later on, and then will become a big issue instead of just a minor annoyance. As I said before I've seen this question on forums previously but couldn't find a decent answer. Even some Sun technician just answered to a customer that it was pretty much the standard samba behavior. Is it true? Thanks in Advance, Omar -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Update: [Samba] Samba Shares not Refreshing contents
Actually it looks like this problem only affects some workstations. Could it be my domain policy? (I guess so 'cause only computers logged on to the domain exhibit this behavior) Anyone ever experienced this? Omar -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Omar Castañeda Acosta Sent: Monday, October 04, 2004 3:31 PM To: [EMAIL PROTECTED] Subject: [Samba] Samba Shares not Refreshing contents Hello List, I've seen this question multiple times in several forums, and no answers. I've just setup a couple of Linux (fedora core2)/Samba servers that are supposed to act as NAS (2.7 and 3.7 TB respectively), samba is working fine and it's perfectly integrated to the active directory and NT domain (win2003 environment). However I've got a problem refreshing the contents of any folders whenever I create a new folder or rename a file. I've got to manually refresh the explorer windows (pressing F5) to see the changes, Is there any way to make it work so explorer reloads the folder lists whenever they change? Basically, this is just an annoyance, 'because users won't use directly the samba shares. I want to upgrade our fileservers from win2003 to Linux/Samba later on, and then will become a big issue instead of just a minor annoyance. As I said before I've seen this question on forums previously but couldn't find a decent answer. Even some Sun technician just answered to a customer that it was pretty much the standard samba behavior. Is it true? Thanks in Advance, Omar -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] SuSE 9.1 Pro
Chuck Chauvin schrieb: Is anyone aware of any specific problems with SuSE 9.1 Pro in regards to running Samba as a domain controller? I have been trying for a couple of weeks to get it setup but keep running into one roadblock or another. Half of the time I can't see the DC at all unless I disable the SuSE Firewall altogether, other times I am able to see the DC just not connect if I have ports 137, 138, 139 and 445 open. I haven't been able to find much help online or in the various forums that I frequent and was wondering if anyone knew of any specific probelms with SuSE 9.1 that I might not be aware of. Thanks in advance. -- Chuck Chauvin Network Administrator [EMAIL PROTECTED] Hi, the simple answer is dont use suse firewall,( iptables scripts are easy to google ) and study more chapters from Samba Browsing I run many samba server under suse without any special problems what you should now is taht you should not use a .local dns domain on your internal nameserver , which is highly recommend for a private network, in suse 9.1 this dns domains are resolved by multicast for miracle reason, without having the magic to disable it. Regards -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] commit changes to removable media + error copying
On Mon, 04 Oct 2004 23:26:59 +0200, Holger Krull [EMAIL PROTECTED] wrote: minute. Is there a way to have the changes commit so it could be more transparent to the end user?? I don't know exactly, but maybe this is the usual bdflush write behind time, if you are on linux. Parameters may vary with kernel. On 2.4 i use echo 40 2048 0 0 100 600 60 20 /proc/sys/vm/bdflush to reduce write cache age time to 6 seconds. Thanks Holger - gave it a shot still wont commit the changes until I close out the explorer window or move off the share -- just wondering how people handle this with samba shared floppies and other removable mediaso close, yet not thanks -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: Update: [Samba] Samba Shares not Refreshing contents
We have the problem on some of our machines, and we are a pure workgroup setup. BTW: I think this also happens with some of our Win2K servers, so this is not a samba unique issue. On Mon, 4 Oct 2004 15:37:45 -0600, Omar Castañeda Acosta [EMAIL PROTECTED] wrote: Actually it looks like this problem only affects some workstations. Could it be my domain policy? (I guess so 'cause only computers logged on to the domain exhibit this behavior) Anyone ever experienced this? Omar -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Omar Castañeda Acosta Sent: Monday, October 04, 2004 3:31 PM To: [EMAIL PROTECTED] Subject: [Samba] Samba Shares not Refreshing contents Hello List, I've seen this question multiple times in several forums, and no answers. I've just setup a couple of Linux (fedora core2)/Samba servers that are supposed to act as NAS (2.7 and 3.7 TB respectively), samba is working fine and it's perfectly integrated to the active directory and NT domain (win2003 environment). However I've got a problem refreshing the contents of any folders whenever I create a new folder or rename a file. I've got to manually refresh the explorer windows (pressing F5) to see the changes, Is there any way to make it work so explorer reloads the folder lists whenever they change? Basically, this is just an annoyance, 'because users won't use directly the samba shares. I want to upgrade our fileservers from win2003 to Linux/Samba later on, and then will become a big issue instead of just a minor annoyance. As I said before I've seen this question on forums previously but couldn't find a decent answer. Even some Sun technician just answered to a customer that it was pretty much the standard samba behavior. Is it true? Thanks in Advance, Omar -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Possible bug with short preserve case = no
