Re: [Samba] rhel4 + samba 3.0.21a + win2k3 server and sp1
Barry, Quick fix: I have installed: Redhat EL 4 (Nahant update 2) (because of the lack of support for the SATA raid card that was installed in two new HP ML150 servers) The setup: 2 Windows 2003 Servers + Service pack 1 + the 2 Redhat boxes in samba ADS mode I resolved by installing Redhat's samba-3.0.10-1.4E.2 rpm (via up2date) and using the Redhat Kerberos packages from the same channel Regards, Nico - Original Message - From: "Barry Smoke" <[EMAIL PROTECTED]> To: Sent: Tuesday, January 10, 2006 9:37 PM Subject: [Samba] rhel4 + samba 3.0.21a + win2k3 server and sp1 Well, it looks like we are stuck... I can't figure out what to do next. ads_connect: Program lacks support for encryption type here's the whole story: We've been using winbind successfully for over a year now, rhel3 variants(scientific linux 3), some run rhel3's default samba, others use the packages from http://enterprisesamba.com/ we started out using the NT4 compatability mode(net rpc join -U administrator%password), which only allowed one server to use that username to connect to AD) so, we switched to security = ADS, and used net ads join -U administrator%password and now we have 5 servers using that method to host samba shares. These servers survived a windows 2003 server upgrade on our dc1 domain controller. no other problems with them. We were implementing a new rhel4 server(scientific linux 4), and did everything the same, and the stock samba that comes with rhel4 would not enumerate groups from active directory. After some searching the samba list archives, I found a thread that mentioned windows 2003 server sp1 caused that, and it had been fixed in samba 3.0.14 I tried an apt-get update(equiv. to yum update in scientific) and the new samba installed did not fix the problem. so, as I have done on many occasions(but not on rhel4), I installed the enterprisesamba packages. I immediately got this error: [EMAIL PROTECTED] i386]# net ads join -U administrator%password [2006/01/10 13:55:26, 0] utils/net_ads.c:ads_startup(191) ads_connect: Program lacks support for encryption type I fixed that error on an earlier rhel3 install with a line in the krb5.conf file, however that fix did not work here. I figure this has something to do with the heimdal 0.7.1 that enterprisesamba includes with their latest rpm's. I re-compiled the source rpm, and re-installed, and no luck! I can't find anyone else discussing this, so I thought, well maybe we are just ahead of the curve, and I downgraded to enterprisesamba's old 3.0.14, and come to find out, anything between 3.0.14a, and 3.0.20b gives a different error on the net ads join command: segmentation fault so, we are stuck. I can't revert back to rhel3 on this box(new raid card that is supported out of the box with rhel4, but not 3, at least not without a lot of work) any suggestions? Thanks, Barry Smoke Network Administrator AR Division of Legislative Audit -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Can't mount dir on hdb1
More info: Iptables is not running and SELinux is disabled on both machines > Hi All, > Running Samba on a Fedora 4 machine in a mixed home environment. > Domain=[HOME-NETWORK] OS=[Unix] Server=[Samba 3.0.14a-2] > > Trying unsuccessfully to mount the dir that's on hdb1 on another Fedora 4 machine. Can mount any dir from hda just fine. Only problem is the one on hdb1. File permissions and everything else I can think of checking is identical. Just refuses to mount hdb1. Here is the error message: > > # mount -t smbfs -o ip=10.0.0.4 //BASEMENT/sharec /share > Password: > 3108: tree connect failed: ERRDOS - ERRnosuchshare (You specified an invalid share name) > SMB connection failed > > Here is smb.conf: > [global] >workgroup = Home-Network >server string = Basement Router >netbios name = basement >security = SHARE >log file = /var/log/samba/log.%m >max log size = 50 >socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 >password server = None >dns proxy = No >bind interfaces only = Yes >hosts deny = ALL >hosts allow = 10.0.0.1 127. >interfaces = eth0 lo > > [sharec] >comment = downloads >path = /c >guest ok = Yes > > If I change "/c" to "/usr" or anything else it works just fine. > > All suggestions welcomed. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] ldap passdb failover
Hi, Does the passdb backend = ldapsam:"ldap://ldap.daa.com.au ldap://yaminon.daa.com.au";, smbpasswd syntax actually do proper failover? I have a samba 3.0.9 server on FC2 that's been overheating (our aircon failed), and the ldap server doesn't start automatically. The logs said: [2006/01/10 08:55:47, 0] lib/smbldap.c:smbldap_open_connection(678) Failed to issue the StartTLS instruction: Can't contact LDAP server Later, doing some testing, I stopped the local (primary) ldap server and after a little while got this: [2006/01/11 11:39:02, 4] passdb/pdb_ldap.c:ldapsam_getsampwnam(1300) ldapsam_getsampwnam: Unable to locate user [rhiannon] count=0 The backup server does work, because nss_ldap for unix logins fails over fine (which confused me a little while). Looking at the code: http://websvn.samba.org/cgi-bin/viewcvs.cgi/tags/release-3-0-9/source/lib/smbldap.c?rev=3781&view=auto in smbldap_open_connection the URI is parsed manually for the first server only if HAVE_LDAP_INITIALIZE is unset, meaning there's no failover. I'm using the FC2 rpm, but "ldap_init failed" isn't in the smbd binary, implying to me that it was defined at compile time. FWIW the code on the trunk seems to be pretty much the same. Anyway, does anyone have a verified working example of ldapsam: with two ldap servers that does work when the first server is down? Or is it one of those edge-case, "should work" minor features that just escapes testing? -- James Andrewartha Systems Administrator Data Analysis Australia Pty Ltd -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] issues with security=domain
