[Samba] Invitacion
Lo invitamos a conocer un portal exclusivo en la web que creemos le será de gran utilidad al electorado mexicano: Elecciones México - Ver, Saber, Comparar y Elegir. http://www.eleccionesmexico.com.mx Todo lo que usted necesita saber acerca de los candidatos para comparar y elegir al mejor individuo. Si usted considera que ésta información es de utilidad para combatir la apatía y ausentismo, por favor ¡reenvíela a sus contactos! Gracias * Nota: Este es un portal independiente, no pertenece a ningún partido político o institución gubernamental. -- * Para eliminar su correo de la lista visite: http://www.eleccionesmexico.com.mx/q.php?c=samba%40samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] FW: Problems compiling samba-3.0.15pre2 on Solaris 9
Hi all, Getting the following when I attempt to compile samba-3.0.15pre2 with the following options under Solaris 9: --with-ldap --with-ads --with-krb5 --with-pam --with-winbind. ---snip-- Compiling lib/hmacmd5.c with -fPIC Compiling lib/iconv.c with -fPIC lib/iconv.c: In function `sys_iconv': lib/iconv.c:139: warning: passing arg 2 of `libiconv' from incompatible pointer type Compiling nsswitch/wb_client.c with -fPIC Compiling lib/pam_errors.c with -fPIC Compiling intl/lang_tdb.c with -fPIC Compiling lib/account_pol.c with -fPIC Compiling lib/adt_tree.c with -fPIC Compiling lib/gencache.c with -fPIC Compiling tdb/tdb.c with -fPIC Compiling tdb/spinlock.c with -fPIC Compiling tdb/tdbutil.c with -fPIC Compiling tdb/tdbback.c with -fPIC Compiling lib/module.c with -fPIC Compiling lib/ldap_escape.c with -fPIC Compiling lib/privileges.c with -fPIC Compiling lib/secdesc.c with -fPIC Compiling lib/secace.c with -fPIC Compiling lib/secacl.c with -fPIC Compiling lib/dummysmbd.c with -fPIC Compiling libads/kerberos.c with -fPIC Compiling libads/ads_status.c with -fPIC Linking nsswitch/libnss_wins.so Compiling nsswitch/pam_winbind.c with -fPIC nsswitch/pam_winbind.c: In function `converse': nsswitch/pam_winbind.c:71: warning: passing arg 3 of `pam_get_item' from incompatible pointer type nsswitch/pam_winbind.c:74: warning: passing arg 2 of pointer to function from incompatible pointer type nsswitch/pam_winbind.c: In function `_make_remark': nsswitch/pam_winbind.c:89: warning: assignment discards qualifiers from pointer target type nsswitch/pam_winbind.c: In function `_pam_delete': nsswitch/pam_winbind.c:292: error: parse error before void nsswitch/pam_winbind.c: In function `_winbind_read_password': nsswitch/pam_winbind.c:329: warning: passing arg 3 of `pam_get_item' from incompatible pointer type nsswitch/pam_winbind.c:362: warning: assignment discards qualifiers from pointer target type nsswitch/pam_winbind.c:370: warning: assignment discards qualifiers from pointer target type nsswitch/pam_winbind.c:376: warning: assignment discards qualifiers from pointer target type nsswitch/pam_winbind.c:434: warning: passing arg 3 of `pam_get_item' from incompatible pointer type nsswitch/pam_winbind.c: In function `pam_sm_authenticate': nsswitch/pam_winbind.c:462: warning: passing arg 2 of `pam_get_user' from incompatible pointer type nsswitch/pam_winbind.c: In function `pam_sm_acct_mgmt': nsswitch/pam_winbind.c:534: warning: passing arg 2 of `pam_get_user' from incompatible pointer type nsswitch/pam_winbind.c: In function `pam_sm_chauthtok': nsswitch/pam_winbind.c:612: warning: passing arg 2 of `pam_get_user' from incompatible pointer type nsswitch/pam_winbind.c:689: warning: passing arg 3 of `pam_get_item' from incompatible pointer type *** Error code 1 make: Fatal error: Command failed for target `nsswitch/pam_winbind.po' end I compiled samba-3.0.14a previously with the same options without any problems. Thanks in advance for any ideas/suggestions. Regards James ~ Systems Administrator Australian Institute of Marine Science Townsville, FNQ, Australia Ph: 0747534400 Mobile: 0439916246 Email: sysadmin (at) aims.gov.au Fax: 0747725852 ~ The information contained in this communication is for the use of the individual or entity to whom it is addressed, and may contain information which is the subject of legal privilege and/or copyright. If you have received this communication in error, please notify the sender by return E-Mail and delete the transmission, together with any attachments, from your system. Thank you. - -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: Machine Account info in Domain Controller
Andrew Bartlett abartlet at samba.org writes: On Fri, 2005-05-13 at 02:41 +, Andrew Chuang wrote: We find the samba 3.0.x cmd 'net' can modify the info name:samba version:3.0.x to machine account info in Domain Controller after registering samba to domain by ldap. But samba 2.2.x always show name:Windows NT version:4.0 after registering samba to domain. Can we modify the info in samba 2.2.x ? Samba 2.2 is no longer supported, and has known security issues, you should upgrade in any case. The ability to set the OS type and version is due to Samba 3.0's ADS client/member server capability, and we simply modify the machine's LDAP record. You could do so manually if you needed to. Andrew Bartlett Thanks, we always know how to modify the os type and os version in samba 3.0.x. Do we have any chance to modify these info in samba 2.2.x and how to do it? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] I could really use some help here (SAMBA PDC)
John Zakhar wrote: The log files are attached, I have NEVER had so much trouble with a samba PDC before. I need to turn in my unix admin license, this is pathetic... Why have all your ldifs got spaces in the dn's ? In your slapd.log you have this: o=ventusnetworks.com,dc=na NO SPACES. Yet all your ldifs have this: uid=administrator,spaceou=Staff,spaceo=ventusnetworks.com,spacedc=na . I don't think that's gonna work, I hope it's a typo. Because what I quoted from the log is your search base. I'm not particularly proficient in ldap but your search base is different to what potentially is in ldap... Are you vampiring accounts of an old windows server? Or is this a network from scratch. Regards Geoff Scott -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Autoresponder about Tuerkei in die EU
Dear samba@lists.samba.org, Thanks for writing the NetMechanic Webmaster Tips newsletter. Due to the amount of mail we receive from auto-responders, we do not regularly check messages sent to this mailbox. Please visit this page to send us comments, change your email address, or delete your newsletter subscription: http://www.netmechanic.com/comp/newsletter.htm -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Winbind problem when exec freeradius
Hil list! I'm trying to authenticate Active Directory Users via freeradius. I can do it in a general case (user and domain) without problem. Now I have to do it restricting the authentication to the members of a group. I can exect the script (as is put in radiusd.conf) correct from the command line: Deb:~# /usr/bin/ntlm_auth --username=javi2 --require-membership-of='AAMM\MyGroup' --domain=AAMM password: NT_STATUS_OK: Success (0x0) Deb:~# /usr/bin/ntlm_auth --username=javi2 --require-membership-of='AAMM\OtherGroup' --domain=AAMM password: NT_STATUS_LOGON_FAILURE: Logon failure (0xc06d) Deb:~# So samba and winbind look to be correctly configured, but when radius exect it, looks as if winbind couldn't resolve group's name. My line on radiusd.conf is: ntlm_auth = /usr/bin/ntlm_auth --request-nt-key --username=%{mschap:User-Name} --require-membership-of='AAMM\\MyGroup' --domain=%{mschap:NT-Domain} --challenge=%{mschap:Challenge:-00} --nt-response=%{mschap:NT-Response:-00} And get the next logs: radius_xlat: '/usr/bin/ntlm_auth --request-nt-key --username=javi2 --require-membership-of='AAMM\MyGroup' --domain=AAMM --challenge=6b480cf181ded625 --nt-response=bce392db1fcd91380690317e7cd1228e78940576d78fde21 ' Exec-Program: /usr/bin/ntlm_auth --request-nt-key --username=javi2 --require-membership-of='AAMM\MyGroup' --domain=AAMM --challenge=6b480cf181ded625 --nt-response=bce392db1fcd91380690317e7cd1228e78940576d78fde21 [2005/05/16 09:05:57, 0] utils/ntlm_auth.c:get_require_membership_sid(237) Winbindd lookupname failed to resolve 'AAMM\MyGroup' into a SID! Does anybody know why could it be happening? Thanks in advance for any help!! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Winbind problem when exec freeradius
On Mon, 2005-05-16 at 09:28 +0200, Javier Jimenez wrote: Hil list! I'm trying to authenticate Active Directory Users via freeradius. I can do it in a general case (user and domain) without problem. Now I have to do it restricting the authentication to the members of a group. Exec-Program: /usr/bin/ntlm_auth --request-nt-key --username=javi2 --require-membership-of='AAMM\MyGroup' --domain=AAMM --challenge=6b480cf181ded625 --nt-response=bce392db1fcd91380690317e7cd1228e78940576d78fde21 [2005/05/16 09:05:57, 0] utils/ntlm_auth.c:get_require_membership_sid (237) Winbindd lookupname failed to resolve 'AAMM\MyGroup' into a SID! Looking at the source, the issue appears to be the quotes. FreeRadius does not go via a shell, which means that the ' characters are not stripped off. (The ntlm_auth source shows that this debug message is printed without any quotes, which means you supplied them) Does anybody know why could it be happening? Thanks in advance for any help!! -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] ACL strange problem.
Hi, I running samba-3.0.13-1 connect to W2k3, attr-2.4.19 and acl-2.2.27-1. I've a strange problem with ACL settings, following the data structure.I would that user1 could read/write only his personal folder, user1 belongs to domain users and can reach the user folder but he can't see his personal folder. I have tried to run setfacl -b (remove all ACL entries) and setup them again, format the data partition with mkfs xfs ... an mounted it again but it doesn't works, I have a twin pc installed and on this it works fine. But the strange matter, is if I connect to the data share and reach the user folder with smbclient //smbserver/data -Uuser1%*** , I can see the user1 personal folder and it works I expected. Why it works with smbclient but not with Winodws client? And what can I do to found the problem? /data [domain users r-x] /user [domain users r-x] /user1 [user1 rwx] Thanks. Marco. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Ihre Mail an / Your message to : numan2004@gmx.de
Folgende Nachricht wurde fuer Sie hinterlassen: Please find below a message for you: Wir haben Ihre E-Mail erhalten und werden Sie in den nächsten 48 Stunden beantworten. Bitte haben Sie etwas gedult da wir momentan sehr viele E-Mail´s bekommen. Bei ganz dringenden fällen können Sie uns auch unter dise Telefonnummer erreichen: +49 (0)5971 8032513 MfG numan TEAM -- +++ GMX - die erste Adresse für Mail, Message, More +++ e-mail und supergünstige DSL-Tarife unter http://www.gmx.net -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Source of Spam - Windows
http://www.theregister.co.uk/2005/05/16/sober_spews_spam/ Yahoo! Mail Stay connected, organized, and protected. Take the tour: http://tour.mail.yahoo.com/mailtour.html -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Some aclaration with smb.conf
Hello list, I would like to know if there is any relation between smbclient and the server config file smb.conf. I'm working with some issues with file locking and staroffice, I'm working with a default smb.conf the one shipped with RedHat Enterprise Linux 4. And I'm wondering if I have to add any directives at smb.conf to make smbmount read those parameters and be able to recognize file locks. Thanks in advance. -- Francisco José Fernández Rivera Departamento de Tecnología (Redes) Riu Hotels Resorts Palma de Mallorca España -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Horrendously slow transfer speeds in FC3 is driving me crazy!!! Please help...