Hi, Sorry, it's not a reply on topic but: If You are Victor Velixon formerly Sensormatic employee from Ratingen, working under Gunther Wohlfromm, If You don't mind and not too busy, please contact me at [EMAIL PROTECTED], its Lucas Wrobel formerly Sensormatic Poland - Warsaw, just found Your name accidently on forum. Regards Lucas -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] samba forum - old friend
Hi, Sorry, it's not a reply on topic but: If You are Victor Velixon formerly Sensormatic employee from Ratingen, working under Gunther Wohlfromm, If You don't mind and not too busy, please contact me at [EMAIL PROTECTED], its Lucas Wrobel formerly Sensormatic Poland - Warsaw, just found Your name accidently on forum. Regards Lucas -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Using parameters in lpq command conflicts with background lpq
I have an application than makes use of the lpq command and uses the %U parameter in the command string. The application returns a personalized queue list based on the value of %U. This technique worked well in older versions of Samba (circa RedHat 8), but I have run into some trouble with Samba 3. The issue appears to be twofold. 1) The lpq command is now run from the background lpq monitoring process, which does not have a user (%U) per-se associated with it. 2) The background lpq process maintains its cache(s) based on the service name. IIRC, the older caching system maintained a cache for each unique lpq command line. I've temporarily solved the problem by running smbd from inetd - this prevents the background lpq process from running and causes each user's process to invoke their own lpq command (complete with %U substitution). Would it be possible to update the background lpq code to use the (fully substituted) lpq command as the cache identifier instead of (or in addition to) the service name? My application aside, I think it would be best if Samba's behavior was consistent in both daemon and non-daemon modes. I'd be willing to lend my mediocre programming skills to the task if it would help. Thank you -Jerry -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Samba 3.0.4 Profile Permissions
When attempting to login to my Samba 3.0.4 PDC from a Windows XP client as a user with administrative priveleges (in this case, the user is a member of the adm group in Linux and all members of that group are members of the Adminstrators group in Windows) I get the following error: Windows did not load your roaming profile and is attempting to log you on with your local profile. Changes to the profile will not be copied to the server when you logoff. Windows did not load your profile because a server copy of the profile folder already exists that does not have the correct security. Either the current user or the Administrator's group must be the owner of the folder. Contact your network administrator. When I attempt to login using my own account (also a member of that group) I get the following error: Windows cannot log you in now because the domain BAGGINS is not available. I created a new user account in Linux and Samba called bagginsuser and get the same error as when I attempt to login using my account. This is my smb.conf file for your perusal. Also included at the end of this are my log.smbd and log.nmbd files. Any assistance would be appreciated. [global] workgroup = BAGGINS security = user encrypt passwords = yes passdb backend = smbpasswd server string = Domain Controller netbios name = BILBO add machine script = /usr/sbin/useradd -c Machine -d /var/lib/nobody - s /bin/false %m$ domain master = yes domain logons = yes logon script = logon.cmd local master = yes preferred master = yes os level = 65 [homes] comment = Home Directory for %u path = /home/%u read only = No browseable = No [Projects] comment = Project Folders path = /data-1/projects admin users = @Design, adm, Manager read only = No create mask = 0775 force create mode = 0775 force security mode = 0775 force directory mode = 0775 force directory security mode = 0775 [Temp] comment = Temporary Space path = /data-1/temp admin users = @Design, adm, Manager read only = No create mask = 0777 [Archive] comment = Archived Projects path = /data-1/archive write list = @adm security mask = 0755 directory security mask = 0755 guest ok = Yes [netlogon] comment = Network Logon Service path = /etc/samba/netlogon guest ok = Yes [Profiles] path = /home/%u/profile browseable = No writeable = yes nt acl support = yes My log.smbd [2004/10/04 11:55:00, 1] smbd/service.c:make_connection_snum(619) baggins001 (192.168.1.6) connect to service bagginsadmin initially as user bagginsadmin (uid=543, gid=4) (pid 7537) [2004/10/04 11:55:00, 1] smbd/service.c:close_cnum(801) baggins001 (192.168.1.6) closed connection to service bagginsadmin [2004/10/04 11:55:04, 1] smbd/service.c:make_connection_snum(619) baggins001 (192.168.1.6) connect to service bagginsadmin initially as user bagginsadmin (uid=543, gid=4) (pid 7537) [2004/10/04 11:55:13, 1] smbd/service.c:close_cnum(801) baggins001 (192.168.1.6) closed connection to service bagginsadmin [2004/10/04 11:55:14, 1] smbd/service.c:make_connection_snum(619) baggins001 (192.168.1.6) connect to service bagginsadmin initially as