Hi Dear Samba Gurus, We're planing to migrate the old samba server to a new samba server. But the person who maintain old samba server have left, so we need to figure out the configuration steps from the old config file. Now the things that confused me now is the setting with "security=domain", the old samba server config global sections are: log level = 3 netbios name = myserver server string = Samba %v on (%L) encrypt passwords = yes security = domain workgroup = workgroup1 browsable = yes unix password sync = yes wins server = x.x.x.x guest ok = no And in old environmnet, only nmbd and smbd is started, winbindd is not started. According to the config, this samba server should not be domain member, and should participate in local master election, and become local master because there're the only samba server in the subnet. am I correct here? But what I wondered here is: by default ntauth should be yes, and how user are authenticated by their username/password? now the default password backend is smbpassword. When I try to setup a a new samba server in a new workgroup with above config, it always report authentication error as below: smbclient //myserver/homes -U test session setup failed: NT_STATUS_CANOT_ACCESS_DOMAIN_INFO in smbd.log it tells: [2006/01/10 18:37:17, 0] auth/auth_domain.c:check_ntdomain_security(284) check_ntdomain_security: could not fetch trust account password for domain 'GR OUP188' [2006/01/10 18:37:17, 2] auth/auth.c:check_ntlm_password(312) It seems that user authentication still go throught NT domain authentication? What mechanism I can use to determine what authentication method was used in the old samba server? When I try to migrate the old samba server to a new samba server, since there will be two samba server in the same workgroup, Whether It will interrupt user's work during migration? When Should I take cautions in order not to interrupt user's work? Best Regards! Lily _ 与联机的朋友进行交流,请使用 MSN Messenger: http://messenger.msn.com/cn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Please help with samba 3.0.21a on AIX 5.3
- Original Message - From: "Colht, Charles" <[EMAIL PROTECTED]> To: Sent: Monday, January 09, 2006 8:37 PM Subject: [Samba] Please help with samba 3.0.21a on AIX 5.3 > I've tried building samba 3.0.20 and 21a without luck. I've tried binaries and they all give this error. I know I am missing something but nothing points to a solution. > In the binaries folder there is a README. There is a solution to the posix_aio0 problem you are experiencing. I need to update that doc with an additional line: chdev -l posix_aio0 -a autoconfig=available -P > ../bin/smbstatus > exec(): 0509-036 Cannot load program ../bin/smbstatus because of the following errors: > 0509-130 Symbol resolution failed for /usr/lib/libc.a(posix_aio.o) because: > 0509-136 Symbol _posix_kaio_rdwr (number 2) is not exported from >dependent module /unix. > 0509-136 Symbol _posix_listio (number 3) is not exported from >dependent module /unix. > 0509-136 Symbol _posix_acancel (number 4) is not exported from >dependent module /unix. > 0509-136 Symbol _posix_iosuspend (number 5) is not exported from >dependent module /unix. > 0509-136 Symbol _posix_aio_nwait (number 6) is not exported from >dependent module /unix. > 0509-136 Symbol _posix_aio_nwait64 (number 7) is not exported from >dependent module /unix. > 0509-136 Symbol _posix_aio_nwait_timeout (number 8) is not exported from >dependent module /unix. > 0509-136 Symbol _posix_aio_nwait_timeout64 (number 9) is not exported from >dependent module /unix. > 0509-136 Symbol _posix_iofsync (number 10) is not exported from >dependent module /unix. > 0509-026 System error: Error 0 > 0509-192 Examine .loader section symbols with the > 'dump -Tv' command. > > > This configure line successfully creates a Makefile: > ./configure --with-ads --with-winbind --with-pam --with-aio-support > > Running make gives this: > > make > Using FLAGS = -O -D_SAMBA_BUILD_ -I./popt -Iinclude -I/home/inst/software/samba/samba-3 .0.21a/source/include -I/home/inst/software/samba/samba-3.0.21a/source/ubiqx -I/home/inst/software/samba/samba-3.0.21a/source/tdb -I. -DLDAP_DEPRECATED -I/home/inst/software/samba/samba-3.0.21a/source -D_SAMBA_BUILD_ > LIBS = > LDSHFLAGS = -Wl,-bexpall,-bM:SRE,-bnoentry,-berok > LDFLAGS = > PIE_CFLAGS = > PIE_LDFLAGS = > Compiling dynconfig.c > In file included from /usr/include/aio.h:31, > from include/includes.h:518, > from /home/inst/software/samba/samba-3.0.21a/source/dynconfig.c:21: > /usr/include/sys/aio.h:91: error: field `aio_sigevent' has incomplete type > /usr/include/sys/aio.h:147: error: field `aio_sigevent' has incomplete type > In file included from /home/inst/software/samba/samba-3.0.21a/source/dynconfig.c:21: > include/includes.h:822: error: redefinition of `struct timespec' > make: 1254-004 The error code from the last command is 1. > Ok, I'll take a look at this. Were there any other errors in the config.log? Also what does "oslevel -r" report? I'll bet it's baseline (5300-00). I think I recall having problems with 5300-01 as well when I started playing with AIO support when Jeremy first released it. 5300-03 (which I'm running) is not reporting this problem for me since the binary has AIO support. But, if after you upgrade, you still have it, file a bug and I'll look into it. Cheers, Bill > > Stop. > Chuck Colht > Sr System Administrator > Alaska Communications Systems, Inc. > 907-269-2673 > [EMAIL PROTECTED] > > > > *** > This transmittal may contain confidential information intended solely for > the addressee. If you are not the intended recipient, you are hereby > notified that you have received this transmittal in error; any review, > dissemination, distribution or copying of this transmittal is strictly > prohibited. If you have received this communication in error, please notify > us immediately by reply or by telephone (collect at 907-564-1000) and ask to > speak with the message sender. In addition, please immediately delete this > message and all attachments. Thank you. ACS > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] issues with security=domain
Hi Dear Samba Gurus, We're planing to migrate the old samba server to a new samba server. But the person who maintain old samba server have left, so we need to figure out the configuration steps from the old config file. Now the things that confused me now is the setting with "security=domain", the old samba server config global sections are: log level = 3 netbios name = myserver server string = Samba %v on (%L) encrypt passwords = yes security = domain workgroup = workgroup1 browsable = yes unix password sync = yes wins server = x.x.x.x guest ok = no And in old environmnet, only nmbd and smbd is started, winbindd is not started. According to the config, this samba server should not be domain member, and should participate in local master election, and become local master because there're the only samba server in the subnet. am I correct here? But what I wondered here is: by default ntauth should be yes, and how user are authenticated by their username/password? now the default password backend is smbpassword. When I try to setup a a new samba server in a new workgroup with above config, it always report authentication error as below: smbclient //myserver/homes -U test session setup failed: NT_STATUS_CANOT_ACCESS_DOMAIN_INFO in smbd.log it tells: [2006/01/10 18:37:17, 0] auth/auth_domain.c:check_ntdomain_security(284) check_ntdomain_security: could not fetch trust account password for domain 'GR OUP188' [2006/01/10 18:37:17, 2] auth/auth.c:check_ntlm_password(312) It seems that user authentication still go throught NT domain authentication? What mechanism I can use to determine what authentication method was used in the old samba server? When I try to migrate the old samba server to a new samba server, since there will be two samba server in the same workgroup, Whether It will interrupt user's work during migration? When Should I take cautions in order not to interrupt user's work? Best Regards! Lily _ 免费下载 MSN Explorer: http://explorer.msn.com/lccn/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] How to write user profile