quote who=Peter Szmrecsanyi OK, I've done the tests I'd said I'd do and here are the results... The tests were simple, set up a samba share on the computers in question and use a windows PC and a Linux (smbclient) PC to read a 350 MB files of the share: Setting up a samba server (to share files) on both my notebook (FC3 w/ Samba 3.0.10) and my desktop computer (P4 w/ 512 MB of RAM, FC1 w/ Samba 3.0.7) yielded transfer rates better than in Windows (both are dual boot) and very surprisingly slightly better than FTP, I was amazed!!! Installing Samba 3.0.14a on the ProLiant 2500 without ACL support did not make any difference on the transfer rate. Removing samba 3 and installing version 2.2.12 actually worsened the transfer rate by 25%! Wait, I'm confused. Did you use different versions of Fedcora Core? If so, that makes the test results somewhat suspect. I would suggest installing FC3 on all the systems involved and make sure they are all updated to the same versions. Also make sure you are using the same or very similar Samba configurations. Once you do that, you can pretty much exclude software issues. I also suggest shutting down any services that are not involved in the test before benchmarking. Finally, I suggest benchmarking with a much larger file (I usually use a 4gb .tar.gz). The reason is, with a 350mb file, much (if not all) of the file can be cached in RAM and thus not really testing your drive subsystem. I've found that my test results are much more predictable with the large file as opposed to when I was using a smaller file. I realize it's a lot of work to do a fresh FC install on all the machines but you really do have an odd issue. Also, what was the speeds you got with all your machines? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Samba 3.0.14a, Windows 2k3 and ADS
Hi John, read the chapter 7 (and most of the document, very well written btw) I seem to be where I needed to already. In one of your examples (7.3.4.1) 5. Validate the operation of this configuration by executing: ... It says that getent passwd administrator SHOULD return the administrator but I get nothing Instead if I run getent passwd | grep administrator I get.. DEV-DOMAIN+administrator:x:10007:10018:Administrator:/home/DEV-DOMAIN/admini strator:/bin/false Now obviously DEV-DOMAIN+ is the AD part of things, is this possible to be stripped out? Have I missed something in my smb/krb configuration? Also my script basically looks at /etc/shadow and grabs out usernames and passwords and puts them to the various .htaccess auth files and squid auth file. Now when I run getent shadow it only returns local account information. My nsswitch.conf has; passwd: files winbind shadow: files winbind group: files winbind Should I be seeing more info than just the local accounts? If not, is there a way in which I can ask the AD / kerberos to provide that information? Wbinfo doesn't seem to have any option to show crypted passwords... If it should be (as I am guessing by the see chapter 7 bit previously replied to) any ideas why I cant seem to see them/get to them? Many thanks Ross -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of John H Terpstra Sent: 13 May 2005 12:06 To: samba@lists.samba.org Subject: Re: [Samba] Samba 3.0.14a, Windows 2k3 and ADS On Friday 13 May 2005 04:59, sysrm wrote: Thanks john, Is there any specific chapter I should be looking at? Chapter 7 covers Samba as an ADS Domain Member server. Searches for the -F switch, adding accounts via samba etc didn't turn up anything. Also it seems to be written more with samba as the PDC, which isnt the case for me. Nope. Chapter 7 deals with domain member servers and clients in general. It includes ADS members. With ADS your Samba server should use Kerberos. To do that on RHEL3 will require a lot of work. RHEL3 has MIT KRB 1.2.7 - that will not play well with W2K3 ADS for which at least 1.3.4 is needed. Further comments below. Thanks anyways Ross -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of John H Terpstra Sent: 13 May 2005 11:32 To: samba@lists.samba.org Subject: Re: [Samba] Samba 3.0.14a, Windows 2k3 and ADS Ross, You may find some useful info in the book Samba-3 by Example that answers your questions. It can be downloaded from: http://www.samba.org/samba/docs/Samba-Guide.pdf Cheers, John T. On Friday 13 May 2005 04:21, sysrm wrote: Hi all Thanks for everyones help so far with trying to get these all working. I am now at the stage where I can logon to the domain and access a samba share with out having to enter in a username password (i.e samba is using AD to authenticate) My system is setup like so: Windows 2k3 PDC (so I get group policy features, bad password attempts, account expiry etc) Samba 3.0.14a on RH es3 linux FileStore ( peoples Home drive email etc ) Now I have a couple of questions... 1. I can use the net rpc add user command to add users, when I do this they are disabled in windows AD, and ive been unable to find any documentation of the -F switch (which is where I assume u can say if they are disabled, what their home directory is, and where to map it etc) I am documenting this now in the Samba-HOWTO-Collection. 2. In various howto's docs etc people talk about using samba as the pdc and open ldap etc. Is the above system using LDAP ? i.e Windows 2k3 AD ? Or is what I have using kerberos? Kerberos. 3. assuming im not using ldap, I have a script that currently runs every 15 mins and brings out a user,cryptpasswd list of my users and gives it out to various services (such as .htaccess and squid) Either by using ldap or another way, how is this possible to do? Since the users are no longer on the linux box (locally) Use winbind - see chapter 7. - John T. Many thanks! Ross -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions:
Re: [Samba] Re: nazi spam in German over list address
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Sun, 15 May 2005, Jerome Alet wrote: Hi, On Sun, May 15, 2005 at 11:41:36PM +1000, Andrew Bartlett wrote: On Sun, 2005-05-15 at 15:00 +0200, Lars Grobe wrote: Unfortunately we are all to well aware of this problem, but as the long- standing policy of samba.org lists is to allow public posting, we are between a rock and a hard place. ... I'm sorry we can't do much more about this, What about ... changing this long standing policy ??? (I've already read the reson for the actual policy) If its not spam, then it will be virus that forge headers and claim to come from a list members address. There is no silver bullet to solve this issue without moderating every post. cheers, jerry = Alleviating the pain of Windows(tm) --- http://www.samba.org GnuPG Key- http://www.plainjoe.org/gpg_public.asc I never saved anything for the swim back. Ethan Hawk in Gattaca -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.0 (GNU/Linux) Comment: For info see http://quantumlab.net/pine_privacy_guard/ iD8DBQFCiJPFIR7qMdg1EfYRAozeAJ0bm7VQjuc/TlzLXF+5V3FTjp00wgCfZ7MF OR3xgVa5HuOBLZGEJ4bSQaM= =LEPQ -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba By Example
When will an up-to-date PDF be available? Thanks for all the hard work! __ Yahoo! Mail Mobile Take Yahoo! Mail with you! Check email on your mobile phone. http://mobile.yahoo.com/learn/mail -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: **** SPAM **** 6.5: Re: [Samba] Re: nazi spam in German over list address
At 08:36 AM 5/16/2005, Gerald (Jerry) Carter wrote: -BEGIN PGP SIGNED MESSAGE- What about ... changing this long standing policy ??? (I've already read the reson for the actual policy) If its not spam, then it will be virus that forge headers and claim to come from a list members address. There is no silver bullet to solve this issue without moderating every post. All Has any consideration been made to converting the list to a forum? in that way everyone can just check the web site instead of checking the inbox? For those folk who rather read the mail most forum software can send out email when posts are made. This would also consolidate the information for new uses for searching, and eliminate the multiple similar answer syndrome that we see on this list when a obvious question is asked. Just a thought. Kevin Barrett -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba Kevin M. Barrett KMB IT Consulting, Inc 508-450-7717 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: The Whore Lived Like a German [#6214433]
Customer Service has received your e-mail. Please be assured that your message is important to us and that one of our correspondence specialists will contact you as soon as possible if necessary. Our regular business hours are Monday through Friday, 6:00am to 11:00pm Eastern time. If you are contacting us with a technical concern, please allow more response time, as we may need to consult our technical staff for a resolution. *The sending address for this email is an automated account. This message is for notification purposes only and should not be replied to. Thank you. - [EMAIL PROTECTED] Wrote - Full Article: http://service.spiegel.de/cache/international/0,1518,344374,00.html -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: **** SPAM **** 6.5: Re: [Samba] Re: nazi spam in German over list address
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Kevin M. Barrett wrote: | | Has any consideration been made to converting the | list to a forum? There's already Samba forums around so another one would not be extremely helpful IMO. Plus the preference for forum vs. mailing list is linked to personality, time constraints, etc Converting this list to a forum would significantly change the dynamic and then someone would just create another mailing list :-) cheers, jerry = Alleviating the pain of Windows(tm) --- http://www.samba.org GnuPG Key- http://www.plainjoe.org/gpg_public.asc I never saved anything for the swim back. Ethan Hawk in Gattaca -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.0 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFCiJuIIR7qMdg1EfYRAuDDAKCXAMuztFChCrbJopK8mM2FS/2GaACgkxmD qxq+Srcu5pxv+gF4GmNObd4= =8ODU -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] how can i mount file over 2G by samba ? ( The one file is over 6G)
I have 6G file on w2003 . but Linux Server didn't see it correctly on samba snip What is your client kernel version? This looks like a very old, and I believe fixed, issue. If you're running a newish kernel and still having issues, try the cifs mount instead of smbfs. -- Paul GiengerOffice: 701-281-1884 Applied Engineering Inc. Systems Architect Fax:701-281-1322 URL: www.ae-solutions.com mailto: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba By Example
Also, just curious, what's the rough timeframe for the new printed editions of the How-To and Examples to hit the bookshelves? I just want to show support for all the quality work with a purchase. Eric Feldhusen HK wrote: When will an up-to-date PDF be available? Thanks for all the hard work! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] help
here is how i do it. there may be a better way. 1. mount the windows box from the linux box: /bin/mount -t smbfs -o username=validusernameonwindowsbox,password=validusernameonwindowsbox'spassw ord //windowsbox/sharename /unixmountpoint the values validusernameonwindowsbox, validusernameonwindowsbox'spassword, windowsbox, sharename, and unixmountpoint are self explanatory. 2. sync up the files to the backup location on the linux box: /usr/bin/rsync -av /unixmountpoint/ /backup/windosbox/share hope this helps. stu - Original Message - From: Amani Makala [EMAIL PROTECTED] To: samba@lists.samba.org Sent: Tuesday, April 19, 2005 3:16 AM Subject: [Samba] help hi! i need to configure a linux backup server, let me give u some hints on the real environment, i have one linux machine and two windows machines, now i need to make backup of files found on windows machine,but the backup should be done on the linux machine. please anybody who can help me! thanks. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: **** SPAM **** 6.5: Re: [Samba] Re: nazi spam in German overlist address
- Original Message - From: Gerald (Jerry) Carter [EMAIL PROTECTED] To: Kevin M. Barrett [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Monday, May 16, 2005 8:09 AM Subject: Re: SPAM 6.5: Re: [Samba] Re: nazi spam in German overlist address -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Kevin M. Barrett wrote: | | Has any consideration been made to converting the | list to a forum? There's already Samba forums around so another one would not be extremely helpful IMO. Plus the preference for forum vs. mailing list is linked to personality, time constraints, etc Converting this list to a forum would significantly change the dynamic and then someone would just create another mailing list :-) for what it is worth: i say keep things like they are, tweek the filter if possible, and i will just clean out the inbox of the junk. it is a minor inconvenience, but only just that. the benefits of this list as it is far outweigh the nusiance of spam. stu stu -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Sarbanes-Oxley headaches
- Original Message - From: Craig White [EMAIL PROTECTED] To: samba@lists.samba.org Sent: Saturday, May 14, 2005 9:12 AM Subject: Re: [Samba] Sarbanes-Oxley headaches On Sat, 2005-05-14 at 10:44 +0200, Tony Earnshaw wrote: i am currently using samba version 3.0.7 with smbpasswd. does the account lockout feature not work with smbpasswd? smbpasswd doesn't have anything to do with this, it's used for setting / synchronizing passwords. Perhaps you meant smbclient; yes it works both for Windows (XP Pro in my case) and smbclient. smbpasswd is not just a command but also a backend storage type for user accounts passwords. http://us1.samba.org/samba/docs/man/Samba-HOWTO- Collection/passdb.html#id2552851 I gather that OP would be better served by using a tdb or ldap backend. i am not the original poster, but did ask the question regarding account lockout and reset using the smbpasswd backend. i agree that moving to ldap or tdb would better suit my needs but i do not have the test environment nor the time to move and adequately test my production environment to one or the other right now. since i am using the smbpasswd for the foreseeable future, are the account lockout and reset features applicable to using the smbpasswd backend? if not, it is ok. my guess is that they are not, but cannot find documentation to verify this. as for sox, i found a free program that enables window$ boxes to log event logs to a remote syslog server, found here: http://www.netadmintools.com/art284.html stu -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Horrendously slow transfer speeds in FC3 is driving me crazy!!! Please help...
The desktop had FC1 on it, and I only mentioned it because I did the test initially on that one before realising that the OS version was different! But the results were the same as on my laptop which has FC3 installed and a similar configuration to the ProLiant, so I decided top mention it. The smb.conf file was the same. The only major difference is that on teh ProLiant I use XFS filesystem where as on the Desktop and Laptop I use EXT3, but XFS is theoretically faster so I can't see that that hindering the performance. I have a 100Mbps network, which can yeild a maximum tranfer rate of 12 MB/s, if you take the TCP/IP subsystem overhead into account you'll realise that more than 11 MB/s is bearing on the impossible. Using both the desktop and the laptop I got nearlly 11 MB/s, one was 10,11 the other was 10,72. Using FTP I got 9,96 and 9,69. With the proliant I get a max of 1.6 MB/s, the same as I get with my IBM machine (acting as a firewal/gateway) which has RedHat 7.2... I see your point about the file size, a 4 GB file would give a better overall benchmark, but I used a file smaller than the RAM on purpose, I wanted to measure how fast I could read the file from the server, and not have to worry about writting the file on the other end. Admitedly I don't think it would matter as bothe the laptop and the desltop have disk which are much faster, but just in case... I quite convinced that my problem isn't software, for if it was I should have gotten a lot more variation (on the transfer rate) when I tried diferent variations of samba... I'll resume my testing when I install a new NIC on the ProLiant, if that doesn't do it then I'll try a diferent OS. Peter. AragonX escreveu: quote who=Peter Szmrecsanyi OK, I've done the tests I'd said I'd do and here are the results... The tests were simple, set up a samba share on the computers in question and use a windows PC and a Linux (smbclient) PC to read a 350 MB files of the share: Setting up a samba server (to share files) on both my notebook (FC3 w/ Samba 3.0.10) and my desktop computer (P4 w/ 512 MB of RAM, FC1 w/ Samba 3.0.7) yielded transfer rates better than in Windows (both are dual boot) and very surprisingly slightly better than FTP, I was amazed!!! Installing Samba 3.0.14a on the ProLiant 2500 without ACL support did not make any difference on the transfer rate. Removing samba 3 and installing version 2.2.12 actually worsened the transfer rate by 25%! Wait, I'm confused. Did you use different versions of Fedcora Core? If so, that makes the test results somewhat suspect. I would suggest installing FC3 on all the systems involved and make sure they are all updated to the same versions. Also make sure you are using the same or very similar Samba configurations. Once you do that, you can pretty much exclude software issues. I also suggest shutting down any services that are not involved in the test before benchmarking. Finally, I suggest benchmarking with a much larger file (I usually use a 4gb .tar.gz). The reason is, with a 350mb file, much (if not all) of the file can be cached in RAM and thus not really testing your drive subsystem. I've found that my test results are much more predictable with the large file as opposed to when I was using a smaller file. I realize it's a lot of work to do a fresh FC install on all the machines but you really do have an odd issue. Also, what was the speeds you got with all your machines? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Username DOMAIN\SAMBA_CLIENT1$ is invalid...