user bagginsadmin (uid=543, gid=4) (pid 7537) [2004/10/04 11:55:15, 1] smbd/service.c:make_connection_snum(619) baggins001 (192.168.1.6) connect to service netlogon initially as user bagginsadmin (uid=543, gid=4) (pid 7537) [2004/10/04 11:56:50, 1] smbd/service.c:close_cnum(801) baggins001 (192.168.1.6) closed connection to service netlogon [2004/10/04 11:58:43, 1] smbd/service.c:make_connection_snum(619) baggins001 (192.168.1.6) connect to service Archive initially as user bagginsadmin (uid=543, gid=4) (pid 7537) [2004/10/04 11:58:43, 1] smbd/service.c:make_connection_snum(619) baggins001 (192.168.1.6) connect to service Projects initially as user bagginsadmin (uid=543, gid=4) (pid 7537) [2004/10/04 11:58:43, 1] smbd/service.c:make_connection_snum(619) baggins001 (192.168.1.6) connect to service Temp initially as user bagginsadmin (uid=543, gid=4) (pid 7537) [2004/10/04 11:59:05, 0] rpc_parse/parse_samr.c:init_sam_user_info21A(5988) init_sam_user_info_21A: User bagginsadmin has Primary Group SID S-1-5-32- 544, which conflicts with the domain sid S-1-5-21-2763611909-969304523- 3334035465. Failing operation. [2004/10/04 12:00:21, 1] smbd/service.c:close_cnum(801) baggins001 (192.168.1.6) closed connection to service bagginsadmin [2004/10/04 12:00:24, 1] smbd/service.c:make_connection_snum(619) baggins001 (192.168.1.6) connect to service bagginsadmin initially as user bagginsadmin (uid=543, gid=4) (pid 7537) [2004/10/04 12:00:24, 1] smbd/service.c:close_cnum(801) baggins001 (192.168.1.6) closed connection to service bagginsadmin [2004/10/04 12:01:23, 1] smbd/service.c:close_cnum(801) baggins001 (192.168.1.6) closed connection to service Archive [2004/10/04 12:01:23, 1]
[Samba] Weighty phallus in 80 sec!
My oil is a well-known recent topical lubricating substance invented to forthwith increment the might and size of your member, and bequeath you a more terrific and satisfying sexual adventure. http://1234her-bal.com/s/b/?pizzer -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] INVALID PIPE HANDLE
I'm trying to use Samba 3.0.5 on a slackware 10 system and am having problems getting my XP Pro machines to join the domain. Whenever I try to add a machine to the domain the error the remote procedure call failed is shown. When I look at the samba log file I see the entry api_fd_reply: INVALID PIPE HANDLE: 746f cooresponding to the time I tried to add the machine. Other than this problem I can access shares fine, just not add the machine to the domain. Any ideas? Will I'll copy my smb.conf below: [global] workgroup = WLHC server string = WLHC Server passdb backend = tdbsam log file = /var/log/samba.%m max log size = 50 load printers = No add user script = /usr/sbin/useradd %u delete user script = /usr/sbin/userdel %u add group script = /usr/sbin/groupadd %g delete group script = /usr/sbin/groupdel %g delete user from group script = /usr/sbin/deluser %u %g add machine script = /usr/sbin/adduser -n -g machines -c Machine -d /dev/null -s /bin/false %u domain logons = Yes os level = 33 preferred master = Yes domain master = Yes dns proxy = No wins support = Yes [homes] comment = Home Directories read only = No browseable = No -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Re: Scaleable LDAP Backends for Samba; Domain Controllers group access
objectclass ( 1.3.6.1.4.1.6921.1.18 NAME 'nssBisGroup' DESC 'Adds POSIX Attributes To A GroupOfNames' SUP top AUXILIARY MUST ( cn, gidNumber ) MAY ( userPassword, description ) ) Uh... gee, on second thought I don't see how this is going to work with the smbldap scripts nor do I know if this will take a sambaGroupMapping. It would be pointless to have the database structure correct (or at least more correct) if in the process we invalidate the provided management tools or make it so that samba cannot also use the group. I mean I know you are sharp enough to write your own scripts and there is the likelihood that I could also given the time. Unfortunately we cannot assume this about our newbie admins who will be reading the resulting HOWTO. Jim C. -- - | I can be reached on the following Instant Messenger services: | |---| | MSN: [EMAIL PROTECTED] AIM: WyteLi0n ICQ: 123291844 | |---| | Y!: j_c_llings Jabber: [EMAIL PROTECTED]| - -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] printer giving Access Denied
I have 2 printer queues setup on my samba 3.0.6 NT4-style PDC. About a month ago, one of them stopped working due to an issue with CUPS. After restarting CUPS, printing to that share was giving Access Denied. From a windows box, I was able to add drivers and set default print settings as a domain administrator but I still couldn't print. I created a new printer share pointing at the same CUPS printer with the same configuration and the new one worked. In my smb.conf snippet below, the non-working printer share had the same settings as 'jetdirect' but with the printer of 'minimike'. 'jetdirect' has never given me a problem and 'minimike' worked from the moment I created the share. The current 'minimike' settings are scaled down from what it was when I first created it. Can anyone think of a reason why this would happen? [jetdirect] printer = jetdirect comment = Hallway printer printable = yes writeable = yes public = yes printer admin = @domainadmins guest ok = yes [minimike] printer = hp4200 printable = yes read only = no printer admin = @domainadmins -- Andrew Gaffney Network Administrator Skyline Aeronautics, LLC. 636-357-1548 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] AD2003 +Squid NTLM Auth.