Dear Friends, Iam using Redhat Enterprise Linux 3 ES as file server. So for just i had 1 SMB user connected to the server and shared the resourse. Now we have more than 25 users for every one i have created saperate user ids in Server and also i have set the group. Now how to set seperate share folders usign SMB. I want saperate user login for ever one. For example user SAM logins in windows XP client machine he should be connected to the server there he shoud have f: and g: connected to the server. F: is /home/netf/user/SAM folder G: is /home/netg/group/accounts Like this i have to do for all the users and groups we have more than 7 groups. Iam in urgent anyone can help me out how to write the user profile and smb.conf for this requirments. Thanks & regards, Saravanan. -- M.Saravanan CCAT LTD, 4204 Hong Kong Plaza, 188,Connaught Road West,Hong Kong. Phone : 2851 6318. Mobile: 6100 0856 email: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Can't mount dir on hdb1
Hi All, Running Samba on a Fedora 4 machine in a mixed home environment. Domain=[HOME-NETWORK] OS=[Unix] Server=[Samba 3.0.14a-2] Trying unsuccessfully to mount the dir that's on hdb1 on another Fedora 4 machine. Can mount any dir from hda just fine. Only problem is the one on hdb1. File permissions and everything else I can think of checking is identical. Just refuses to mount hdb1. Here is the error message: # mount -t smbfs -o ip=10.0.0.4 //BASEMENT/sharec /share Password: 3108: tree connect failed: ERRDOS - ERRnosuchshare (You specified an invalid share name) SMB connection failed Here is smb.conf: [global] workgroup = Home-Network server string = Basement Router netbios name = basement security = SHARE log file = /var/log/samba/log.%m max log size = 50 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 password server = None dns proxy = No bind interfaces only = Yes hosts deny = ALL hosts allow = 10.0.0.1 127. interfaces = eth0 lo [sharec] comment = downloads path = /c guest ok = Yes If I change "/c" to "/usr" or anything else it works just fine. All suggestions welcomed. Thanks Sam -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Users can't pause or cancel print jobs
> > I have looked everywhere. I can find anything on permissions with > > regards to Printing to a samba server. From what I ve read > > Googling around. This appears to be a current problem. > I have the same problem and would really like to here from anyone > with a fix. What happens if (through Windows) you run \\Samba, open "Printers and Faxes" then view the properties of the affected printer. On the security tab, make sure "Manage Printers" and "Manage Documents" are both ticked for all users in the list (especially "Everyone".) Does that make a difference? You will probably need admin access to Samba to be able to do this. Cheers, Adam. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Connecting from XP to samba shares
> [2006/01/10 11:37:47, 3] libsmb/ntlm_check.c:ntlm_password_check(455) > ntlm_password_check: LM password, NT MD4 password in LM field and > LMv2 failed for user someuser Aha, so the password being entered doesn't match the password for 'someuser' - did you remember to 'smbpasswd -a someuser' to give 'someuser' a Samba password? You have to do that because Samba can't actually compare a Windows password to the UNIX one (it can't convert from the Windows hash to the UNIX hash.) > Hmmm... That might be a good compromise. But doesn't "security=user" > imply I have to create samba users with the same names (and > passwords?) as the XP users? Now that I think of it, this doesn't > make sense if there is a propt for username and password, but I > believe that's what I've read... Also, how would that work with Win98? Not necessarily. If you do create Samba users with the same username and password then the XP users won't get prompted for a password, but if you don't create extra users (i.e. their XP username and password don't work) then XP will prompt them for the correct credentials. As to Win98 though you have a point, since Win98 doesn't provide a way to enter in a username - it is always set to the username entered when logging on to the PC. It may be possible to use "bad user = xxx" to effectively map all users to user 'xxx', however this would mean any additional shares you add in the future would have to use the same password. With security=share it should be possible to have a different password for each share. One last idle thought - if you have an XP/2000 server storing all the user accounts, it is possible to get Samba to check all usernames and passwords with that server. This means you could use security=user and then for each share say "valid users = user1 user2 etc" and that way those users should be permitted to access the share without entering in a password, whereas all other users would be prompted for a correct username/password (and if you use the "force user" option you shouldn't have to create UNIX accounts for all the NT users.) The down side is that you'd have to modify smb.conf every time you wanted to alter the access to a share (as NT groups won't work in this case) however it should mean that users won't have to keep entering in a password all the time. Cheers, Adam. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Question reguarging samba and windows