I'm seeing a lot of: [2005/05/16 08:35:46, 1] smbd/sesssetup.c:reply_spnego_kerberos(250) Username DOMAIN\SAMBA_CLIENT1$ is invalid on this system in the logs on my samba server after joining our ad DOMAIN, and accessing from SAMBA_CLIENT1 (also a member of the ad DOMAIN). Otherwise, it appears to be functioning well. Is this something to be worried about? -- Rex -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba By Example
On Monday 16 May 2005 07:22, Eric Feldhusen wrote: Also, just curious, what's the rough timeframe for the new printed editions of the How-To and Examples to hit the bookshelves? I just want to show support for all the quality work with a purchase. August / September is the release time-frame. We are hoping to make it in time for LinuxWorld, but that is a tough challenge right now. - John T. Eric Feldhusen HK wrote: When will an up-to-date PDF be available? Thanks for all the hard work! -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Sarbanes-Oxley headaches
On Monday 16 May 2005 07:50, Stuart Highlander wrote: I gather that OP would be better served by using a tdb or ldap backend. i am not the original poster, but did ask the question regarding account lockout and reset using the smbpasswd backend. i agree that moving to ldap or tdb would better suit my needs but i do not have the test environment nor the time to move and adequately test my production environment to one or the other right now. since i am using the smbpasswd for the foreseeable future, are the account lockout and reset features applicable to using the smbpasswd backend? if not, it is ok. my guess is that they are not, but cannot find documentation to verify this. as for sox, i found a free program that enables window$ boxes to log event logs to a remote syslog server, found here: http://www.netadmintools.com/art284.html The advanced Windows account facilities are available only with the tdbsam or ldapsam backends. It is very easy to migrate to tdbsam. Here are the steps: 1. Edit smb.conf to include this line: passdb backend = tdbsam 2. Migrate your smbpasswd file to tdbsam: pdbedit -i smbpasswd -e tdbsam Done. - John T. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: cupsaddsmb problem
Hi guys, Thanks for the replies, I just removed the cups-common-1.1-23 package from my box and installed v 1.1.21-0.rc1.7.4 from rpmseek.com. Ran Cupsaddsmb and it worked perfectly first time. Funnily enough 1.1.21 was the version that I first used with point and print on Mandrake 10 and it worked then. Anyway, cheers again, I'll post a report on the CUPS mailing list, all the best, Julian On Friday 13 May 2005 20:21, A Yagi wrote: Thank you for posting this info. I was having exactly the same problem with cupsaddsmb (cups version 1.1.22). Somehow I managed to get it to work by excuting individual commands of cupsaddsmb step by step mannually. Hope the problem is fixed in a future version of cups. Akemi Bruno Guerreiro wrote: Hi, I think that that is more of a cups problem rather than Samba's. I'm having the same problem with cups-1.1.22-0.rc1.8.5 on FC3. cupsaddsmb is adding only the NT4/win9x drivers (if they exist in Samba). Using the cupsaddsmb from cups-1.1.20-11.6 works like a charm. -Original Message- From: Julian Pilfold-Bagwell [mailto:[EMAIL PROTECTED] Sent: sexta-feira, 13 de Maio de 2005 11:39 To: samba@lists.samba.org Subject: [Samba] cupsaddsmb problem Hi all, I have a problem with adding point and print to a print server. The server details are as follows: 700MHz Celeron + 384MB RAM Mandriva LE2005 (Mandrake 10.2) Samba 3.0.13-2mdk CUPS 1.1.23 cups drivers 10.2-0.11 gimpprint-cups 2-1.1.23-11 foomatic 3.0.2-1 The server is bound to an NT4 based domain (to be replaced with Linux/Samba in the summer) and winbind works fine with wbinfo -u and -g returning a full list of users and groups. Cups works fine printing from Linux clients but when I run cupsaddsmb to deliver the drivers to the XP client machines it fails to copy the files to the named folder. Running the command gives the output below: [EMAIL PROTECTED] printers]# cupsaddsmb -U jpb -h localhost HPLaserJet5L Password for jpb required to access localhost via SAMBA: [EMAIL PROTECTED] printers]# Running it in verbose mode only gives the following: [EMAIL PROTECTED] printers]# cupsaddsmb -U jpb -h localhost -v HPLaserJet5L Password for jpb required to access localhost via SAMBA: Running command: rpcclient localhost -N -U'jpb%pwchanged' -c 'setdriver HPLaserJet5L HPLaserJet5L' Succesfully set HPLaserJet5L to driver HPLaserJet5L. the final line of which suggests it's worked but the drivers aren't copied to the /var/lib/samba/printers folder and the clients can't find the drivers when p+p is tried. Cheers, Julian PB -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Solaris, Winbind and Active Directory Authentication
We have not worked with Solaris much, and our contract Solaris guy has very little experience with Winbind. So, we are like two blind people touching opposite ends of the elephant and trying to come to a solution. (No comments please on which end I drew...) :-) The question involves authentication in a native mode Windows 2000 Active Directory domain. Is there any reason Samba/Winbind running on Solaris could not be used for authenticating users who want to access resources on the Solaris box against the AD user/group accounts? We have done this with a SuSE box, but never with a Solaris box (yet!). Currently, the Solaris system (9 now, upgrading to 10 later this year...) is manually populated with a set of *NIX user accounts that mirror the accounts in AD. This creates a lot of administrative overhead (there are some 300+ user accounts, and employee turnover is by nature fairly high), and will create even more help desk issues as the AD environment is about to implement a GPO forcing frequent password changes. Any major gotchas we should watch out for? Thanks, Mark -- _ A Message From... L. Mark Stone Reliable Networks of Maine, LLC We manage your network so you can manage your business. 477 Congress Street Portland, ME 04101 Tel: (207) 772-5678 Web: http://www.rnome.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Horrendously slow transfer speeds in FC3 is driving me crazy!!! Please help...
quote who=Peter Szmrecsanyi I have a 100Mbps network, which can yeild a maximum tranfer rate of 12 MB/s, if you take the TCP/IP subsystem overhead into account you'll realise that more than 11 MB/s is bearing on the impossible. Using both the desktop and the laptop I got nearlly 11 MB/s, one was 10,11 the other was 10,72. Using FTP I got 9,96 and 9,69. With the proliant I get a max of 1.6 MB/s, the same as I get with my IBM machine (acting as a firewal/gateway) which has RedHat 7.2... Wow, 1.5mb/sec vs 10mb/sec. That's a big difference. I doubt a network card would fix the issue. If you have been watching Top and your HI and LO CPU states haven't been high ( 40%), then I don't think you are having an issue getting information to/from the NIC. You know what, I think I have a Compaq machine somethwere with a Pentium Pro 200mhz CPU in it. It's not the same machine as what you have but it might be worth me setting it up and running some tests. Tonight I'll run down to my storage and see what I have. Have you verified all your BIOS settings? I know you have checked this but I was limited to 1.5mb/sec when I was having DMA issues. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Question about ACL.
Hi, I running samba-3.0.13-1 connect to W2k3, attr-2.4.19 and acl-2.2.27-1. I've a strange problem with ACL settings, following the data structure.I would that user1 could read/write only his personal folder, user1 belongs to domain users and can reach the user folder but he can't see his personal folder. I have tried to run setfacl -b (remove all ACL entries) and setup them again, format the data partition with mkfs xfs ... an mounted it again but it doesn't works, I have a twin pc installed and on this it works fine. But the strange matter, is if I connect to the data share and reach the user folder with smbclient //smbserver/data -Uuser1%*** , I can see the user1 personal folder and it works I expected. Why it works with smbclient but not with Winodws client? And what can I do to found the problem? /data [domain users r-x] /user [domain users r-x] /user1 [user1 rwx] Thanks. Marco. Marco Meli IT Dept. GKN SINTER METALS Via Verdi, 82 Cernusco s/N I-20063 (MI) / Italy % +39 02-929051452 Fax: +39 02-9230690 Email: mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Sarbanes-Oxley headaches
- Original Message - From: John H Terpstra [EMAIL PROTECTED] To: samba@lists.samba.org Sent: Monday, May 16, 2005 9:17 AM Subject: Re: [Samba] Sarbanes-Oxley headaches On Monday 16 May 2005 07:50, Stuart Highlander wrote: I gather that OP would be better served by using a tdb or ldap backend. i am not the original poster, but did ask the question regarding account lockout and reset using the smbpasswd backend. i agree that moving to ldap or tdb would better suit my needs but i do not have the test environment nor the time to move and adequately test my production environment to one or the other right now. since i am using the smbpasswd for the foreseeable future, are the account lockout and reset features applicable to using the smbpasswd backend? if not, it is ok. my guess is that they are not, but cannot find documentation to verify this. as for sox, i found a free program that enables window$ boxes to log event logs to a remote syslog server, found here: http://www.netadmintools.com/art284.html The advanced Windows account facilities are available only with the tdbsam or ldapsam backends. It is very easy to migrate to tdbsam. Here are the steps: 1. Edit smb.conf to include this line: passdb backend = tdbsam 2. Migrate your smbpasswd file to tdbsam: pdbedit -i smbpasswd -e tdbsam Done. thank you for the information on converting to tdbsam. where in the docs would it discuss changing passwords? stu -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Problem with performance.
I have been running the same samba conf file for a year. Last week, I added another network card with the ipaddress 10.0.0.122 to my samba server. This server is my domain master browser. I then removed it. Now I am getting errors in my messages log telling me it cannot find the domain master browser associated with 10.0.0.122. Apparently when I added that ipaddress, samba designated it the domain master browser address. I put no interfaces setting in my smb.conf files. Where does samba store the master brower information? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Can't See All Linux Shares
(SuSE Pro 9.3, Samba 3.0.13-1.1) (I posted this earlier but didn't get much response so I'm trying again with a different subject line.) I have a Samba server set up on a Linux machine. I have four shares set up, not counting all those system things (homes, profiles, etc). When I access the shares from a Windows machine, the four shares show up like they're supposed to, in addition to the system things. However, when I access the shares from a Linux machine, two of the four shares do not show up, although the system things do. I've searched the FAQ and the wiki but I can't locate any references to such a problem. Any help from the list will be sincerely appreciated. The four shares in question are: [winstuff], [music library], [photo library], and [uop]. The two that show up okay are: [winstuff] and [uop]. The two that don't show up are: [music library] and [photo library]. Here's my current smb.conf file: = [global] workgroup = HOMEOFFICE printing = cups printcap name = cups printcap cache time = 750 cups options = raw printer admin = @ntadmin, root, administrator username map = /etc/samba/smbusers map to guest = Bad User include = /etc/samba/dhcp.conf logon path = \\%L\profiles\.msprofile logon home = \\%L\%U\.9xprofile logon drive = P: add machine script = /usr/sbin/useradd -c Machine -d /var/lib/nobody -s /bin/false %m$ domain logons = No domain master = No security = share passdb backend = smbpasswd [homes] comment = Home Directories valid users = %S browseable = No read only = No inherit acls = Yes [profiles] comment = Network Profiles Service path = %H read only = No store dos attributes = Yes create mask = 0600 directory mask = 0700 [users] comment = All users path = /home read only = No inherit acls = Yes veto files = /aquota.user/groups/shares/ [groups] comment = All groups path = /home/groups read only = No inherit acls = Yes [printers] comment = All Printers path = /var/tmp printable = Yes create mask = 0600 browseable = No [print$] comment = Printer Drivers path = /var/lib/samba/drivers write list = @ntadmin root force group = ntadmin create mask = 0664 directory mask = 0775 [winstuff] comment = Windows Resources path = /public/winstuff/ read only = No force group = users force user = dhenson guest ok = Yes [music library] comment = Music Library path = /public/musiclib read only = Yes force group = users force user = dhenson guest ok = Yes [photo library] comment = Photo Library path = /public/photolib read only = Yes force group = users force user = dhenson guest ok = Yes [uop] comment = UOP path = /public/uop read only = No force group = users force user = dhenson guest ok = Yes = -- Donald D. Henson, Managing Director West El Paso Information Network The Non-Initiation of Force Principle Rules -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Can't See All Linux Shares
On Monday 16 May 2005 11:19 am, Donald D Henson wrote: The four shares in question are: [winstuff], [music library], [photo library], and [uop]. The two that show up okay are: [winstuff] and [uop]. The two that don't show up are: [music library] and [photo library]. An observation: the two that don't show up have spaces in them. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Question about ACL.
man, 16.05.2005 kl. 16.55 skrev Meli Marco: Hi, I running samba-3.0.13-1 connect to W2k3, attr-2.4.19 and acl-2.2.27-1. What's attr-2.4.19? What's acl-2.2.27-1? Would they by any chance be rpm library versions? What's the OS and distro? Looks as if it might be late Red Hat. Then again, it might not. I've a strange problem with ACL settings, following the data structure.I would that user1 could read/write only his personal folder, user1 belongs to domain users and can reach the user folder but he can't see his personal folder. I have tried to run setfacl -b (remove all ACL entries) and setup them again, format the data partition with mkfs xfs ... an mounted it again but it doesn't works, I have a twin pc installed and on this it works fine. But the strange matter, is if I connect to the data share and reach the user folder with smbclient //smbserver/data -Uuser1%*** , I can see the user1 personal folder and it works I expected. Why it works with smbclient but not with Winodws client? Possibly because Samba doesn't have ACL support compiled in? Where did your Samba package(s) come from? Were they srpms? How did you install? And what can I do to found the problem? /data [domain users r-x] /user [domain users r-x] /user1 [user1 rwx] This doesn't look like ACL stuff to me. --Tonni -- Nothing sucksseeds like a pigeon without a beak ... mail: [EMAIL PROTECTED] http://www.billy.demon.nl They'll love us, won't they? They feed us, don't they? ... -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Question about ACL.
So, what you suggest? Thanks, Marco. Marco Meli IT Dept. GKN SINTER METALS Via Verdi, 82 Cernusco s/N I-20063 (MI) / Italy % +39 02-929051452 Fax: +39 02-9230690 Email: mailto:[EMAIL PROTECTED] mailto:[EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: **** SPAM **** 6.5: Re: [Samba] Re: nazi spam in German over list address
On May 16, [EMAIL PROTECTED] said: All Has any consideration been made to converting the list to a forum? in that way everyone can just check the web site instead of checking the inbox? For those folk who rather read the mail most forum software can Somewhat off-topic for the list, and possibly discussed before, but you can always read the list via one of the list-archive sites, such as the official archive, http://lists.samba.org/archive/samba/ or via a mail-to-news gateway, nntp://news.gmane.org/ Cheers, Waider. -- [EMAIL PROTECTED] / Yes, it /is/ very personal of me. Flames will be automatically sent to the Windows equivalent of /dev/null, once I find where that actually is. - Tony Collins -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: nazi spam in German over list address
On Mon, 16 May 2005, Gerald (Jerry) Carter wrote: If its not spam, then it will be virus that forge headers and claim to come from a list members address. There is no silver bullet to solve this issue without moderating every post. But if the policy was only subscriber posting then, we would know that were the case with certainty, from the start. Then you would remove the member's subscription until his/her computer is fixed. Once again, close this list to members only. -Jason Pyeron -- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- - - - Jason Pyeron PD Inc. http://www.pdinc.us - - Partner Sr. Manager 7 West 24th Street #100 - - +1 (410) 808-6646 (c) Baltimore, Maryland 21218 - - - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- This message is for the designated recipient only and may contain privileged, proprietary, or otherwise private information. If you have received it in error, purge the message from your system and notify the sender immediately. Any other use of the email by you is prohibited. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: nazi spam in German over list address
Andrew Bartlett wrote: On Sun, 2005-05-15 at 15:00 +0200, Lars Grobe wrote: Hi, whoever is able to unsubscribe addresses from the list: I am currently getting lots of spam with nazi content over this mailing list. Unfortunately we are all to well aware of this problem, but as the long- standing policy of samba.org lists is to allow public posting, we are between a rock and a hard place. This has certainly been one of the more egregious examples, and perhaps the harder to filter, lacking the HTML and other tell-tail signs of our regular pill-spam and loan-spam. It certainly seems that we are not alone: http://blog.outer-court.com/archive/2005-05-15-n27.html I will remind all list participants of: http://samba.org/samba/ml- etiquette.html I'm sorry we can't do much more about this, Andrew Bartlett Basically if re-training your SPAM filter does not help and one really wants to get rid of all those junk mails, installing a challenge/response system like TMDA behind a statistical filter (e.g. DSPAM) would be a possible solution ... -- Mit freundlichen Gruessen / With kind regards DAn.I.El S. Haischt Want a complete signature??? Type at a shell prompt: $ finger -l [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Re: nazi spam in German over list address
It is mostly the Sober.Q worm, a new Sober variant that has come out that is causing all of the trouble. Been getting quite a bit at work but it has all been tagged as spam. More info at http://news.com.com/Sober.Q+spreads+hate+messages+in+German,+English/210 0-7349_3-5708588.html -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Daniel S. Haischt Sent: Monday, May 16, 2005 11:56 AM To: Andrew Bartlett Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED]; Lars Grobe Subject: Re: [Samba] Re: nazi spam in German over list address Andrew Bartlett wrote: On Sun, 2005-05-15 at 15:00 +0200, Lars Grobe wrote: Hi, whoever is able to unsubscribe addresses from the list: I am currently getting lots of spam with nazi content over this mailing list. Unfortunately we are all to well aware of this problem, but as the long- standing policy of samba.org lists is to allow public posting, we are between a rock and a hard place. This has certainly been one of the more egregious examples, and perhaps the harder to filter, lacking the HTML and other tell-tail signs of our regular pill-spam and loan-spam. It certainly seems that we are not alone: http://blog.outer-court.com/archive/2005-05-15-n27.html I will remind all list participants of: http://samba.org/samba/ml- etiquette.html I'm sorry we can't do much more about this, Andrew Bartlett Basically if re-training your SPAM filter does not help and one really wants to get rid of all those junk mails, installing a challenge/response system like TMDA behind a statistical filter (e.g. DSPAM) would be a possible solution ... -- Mit freundlichen Gruessen / With kind regards DAn.I.El S. Haischt Want a complete signature??? Type at a shell prompt: $ finger -l [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Question about ACL.