Authenticating Server: 2003 with Active Directory Enabled Squid Server: FreeBSD 5.1 Samba: 3.0.7,1 Other package info in package list at bottom. The DNS server is on the 2003 Server with the proper kerberos and ldap entries in the DNS server. (Passes Active Directory DNS utility tests) Responses are sent in LM, NTLM, NTLM2 when negotiated. Signing requirements are not configured. (Choices: Enable, or not configured). Have read, and followed to best of my ability the squid FAQ and winbind/nmb/samba man pages. Things that work: All of the command line based tests work, as you will see when you look below. But when I try to authenticate with a browser I get denied, and the following info in cache.log and log.winbindd. If I modify the permissions on /var/db/samba/winbindd_privileged, that breaks the wbinfo tests saying that the permissions on that file are incorrect. Note: when I went to build samba --with-ads on freebsd it complaind about KRB5 and asked for HEIMDAL instead...so I am actually using HEIMDAL not KRB5, as Samba refused to compile with KRB5 but compiled fine with HEIMDAL. Squid works great unauthenticated, but fails all auth tests when using an actual browser. The squid-helper passes basic auth tests from the command line, but when using a browser such as netscape which should use BASIC auth mode, it denies with the same messages in the logs as IE failing on challenge/response. -tail of access.log--- 1096907971.215 4 192.168.1.110 TCP_DENIED/407 3715 GET http://www.microsoft.com/isapi/redir.dll? - NONE/- text/html 1096908014.779 3 192.168.1.110 TCP_DENIED/407 3674 GET http://www.microsoft.com/isapi/redir.dll? - NONE/- text/html 1096908014.840 11 192.168.1.110 TCP_DENIED/407 3701 GET http://www.microsoft.com/isapi/redir.dll? - NONE/- text/html 1096908014.848 7 192.168.1.110 TCP_DENIED/407 3674 GET http://www.microsoft.com/isapi/redir.dll? - NONE/- text/html 1096908017.003 7 192.168.1.110 TCP_DENIED/407 3701 GET http://www.microsoft.com/isapi/redir.dll? - NONE/- text/html 1096908017.010 6 192.168.1.110 TCP_DENIED/407 3674 GET http://www.microsoft.com/isapi/redir.dll? - NONE/- text/html 1096908017.487 6 192.168.1.110 TCP_DENIED/407 3701 GET http://www.microsoft.com/isapi/redir.dll? - NONE/- text/html 1096908017.493 6 192.168.1.110 TCP_DENIED/407 3674 GET http://www.microsoft.com/isapi/redir.dll? - NONE/- text/html 1096908018.007 6 192.168.1.110 TCP_DENIED/407 3701 GET http://www.microsoft.com/isapi/redir.dll? - NONE/- text/html 1096908018.013 6 192.168.1.110 TCP_DENIED/407 3674 GET http://www.microsoft.com/isapi/redir.dll? - NONE/- text/html --- --tail of cache.log [2004/10/04 11:40:17, 0] utils/ntlm_auth.c:winbind_pw_check(439) Login for user [EMAIL PROTECTED] failed due to [winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/db/samba/winbindd_privileged are set correctly.] [2004/10/04 11:40:17, 0] utils/ntlm_auth.c:manage_squid_ntlmssp_request(612) NTLMSSP BH: NT_STATUS_ACCESS_DENIED 2004/10/04 11:40:17| authenticateNTLMHandleReply: Error validating user via NTLM. Error returned 'BH NT_STATUS_ACCESS_DENIED' [2004/10/04 11:40:18, 0] utils/ntlm_auth.c:winbind_pw_check(439) Login for user [EMAIL PROTECTED] failed due to [winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/db/samba/winbindd_privileged are set correctly.] [2004/10/04 11:40:18, 0] utils/ntlm_auth.c:manage_squid_ntlmssp_request(612) NTLMSSP BH: NT_STATUS_ACCESS_DENIED 2004/10/04 11:40:18| authenticateNTLMHandleReply: Error validating user via NTLM. Error returned 'BH NT_STATUS_ACCESS_DENIED' -tail of log.winbindd-- [2004/10/04 11:42:00, 0] libsmb/cliconnect.c:cli_session_setup_spnego(759) Kinit failed: Unknown error -1765328228 [2004/10/04 11:42:00, 0] libsmb/cliconnect.c:cli_session_setup_spnego(759) Kinit failed: Unknown error -1765328228 [2004/10/04 11:43:01, 1] libsmb/clikrb5.c:ads_krb5_mk_req(313) krb5_cc_get_principal failed (No such file or directory) [2004/10/04 11:43:01, 0] libads/kerberos.c:ads_kinit_password(136) kerberos_kinit_password host/HOST@ failed: Unknown error -1765328228 [2004/10/04 11:43:01, 1] nsswitch/winbindd_ads.c:ads_cached_connection(81) ads_connect for domain DOMAIN failed: Unknown error -1765328228 - - wbinfo -a host:~ # wbinfo -a gooduser%goodpass plaintext password authentication succeeded challenge/response password authentication succeeded - --wbinfo
Re: [Samba] AD2003 +Squid NTLM Auth.