- Original Message - From: "Alan Russell" <[EMAIL PROTECTED]> To: Sent: Tuesday, January 10, 2006 10:27 AM Subject: [Samba] Question reguarging samba and windows > Is it possible for a AIX server to mount a windows shared file system? > -- Yes. Both AIX 5.2 and 5.3 support SMB filesystems, however, there's a catch. You have to go back to your CD's and install "bos.cifs_fs" fileset. Then go to the IBM site and check for updates to that fileset. These filesets are usually not installed by default (even when IBM preloads). When installed (which requires a reboot) you'll have a "nsmb0" device to support AIX client access to SMB shares which can be AIX Connect, Samba, pretty much anything that talks SMB. Use the mount command with "-v cifs" to perform the mount. The AIX man pages are ok in describing this. Cheers, Bill > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Question reguarging samba and windows
Is it possible for a AIX server to mount a windows shared file system? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] samba 3 and active directory
Hello, we have integrated our samba service in a Windows active directory domain. Everything running fine. Now I want to understand the authentification process. What happens when a Windows client maps a network drive from the samba server? Does the Windwos client send its kerberos ticket to the samba server or does it send the username and password to the samba server and the samba server creates a kerberos ticket. Does it make any difference if the Windows client is part of the domain or if it is not part of the domain. Does anyone know a book, aritcle or website where I can find out more about this? Thanks, Andrea -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Please help with samba 3.0.21a on AIX 5.3
I've tried building samba 3.0.20 and 21a without luck. I've tried binaries and they all give this error. I know I am missing something but nothing points to a solution. ../bin/smbstatus exec(): 0509-036 Cannot load program ../bin/smbstatus because of the following errors: 0509-130 Symbol resolution failed for /usr/lib/libc.a(posix_aio.o) because: 0509-136 Symbol _posix_kaio_rdwr (number 2) is not exported from dependent module /unix. 0509-136 Symbol _posix_listio (number 3) is not exported from dependent module /unix. 0509-136 Symbol _posix_acancel (number 4) is not exported from dependent module /unix. 0509-136 Symbol _posix_iosuspend (number 5) is not exported from dependent module /unix. 0509-136 Symbol _posix_aio_nwait (number 6) is not exported from dependent module /unix. 0509-136 Symbol _posix_aio_nwait64 (number 7) is not exported from dependent module /unix. 0509-136 Symbol _posix_aio_nwait_timeout (number 8) is not exported from dependent module /unix. 0509-136 Symbol _posix_aio_nwait_timeout64 (number 9) is not exported from dependent module /unix. 0509-136 Symbol _posix_iofsync (number 10) is not exported from dependent module /unix. 0509-026 System error: Error 0 0509-192 Examine .loader section symbols with the 'dump -Tv' command. This configure line successfully creates a Makefile: ./configure --with-ads --with-winbind --with-pam --with-aio-support Running make gives this: make Using FLAGS = -O -D_SAMBA_BUILD_ -I./popt -Iinclude -I/home/inst/software/samba/samba-3.0.21a/source/include -I/home/inst/software/samba/samba-3.0.21a/source/ubiqx -I/home/inst/software/samba/samba-3.0.21a/source/tdb -I. -DLDAP_DEPRECATED -I/home/inst/software/samba/samba-3.0.21a/source -D_SAMBA_BUILD_ LIBS = LDSHFLAGS = -Wl,-bexpall,-bM:SRE,-bnoentry,-berok LDFLAGS = PIE_CFLAGS = PIE_LDFLAGS = Compiling dynconfig.c In file included from /usr/include/aio.h:31, from include/includes.h:518, from /home/inst/software/samba/samba-3.0.21a/source/dynconfig.c:21: /usr/include/sys/aio.h:91: error: field `aio_sigevent' has incomplete type /usr/include/sys/aio.h:147: error: field `aio_sigevent' has incomplete type In file included from /home/inst/software/samba/samba-3.0.21a/source/dynconfig.c:21: include/includes.h:822: error: redefinition of `struct timespec' make: 1254-004 The error code from the last command is 1. Stop. Chuck Colht Sr System Administrator Alaska Communications Systems, Inc. 907-269-2673 [EMAIL PROTECTED] *** This transmittal may contain confidential information intended solely for the addressee. If you are not the intended recipient, you are hereby notified that you have received this transmittal in error; any review, dissemination, distribution or copying of this transmittal is strictly prohibited. If you have received this communication in error, please notify us immediately by reply or by telephone (collect at 907-564-1000) and ask to speak with the message sender. In addition, please immediately delete this message and all attachments. Thank you. ACS -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba authentication with ADS using msSFU3.5
First let me give my thanks inadvance for any help offered I am tasked with setting up a Samba server to authenticate against the windows2003 ADS(LDAP server). With the msSFU3.5 schema extensions already installed and configured. We have an existing Samba server that is authenticating against a MySQL LDAP server and is working fine with a multi TB SAN hung off of the samba server for home and user storage directories. In the Samba 3.0 User's Guide chapter 13 (IDMAP) hits on this subject but is not very definitive on what the actual configs are/should be. Has there been any further HowTos created for this type of scenerio? I have searched high and low and cannot seem to get this working GGRRR I have had the samba authentication using Winbind up and working perfectly however the requirement of the locally cached mapping db is not an option that I can use in production. Inaddition the multiple TB of storage with permissions already set and the powers above dictating the use of ADS. Thus forcing me to use ADS with the schema extensions. thanks again, jason -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] swat help files broken...
Does anyone know when the brocken helpfiles are going to be fixed? Or maybe where I can copy them to make them work? I am running 3.0.21a and the Changelog states that it should be fixed, however I don't see it that way... Thanks for any pointers... Frank -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
nevermind...stock 3.0.21a works...was RE: [Samba] rhel4 + samba 3.0.21a + win2k3 server and sp1