man, 16.05.2005 kl. 18.13 skrev Meli Marco: So, what you suggest? Answer questions? Learn to quote? There could be other things, too ... --Tonni -- Nothing sucksseeds like a pigeon without a beak ... mail: [EMAIL PROTECTED] http://www.billy.demon.nl They'll love us, won't they? They feed us, don't they? ... -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: nazi spam in German over list address
At 09:50 AM Monday, 5/16/2005, you wrote -= On Mon, 16 May 2005, Gerald (Jerry) Carter wrote: If its not spam, then it will be virus that forge headers and claim to come from a list members address. There is no silver bullet to solve this issue without moderating every post. But if the policy was only subscriber posting then, we would know that were the case with certainty, from the start. Then you would remove the member's subscription until his/her computer is fixed. Once again, close this list to members only. Seconded. With a closed list, virus and spam protection, it would certainly cut down on the amount of junk that gets posted and would be easy to identify the offender. . . . . . . . . . . . . . . . . . . Randomly Generated Quote (39 of 974): Cautious, careful people, always casting about to preserve their reputation and social standing, never can bring about a reform. Those who are really in earnest must be willing to be anything or nothing in the world's estimation, and publicly and privately, in season and out, avow their sympathy with despised and persecuted ideas and their advocates, and bear the consequences. - Susan B. Anthony -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Winbind problem when exec freeradius
Now, I'found another problem, if I put a group with spaceblanks on my ntlm_auth script on freeradius, cannot authenticate. It recognise just the first word of the name. Any idea about what´s happening? Thanks! -- Forwarded message -- From: Javier Jimenez [EMAIL PROTECTED] Date: 16-may-2005 12:42 Subject: Re: [Samba] Winbind problem when exec freeradius To: Andrew Bartlett [EMAIL PROTECTED] It works!! Thank you very much! Javi. 2005/5/16, Andrew Bartlett [EMAIL PROTECTED]: On Mon, 2005-05-16 at 09:28 +0200, Javier Jimenez wrote: Hil list! I'm trying to authenticate Active Directory Users via freeradius. I can do it in a general case (user and domain) without problem. Now I have to do it restricting the authentication to the members of a group. Exec-Program: /usr/bin/ntlm_auth --request-nt-key --username=javi2 --require-membership-of='AAMM\MyGroup' --domain=AAMM --challenge=6b480cf181ded625 --nt-response=bce392db1fcd91380690317e7cd1228e78940576d78fde21 [2005/05/16 09:05:57, 0] utils/ntlm_auth.c:get_require_membership_sid (237) Winbindd lookupname failed to resolve 'AAMM\MyGroup' into a SID! Looking at the source, the issue appears to be the quotes. FreeRadius does not go via a shell, which means that the ' characters are not stripped off. (The ntlm_auth source shows that this debug message is printed without any quotes, which means you supplied them) Does anybody know why could it be happening? Thanks in advance for any help!! -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net BodyID:76586272.2.n.logpart (stored separately) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Horrendously slow transfer speeds in FC3 is driving me crazy!!! Please help...
For what it is worth, I have a Windows XP Athlon 2600 machine with 1GB RAM and a 100MBit LAN over CAT5, and a SuSE Linux dual Pentium III 1GHz machine with 1GB RAM running Samba 3.0.10. Actually, a very simple configuration. I measured my transfer rate from the Linux box to the Windows box by copying a 1.8GB file. The transfer speed was 8.85MB/Sec, or 80% of the 100MBit rating of the network. A SCSI to EIDE ATA disk-to-disk transfer on the Linux box of the same file was 16.7MB/Sec. -- Mike Michael J. Welch, Ph.D. [EMAIL PROTECTED] or [EMAIL PROTECTED] La perfection est atteinte non quand il ne reste rien à ajouter, mais quand il ne reste rien à enlever. --Antoine de Saint Exupery (Perfection is achieved not when there is nothing more to add, but when there is nothing left to take away.) Svp, rappelez-vous toujours, un perroquet n'est pas simplement un animal de compagnie. C'est un enfant d'un autre monde. -- Bill Kiesselbach. (Please, always remember, a parrot is not merely a pet. It is a child from another world.) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: nazi spam in German over list address
And add the reply-to [EMAIL PROTECTED], there is too much accidental off list traffic. -Jason Pyeron On Mon, 16 May 2005, Ed Kasky wrote: At 09:50 AM Monday, 5/16/2005, you wrote -= On Mon, 16 May 2005, Gerald (Jerry) Carter wrote: If its not spam, then it will be virus that forge headers and claim to come from a list members address. There is no silver bullet to solve this issue without moderating every post. But if the policy was only subscriber posting then, we would know that were the case with certainty, from the start. Then you would remove the member's subscription until his/her computer is fixed. Once again, close this list to members only. Seconded. With a closed list, virus and spam protection, it would certainly cut down on the amount of junk that gets posted and would be easy to identify the offender. -- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- - - - Jason Pyeron PD Inc. http://www.pdinc.us - - Partner Sr. Manager 7 West 24th Street #100 - - +1 (410) 808-6646 (c) Baltimore, Maryland 21218 - - - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- This message is for the designated recipient only and may contain privileged, proprietary, or otherwise private information. If you have received it in error, purge the message from your system and notify the sender immediately. Any other use of the email by you is prohibited. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Win2K3 Server, in Terminal Session, Problem connecting to SAMBA server.
I have looked for several days and can not find the answer to my problem, but I'm sure it has to be a simple issue. I'm trying to map drives inside Windows Server 2003 Terminal Session from a local Samba server but can't get connected. I figure the problem is in Windows Registry but can't find web page on what needs to be changed to get this working. I built a new Windows 2003 server. Logon to the new server through Terminal Services (Remote Desktop Connection). Once connected I open Windows Explorer and try to browse over to my SAMBA server. My problem is that I get a Windows Error box saying I \\FOO_SAMBA is not accessible. Then goes on saying I might not have permission. The last line says The request is not supported. Tried mapping a known share from the FOO_SAMBA server (\\FOO_SAMBA\test) and I get a different windows error message saying The drive could not be mapped because no network was found. The domain this server is in is an is older NT4 style domain. (Not Active Directory.) The Windows 2003 Server is a member of the ADOMAIN Domain. The FOO_SAMBA server in running on Solaris 8 sparc server. I do NOT have any domain machine names configured in /etc/passwd file. Only users I want to allow to connect are in the /etc/passwd file and also part of the 'adomain' group in /etc/group file. I do not have any problem connecting to the FOO_SAMBA server from Win2K or WinXP workstations. Can even connect to shares from other Win2k Terminal Server, inside a Remote Desktop Session. I have the following entries in smb.conf file. [global] workgroup = ADOMAIN server string = Samba Server ; guest account = pcguest log file = /opt/samba/var/log.%I log level = 2 security = server password server = 149.154.1.41 encrypt passwords = yes socket options = IPTOS_LOWDELAY TCP_NODELAY SO_RCVBUF=16384 SO_SNDBUF=16384 local master = no wins server = 149.154.1.32 wins proxy = yes dns proxy = no case sensitive = auto # TAC share [tac] comment = TAC Support share path = /ark/tac public = no writable = yes write list = @adomain create mode = 0660 directory mode = 0770 [test] comment = rdc test path = /ark/rdc/test public = yes writable = yes printable = no write list = @adomain -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] RE: Problem getting Solaris 8 server to join an AD Domain
A little more time using Google, and I found the following: On Thu, 21 Oct 2004 12:47:17 -0400, Jeremy Naylor jnaylor at gmail.com http://lists.samba.org/mailman/listinfo/samba-technical wrote: Hello! In trying to get a linux machine to join a Win2k3 AD domain, I kept getting this error message when I ran net join -U admin: [2004/10/13 08:11:14, 0] utils/net_ads.c:ads_startup(183) ads_connect: Strong(er) authentication required After much googling and experimentation, I discovered that this was caused by having this set in the Security Policy on the DC: Domain Controller: LDAP server signing requirements = Require Signing Changing this to None got it working. I assume this is because the openldap code doesn't support signing? I couldn't find anything about that. I've attached a patch that enables TLS in the libads code. The Require Signing setting allows for SSL/TLS instead of signing.. There needs to be a certificate installed on the domain controller for TLS to work, but that's better than signing anyway. You also need the CA certificate to verify the server cert, adding TLS_CACERT /etc/samba/testca.cer to /etc/openldap/ldap.conf (after exporting the CA cert and saving it in testca.cer) got that working. I've only tested this on Fedora Core 2 with a DC that has Require Signing set and has a certificate installed, but setting ldap ssl = off should disable it. Can someone let me know if there's anything else I need to do to get this feature integrated in the trunk? Thanks! -Jeremy Unfortunately, I will not be able to have the LDAP signing disabled and most likely will not be able to have a cert installed on our KDC. Is there a technique for manually creating a machine account on both ends (using the same password) and then generating a keytab file? Otherwise, it appears that I am S.O.L. _ From: Cowan, Christopher O SRA GARRISON-FSHTX Sent: Friday, May 06, 2005 4:30 PM To: 'samba@lists.samba.org' Subject: Problem getting Solaris 8 server to join an AD Domain I went out and compiled the latest MIT krb5-1.4, openldap-2.2.23, and Samba 3.0.14a.I am able to authenticate fine using kinit, and use smbclient -k with no problems. I can not get the server to join the domain with net ads join -U x. I am getting the error ads_connect: Strong(er) authentication required The AD server is running Win2003, and we do not have administrative access to the domain. Some of my coworkers have admin access limited to specific OUs. I am wondering whether this message may be related to the fact that we are running with NTLMCompatibility Mode 3. I used AFS and DCE/DFS for years, so I know my way around Kerb4 and 5. Not being a Windows AD guru, I'm not sure if the NTLMCompat setting applies to Kerberos (I thought this basically shutoff the older, non-Kerberized authentication methods). I also saw some blurbs in the list archive about having to reset user passwords at least once on Win2003 AD servers in order to get the password encoded correctly. Perhaps the machine principal needs to manually set in a similar fashion.We also tried enabling delegation, but discovered that top-level policy prevents use from enabling it. My question is, will I be able to get this server to join the domain? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Re: nazi spam in German over list address
-Original Message- From: Jason Pyeron [mailto:[EMAIL PROTECTED] And add the reply-to [EMAIL PROTECTED], there is too much accidental off list traffic. I disagree. Changing it will create accidental on-list traffic, which inconveniences far more people. It's not like replying to the list is hard now, if it's what you want to do. I'm stuck using Outlook, possibly the worst e-mail client ever written, and even there it's easy. I just hit 'Reply to all', then trim out the poster's address if I don't want them to get a direct copy. I pretty much agree with this document: http://www.unicom.com/pw/reply-to-harmful.html -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Horrendously slow transfer speeds in FC3 is driving me crazy!!! Please help...
Yes, it's a huge a big difference... Off the ProLiant I can FTP files at about 8MB/s, so I'm not expecting 10MB/s, but give me at least 6 MB/s, then I'll be happy! I remebering checking the BIOS before I installed the system, and I don't remeber anything about DMA on the Network adapter, but I'll have another look when I can. The thing is, wouldn;t a DMA issue limit teh FTP to 1.5 MB/s as well as samba? You have a compaq ppro 200 somewhere? Cool... If you get around to doing some tests let me know what you get! If you're doing a fresh install try it with XFS (you must pass xfs to the kernel at the instalation boot prompt), if you have trouble detecting all of your memory at boot up (I did) try passing [EMAIL PROTECTED], where XX is the amount of memory the kernel detected and xxx is your total memory minus the amount detected. Peter. AragonX escreveu: quote who=Peter Szmrecsanyi I have a 100Mbps network, which can yeild a maximum tranfer rate of 12 MB/s, if you take the TCP/IP subsystem overhead into account you'll realise that more than 11 MB/s is bearing on the impossible. Using both the desktop and the laptop I got nearlly 11 MB/s, one was 10,11 the other was 10,72. Using FTP I got 9,96 and 9,69. With the proliant I get a max of 1.6 MB/s, the same as I get with my IBM machine (acting as a firewal/gateway) which has RedHat 7.2... Wow, 1.5mb/sec vs 10mb/sec. That's a big difference. I doubt a network card would fix the issue. If you have been watching Top and your HI and LO CPU states haven't been high ( 40%), then I don't think you are having an issue getting information to/from the NIC. You know what, I think I have a Compaq machine somethwere with a Pentium Pro 200mhz CPU in it. It's not the same machine as what you have but it might be worth me setting it up and running some tests. Tonight I'll run down to my storage and see what I have. Have you verified all your BIOS settings? I know you have checked this but I was limited to 1.5mb/sec when I was having DMA issues. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba forum
FYI, this list is already available as a forum at Nabble.com, a new mailing list archive and discussion forums site: http://www.nabble.com/Samba-f62.html One can easily get rid of spam when reading the list as a Nabble forum, by using their collaborative filtering feature. Just give the spam the lowest rating of one, as soon as 2-3 users do this the spam posts will no longer be seen, since the default minimum rating when browsing the forums is 2. -- Sent from the Samba forum at Nabble.com: http://www.nabble.com/Re%3A-nazi-spam-in-German-over-list-address-t13840.html#a42594 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] unable to connect to the SMB server from WIN XP
I am unable to connect to the SMB server from a WIN XP system. I was able to join the DOMAIN using the net command. Here is output I got from the log file. Thanks, auth/auth_domain.c:connect_to_domain_password_server connect_to_domain_password_server: unable to setup the NETLOGON credentials to machine PDC SERVER NAME. Error was : STATUS_BUFFER_OVERFLOW. auth/auth_domain.c:domain_client_validate domain_client_validate: Domain password server not available. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Domain Users group howto...