On Tue, 2004-10-05 at 03:16, Michael Wray wrote: Authenticating Server: 2003 with Active Directory Enabled Squid Server: FreeBSD 5.1 Samba: 3.0.7,1 Other package info in package list at bottom. The DNS server is on the 2003 Server with the proper kerberos and ldap entries in the DNS server. (Passes Active Directory DNS utility tests) Responses are sent in LM, NTLM, NTLM2 when negotiated. Signing requirements are not configured. (Choices: Enable, or not configured). Have read, and followed to best of my ability the squid FAQ and winbind/nmb/samba man pages. Things that work: All of the command line based tests work, as you will see when you look below. But when I try to authenticate with a browser I get denied, and the following info in cache.log and log.winbindd. If I modify the permissions on /var/db/samba/winbindd_privileged, that breaks the wbinfo tests saying that the permissions on that file are incorrect. We have these permissions incorrect messages for a reason :-) The correct permissions are to allow *group* access to the privileged pipe, say to the squid group. chgrp squid /var/db/samba/winbindd_privileged chmod g+rx /var/db/samba/winbindd_privileged Andrew Bartlett -- Andrew Bartlett [EMAIL PROTECTED] Authentication Developer, Samba Teamhttp://samba.org Student Network Administrator, Hawker College [EMAIL PROTECTED] signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: SAMBA 2.2.8 source kit for 8.2 (and possibly earlier)
Jean-Yves Collot has examined my posted changes and has discovered a bug in the VMS_TRICKS.C Where the old code was: int d[2] = { 512, (int) imgname}; I replaced it with: int d[2]; ... d[0] = 0; d[1] = (int) imgname; Where the interim fix would be for d[0] = 512;. This could will disable SMBD caching and possibly introduce a memory leak. I will not have time to address this before late tuesday evening at the earliest, so if you are using my posted code for testing, it will need this edit. The proper fix would be to change d to be of struct dsc$descriptor_s and completely fill in the descriptor values. When VFS modules are implemented, there should not be any need for this trick as the caching code would be contained in the VFS module, and only the SMBD loads the VFS modules. And I want to clarify that I am limited in what I can test, and what VMS versions that I can build for. I am concentrating on getting the current SAMBA releases for the 2.2.x, 3.x, and 4.x to build on the current OpenVMS version for ALPHA and IA64, and using only the minimum number of supplimental or replacement routines needed for this. The UNIX 2.2.x release is now up to 2.2.12 because of a security related patch that was just release. That is my next target. Since current versions of VMS support LDAP and Kerberos, I will also be phasing in support of this in future builds, along with the HP released version of OpenSSL. As the SSL is only for SAMBA to SAMBA connections, it's use would be a build time option. My preference is to default it as off. For building and linking on older versions of VMS, I want to positively identify exactly what suppliemental or replacement routines are needed for them, and why they are needed. Some of the stuff in earlier SAMBA releases was being carried around just to support versions of VMS that it was not even possible to run that version of SAMBA on. And even now there are comments that indicate an uncertanty of what replacement routines are needed or not. If there is something that needs to be enhanced or fixed in the current C RTL for SAMBA or other UNIX program, I would like to get that formally documented. Compiling on newer versions of VMS and then linking on older versions is risky and not supported by HP. Code must be compiled on the oldest version of VMS that it will be linked against. So if it is known at compile time that a hack/feature is not needed for the version that is being compiled on, then the build should take advantage of this. There are unsupported tricks to get around this, but they involve keeping private copies of selected files from the older VMS versions and setting a bunch of logical names, some of which are not publically documented. And this is not something that is easy to maintain. Especially since ECOs also affect this. Unless otherwise documented in the compiler documentation, redefining a reserved predefined macro can result in undefined operation at compile time. What you can get away with on one version/patch level of the compiler and VMS may not apply to any other combination. Reserved predefined macros typically start with a double underscore. The specific rules are in the ANSI documentation and in the HP C Compiler documentation. So the use of the compiler pre-defined macros is to allow programs built on a specfific version of VMS to take advantage of new features in the CRTL or the operating system, which should make the programs more efficient. Now if there is a strong need for LINKING on an older version of VMS than what the modules were compile on, and no one can volunteer to compile on that older version, then it may be possible to work out extra defines like #ifdef VMS_TARGET_V552 to flag the hacks needed to convince the compiler to generate the correct code. http://encompasserve.org/~malmberg/samba/ SAMBA_2_2_8-V82-SRC-20041003_BCK.ZIP, 5504 Kb, Sun Oct 3 20:14:54 2004 Good Luck, -John [EMAIL PROTECTED] Personal Opinion Only PLEASE READ THIS IMPORTANT ETIQUETTE MESSAGE BEFORE POSTING: http://www.catb.org/~esr/faqs/smart-questions.html