stock samba 3.0.21a works just fine, I generated an rpm from samba source, and everything works just fine! the enterprisesamba packages are what is broken. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Barry Smoke Sent: Tuesday, January 10, 2006 2:38 PM To: samba@lists.samba.org Subject: [Samba] rhel4 + samba 3.0.21a + win2k3 server and sp1 Well, it looks like we are stuck... I can't figure out what to do next. ads_connect: Program lacks support for encryption type here's the whole story: We've been using winbind successfully for over a year now, rhel3 variants(scientific linux 3), some run rhel3's default samba, others use the packages from http://enterprisesamba.com/ we started out using the NT4 compatability mode(net rpc join -U administrator%password), which only allowed one server to use that username to connect to AD) so, we switched to security = ADS, and used net ads join -U administrator%password and now we have 5 servers using that method to host samba shares. These servers survived a windows 2003 server upgrade on our dc1 domain controller. no other problems with them. We were implementing a new rhel4 server(scientific linux 4), and did everything the same, and the stock samba that comes with rhel4 would not enumerate groups from active directory. After some searching the samba list archives, I found a thread that mentioned windows 2003 server sp1 caused that, and it had been fixed in samba 3.0.14 I tried an apt-get update(equiv. to yum update in scientific) and the new samba installed did not fix the problem. so, as I have done on many occasions(but not on rhel4), I installed the enterprisesamba packages. I immediately got this error: [EMAIL PROTECTED] i386]# net ads join -U administrator%password [2006/01/10 13:55:26, 0] utils/net_ads.c:ads_startup(191) ads_connect: Program lacks support for encryption type I fixed that error on an earlier rhel3 install with a line in the krb5.conf file, however that fix did not work here. I figure this has something to do with the heimdal 0.7.1 that enterprisesamba includes with their latest rpm's. I re-compiled the source rpm, and re-installed, and no luck! I can't find anyone else discussing this, so I thought, well maybe we are just ahead of the curve, and I downgraded to enterprisesamba's old 3.0.14, and come to find out, anything between 3.0.14a, and 3.0.20b gives a different error on the net ads join command: segmentation fault so, we are stuck. I can't revert back to rhel3 on this box(new raid card that is supported out of the box with rhel4, but not 3, at least not without a lot of work) any suggestions? Thanks, Barry Smoke Network Administrator AR Division of Legislative Audit -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Vista/longhorn and samba PDC
On Tue, 2006-01-10 at 17:33 +0100, Mogens Kjaer wrote: > Has anyone succeeded in getting a Vista beta-2 to do domain > logon to a samba PDC? I strongly suspect there will be work to do there. I need to test it out with Samba4 as well. Do you have any particular diagnostics? You will need a current Samba (say 3.0.20 or later) for it to work at all. (We fixed some basic login issues with vista 1) Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] which release for solaris 8
On 1/10/06, Terry L. Inzauro <[EMAIL PROTECTED]> wrote: > Lori Barfield wrote: > > i need to upgrade to the latest sparc version which is > > compatible with solaris 8 > http://sunfreeware.com yes, of course, one of my favorite places! the answer is: 3.1.10 and the download is in progress. thank you for the quick (and understanding) reply, terry. ...lori -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] which release for solaris 8
Lori Barfield wrote: hi, guys, my first post. i'm scouring the web site, but don't seem to be able to find a compatibility mapping for older versions of samba. i need to upgrade to the latest sparc version which is compatible with solaris 8...all my searches are bringing up the solaris 9 code. can someone point me in the right direction? thanks (and apologies in advance if it is easy to find and i'm just blind today), ...lori http://sunfreeware.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] which release for solaris 8
hi, guys, my first post. i'm scouring the web site, but don't seem to be able to find a compatibility mapping for older versions of samba. i need to upgrade to the latest sparc version which is compatible with solaris 8...all my searches are bringing up the solaris 9 code. can someone point me in the right direction? thanks (and apologies in advance if it is easy to find and i'm just blind today), ...lori -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] rhel4 + samba 3.0.21a + win2k3 server and sp1
Well, it looks like we are stuck... I can't figure out what to do next. ads_connect: Program lacks support for encryption type here's the whole story: We've been using winbind successfully for over a year now, rhel3 variants(scientific linux 3), some run rhel3's default samba, others use the packages from http://enterprisesamba.com/ we started out using the NT4 compatability mode(net rpc join -U administrator%password), which only allowed one server to use that username to connect to AD) so, we switched to security = ADS, and used net ads join -U administrator%password and now we have 5 servers using that method to host samba shares. These servers survived a windows 2003 server upgrade on our dc1 domain controller. no other problems with them. We were implementing a new rhel4 server(scientific linux 4), and did everything the same, and the stock samba that comes with rhel4 would not enumerate groups from active directory. After some searching the samba list archives, I found a thread that mentioned windows 2003 server sp1 caused that, and it had been fixed in samba 3.0.14 I tried an apt-get update(equiv. to yum update in scientific) and the new samba installed did not fix the problem. so, as I have done on many occasions(but not on rhel4), I installed the enterprisesamba packages. I immediately got this error: [EMAIL PROTECTED] i386]# net ads join -U administrator%password [2006/01/10 13:55:26, 0] utils/net_ads.c:ads_startup(191) ads_connect: Program lacks support for encryption type I fixed that error on an earlier rhel3 install with a line in the krb5.conf file, however that fix did not work here. I figure this has something to do with the heimdal 0.7.1 that enterprisesamba includes with their latest rpm's. I re-compiled the source rpm, and re-installed, and no luck! I can't find anyone else discussing this, so I thought, well maybe we are just ahead of the curve, and I downgraded to enterprisesamba's old 3.0.14, and come to find out, anything between 3.0.14a, and 3.0.20b gives a different error on the net ads join command: segmentation fault so, we are stuck. I can't revert back to rhel3 on this box(new raid card that is supported out of the box with rhel4, but not 3, at least not without a lot of work) any suggestions? Thanks, Barry Smoke Network Administrator AR Division of Legislative Audit -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Users can't pause or cancel print jobs