I have setup samba 3 as a PDC for a set of computers that previously had Domain Users setup to run as local admins under XP, so that anyone that has logged into the domain has local admin access. Whats the best way to replicate this setup so that I don't have to go around to each computer and change the local security policy? Is there a way to assign users to the group domain users? or would i just do something like net groupmap modify ntgroup=Domain Admins unixgroup=smbusers and make everyone an user in smbusers? Vincent Yonemitsu Information Technology Services (905)639-3611 ext 153 [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Re: nazi spam in German over list address
I dont care anymore, bye. On Mon, 16 May 2005, David Brodbeck wrote: And add the reply-to [EMAIL PROTECTED], there is too much accidental off list traffic. I disagree. Changing it will create accidental on-list traffic, which inconveniences far more people. It's not like replying to the list is hard now, if it's what you want to do. I'm stuck using Outlook, possibly the worst e-mail client ever written, and even there it's easy. I just hit 'Reply to all', then trim out the poster's address if I don't want them to get a direct copy. I pretty much agree with this document: http://www.unicom.com/pw/reply-to-harmful.html -- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- - - - Jason Pyeron PD Inc. http://www.pdinc.us - - Partner Sr. Manager 7 West 24th Street #100 - - +1 (410) 808-6646 (c) Baltimore, Maryland 21218 - - - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- This message is for the designated recipient only and may contain privileged, proprietary, or otherwise private information. If you have received it in error, purge the message from your system and notify the sender immediately. Any other use of the email by you is prohibited. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Can't See All Linux Shares
man, 16.05.2005 kl. 17.33 skrev Chris: The four shares in question are: [winstuff], [music library], [photo library], and [uop]. The two that show up okay are: [winstuff] and [uop]. The two that don't show up are: [music library] and [photo library]. An observation: the two that don't show up have spaces in them. Indeed. I tried this out on my test rig (RHAS3 and Samba 3.0.14a) and not only does smbclient not like spaces in the share name, neither does it like underscores or hyphens. I can't find this anywhere in the docs. --Tonni -- Nothing sucksseeds like a pigeon without a beak ... mail: [EMAIL PROTECTED] http://www.billy.demon.nl They'll love us, won't they? They feed us, don't they? ... -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Domain Users group howto...
On Monday 16 May 2005 12:43, Vincent Yonemitsu wrote: I have setup samba 3 as a PDC for a set of computers that previously had Domain Users setup to run as local admins under XP, so that anyone that has logged into the domain has local admin access. Whats the best way to replicate this setup so that I don't have to go around to each computer and change the local security policy? Is there a way to assign users to the group domain users? or would i just do something like net groupmap modify ntgroup=Domain Admins unixgroup=smbusers net rpc group addmem Administrators Domain Users -S MAGGOT -Uadministrator%secret Where MAGGOT is the remote Windows client. This can be done from the Samba PDC or BDC. It can be scripted. and make everyone an user in smbusers? net rpc user add 'user_name' -Uroot%secret net rpc password 'username' 'new_secret' -Uroot%not24get How does that sound? There will soon be a new chapter in the Samba-HOWTO-Collection that documents use of the 'net' command for local and remote management. - John T. -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: nazi spam in German over list address
On May 16, [EMAIL PROTECTED] said: Basically if re-training your SPAM filter does not help and one really wants to get rid of all those junk mails, installing a challenge/response system like TMDA behind a statistical filter (e.g. DSPAM) would be a possible solution ... Please don't do this. TDMA and its ilk mean that I get a challenge email every time someone uses my domain as a forged source address. And I get a lot of these. About two to three hundred per day, in fact. And it makes me sufficiently annoyed to want to respond to the damn things to make sure that the person who set them up gets all the spam that their system is bouncing at me. Challenge/Response systems improve life for a select few at the expense of the email-receiving population at large and I really wish people would exercise more thought before deploying them. Cheers, Waider. -- [EMAIL PROTECTED] / Yes, it /is/ very personal of me. One or more sentences in this post have been over-leavened with sarcasm and/or irony. The author fully expects to be misunderstood because of this, you illiterate morons. He doesn't care. - AjD -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: nazi spam in German over list address
Hey, yesterday (on 05/15/2005 at 15:41) you noticed: AB I'm sorry we can't do much more about this, AFAI can see from the headers, samba.org uses Spamassassin. There is already a cf-file available to filter this current nazi-stuff. I use it for a day now and it works well so far. No solution for upcoming stuff, I know. -- Regards, Stefan -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba and mySQL
I want to make a Samba PDC on a win2k Pro network. Ive read people are having issues using mysql as a samba backend. [ https://bugzilla.samba.org/show_bug.cgi?id=2531 ]. From what I read there, am I to understand that this is not a problem in samba = 3.0.11? Or is there a workaround to this problem in 3.0.14a? -peter -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: fascho spam in German over list address
Hi Stefan, as i just read this nazi spam is invoked by a new sober virus variant http://www.heise.de/newsticker/meldung/59562 http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM%5FSOBER%2EUVSect=P i am afraid this virus will be followed by multiple variants soon Best Regards Stefan G. Weichinger schrieb: Hey, yesterday (on 05/15/2005 at 15:41) you noticed: AB I'm sorry we can't do much more about this, AFAI can see from the headers, samba.org uses Spamassassin. There is already a cf-file available to filter this current nazi-stuff. I use it for a day now and it works well so far. No solution for upcoming stuff, I know. -- Mit freundlichen Gruessen Best Regards Robert Schetterer robert_at_schetterer.org Munich / Bavaria / Germany https://www.schetterer.org \** \* gnupgp \* public key: \* https://www.schetterer.org/public.key \** -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Domain Users group howto...
Cool, but I must be missing something. :) [EMAIL PROTECTED] ~]# net rpc group addmem Administrators Domain Users -S crappyxpbox -Uadministrator%secret [2005/05/16 15:32:35, 0] param/loadparm.c:map_parameter(2465) Unknown parameter encountered: domain admin group [2005/05/16 15:32:35, 0] param/loadparm.c:lp_do_parameter(3153) Ignoring unknown parameter domain admin group Could not connect to server crappyxpbox The username or password was not correct. What is this for -Uadministrator%secret Is that to supply a local admin password. or does that to relate having already done this and I am not sure what this is doing either. net rpc user add 'user_name' -Uroot%secret net rpc password 'username' 'new_secret' -Uroot%not24get On May 16, 2005 03:13 PM, John H Terpstra [EMAIL PROTECTED] wrote: On Monday 16 May 2005 12:43, Vincent Yonemitsu wrote: I have setup samba 3 as a PDC for a set of computers that previously had Domain Users setup to run as local admins under XP, so that anyone that has logged into the domain has local admin access. Whats the best way to replicate this setup so that I don't have to go around to each computer and change the local security policy? Is there a way to assign users to the group domain users? or would i just do something like net groupmap modify ntgroup=Domain Admins unixgroup=smbusers net rpc group addmem Administrators Domain Users -S MAGGOT -Uadministrator%secret Where MAGGOT is the remote Windows client. This can be done from the Samba PDC or BDC. It can be scripted. and make everyone an user in smbusers? net rpc user add 'user_name' -Uroot%secret net rpc password 'username' 'new_secret' -Uroot%not24get How does that sound? There will soon be a new chapter in the Samba-HOWTO-Collection that documents use of the 'net' command for local and remote management. - John T. -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba Vincent Yonemitsu Information Technology Services (905)639-3611 ext 153 [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: nazi spam in German over list address
Daniel S. Haischt wrote: Basically if re-training your SPAM filter does not help and one really wants to get rid of all those junk mails, installing a challenge/response system like TMDA behind a statistical filter (e.g. DSPAM) would be a possible solution ... No. All that a challenge response system would do is add a bunch of challenges to forged addresses to the mess that the worm is creating. It is hard enough to filter out this worm from all the infected hosts, but realize that the list operators are also having to try and filter out all the things that are incorrectly auto-responding to the forged address. Challenge response systems are a plague to mailing list operators and to any mail server operator who has had their domain forged by a virus or a spam run. Many of the mail server operators that I know are now blocking on sight any user and/or network that is using any Challenge Response system that they receive a mis-directed challenge from. My e-mail address is now under attack from mail servers that are not using SMTP rejects. All challenge response would do is increase the amount of junk that is now coming in to it. The same would happen to these lists. Right now there should be filters in place that know about most of the subject that this particular worm uses. -John -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] SAMBA_CLIENT1$@DOMAIN.LOCAL@DOMAIN.LOCAL failed: Preauthentication failed
Rex Dieter wrote: I'm seeing a lot of: [2005/05/16 08:35:46, 1] smbd/sesssetup.c:reply_spnego_kerberos(250) Username DOMAIN\SAMBA_CLIENT1$ is invalid on this system in the logs on my samba server after joining our ad DOMAIN, and accessing from SAMBA_CLIENT1 (also a member of the ad DOMAIN). Otherwise, it appears to be functioning well. Is this something to be worried about? OK, now after having some more wierdness, I tried re-joining our domain, and now I get: # net ads join [2005/05/16 14:37:04, 0] libads/ldap.c:ads_add_machine_acct(1405) ads_add_machine_acct: Host account for SAMBA_CLIENT1 already exists - modifying old account Using short domain name -- DOMAIN [2005/05/16 14:37:20, 0] libads/kerberos.c:get_service_ticket(337) get_service_ticket: kerberos_kinit_password [EMAIL PROTECTED]@DOMAIN.LOCAL failed: Preauthentication failed Joined 'SAMBA_CLIENT1' to realm 'DOMAIN.LOCAL' except it doesn't work. Is this something wrong with samba or with AD? (This same setup was working a couple of days ago). -- Rex -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Your email account access is restricted
To safeguard your email account from possible termination, please see the attached file. *** Virus Warning Message from SLTNet Team ** SLTNet Virus Wall has detected an uncleanable virus in your incoming email attachment. In order to prevent you from being infected from such viruses, the mail attachment has been deleted. The uncleanable file is deleted. (Found virus WORM_MYTOB.EK in the file email-text.pif) * -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Can't See All Linux Shares
On Monday 16 May 2005 12:08, Tony Earnshaw wrote: man, 16.05.2005 kl. 17.33 skrev Chris: The four shares in question are: [winstuff], [music library], [photo library], and [uop]. The two that show up okay are: [winstuff] and [uop]. The two that don't show up are: [music library] and [photo library]. An observation: the two that don't show up have spaces in them. Indeed. I tried this out on my test rig (RHAS3 and Samba 3.0.14a) and not only does smbclient not like spaces in the share name, neither does it like underscores or hyphens. I can't find this anywhere in the docs. Documentation patches will be received with great delight! Documentation sources can be obtained via anonymous subversion as follows: svn co svn://svnanon.samba.org/samba/trunk samba-docs In the open source world, a patch is an acceptable form of protest or complaint. :-) - John T. --Tonni -- Nothing sucksseeds like a pigeon without a beak ... mail: [EMAIL PROTECTED] http://www.billy.demon.nl They'll love us, won't they? They feed us, don't they? ... -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: nazi spam in German over list address
At 11:19 AM Monday, 5/16/2005, Jason Pyeron wrote -= And add the reply-to [EMAIL PROTECTED], there is too much accidental off list traffic. -Jason Pyeron On Mon, 16 May 2005, Ed Kasky wrote: At 09:50 AM Monday, 5/16/2005, you wrote -= On Mon, 16 May 2005, Gerald (Jerry) Carter wrote: If its not spam, then it will be virus that forge headers and claim to come from a list members address. There is no silver bullet to solve this issue without moderating every post. But if the policy was only subscriber posting then, we would know that were the case with certainty, from the start. Then you would remove the member's subscription until his/her computer is fixed. Once again, close this list to members only. Seconded. With a closed list, virus and spam protection, it would certainly cut down on the amount of junk that gets posted and would be easy to identify the offender. instructions: https://lists.samba.org/mailman/listinfo/samba Not a good idea for a number of reasons best explained in: http://www.unicom.com/pw/reply-to-harmful.html . . . . . . . . . . . . . . . . . . Randomly Generated Quote (139 of 974): Money is what people without talent use to keep score. - Jeremy C. Epworth -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Domain Users group howto...
Ok I figured it out I was also able to guess at delmem to remove Domain Users from the local Users group, and if I just plain text the Domain admin account and password into the -Uadministrator%secret thing it works. but I still get the errors even though it applies the change on the local machine. Any idea what that error means? I am thinking windows is echoing back some sort of request that sambas net command doesn't understand. So the -S = System Name and -U = Domain Admin User account and the second lines you mentioned setup a local user on the machine and set its local windows password? Very cool. I like that tool. I flipped through the man page on it, lots of stuff in there. A bit of info on that in the samba by example would be great, a few examples of common tasks and the syntax that goes along with it. On May 16, 2005 03:13 PM, John H Terpstra [EMAIL PROTECTED] wrote: On Monday 16 May 2005 12:43, Vincent Yonemitsu wrote: I have setup samba 3 as a PDC for a set of computers that previously had Domain Users setup to run as local admins under XP, so that anyone that has logged into the domain has local admin access. Whats the best way to replicate this setup so that I don't have to go around to each computer and change the local security policy? Is there a way to assign users to the group domain users? or would i just do something like net groupmap modify ntgroup=Domain Admins unixgroup=smbusers net rpc group addmem Administrators Domain Users -S MAGGOT -Uadministrator%secret Where MAGGOT is the remote Windows client. This can be done from the Samba PDC or BDC. It can be scripted. and make everyone an user in smbusers? net rpc user add 'user_name' -Uroot%secret net rpc password 'username' 'new_secret' -Uroot%not24get How does that sound? There will soon be a new chapter in the Samba-HOWTO-Collection that documents use of the 'net' command for local and remote management. - John T. -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba Vincent Yonemitsu Information Technology Services (905)639-3611 ext 153 [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Domain Users group howto...