svn commit: samba r2817 - in branches/SAMBA_4_0/source: librpc/idl scripting/swig/torture
Author: tpot Date: 2004-10-04 06:29:06 + (Mon, 04 Oct 2004) New Revision: 2817 WebSVN: http://websvn.samba.org/websvn/changeset.php?rep=sambapath=/branches/SAMBA_4_0/sourcerev=2817nolog=1 Log: Get winreg_GetKeySecurity() working but use data blob instead of security descriptor. Modified: branches/SAMBA_4_0/source/librpc/idl/winreg.idl branches/SAMBA_4_0/source/scripting/swig/torture/winreg.py Changeset: Modified: branches/SAMBA_4_0/source/librpc/idl/winreg.idl === --- branches/SAMBA_4_0/source/librpc/idl/winreg.idl 2004-10-04 05:40:59 UTC (rev 2816) +++ branches/SAMBA_4_0/source/librpc/idl/winreg.idl 2004-10-04 06:29:06 UTC (rev 2817) @@ -168,17 +168,24 @@ [in,ref] policy_handle *handle ); + typedef struct { + uint32 max_len; + uint32 offset; + uint32 len; + } KeySecuritySize; + + typedef struct { + uint32 max_len; + DATA_BLOB data; + } KeySecurityData; + /**/ /* Function: 0x0c */ WERROR winreg_GetKeySecurity( [in,ref] policy_handle *handle, - [in] uint32 sec_info, - [in] uint32 *len1, - [in] uint32 empty, - [in] uint32 len2, - [in] uint32 unknown1, - [in] uint32 unknown2, - [out] sec_desc_buf *data + [in] uint32 unknown, + [in,out] KeySecuritySize *size, + [in,out] KeySecurityData data ); /**/ Modified: branches/SAMBA_4_0/source/scripting/swig/torture/winreg.py === --- branches/SAMBA_4_0/source/scripting/swig/torture/winreg.py 2004-10-04 05:40:59 UTC (rev 2816) +++ branches/SAMBA_4_0/source/scripting/swig/torture/winreg.py 2004-10-04 06:29:06 UTC (rev 2817) @@ -30,8 +30,50 @@ dcerpc.winreg_CloseKey(pipe, r) -def test_Enum(pipe, handle, name, depth = 0): +def test_FlushKey(pipe, handle): +r = {} +r['handle'] = handle + +dcerpc.winreg_FlushKey(pipe, r) + +def test_GetVersion(pipe, handle): + +r = {} +r['handle'] = handle + +dcerpc.winreg_GetVersion(pipe, r) + +def test_GetKeySecurity(pipe, handle): + +r = {} +r['handle'] = handle +r['unknown'] = 4 +r['size'] = None +r['data'] = {} +r['data']['max_len'] = 0 +r['data']['data'] = '' + +result = dcerpc.winreg_GetKeySecurity(pipe, r) + +print result + +if result['result'] == dcerpc.WERR_INSUFFICIENT_BUFFER: +r['size'] = {} +r['size']['max_len'] = result['data']['max_len'] +r['size']['offset'] = 0 +r['size']['len'] = result['data']['max_len'] + +result = dcerpc.winreg_GetKeySecurity(pipe, r) + +print result + +sys.exit(1) + +def test_Key(pipe, handle, name, depth = 0): + +# Don't descend too far. Registries can be very deep. + if depth 2: return @@ -41,10 +83,41 @@ if arg[0] == dcerpc.WERR_ACCESS_DENIED: return -# Enumerate keys +test_GetVersion(pipe, handle) +test_FlushKey(pipe, handle) + +test_GetKeySecurity(pipe, handle) + +# Enumerate values in this key + r = {} r['handle'] = handle +r['name_in'] = {} +r['name_in']['len'] = 0 +r['name_in']['max_len'] = (keyinfo['max_valnamelen'] + 1) * 2 +r['name_in']['buffer'] = {} +r['name_in']['buffer']['max_len'] = keyinfo['max_valnamelen'] + 1 +r['name_in']['buffer']['offset'] = 0 +r['name_in']['buffer']['len'] = 0 +r['type'] = 0 +r['value_in'] = {} +r['value_in']['max_len'] = keyinfo['max_valbufsize'] +r['value_in']['offset'] = 0 +r['value_in']['len'] = 0 +r['value_len1'] = keyinfo['max_valbufsize'] +r['value_len2'] = 0 + +for i in range(0, keyinfo['num_values']): + +r['enum_index'] = i + +dcerpc.winreg_EnumValue(pipe, r) + +# Recursively test subkeys of this key + +r = {} +r['handle'] = handle r['key_name_len'] = 0 r['unknown'] = 0x0414 r['in_name'] = {} @@ -72,41 +145,13 @@ result = dcerpc.winreg_OpenKey(pipe, s) -test_Enum(pipe, result['handle'], name + '/' + s['keyname']['name'], - depth + 1) +test_Key(pipe, result['handle'], name + '/' + s['keyname']['name'], + depth + 1) test_CloseKey(pipe, result['handle']) # Enumerate values -r = {} -r['handle'] = handle - -r['name_in'] = {} -r['name_in']['len'] = 0 -r['name_in']['max_len'] = (keyinfo['max_valnamelen'] + 1) * 2 -r['name_in']['buffer'] = {} -r['name_in']['buffer']['max_len'] = keyinfo['max_valnamelen'] + 1 -r['name_in']['buffer']['offset'] = 0 -r['name_in']['buffer']['len'] = 0 -r['type'] = 0 -r['value_in'] = {} -
svn commit: samba r2818 - in branches/SAMBA_4_0/source/librpc/idl: .