I have the same problem and would really like to here from anyone with a fix. Charles On 01/10/2006 09:53 AM, Dominic Iadicicco wrote: I have looked everywhere. I can find anything on permissions with regards to Printing to a samba server. From what I ve read Googling around. This appears to be a current problem. I don't want to believe that this is an overlooked problem. This function is something that production servers have to be able to do. On 1/9/06, Adam Nielsen <[EMAIL PROTECTED]> wrote: When my windows user try to pause print jobs it does not work and gives them an error "Error Processing Command" in Windows. If they try to cancel a print job it doesn't give any error. It just disappears from the print queue and print anyway. I think this means the users don't have the necessary permissions in Samba. Have a look at the Samba manual in the section about permissions to see how to allow users to pause/cancel print jobs. Cheers, Adam. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Users can't pause or cancel print jobs
I have looked everywhere. I can find anything on permissions with regards to Printing to a samba server. From what I ve read Googling around. This appears to be a current problem. I don't want to believe that this is an overlooked problem. This function is something that production servers have to be able to do. On 1/9/06, Adam Nielsen <[EMAIL PROTECTED]> wrote: > > > When my windows user try to pause print jobs it does not work and > > gives them an error "Error Processing Command" in Windows. If they > > try to cancel a print job it doesn't give any error. It just > > disappears from the print queue and print anyway. > > I think this means the users don't have the necessary permissions in > Samba. Have a look at the Samba manual in the section about > permissions to see how to allow users to pause/cancel print jobs. > > Cheers, > Adam. > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba]3.0.20b Keep windows local sid when xcopy files to samba server
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 scot eckel wrote: > Thanks for your reply. Yes, 'force unknow acl user' option > helps to bypass the unknown acl info when we need to > copy acl with files. But it just simply dropped the > unknown acl user/group. So is there any workround > available? Something like add unknow sid to samba db by using > pdbedit or switch backend to openldap? No. Storing an arbitrary security descriptor without mapping it to a POSIX acl is not currently supported. cheers, jerry = Alleviating the pain of Windows(tm) --- http://www.samba.org Centeris --- http://www.centeris.com "There's an anonymous coward in all of us." --anonymous -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (MingW32) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFDw/E7IR7qMdg1EfYRAvJKAJwPlEOlUDtGvxADXUyhLRwtaiVFGgCgjrwN 5yI2EUrZQIZusFhbLGSNC/4= =F8AA -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Suse Linux errors help needed
While doing the vampire process, I encountered the following errors: Failed to fetch domain database: NT_STATUS_NOT_SUPPORTED Perhaps is a Windows 2000 native mode domain? I am running Suse Linux 10.0 and Samba 3.0.20. I searched the archives for this group and the internet without success. Does anybody know how I can continue from this point? Thanks, Guru -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Vista/longhorn and samba PDC
Has anyone succeeded in getting a Vista beta-2 to do domain logon to a samba PDC? If so - how? Mogens -- Mogens Kjaer, Carlsberg A/S, Computer Department Gamle Carlsberg Vej 10, DK-2500 Valby, Denmark Phone: +45 33 27 53 25, Fax: +45 33 27 47 08 Email: [EMAIL PROTECTED] Homepage: http://www.crc.dk -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] problem with printer drivers
Hallo, I'm running a Samba 2.2.5 server on a SuSE 8.1 box. I setup a [print$] share at server pslag, following the documentation. I have a [printer$] share too. Without it, Samba wouldn't export my cups printers for browsing. My config file is like that: [global] : printing = cups printcap name = CUPS printer admin = root load printers = Yes : [printers] comment = All Printers path = /var/tmp create mask = 0600 guest ok = Yes printable = Yes browseable = No : [print$] comment = Printer Driver Download Area read only = Yes guest ok = Yes path = /etc/samba/drivers write list = root browseable = Yes I was able to install the printer driver on that share from a WinXP client using the AddPrinter Wizard. rpcclient at the print server reports the following: rpcclient $> enumdrivers [Windows NT x86] Printer Driver Info 2: Version: [2] Driver Name: [Kyocera Mita FS-3820N KX] Architecture: [Windows NT x86] Driver Path: [\\pslag\print$\W32X86\2\KMNK30AQ.DLL] Datafile: [\\pslag\print$\W32X86\2\KMF02210.MDX] Configfile: [\\pslag\print$\W32X86\2\KMNU30AQ.DLL] rpcclient $> enumprinters : flags:[0x80] name:[\\pslag\kyo_adv] description:[\\pslag\kyo_adv,Kyocera Mita FS-3820N KX,Kyocera-Testdrucker] comment:[Kyocera-Testdrucker] : So I think, the printer kyo_adv has its driver ready. Under W32X86/2 are a lot of dependend driver files. When I want to open the printers properties on my XP-box, I still get the message, that the driver ist not installed. What could be the reason for that behaviour ? How can I debug the problem ? Thanks in advance Olaf -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Problem to join a client to a samba domain
I'll try to test Samba in order to put on our network as file server. But actually I have some problem to join a client to a samba server domain. The message from windows client (W2K) is the follow: "The following error occurred validating the name "DOMAIN". This condition may be concerned by a DNS problem. For information about troubleshotting concern DNS lookup problems, please see the following Microsoft Web Site: http://go.microsoft.com/fwlink/?LinkId=5171"; I've read another similar problem on samba mailing list, but it's not clear how to resolve. Stephan Nicolini Thanks a lot -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Problems with recycler on samba 3.x