On Monday 16 May 2005 13:30, Vincent Yonemitsu wrote: Cool, but I must be missing something. :) [EMAIL PROTECTED] ~]# net rpc group addmem Administrators Domain Users -S crappyxpbox -Uadministrator%secret [2005/05/16 15:32:35, 0] param/loadparm.c:map_parameter(2465) Unknown parameter encountered: domain admin group [2005/05/16 15:32:35, 0] param/loadparm.c:lp_do_parameter(3153) Ignoring unknown parameter domain admin group Could not connect to server crappyxpbox The username or password was not correct. What version of Samba are you using? The information I gave you is correct for 3.0.14a (current stable). In explanation of the syntax: net rpc group addmem= add a group membership Administrators= The local group Administrators on the target machine Domain Users = The domain global group on the Samba domain -S crappyxpbox = The target Windows client -Uadministrator%secret = The administrator account and it's password on the target Windows client What is this for -Uadministrator%secret Is that to supply a local admin password. Nope. It's the admin account and its password on the Windows client. - John T. or does that to relate having already done this and I am not sure what this is doing either. net rpc user add 'user_name' -Uroot%secret net rpc password 'username' 'new_secret' -Uroot%not24get On May 16, 2005 03:13 PM, John H Terpstra [EMAIL PROTECTED] wrote: On Monday 16 May 2005 12:43, Vincent Yonemitsu wrote: I have setup samba 3 as a PDC for a set of computers that previously had Domain Users setup to run as local admins under XP, so that anyone that has logged into the domain has local admin access. Whats the best way to replicate this setup so that I don't have to go around to each computer and change the local security policy? Is there a way to assign users to the group domain users? or would i just do something like net groupmap modify ntgroup=Domain Admins unixgroup=smbusers net rpc group addmem Administrators Domain Users -S MAGGOT -Uadministrator%secret Where MAGGOT is the remote Windows client. This can be done from the Samba PDC or BDC. It can be scripted. and make everyone an user in smbusers? net rpc user add 'user_name' -Uroot%secret net rpc password 'username' 'new_secret' -Uroot%not24get How does that sound? There will soon be a new chapter in the Samba-HOWTO-Collection that documents use of the 'net' command for local and remote management. - John T. -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba Vincent Yonemitsu Information Technology Services (905)639-3611 ext 153 [EMAIL PROTECTED] -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Alternative way of installing Windows printer drivers on a Samba 3.0 server
Base: Red Hat RHAS3, PDC security = user Samba 3.0.14a Cups 1.1.17 Windows XP Pro Epson C42UX (cheap inkjet) USB to the server I was looking for an alternative to the immensely complicated Add Printer Wizard procedure (APW) detailed in chapter 19.6 of the Samba HOWTO guide. The following is a method that works for me, I don't necessarily expect it to work for others, and I'd value any comments, criticism or whatever. It only takes into account Cups, not lpd and only tested with Red Hat RHASx. 1: Make sure Cups printing works perfectly from the server itself. Install the Cups printer(s) for raw output as described in the Samba HOWTO. This should automatically give the Cups printer names in the shares browse list detailed in the PDC's shares list, when a Windows workstation has joined the domain. I have a Cups printer called Epson_Samba and it shows up in the PDC's list of shares, viewable both with smbclient and Windows workstations. My smb.conf Cups printer share looks like: [printers] comment = Epson C42UX path = /var/spool/samba/raw_q admin users = Administrator, @domadm printer admin = @domadm guest ok = Yes printable = Yes use client driver = Yes browseable = yes 2: Make the [print$] share as described in the Samba HOWTO. In fact, for the method described here, you can call it anything, as long as it's a valid share. From my single XP Pro ws I can't browse to the print$ share anyway, I can't see it. Nor does it show up in 'smbclient -L'. If I just call it print, it does, but it doesn't get the fancy Windows Printers and Faxes icon. Doesn't matter, since it will simply be a repository for the driver install, from which each Windows ws will install the driver. My print share looks like: [print] comment = Printer Drivers path = /m/samba3/drivers admin users = Administrator, tonni, @domadm guest ok = yes read only = yes browseable = yes read only = yes write list = administrator, tonni, @domadm 3: Mount the CD ROM on the appropriate mount point, copy the necessary printer driver hierarchy from the driver CD ROM as supplied by the printer manufacturer to the print driver share. mount -t iso9660 /dev/cdrom /mnt/cdrom -o ro,user,noauto,unhide On my CD ROM I have many installation directories for drivers, in many languages. I'm only interested in the english directory, which has drivers for WIN2000 and 9x. mkdir -p /m/samba3/drivers/epsonc42ux/win2000 cd /dev/cdrom /mnt/cdrom/english/win2000 cp -pr * /m/samba3/drivers/epsonc42ux/win2000 This copies .inf and cab files to the destination directory without changing any archive details. Repeat for the Win 9x hierarchy if needed. Furthermore, none of the help, document, analytical or other bloatware get copied. 4: Install the drivers on the Windows ws: Browse to the PDC's shares, find the advertised Cups printer and double click on it. Windows goes wild and says it doesn't have any driver. It searches around for a while and comes up with a useless list, but it also gives the have disk. Browse to the printer driver server share, the win2000 directory you just copied, and it finds the appropriate .inf file. Choose open and Ok, then your printer, then Ok. A few seconds and the printer is installed. 5: Verify the installation: Go to Control Panel, Printers and Faxes for the Windows ws itself, printer is there. Right click, choose properties wander around and look especially at ports. The printer's port should be redirected to \\server\printer_name LAN Manager Printer Port. That's all, really. There's nothing to stop you going around with the CD to each ws instead and installing that way, but remember we've cut out all the nasties from the CD and that saves a handful of time. I wouldn't mind knowing why my [print$] share doesn't show up, though. --Tonni -- Nothing sucksseeds like a pigeon without a beak ... mail: [EMAIL PROTECTED] http://www.billy.demon.nl They'll love us, won't they? They feed us, don't they? ... -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] samba 3.0.10
Hello, I have a problem with samba. I want to restrict the access to a share. But with NT users. Ex: I have to give write access to users fquintans and epinto (NT users) to the share testeedu. I´m using net join command to join the NT domain. # Global parameters [global] workgroup = OGMASTER server string = Servidor de Desenvolvimento security = share # security = DOMAIN # domain logons = yes # syslog = 0 # log file = /usr/local/samba/var/log.%m # max log size = 0 # max xmit = 65535 # deadtime = 1 ldap ssl = no # invalid users = root create mask = 6660 directory mask = 0750 [txt] comment = Logs do SAT Desenvolvimento path = /oradata/satd/txt read only = No [testefgq] comment = Logs do SAT Desenvolvimento path = /usr/local/samba username map = /usr/local/samba/lib/usermap public = yes writable = yes write list = fquintans read only = yes force user = fquintans guest ok = yes read list = epinto # valid users = fquintans admin users = fquintans available = yes [testeedu] comment = Logs do SAT Desenvolvimento path = /usr/local/samba read list = epinto write list = epinto read only = No guest ok = Yes [printers] comment = All printers path = /tmp guest ok = Yes printable = Yes browseable = No [spooldcs] comment = Dir SPOOLDCS path = /atex/atex/spooldcs read only = No create mask = 0777 guest ok = Yes [ads] comment = Diretorio de ADV path = /atex/atex/ads read only = No create mask = 0777 guest ok = Yes locking = No strict locking = No [ads2] comment = Diretorio de ADV2 path = /atex/atex/ads2 read only = No create mask = 0777 guest ok = Yes locking = No strict locking = No Thanks for all. Felipe Quintans -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Client not found in Kerberos database
Here's another client whose net ads join command works but doesn't really, with winbind.log entries of: libads/kerberos.c:ads_kinit_passwword(146) kerberos_kinit_password host/[EMAIL PROTECTED] failed: Client not found in Kerberos database nsswitch/winbindd_ads.c: ads_cached_connection(81) ads_connect for domain DOMAIN failed: Client not found in Kerberos database -- Rex -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Terminal Service profile path
I know this may be a bit out there, but has there been any thought/plans to implement something along the lines of the Terminal Services profile path that you get with AD? -- Paul GiengerOffice: 701-281-1884 Applied Engineering Inc. Systems Architect Fax:701-281-1322 URL: www.ae-solutions.com mailto: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Alternative way of installing Windows printer drivers on a Samba 3.0 server
On Monday 16 May 2005 04:42 pm, Tony Earnshaw wrote: I wouldn't mind knowing why my [print$] share doesn't show up, though. Apologies if I misunderstand but...a trailing $ makes a share hidden, it's SMSOP (Standard Microsoft Operating Procedure).The default admin shares C$, etc. are examples as well. You can still use the share if you call it directly, set up a Network Places shortcut, or map to it; you just wont see it in a browse list. Chris -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Winbind problem when exec freeradius
On Mon, 2005-05-16 at 20:03 +0200, Javier Jimenez wrote: Now, I'found another problem, if I put a group with spaceblanks on my ntlm_auth script on freeradius, cannot authenticate. It recognise just the first word of the name. Any idea about whats happening? Thanks! Likewise, FreeRadius is not calling a shell, so the splitting function is chewing on the string. The easy option is to change the name into a SID (S-123-456), and include that as the option. The FreeRadius list may be able to assist on how the quoting does or doesn't behave. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] File list Performance question
I have a server running SuSE 9.3 (Samba 3.0.13-1.1). The underlying filesystem is xfs, and the NICs are Netgear gigabit. 2 Gb of ram in a P4/3.0 Ghz. The workstations are windows XP Pro, with all service packs installed, on P4 3+ Ghz, 1-2 Gb of ram. (varies a bit by workstation) I have one particular tree on the server that contains over 12K files in a few hundred subdirs. Breaking it up isn't an option. I'm aware that there are tons of parameters and options in the smb.conf file, many having to do with performance, but I could use a pointer. When the users try to open a file, the select file listbox in ANY windows app is taking an eternity to populate. The transfer speed of the files is fine, but is there a paticular way to speed up the findfirst/findnext loop that populates the list? Thanks! Mike- -- Mornings: Evolution in action. Only the grumpy will survive. -- Please note - Due to the intense volume of spam, we have installed site-wide spam filters at catherders.com. If email from you bounces, try non-HTML, non-encoded, non-attachments. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] File list Performance question
On Monday 16 May 2005 18:45, Michael W Cocke wrote: I have a server running SuSE 9.3 (Samba 3.0.13-1.1). The underlying filesystem is xfs, and the NICs are Netgear gigabit. 2 Gb of ram in a P4/3.0 Ghz. The workstations are windows XP Pro, with all service packs installed, on P4 3+ Ghz, 1-2 Gb of ram. (varies a bit by workstation) I have one particular tree on the server that contains over 12K files in a few hundred subdirs. Breaking it up isn't an option. I'm aware that there are tons of parameters and options in the smb.conf file, many having to do with performance, but I could use a pointer. When the users try to open a file, the select file listbox in ANY windows app is taking an eternity to populate. The transfer speed of the files is fine, but is there a paticular way to speed up the findfirst/findnext loop that populates the list? There is a chapter on the subject of large directories in the Samba-HOWTO-Collection (The Official Samba-3 HOWTO and Reference Guide). A copy has been reserved for you at: http://www.samba.org/samba/docs/Samba-HOWTO-Collection.pdf If you find any problems please let me know as soon as possible. Thanks. - John T. Thanks! Mike- -- Mornings: Evolution in action. Only the grumpy will survive. -- Please note - Due to the intense volume of spam, we have installed site-wide spam filters at catherders.com. If email from you bounces, try non-HTML, non-encoded, non-attachments. -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Feature request: delete machine script
Hi everyone, I am wondering what the likelyhood would be to get a delete machine script implemented in the samba core that would delete a machine upon successful un-join of a samba domain. Alternatively, why is this not a good idea? tom. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Feature request: delete machine script
On Monday 16 May 2005 19:01, tom burkart wrote: Hi everyone, I am wondering what the likelyhood would be to get a delete machine script implemented in the samba core that would delete a machine upon successful un-join of a samba domain. Alternatively, why is this not a good idea? How do you plan on creating the SMB/CIFS transaction that would delete the account? Have you used ethereal to check what commands unjoining a workstation from the domain passes over the network? What is wrong with manually executing: net rpc user delete machine\$ -Uroot%secret It beats the challenge of getting Microsoft to change their workstation code! :-) - John T. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] File list Performance question
On Mon, 16 May 2005 18:57:49 -0600, you wrote: On Monday 16 May 2005 18:45, Michael W Cocke wrote: I have a server running SuSE 9.3 (Samba 3.0.13-1.1). The underlying filesystem is xfs, and the NICs are Netgear gigabit. 2 Gb of ram in a P4/3.0 Ghz. The workstations are windows XP Pro, with all service packs installed, on P4 3+ Ghz, 1-2 Gb of ram. (varies a bit by workstation) I have one particular tree on the server that contains over 12K files in a few hundred subdirs. Breaking it up isn't an option. I'm aware that there are tons of parameters and options in the smb.conf file, many having to do with performance, but I could use a pointer. When the users try to open a file, the select file listbox in ANY windows app is taking an eternity to populate. The transfer speed of the files is fine, but is there a paticular way to speed up the findfirst/findnext loop that populates the list? There is a chapter on the subject of large directories in the Samba-HOWTO-Collection (The Official Samba-3 HOWTO and Reference Guide). A copy has been reserved for you at: http://www.samba.org/samba/docs/Samba-HOWTO-Collection.pdf If you find any problems please let me know as soon as possible. Thanks. - John T. Thanks! The case sensitivity might be a problem, but maybe I can work something out... Right now the filenames are mixed case and some of the software that maintains the contents will have to be rewritten. The biggest issue will be the users, as usual. The filenames show up in a number of the places we use the data, and I don't think I'm going to impress anyone with all upper (or lower) case names, but it may be the only way we can make this work right, in which case they'll learn to love it. Is there any other option? Mike- -- Mornings: Evolution in action. Only the grumpy will survive. -- Please note - Due to the intense volume of spam, we have installed site-wide spam filters at catherders.com. If email from you bounces, try non-HTML, non-encoded, non-attachments. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba server suddenly started asking for authentication of the us ers
Samba Server Name: hamilton Samba Server OS: HP-UX 11.11 Samba Version: 2.2.3.a Hi All, I have the same version of Samba running on many of our HP servers with almost identical smb.conf file and configured the same way. No other Samba server seem to be having any problems except this one (hamilton). When a legitimate user tries to access a Samba share from a Windows client, it asks for his/her User name password, and it won't accept the user's current network id password. Can anyone advise as to what might be the problem and how to fix it. Many thanks in advance. Regards, Majid Chavoshi Unix Systems Administrator Belkin Corporation Information Services 310-604-2098 Office 310-604-2022 Fax 310-877-1428 Mobile [EMAIL PROTECTED] www.belkin.com Confidential This e-mail and any files transmitted with it are the property of Belkin Corporation and/or its affiliates, are confidential, and are intended solely for the use of the individual or entity to whom this e-mail is addressed. If you are not one of the named recipients or otherwise have reason to believe that you have received this e-mail in error, please notify the sender and delete this message immediately from your computer. Any other use, retention, dissemination, forwarding, printing or copying of this e-mail is strictly prohibited. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Feature request: delete machine script
On May 16, John H Terpstra wrote: On Monday 16 May 2005 19:01, tom burkart wrote: Hi everyone, I am wondering what the likelyhood would be to get a delete machine script implemented in the samba core that would delete a machine upon successful un-join of a samba domain. Alternatively, why is this not a good idea? How do you plan on creating the SMB/CIFS transaction that would delete the account? Have you used ethereal to check what commands unjoining a workstation from the domain passes over the network? What is wrong with manually executing: net rpc user delete machine\$ -Uroot%secret Sorry, you seem to misunderstand: When the machine is detached from the domain (with the above command), what I want is Samba to execute a script that deletes the appropriate machine name from the LDAP directory. tom. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] File list Performance question