Author: vlendec Date: 2004-10-04 14:40:53 + (Mon, 04 Oct 2004) New Revision: 2818 WebSVN: http://websvn.samba.org/websvn/changeset.php?rep=sambapath=/branches/SAMBA_4_0/source/librpc/idlrev=2818nolog=1 Log: On AIX, for some reason pidl fails in dcom.idl:29. The only thing is a /* style comment. Try //. Volker Modified: branches/SAMBA_4_0/source/librpc/idl/dcom.idl Changeset: Modified: branches/SAMBA_4_0/source/librpc/idl/dcom.idl === --- branches/SAMBA_4_0/source/librpc/idl/dcom.idl 2004-10-04 06:29:06 UTC (rev 2817) +++ branches/SAMBA_4_0/source/librpc/idl/dcom.idl 2004-10-04 14:40:53 UTC (rev 2818) @@ -26,10 +26,10 @@ { WERROR stub(); - /* Machine Identifier */ + // Machine Identifier #define MID HYPER_T -/* Object Exporter Identifier */ +// Object Exporter Identifier #define OXID HYPER_T // Object Identifer
svn commit: samba r2819 - branches/SAMBA_3_0/source/passdb trunk/source/passdb
Author: gd Date: 2004-10-04 15:53:33 + (Mon, 04 Oct 2004) New Revision: 2819 WebSVN: http://websvn.samba.org/websvn/changeset.php?rep=sambapath=/rev=2819nolog=1 Log: Make 'password history'-behaviour in ldapsam more consistent. Currently we cannot store more then 15 password history entries (windows NT4 allows to store 24) in ldapsam. When choosing more then 15 with pdbedit -P password history, we fail to initialize the password history upon password change and overwrite the history, effectively using a password history of 1. We do already decrease any history-policy larger then 15 to 15 while storing the password history list attribute in ldap. Guenther Modified: branches/SAMBA_3_0/source/passdb/pdb_ldap.c trunk/source/passdb/pdb_ldap.c Changeset: Modified: branches/SAMBA_3_0/source/passdb/pdb_ldap.c === --- branches/SAMBA_3_0/source/passdb/pdb_ldap.c 2004-10-04 14:40:53 UTC (rev 2818) +++ branches/SAMBA_3_0/source/passdb/pdb_ldap.c 2004-10-04 15:53:33 UTC (rev 2819) @@ -727,6 +727,9 @@ uint8 *pwhist = NULL; int i; + /* We can only store (sizeof(pstring)-1)/64 password history entries. */ + pwHistLen = MIN(pwHistLen, ((sizeof(temp)-1)/64)); + if ((pwhist = malloc(pwHistLen * PW_HISTORY_ENTRY_LEN)) == NULL){ DEBUG(0, (init_sam_from_ldap: malloc failed!\n)); return False; Modified: trunk/source/passdb/pdb_ldap.c === --- trunk/source/passdb/pdb_ldap.c 2004-10-04 14:40:53 UTC (rev 2818) +++ trunk/source/passdb/pdb_ldap.c 2004-10-04 15:53:33 UTC (rev 2819) @@ -756,6 +756,9 @@ uint8 *pwhist = NULL; int i; + /* We can only store (sizeof(pstring)-1)/64 password history entries. */ + pwHistLen = MIN(pwHistLen, ((sizeof(temp)-1)/64)); + if ((pwhist = malloc(pwHistLen * PW_HISTORY_ENTRY_LEN)) == NULL){ DEBUG(0, (init_sam_from_ldap: malloc failed!\n)); return False;
svn commit: samba r2821 - branches/SAMBA_3_0/source/printing branches/SAMBA_3_0/source/registry branches/SAMBA_3_0/source/rpc_server branches/SAMBA_3_0/source/rpcclient branches/SAMBA_3_0/source/utils trunk/source/printing trunk/source/registry trunk/source/rpc_server trunk/source/rpcclient trunk/source/utils