Michael W Cocke wrote: On Mon, 16 May 2005 18:57:49 -0600, you wrote: On Monday 16 May 2005 18:45, Michael W Cocke wrote: I have a server running SuSE 9.3 (Samba 3.0.13-1.1). The underlying filesystem is xfs, and the NICs are Netgear gigabit. 2 Gb of ram in a P4/3.0 Ghz. The workstations are windows XP Pro, with all service packs installed, on P4 3+ Ghz, 1-2 Gb of ram. (varies a bit by workstation) I have one particular tree on the server that contains over 12K files in a few hundred subdirs. Breaking it up isn't an option. I'm aware that there are tons of parameters and options in the smb.conf file, many having to do with performance, but I could use a pointer. When the users try to open a file, the select file listbox in ANY windows app is taking an eternity to populate. The transfer speed of the files is fine, but is there a paticular way to speed up the findfirst/findnext loop that populates the list? There is a chapter on the subject of large directories in the Samba-HOWTO-Collection (The Official Samba-3 HOWTO and Reference Guide). A copy has been reserved for you at: http://www.samba.org/samba/docs/Samba-HOWTO-Collection.pdf If you find any problems please let me know as soon as possible. Thanks. - John T. Thanks! The case sensitivity might be a problem, but maybe I can work something out... Right now the filenames are mixed case and some of the software that maintains the contents will have to be rewritten. The biggest issue will be the users, as usual. The filenames show up in a number of the places we use the data, and I don't think I'm going to impress anyone with all upper (or lower) case names, but it may be the only way we can make this work right, in which case they'll learn to love it. Is there any other option? I found this helps in some circumstances, some office versions, MS article 818792: http://support.microsoft.com/default.aspx?scid=kb;en-us;818792 Basically, it quits waiting for the entire list of files because it quits trying to highlite the first openable file in the sort sequence. Might be of some use. Works for me. Regards, Doug -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: nazi spam in German over list address
On Mon, 16 May 2005, Ed Kasky wrote: Date: Mon, 16 May 2005 10:47:34 -0700 From: Ed Kasky [EMAIL PROTECTED] To: Jason Pyeron [EMAIL PROTECTED] Subject: Re: [Samba] Re: nazi spam in German over list address Resent-Date: Mon, 16 May 2005 13:58:52 -0400 (EDT) Resent-From: Jason Pyeron [EMAIL PROTECTED] Resent-To: [EMAIL PROTECTED] Resent-Subject: Re: [Samba] Re: nazi spam in German over list address At 09:50 AM Monday, 5/16/2005, you wrote -= On Mon, 16 May 2005, Gerald (Jerry) Carter wrote: If its not spam, then it will be virus that forge headers and claim to come from a list members address. There is no silver bullet to solve this issue without moderating every post. But if the policy was only subscriber posting then, we would know that were the case with certainty, from the start. Then you would remove the member's subscription until his/her computer is fixed. Once again, close this list to members only. Seconded. With a closed list, virus and spam protection, it would certainly cut down on the amount of junk that gets posted and would be easy to identify the offender. I'd go further and cut down on membership to people emailing from non-Windows systems (including Webmail systems, until someone invents a worm that spreads through those...) . . . . . . . . . . . . . . . . . . Randomly Generated Quote (39 of 974): Cautious, careful people, always casting about to preserve their reputation and social standing, never can bring about a reform. Those who are really in earnest must be willing to be anything or nothing in the world's estimation, and publicly and privately, in season and out, avow their sympathy with despised and persecuted ideas and their advocates, and bear the consequences. - Susan B. Anthony -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- J. L. Blank, Systems Administrator, twu.net -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: nazi spam in German over list address
On Mon, 16 May 2005, JLB wrote: Date: Mon, 16 May 2005 21:52:30 -0400 (EDT) From: JLB [EMAIL PROTECTED] To: Ed Kasky [EMAIL PROTECTED] Cc: Jason Pyeron [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: [Samba] Re: nazi spam in German over list address On Mon, 16 May 2005, Ed Kasky wrote: Date: Mon, 16 May 2005 10:47:34 -0700 From: Ed Kasky [EMAIL PROTECTED] To: Jason Pyeron [EMAIL PROTECTED] Subject: Re: [Samba] Re: nazi spam in German over list address Resent-Date: Mon, 16 May 2005 13:58:52 -0400 (EDT) Resent-From: Jason Pyeron [EMAIL PROTECTED] Resent-To: [EMAIL PROTECTED] Resent-Subject: Re: [Samba] Re: nazi spam in German over list address At 09:50 AM Monday, 5/16/2005, you wrote -= On Mon, 16 May 2005, Gerald (Jerry) Carter wrote: If its not spam, then it will be virus that forge headers and claim to come from a list members address. There is no silver bullet to solve this issue without moderating every post. But if the policy was only subscriber posting then, we would know that were the case with certainty, from the start. Then you would remove the member's subscription until his/her computer is fixed. Once again, close this list to members only. Seconded. With a closed list, virus and spam protection, it would certainly cut down on the amount of junk that gets posted and would be easy to identify the offender. I'd go further and cut down on membership to people emailing from non-Windows systems (including Webmail systems, until someone invents a worm that spreads through those...) Err, rather, limit membership to only people who are emailing from non-Windows systems. . . . . . . . . . . . . . . . . . . Randomly Generated Quote (39 of 974): Cautious, careful people, always casting about to preserve their reputation and social standing, never can bring about a reform. Those who are really in earnest must be willing to be anything or nothing in the world's estimation, and publicly and privately, in season and out, avow their sympathy with despised and persecuted ideas and their advocates, and bear the consequences. - Susan B. Anthony -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- J. L. Blank, Systems Administrator, twu.net -- J. L. Blank, Systems Administrator, twu.net -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Re: nazi spam in German over list address
Good idea! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of JLB Sent: Monday, May 16, 2005 7:54 PM To: Ed Kasky Cc: Jason Pyeron; [EMAIL PROTECTED] Subject: Re: [Samba] Re: nazi spam in German over list address On Mon, 16 May 2005, JLB wrote: Date: Mon, 16 May 2005 21:52:30 -0400 (EDT) From: JLB [EMAIL PROTECTED] To: Ed Kasky [EMAIL PROTECTED] Cc: Jason Pyeron [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: [Samba] Re: nazi spam in German over list address On Mon, 16 May 2005, Ed Kasky wrote: Date: Mon, 16 May 2005 10:47:34 -0700 From: Ed Kasky [EMAIL PROTECTED] To: Jason Pyeron [EMAIL PROTECTED] Subject: Re: [Samba] Re: nazi spam in German over list address Resent-Date: Mon, 16 May 2005 13:58:52 -0400 (EDT) Resent-From: Jason Pyeron [EMAIL PROTECTED] Resent-To: [EMAIL PROTECTED] Resent-Subject: Re: [Samba] Re: nazi spam in German over list address At 09:50 AM Monday, 5/16/2005, you wrote -= On Mon, 16 May 2005, Gerald (Jerry) Carter wrote: If its not spam, then it will be virus that forge headers and claim to come from a list members address. There is no silver bullet to solve this issue without moderating every post. But if the policy was only subscriber posting then, we would know that were the case with certainty, from the start. Then you would remove the member's subscription until his/her computer is fixed. Once again, close this list to members only. Seconded. With a closed list, virus and spam protection, it would certainly cut down on the amount of junk that gets posted and would be easy to identify the offender. I'd go further and cut down on membership to people emailing from non-Windows systems (including Webmail systems, until someone invents a worm that spreads through those...) Err, rather, limit membership to only people who are emailing from non-Windows systems. . . . . . . . . . . . . . . . . . . Randomly Generated Quote (39 of 974): Cautious, careful people, always casting about to preserve their reputation and social standing, never can bring about a reform. Those who are really in earnest must be willing to be anything or nothing in the world's estimation, and publicly and privately, in season and out, avow their sympathy with despised and persecuted ideas and their advocates, and bear the consequences. - Susan B. Anthony -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- J. L. Blank, Systems Administrator, twu.net -- J. L. Blank, Systems Administrator, twu.net -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: nazi spam in German over list address
Please don't cc me anymore, I have unsubscribed to solve this problem for me. On Mon, 16 May 2005, JLB wrote: On Mon, 16 May 2005, JLB wrote: Date: Mon, 16 May 2005 21:52:30 -0400 (EDT) From: JLB [EMAIL PROTECTED] To: Ed Kasky [EMAIL PROTECTED] Cc: Jason Pyeron [EMAIL PROTECTED], [EMAIL PROTECTED] Subject: Re: [Samba] Re: nazi spam in German over list address On Mon, 16 May 2005, Ed Kasky wrote: Date: Mon, 16 May 2005 10:47:34 -0700 From: Ed Kasky [EMAIL PROTECTED] To: Jason Pyeron [EMAIL PROTECTED] Subject: Re: [Samba] Re: nazi spam in German over list address Resent-Date: Mon, 16 May 2005 13:58:52 -0400 (EDT) Resent-From: Jason Pyeron [EMAIL PROTECTED] Resent-To: [EMAIL PROTECTED] Resent-Subject: Re: [Samba] Re: nazi spam in German over list address At 09:50 AM Monday, 5/16/2005, you wrote -= On Mon, 16 May 2005, Gerald (Jerry) Carter wrote: If its not spam, then it will be virus that forge headers and claim to come from a list members address. There is no silver bullet to solve this issue without moderating every post. But if the policy was only subscriber posting then, we would know that were the case with certainty, from the start. Then you would remove the member's subscription until his/her computer is fixed. Once again, close this list to members only. Seconded. With a closed list, virus and spam protection, it would certainly cut down on the amount of junk that gets posted and would be easy to identify the offender. I'd go further and cut down on membership to people emailing from non-Windows systems (including Webmail systems, until someone invents a worm that spreads through those...) Err, rather, limit membership to only people who are emailing from non-Windows systems. . . . . . . . . . . . . . . . . . . Randomly Generated Quote (39 of 974): Cautious, careful people, always casting about to preserve their reputation and social standing, never can bring about a reform. Those who are really in earnest must be willing to be anything or nothing in the world's estimation, and publicly and privately, in season and out, avow their sympathy with despised and persecuted ideas and their advocates, and bear the consequences. - Susan B. Anthony -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- J. L. Blank, Systems Administrator, twu.net -- J. L. Blank, Systems Administrator, twu.net -- -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- - - - Jason Pyeron PD Inc. http://www.pdinc.us - - Partner Sr. Manager 7 West 24th Street #100 - - +1 (410) 808-6646 (c) Baltimore, Maryland 21218 - - - -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- This message is for the designated recipient only and may contain privileged, proprietary, or otherwise private information. If you have received it in error, purge the message from your system and notify the sender immediately. Any other use of the email by you is prohibited. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] File list Performance question
On Monday 16 May 2005 19:19, Michael W Cocke wrote: On Mon, 16 May 2005 18:57:49 -0600, you wrote: On Monday 16 May 2005 18:45, Michael W Cocke wrote: I have a server running SuSE 9.3 (Samba 3.0.13-1.1). The underlying filesystem is xfs, and the NICs are Netgear gigabit. 2 Gb of ram in a P4/3.0 Ghz. The workstations are windows XP Pro, with all service packs installed, on P4 3+ Ghz, 1-2 Gb of ram. (varies a bit by workstation) I have one particular tree on the server that contains over 12K files in a few hundred subdirs. Breaking it up isn't an option. I'm aware that there are tons of parameters and options in the smb.conf file, many having to do with performance, but I could use a pointer. When the users try to open a file, the select file listbox in ANY windows app is taking an eternity to populate. The transfer speed of the files is fine, but is there a paticular way to speed up the findfirst/findnext loop that populates the list? There is a chapter on the subject of large directories in the Samba-HOWTO-Collection (The Official Samba-3 HOWTO and Reference Guide). A copy has been reserved for you at: http://www.samba.org/samba/docs/Samba-HOWTO-Collection.pdf If you find any problems please let me know as soon as possible. Not that I know of. - John T. Thanks. - John T. Thanks! The case sensitivity might be a problem, but maybe I can work something out... Right now the filenames are mixed case and some of the software that maintains the contents will have to be rewritten. The biggest issue will be the users, as usual. The filenames show up in a number of the places we use the data, and I don't think I'm going to impress anyone with all upper (or lower) case names, but it may be the only way we can make this work right, in which case they'll learn to love it. Is there any other option? Mike- -- Mornings: Evolution in action. Only the grumpy will survive. -- Please note - Due to the intense volume of spam, we have installed site-wide spam filters at catherders.com. If email from you bounces, try non-HTML, non-encoded, non-attachments. -- John H Terpstra Samba-Team Member Phone: +1 (650) 580-8668 Author: The Official Samba-3 HOWTO Reference Guide, ISBN: 0131453556 Samba-3 by Example, ISBN: 0131472216 Hardening Linux, ISBN: 0072254971 Other books in production. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Feature request: delete machine script
On Monday 16 May 2005 19:31, tom burkart wrote: On May 16, John H Terpstra wrote: On Monday 16 May 2005 19:01, tom burkart wrote: Hi everyone, I am wondering what the likelyhood would be to get a delete machine script implemented in the samba core that would delete a machine upon successful un-join of a samba domain. Alternatively, why is this not a good idea? How do you plan on creating the SMB/CIFS transaction that would delete the account? Have you used ethereal to check what commands unjoining a workstation from the domain passes over the network? What is wrong with manually executing: net rpc user delete machine\$ -Uroot%secret Sorry, you seem to misunderstand: When the machine is detached from the domain (with the above command), what I want is Samba to execute a script that deletes the appropriate machine name from the LDAP directory. Exactly! When you un-join the domain does the windows client send any CIFS commands to the domain controller to remove the account? If not, then having an interface script will not do a single bit of good. In my experience, detachinf from a domain is a local-only operation; no commands are sent to the domain controllers. So if you want this functionality you will first have to convince Microsoft to implement it. - John T. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: nazi spam in German over list address
Locking out the Windows folks is counterproductive--those are exactly the ones we're trying to attract away from MS, for that's the only way we'll beat MS--by converting its customers. And now I'm done with this thread; I'm more interested in learning Samba. Eric Hines At 05/16/05 21:12, you wrote: snip I'd go further and cut down on membership to people emailing from non-Windows systems (including Webmail systems, until someone invents a worm that spreads through those...) Err, rather, limit membership to only people who are emailing from non-Windows systems. J. L. Blank, Systems Administrator, twu.net -- J. L. Blank, Systems Administrator, twu.net -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba Dawn is nature's way of telling you to go to bed. And to just stay there until the evil yellow disk is gone again. --Anonymous -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] File list Performance question
On Mon, May 16, 2005 at 06:46:31PM -0700, Doug VanLeuven wrote: Michael W Cocke wrote: Thanks! The case sensitivity might be a problem, but maybe I can work something out... Right now the filenames are mixed case and some of the software that maintains the contents will have to be rewritten. The biggest issue will be the users, as usual. The filenames show up in a number of the places we use the data, and I don't think I'm going to impress anyone with all upper (or lower) case names, but it may be the only way we can make this work right, in which case they'll learn to love it. Is there any other option? Not really. The underlying file system is case sensitive which means if we allow mixed case names it is very expensive to determine if a file doesn't exist. Does the software that maintains the contents run on the UNIX side of things ? If it runs on the Windows side it won't have to change, it'll work with the filenames whatever case they're returned. Jeremy -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: nazi spam in German over list address
On Monday 16 May 2005 19:29, Eric Hines wrote: Locking out the Windows folks is counterproductive--those are exactly the ones we're trying to attract away from MS, for that's the only way we'll beat MS--by converting its customers. Everybody who receives this samba email signed up for it. Why not only propagate messages from people on that list? After all, as it is now, if you want to get help from other people on the list, you'll probably sign up. I understand that someone could publicly post, then read the list from some other source than the emails, but that seems like the hard way. It's just not that hard to sign up, and it's just as easy to drop off the list later. -- Mike Michael J. Welch, Ph.D. [EMAIL PROTECTED] or [EMAIL PROTECTED] La perfection est atteinte non quand il ne reste rien à ajouter, mais quand il ne reste rien à enlever. --Antoine de Saint Exupery (Perfection is achieved not when there is nothing more to add, but when there is nothing left to take away.) Svp, rappelez-vous toujours, un perroquet n'est pas simplement un animal de compagnie. C'est un enfant d'un autre monde. -- Bill Kiesselbach. (Please, always remember, a parrot is not merely a pet. It is a child from another world.) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Policy Violation
The following message sent by this account has violated system policy: From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Date: Tue, 17 May 2005 00:07:54 -0400 Subject: Re: Word file The following violations were detected: --- Scan information follows --- Virus Name: [EMAIL PROTECTED] File Attachment: M2005051700075408676.mes Attachment Status: infected Virus Name: [EMAIL PROTECTED] File Attachment: document_word.pif Attachment Status: deleted --- File name Block information follows --- File Attachment: M2005051700075408676.mes/document_word.pif Matching file name: *.pif -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
I think it should be clear, at least for a while.