Author: gd Date: 2004-10-04 22:13:57 + (Mon, 04 Oct 2004) New Revision: 2821 WebSVN: http://websvn.samba.org/websvn/changeset.php?rep=sambapath=/rev=2821nolog=1 Log: Adding Windows x64 as architecture string and driverdir x64 for the 64bit AMD platform. (This used to be Windows AMD64 and AMD64 in one of the release candidates of SP2 for Windows XP. AMD64 is obviously still supported but not documented.) Guenther Modified: branches/SAMBA_3_0/source/printing/nt_printing.c branches/SAMBA_3_0/source/registry/reg_printing.c branches/SAMBA_3_0/source/rpc_server/srv_spoolss_nt.c branches/SAMBA_3_0/source/rpcclient/cmd_spoolss.c branches/SAMBA_3_0/source/utils/net_rpc_printer.c trunk/source/printing/nt_printing.c trunk/source/registry/reg_printing.c trunk/source/rpc_server/srv_spoolss_nt.c trunk/source/rpcclient/cmd_spoolss.c trunk/source/utils/net_rpc_printer.c Changeset: Modified: branches/SAMBA_3_0/source/printing/nt_printing.c === --- branches/SAMBA_3_0/source/printing/nt_printing.c2004-10-04 21:02:00 UTC (rev 2820) +++ branches/SAMBA_3_0/source/printing/nt_printing.c2004-10-04 22:13:57 UTC (rev 2821) @@ -210,6 +210,7 @@ #define SPL_ARCH_W32ALPHA W32ALPHA #define SPL_ARCH_W32PPCW32PPC #define SPL_ARCH_IA64 IA64 +#define SPL_ARCH_X64 x64 static const struct table_node archi_table[]= { @@ -219,6 +220,7 @@ {Windows NT Alpha_AXP, SPL_ARCH_W32ALPHA, 2 }, {Windows NT PowerPC, SPL_ARCH_W32PPC, 2 }, {Windows IA64, SPL_ARCH_IA64, 3 }, + {Windows x64, SPL_ARCH_X64, 3 }, {NULL, ,-1 } }; Modified: branches/SAMBA_3_0/source/registry/reg_printing.c === --- branches/SAMBA_3_0/source/registry/reg_printing.c 2004-10-04 21:02:00 UTC (rev 2820) +++ branches/SAMBA_3_0/source/registry/reg_printing.c 2004-10-04 22:13:57 UTC (rev 2821) @@ -90,6 +90,8 @@ Windows NT R4000, Windows NT Alpha_AXP, Windows NT PowerPC, + Windows IA64, + Windows x64, NULL }; fstring *drivers = NULL; int i, env_index, num_drivers; Modified: branches/SAMBA_3_0/source/rpc_server/srv_spoolss_nt.c === --- branches/SAMBA_3_0/source/rpc_server/srv_spoolss_nt.c 2004-10-04 21:02:00 UTC (rev 2820) +++ branches/SAMBA_3_0/source/rpc_server/srv_spoolss_nt.c 2004-10-04 22:13:57 UTC (rev 2821) @@ -1995,6 +1995,7 @@ {Windows NT Alpha_AXP, W32ALPHA,2 }, {Windows NT PowerPC, W32PPC, 2 }, {Windows IA64, IA64,3 }, + {Windows x64, x64, 3 }, {NULL, ,-1 } }; Modified: branches/SAMBA_3_0/source/rpcclient/cmd_spoolss.c === --- branches/SAMBA_3_0/source/rpcclient/cmd_spoolss.c 2004-10-04 21:02:00 UTC (rev 2820) +++ branches/SAMBA_3_0/source/rpcclient/cmd_spoolss.c 2004-10-04 22:13:57 UTC (rev 2821) @@ -40,6 +40,7 @@ {Windows NT Alpha_AXP, W32ALPHA,2 }, {Windows NT PowerPC, W32PPC, 2 }, {Windows IA64, IA64,3 }, + {Windows x64, x64, 3 }, {NULL, ,-1 } }; Modified: branches/SAMBA_3_0/source/utils/net_rpc_printer.c === --- branches/SAMBA_3_0/source/utils/net_rpc_printer.c 2004-10-04 21:02:00 UTC (rev 2820) +++ branches/SAMBA_3_0/source/utils/net_rpc_printer.c 2004-10-04 22:13:57 UTC (rev 2821) @@ -35,7 +35,8 @@ {Windows NT R4000, W32MIPS, 2 }, {Windows NT Alpha_AXP, W32ALPHA,2 }, {Windows NT PowerPC, W32PPC, 2 }, - {Windows IA64, IA64,3 }, + {Windows IA64, IA64,3 }, + {Windows x64, x64, 3 }, {NULL, ,-1 } }; Modified: trunk/source/printing/nt_printing.c === --- trunk/source/printing/nt_printing.c 2004-10-04 21:02:00 UTC (rev 2820) +++ trunk/source/printing/nt_printing.c 2004-10-04 22:13:57 UTC (rev 2821) @@ -210,6 +210,7 @@ #define SPL_ARCH_W32ALPHA W32ALPHA #define SPL_ARCH_W32PPCW32PPC #define SPL_ARCH_IA64 IA64 +#define SPL_ARCH_X64 x64 static const struct table_node archi_table[]= { @@ -219,6 +220,7 @@ {Windows NT Alpha_AXP, SPL_ARCH_W32ALPHA, 2 }, {Windows NT PowerPC, SPL_ARCH_W32PPC, 2 }, {Windows IA64, SPL_ARCH_IA64, 3 }, +