The filters have been adjusted. From looking at the Samba lists, this one was the least affected by the sober worm that is spamming in German. I see only one instance made it through here. Some of the other lists were mailbombed, and are now getting mis-directed bounces from mail servers that are not using SMTP rejects. Fortunately most mail server operators know only to use SMTP rejects for undeliverable mail. Feel free to file individual abuse reports to any of the mail servers that are generating virus detected spam and undeliverable message spam to known forged addresses, as this is the only way that they will get feedback on how abusive that behavior is and that sending such messages is participating in a global denial of service attack which is assisting the virus writers and spammers. -John [EMAIL PROTECTED] Personal Opinion Only PLEASE READ THIS IMPORTANT ETIQUETTE MESSAGE BEFORE POSTING: http://www.catb.org/~esr/faqs/smart-questions.html
svn commit: samba r6812 - in branches/SAMBA_4_0/source/lib/talloc: .
Author: tridge Date: 2005-05-16 06:33:37 + (Mon, 16 May 2005) New Revision: 6812 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=6812 Log: more talloc portability tweaks Modified: branches/SAMBA_4_0/source/lib/talloc/config.m4 branches/SAMBA_4_0/source/lib/talloc/configure.in branches/SAMBA_4_0/source/lib/talloc/talloc.c Changeset: Modified: branches/SAMBA_4_0/source/lib/talloc/config.m4 === --- branches/SAMBA_4_0/source/lib/talloc/config.m4 2005-05-16 03:30:18 UTC (rev 6811) +++ branches/SAMBA_4_0/source/lib/talloc/config.m4 2005-05-16 06:33:37 UTC (rev 6812) @@ -1,7 +1,3 @@ -if test x$experimental = xyes; then - SMB_LIBRARY_ENABLE(libtalloc,YES) -fi - AC_CACHE_CHECK([for va_copy],samba_cv_HAVE_VA_COPY,[ AC_TRY_LINK([#include stdarg.h va_list ap1,ap2;], [va_copy(ap1,ap2);], @@ -10,3 +6,4 @@ AC_DEFINE(HAVE_VA_COPY,1,[Whether va_copy() is available]) fi +AC_CHECK_TYPES(intptr_t) Modified: branches/SAMBA_4_0/source/lib/talloc/configure.in === --- branches/SAMBA_4_0/source/lib/talloc/configure.in 2005-05-16 03:30:18 UTC (rev 6811) +++ branches/SAMBA_4_0/source/lib/talloc/configure.in 2005-05-16 06:33:37 UTC (rev 6812) @@ -1,5 +1,4 @@ -AC_DEFUN([SMB_MODULE_DEFAULT], [echo -n ]) -AC_DEFUN([SMB_LIBRARY_ENABLE], [echo -n ]) +AC_PREREQ(2.50) AC_INIT(talloc.h) AC_PROG_CC if test x$GCC = xyes; then Modified: branches/SAMBA_4_0/source/lib/talloc/talloc.c === --- branches/SAMBA_4_0/source/lib/talloc/talloc.c 2005-05-16 03:30:18 UTC (rev 6811) +++ branches/SAMBA_4_0/source/lib/talloc/talloc.c 2005-05-16 06:33:37 UTC (rev 6812) @@ -32,6 +32,7 @@ #include stdio.h #include stdlib.h #include string.h +#include unistd.h #ifdef HAVE_STDARG_H #include stdarg.h
svn commit: samba-docs r554 - in trunk/Samba-HOWTO-Collection: .
Author: jht Date: 2005-05-16 07:11:57 + (Mon, 16 May 2005) New Revision: 554 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=samba-docsrev=554 Log: Another work in progress commit. Modified: trunk/Samba-HOWTO-Collection/TOSHARG-TheNetCommand.xml Changeset: Sorry, the patch is too large (695 lines) to include; please use WebSVN to see it! WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=samba-docsrev=554
svn commit: samba r6813 - in trunk/source/nsswitch: .
Author: vlendec Date: 2005-05-16 09:46:51 + (Mon, 16 May 2005) New Revision: 6813 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=6813 Log: Remove some code duplication, sid2uid and sid2gid have _async functions. Volker Modified: trunk/source/nsswitch/winbindd_async.c trunk/source/nsswitch/winbindd_sid.c Changeset: Sorry, the patch is too large (447 lines) to include; please use WebSVN to see it! WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=6813
svn commit: samba r6814 - in branches/SAMBA_4_0/source/librpc/idl: .
Author: tridge Date: 2005-05-16 10:21:32 + (Mon, 16 May 2005) New Revision: 6814 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=6814 Log: fill in two more unknown values in cldap responses Modified: branches/SAMBA_4_0/source/librpc/idl/nbt.idl Changeset: Modified: branches/SAMBA_4_0/source/librpc/idl/nbt.idl === --- branches/SAMBA_4_0/source/librpc/idl/nbt.idl2005-05-16 09:46:51 UTC (rev 6813) +++ branches/SAMBA_4_0/source/librpc/idl/nbt.idl2005-05-16 10:21:32 UTC (rev 6814) @@ -458,7 +458,7 @@ typedef struct { [value(19)] uint16 type; nstring pdc_name; - nstring unknown; + nstring user_name; nstring domain_name; uint32 nt_version; uint16 lmnt_token; @@ -468,7 +468,7 @@ typedef struct { [value(19)] uint16 type; nstring pdc_name; - nstring unknown; + nstring user_name; nstring domain_name; GUID domain_uuid; GUID unknown_uuid;
svn commit: samba r6815 - in branches/SAMBA_4_0/source/cldap_server: .
Author: tridge Date: 2005-05-16 10:30:51 + (Mon, 16 May 2005) New Revision: 6815 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=6815 Log: fill in values in cldap server as well Modified: branches/SAMBA_4_0/source/cldap_server/netlogon.c Changeset: Modified: branches/SAMBA_4_0/source/cldap_server/netlogon.c === --- branches/SAMBA_4_0/source/cldap_server/netlogon.c 2005-05-16 10:21:32 UTC (rev 6814) +++ branches/SAMBA_4_0/source/cldap_server/netlogon.c 2005-05-16 10:30:51 UTC (rev 6815) @@ -103,7 +103,7 @@ case 0: case 1: netlogon-logon1.pdc_name= pdc_name; - netlogon-logon1.unknown = ; + netlogon-logon1.user_name = user; netlogon-logon1.domain_name = flatname; netlogon-logon1.nt_version = 1; netlogon-logon1.lmnt_token = 0x; @@ -112,7 +112,7 @@ case 2: case 3: netlogon-logon2.pdc_name = pdc_name; - netlogon-logon2.unknown = ; + netlogon-logon2.user_name= user; netlogon-logon2.domain_name = flatname; netlogon-logon2.domain_uuid = domain_uuid; netlogon-logon2.forest = realm;
svn commit: samba r6816 - in branches/SAMBA_4_0/source/torture/ldap: .
Author: tridge Date: 2005-05-16 11:16:48 + (Mon, 16 May 2005) New Revision: 6816 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=6816 Log: - fixed debug display of ndr netlogon union - send a username when scanning to make structure elements clearer Modified: branches/SAMBA_4_0/source/torture/ldap/cldap.c Changeset: Modified: branches/SAMBA_4_0/source/torture/ldap/cldap.c === --- branches/SAMBA_4_0/source/torture/ldap/cldap.c 2005-05-16 10:30:51 UTC (rev 6815) +++ branches/SAMBA_4_0/source/torture/ldap/cldap.c 2005-05-16 11:16:48 UTC (rev 6816) @@ -62,6 +62,7 @@ n1 = search.out.netlogon; + search.in.user = Administrator; search.in.realm= n1.logon4.dns_domain; search.in.host = __cldap_torture__; @@ -72,7 +73,8 @@ status = cldap_netlogon(cldap, mem_ctx, search); CHECK_STATUS(status, NT_STATUS_OK); if (DEBUGLVL(10)) { - NDR_PRINT_UNION_DEBUG(nbt_cldap_netlogon, i 0xF, + NDR_PRINT_UNION_DEBUG(nbt_cldap_netlogon, + search.in.version 0xF, search.out.netlogon); } } @@ -84,7 +86,8 @@ status = cldap_netlogon(cldap, mem_ctx, search); CHECK_STATUS(status, NT_STATUS_OK); if (DEBUGLVL(10)) { - NDR_PRINT_UNION_DEBUG(nbt_cldap_netlogon, i 0xF, + NDR_PRINT_UNION_DEBUG(nbt_cldap_netlogon, + search.in.version 0xF, search.out.netlogon); } }
svn commit: samba r6817 - in branches/SAMBA_4_0/source: cldap_server lib/ldb/common libcli/ldap
Author: tridge Date: 2005-05-16 11:17:57 + (Mon, 16 May 2005) New Revision: 6817 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=6817 Log: - fixed empty ldap search elements in filters - added support for guids in cldap netlogon searches. the cldap server now passes the LDAP-CLDAP torture test Modified: branches/SAMBA_4_0/source/cldap_server/netlogon.c branches/SAMBA_4_0/source/lib/ldb/common/ldb_parse.c branches/SAMBA_4_0/source/libcli/ldap/ldap.c branches/SAMBA_4_0/source/libcli/ldap/ldap.h branches/SAMBA_4_0/source/libcli/ldap/ldap_ndr.c Changeset: Modified: branches/SAMBA_4_0/source/cldap_server/netlogon.c === --- branches/SAMBA_4_0/source/cldap_server/netlogon.c 2005-05-16 11:16:48 UTC (rev 6816) +++ branches/SAMBA_4_0/source/cldap_server/netlogon.c 2005-05-16 11:17:57 UTC (rev 6817) @@ -33,6 +33,7 @@ static NTSTATUS cldapd_netlogon_fill(struct cldap_socket *cldap, TALLOC_CTX *mem_ctx, const char *domain, +const char *domain_guid, const char *user, const char *src_address, uint32_t version, @@ -61,13 +62,15 @@ } /* the domain has an optional trailing . */ - if (domain[strlen(domain)-1] == '.') { + if (domain domain[strlen(domain)-1] == '.') { domain = talloc_strndup(mem_ctx, domain, strlen(domain)-1); } /* try and find the domain */ ret = gendb_search(samctx, samctx, NULL, res, attrs, - ((dnsDomain=%s)(objectClass=domainDNS)), domain); + ((objectClass=domainDNS)(|(dnsDomain=%s)(objectGUID=%s))), + domain?domain:, + domain_guid?domain_guid:); if (ret != 1) { DEBUG(2,(Unable to find domain '%s' in sam\n, domain)); return NT_STATUS_NO_SUCH_DOMAIN; @@ -210,9 +213,13 @@ t-u.simple.value.length); } if (strcasecmp(t-u.simple.attr, DomainGuid) == 0) { - domain_guid = talloc_strndup(tmp_ctx, -t-u.simple.value.data, -t-u.simple.value.length); + NTSTATUS enc_status; + struct GUID guid; + enc_status = ldap_decode_ndr_GUID(tmp_ctx, + t-u.simple.value, guid); + if (NT_STATUS_IS_OK(enc_status)) { + domain_guid = GUID_string(tmp_ctx, guid); + } } if (strcasecmp(t-u.simple.attr, DomainSid) == 0) { domain_sid = talloc_strndup(tmp_ctx, @@ -234,14 +241,19 @@ } } - if (domain == NULL || host == NULL || version == -1) { + if (domain_guid == NULL domain == NULL) { + domain = lp_realm(); + } + + if (version == -1) { goto failed; } - DEBUG(0,(cldap netlogon query domain=%s host=%s user=%s version=%d\n, -domain, host, user, version)); + DEBUG(0,(cldap netlogon query domain=%s host=%s user=%s version=%d guid=%s\n, +domain, host, user, version, domain_guid)); - status = cldapd_netlogon_fill(cldap, tmp_ctx, domain, user, src_address, + status = cldapd_netlogon_fill(cldap, tmp_ctx, domain, domain_guid, + user, src_address, version, netlogon); if (!NT_STATUS_IS_OK(status)) { goto failed; Modified: branches/SAMBA_4_0/source/lib/ldb/common/ldb_parse.c === --- branches/SAMBA_4_0/source/lib/ldb/common/ldb_parse.c2005-05-16 11:16:48 UTC (rev 6816) +++ branches/SAMBA_4_0/source/lib/ldb/common/ldb_parse.c2005-05-16 11:17:57 UTC (rev 6817) @@ -170,7 +170,7 @@ ret-operation = LDB_OP_SIMPLE; ret-u.simple.attr = l; - ret-u.simple.value.data = val; + ret-u.simple.value.data = val?val:discard_const_p(char, ); ret-u.simple.value.length = val?strlen(val):0; return ret; Modified: branches/SAMBA_4_0/source/libcli/ldap/ldap.c === --- branches/SAMBA_4_0/source/libcli/ldap/ldap.c2005-05-16 11:16:48 UTC (rev 6816) +++ branches/SAMBA_4_0/source/libcli/ldap/ldap.c2005-05-16 11:17:57 UTC (rev 6817) @@ -110,7 +110,7 @@ decode a RFC2254 binary string representation of a buffer. Used