Hi again, Hi, I have problems with recycle objects on samba 3.x with SuSE SLES9SP2 server: When I save a file (with wordpad or editor ...) to the network-share, a 0 byte-file will automaticly be saved to the trash-folder. After removing the file from the network-share, the real file (>0 byte) will be stored to the trash. Thats ok. But now I created a file named the same filename than the deleted file, the new file was again created as 0-byte file to the trash. And the trashfile was destroyed. So my questions are: 1)How do I have to configure the recycle-object that no 0-Byte file was automaticly created on the network-share ? I have tried all possible parameters (touch and versions) to turn off or on, but no effect. 2)If 1 isn't possible, how can I prevent the creation of the 0-Bytefile over the existing file, without using the version-parameter ? With Office > 97SR2 it works fine, but with wordpad (on win9x and XP, too), Office97 and editor the problem as described appears on samba 3.x. With samba 2.2.8a on sles8 it works fine with office97, wordpad and any other application. Hope someone can help me. Oh, I forgot the smb.conf - it looks like: [share] vfs objects = recycle recycle:repository = .Trash/%u recycle:keeptree = yes recycle:versions = no recycle:touch = yes recycle:exclude=?~$*,~$*,*.tmp,*.pqi,*.scr,*.eml,*.mpg,*.mpeg,*.mov,*.mpe,*.mp3 recycle:exclude_dir=TMP,/TEMP,/Temp,/Tmp,/tmp -- Regards, Jens Strohschnitter - *!!!LINUX LINUX LINUX LINUX LINUX!!!* * http://www.jens-strohschnitter.de * - Set the controls for the heart of the sun - -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] About idmap uid/gid
On Mon, 2006-01-09 at 05:49 +, PITFALL wrote: > Hi! All: > > I have a problem with uid management after (re)join domain. > When I first time join domain, domain users will be assigned uid according to > the range of idmap uid. If somehow I rejoin domain again, but unfortunately > some users are deleted from the domain controller, the uid will be > rearranged and different from previous assigned. The same domain user will > have different uids! How can I deal with the problem? > Any reply will be appreciated! You must keep keep the idmap.tdb, as this contains the mappings. Keeping that file is the only way to ensure the mappings remain. (Or using an alternate scheme such as idmap_rid). Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] printer state and samba 3.0.21a
hi! I upgrade my pdc samba from 3.0.20 to 3.0.21a and now (in windows client) printer is always ready even if the printer is paused. also from windows client I can't set in pause the printer (Error processing command). why? I have only this error in syslog: find_printer_index_by_hnd: Printer handle not found: _spoolss_fcpn: Invalid handle Anyone can help me? Thanks very much, Fabio -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Connecting from XP to samba shares
--- Ignacio Fernández Galván wrote: > > If you run smbd with debug info turned on, what username/ > > password is the XP box connecting as? That might narrow things > > down a bit. > > I'll try to get additional data. OK, these are some of the messages I get in the log.host2 file: [2006/01/10 11:37:47, 3] smbd/sec_ctx.c:push_sec_ctx(256) push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 2 [2006/01/10 11:37:47, 3] smbd/uid.c:push_conn_ctx(365) push_conn_ctx(0) : conn_ctx_stack_ndx = 1 [2006/01/10 11:37:47, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 2 [2006/01/10 11:37:47, 3] smbd/sec_ctx.c:pop_sec_ctx(386) pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 1 [2006/01/10 11:37:47, 3] smbd/sec_ctx.c:pop_sec_ctx(386) pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/01/10 11:37:47, 3] libsmb/ntlm_check.c:ntlm_password_check(455) ntlm_password_check: LM password, NT MD4 password in LM field and LMv2 failed for user someuser [2006/01/10 11:37:47, 3] smbd/sec_ctx.c:push_sec_ctx(256) push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1 [2006/01/10 11:37:47, 3] smbd/uid.c:push_conn_ctx(365) push_conn_ctx(0) : conn_ctx_stack_ndx = 0 [2006/01/10 11:37:47, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1 [2006/01/10 11:37:47, 3] smbd/sec_ctx.c:pop_sec_ctx(386) pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/01/10 11:37:47, 2] auth/auth.c:check_ntlm_password(312) check_ntlm_password: Authentication for user [user] -> [someuser] FAILED with error NT_STATUS_WRONG_PASSWORD [2006/01/10 11:37:47, 2] smbd/service.c:make_connection_snum(340) Invalid username/password for [Compartido] [2006/01/10 11:37:47, 3] smbd/error.c:error_packet(105) error string = Invalid argument [2006/01/10 11:37:47, 3] smbd/error.c:error_packet(129) error packet at smbd/reply.c(415) cmd=117 (SMBtconX) NT_STATUS_WRONG_PASSWORD [2006/01/10 11:37:56, 3] smbd/process.c:process_smb(1091) Transaction 6 of length 39 [2006/01/10 11:37:56, 3] smbd/process.c:switch_message(886) switch message SMBtdis (pid 13636) conn 0x83c8540 [2006/01/10 11:37:56, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/01/10 11:37:56, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2006/01/10 11:37:56, 3] smbd/service.c:close_cnum(830) host2 (xxx.xxx.xxx.xxx) closed connection to service IPC$ [2006/01/10 11:37:56, 3] smbd/connection.c:yield_connection(69) Yielding connection to IPC$ [2006/01/10 11:37:56, 3] smbd/sec_ctx.c:set_sec_ctx(288) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 ...not that I really understand it... ___ To help you stay safe and secure online, we've developed the all new Yahoo! Security Centre. http://uk.security.yahoo.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] "valid users" + ldap on Solaris 10 problems
Hi! Yesterday we finally get the stack trace of Samba. Here you have: Program received signal SIGSEGV, Segmentation fault. 0xfefd4f6c in _free_unlocked () from /lib//libc.so.1 (gdb) bt #0 0xfefd4f6c in _free_unlocked () from /lib//libc.so.1 #1 0xfefd4f14 in free () from /lib//libc.so.1 #2 0xfed9fad0 in ldap_set_lderrno () from /usr/lib//libldap.so.5 #3 0xfedbc084 in ldap_create_virtuallist_control () from /usr/lib//libldap.so.5 #4 0xfee0a8fc in setup_vlv_params () from /usr/lib//libsldap.so.1 #5 0xfee0b46c in search_state_machine () from /usr/lib//libsldap.so.1 #6 0xfee0c1fc in __ns_ldap_firstEntry () from /usr/lib//libsldap.so.1 #7 0xfee4ba3c in _nss_ldap_getent () from /usr/lib//nss_ldap.so.1 #8 0xfefdc0d8 in nss_getent_u () from /lib//libc.so.1 #9 0xfefdbc70 in nss_getent () from /lib//libc.so.1 #10 0xfefc7074 in getgrent_r () from /lib//libc.so.1 #11 0x002ef230 in get_users_in_group (gname=0x56bfa1 "referencial") at lib/util_getent.c:282 #12 0x002ed724 in user_in_unix_group_list (user=0xffbfc048 "csi", gname=0x56bfa1 "referencial") at lib/username.c:519 #13 0x002eda2c in user_in_group_list (user=0xffbfc048 "csi", gname=0x56bfa1 "referencial", groups=0x0, n_groups=) at lib/username.c:566 #14 0x002edd50 in user_in_list (user=0xffbfc048 "csi", list=0x508220, groups=0x0, n_groups=) at lib/username.c:607 #15 0x000675cc in user_ok (user=0xffbfc048 "csi", snum=128, groups=0x0, n_groups=) at smbd/password.c:397 ---Type to continue, or q to quit--- #16 0x00067d8c in authorise_login (snum=128, user=0xffbfdf10 "", password= {data = 0x510238 "Q» §E©wdª\232\215\222xB5\220\221\200ÂÒ¯·Âv", length = , free = 0x3029b0 }, guest=0xffbfe0b0) at smbd/password.c:547 #17 0x001076a8 in make_connection_snum (snum=128, vuser=0x0, password= {data = 0x510238 "Q» §E©wdª\232\215\222xB5\220\221\200ÂÒ¯·Âv", length = , free = 0x3029b0 }, pdev=0xffbfe258 "", status=0xffbfe928) at smbd/service.c:336 #18 0x0010a348 in make_connection (service_in=0xffbfea40 "REFERENCIAL", password= {data = 0x510238 "Q» §E©wdª\232\215\222xB5\220\221\200ÂÒ¯·Âv", length = , free = 0x3029b0 }, pdev=0xffbfe930 "", vuid=0, status=0xffbfe928) at smbd/service.c:817 #19 0x00094a50 in reply_tcon_and_X (conn=0x0, inbuf=0x525dea "", outbuf=0x5461d4 "", length=220, bufsize=65475) at smbd/reply.c:662 #20 0x001039f8 in switch_message (type=117, inbuf=0x525dea "", outbuf=0x5461d4 "", size=220, bufsize=65475) at smbd/process.c:1071 #21 0x00104b00 in chain_reply (inbuf=0x525d48 "", outbuf=0x546198 "", size=280, bufsize=65535) at smbd/process.c:1338 #22 0x000b3db8 in reply_sesssetup_and_X (conn=0x0, inbuf=0x525d48 "", outbuf=0x546198 "", length=280, bufsize=65535) at smbd/sesssetup.c:1115 #23 0x001039f8 in switch_message (type=115, inbuf=0x525d48 "", outbuf=0x546198 "", size=280, bufsize=65535) at smbd/process.c:1071 ---Type to continue, or q to quit--- #24 0x00103b04 in construct_reply (inbuf=0x525d48 "", outbuf=0x546198 "", size=280, bufsize=65535) at smbd/process.c:1101 #25 0x00104130 in process_smb (inbuf=0x525d48 "", outbuf=0x546198 "") at smbd/process.c:1201 #26 0x00105ed0 in smbd_process () at smbd/process.c:1753 #27 0x003e168c in main (argc=3, argv=0xffbffc6c) at smbd/server.c:974 As you can see, it crashes when it uses /usr/lib/libldap. But in fact, it should use /usr/local/lib/libldap ( you can see that we put " env LD_FLAGS="-L/usr/local/lib" " before the ./configure ). In that case, the group name is called "REFERENCIAL" Thanks! Tom Crummey wrote: Hello Miki, Did you get a chance to compile with debugging symbols and get the stack trace of the crash? Tom. Tom Crummey, Systems and Network Manager, EMAIL: [EMAIL PROTECTED] Department of Electronic and Electrical Engineering, University College London, TEL: +44 (0)20 7679 3898 Torrington Place,FAX: +44 (0)20 7388 9325 London, UK, WC1E 7JE. On Thu, 5 Jan 2006, Miki Monguilod wrote: Hi Tom, In fact, I've compiled both without positive results. I first compiled the newest Samba version (3.0.21a) and it didn't fix the problem. After seeing the Gerald's mail and the bugzilla post, I've compiled Samba 3.0.20a too. To sum up, I've tried with: Samba 3.0.14a Samba 3.0.20a Samba 3.0.20b Samba 3.0.21 Samba 3.0.21a Do you want me to post this problem in bugzilla.samba.org ? bye! Tom Crummey wrote: Hello Miki, Did you mean 3.0.21a? Tom. Tom Crummey, Systems and Network Manager, EMAIL: [EMAIL PROTECTED] Department of Electronic and Electrical Engineering, University College London, TEL: +44 (0)20 7679 3898 Torrington Place,FAX: +44 (0)20
[Samba] [repost] Samba - Cups - WinXP SP2 Client
Hi List, if you need any more input, please let me know. I have a samba Server 3.0.14 installed on Ubuntu. I also have cups 1.1.23 installed. I have migrated an existing nt4 domain using this howto: http://de.samba.org/samba/docs/man/Samba-Guide/ntmigration.html#id2570211 Samba is my PDC now, and no more windows servers are on the net. I have a network Printer Kyocera 1800+ Mita which is correctly configured via cups. I have preconfigured 3 Printers on for each paper feed, so Users just have to connect to the printer and then be able to print to the correct paper feed. I have then added the Printers to samba using this howto: http://de.samba.org/samba/docs/man/Samba-Guide/happy.html#id2550472 I have 2 problems. 1. Although Printing a Test Page with Cups prints from the right Paper Feed, printing a Test Page from the Windows Client prints it from the default feeder. BUT with a very good response time and speed. IF I change the Client Side Drivers to use tray2 for this printer, The Response Time of PrintJobs is 4 times higher than before. Although Printing is possible, the time to print a document is so high, that users can go and grab a cup of coffee in between. Another Problem is that we have different user profiles accessing the server. The One side uses an Accounting Software, which keeps its database in flat files on the server. Every user opens the files and keeps them open. The Other users are using AutoDesk Inventor 10 which is used for AutoCad. This keeps the information for large Drawings in thousands of small files which are stored inside a directory. These Users are complaining about very long response times of the server. So my question is, is it possible to file access to one share in favor of other shares, something like QOS? Any Help is highly appreciated. I Have attached my smb.conf, so you can see how this is configured: # Samba config file created using SWAT # from 0.0.0.0 (0.0.0.0) # Date: 2005/11/22 17:14:43 # Global parameters [global] # aenderungen 28.12.05 os level = 33 security = user interfaces = 192.168.11.253 127.0.0.1 bind interfaces only = no unix charset = LOCALE workgroup = HELLER-DOMÄNE netbios name = ITCHY passdb backend = ldapsam:ldap://localhost log level = 2 syslog = 0 log file = /var/log/samba/%m max log size = 5 smb ports = 135 445 name resolve order = hosts wins bcast socket address = 192.168.11.253 socket options = TCP_NODELAY IPTOS_LOWDELAY SO_SNDBUF=8192 SO_RCVBUF=8192 addprinter command = /usr/bin/addprinter deleteprinter command = /usr/bin/removeprinter add user script = /usr/sbin/smbldap-useradd -m '%u' delete user script = /usr/sbin/smbldap-userdel '%u' add group script = /usr/sbin/smbldap-groupadd '%g' delete group script = /usr/sbin/smbldap-groupdel '%g' add user to group script = /usr/sbin/smbldap-groupmod -m '%u' '% g' delete user from group script = /usr/sbin/smbldap-groupmod -x '% u' '%g' set primary group script = /usr/sbin/smbldap-usermod -g '%g' '% u' add machine script = /usr/sbin/smbldap-useradd -w '%u' logon script = HELLER1.cmd logon path = \\%L\profiles\%U logon drive = U: logon home = \\%L\%U domain logons = Yes domain master = Yes local master = Yes wins support = Yes ldap suffix = dc=heller,dc=de ldap admin dn = cn=Manager,dc=heller,dc=de ldap group suffix = ou=Groups ldap idmap suffix = ou=Idmap ldap machine suffix = ou=People ldap passwd sync = Yes ldap ssl = no ldap timeout = 20 ldap user suffix = ou=People,dc=heller,dc=de #ldapsam:trusted=yes idmap backend = ldap:ldap://localhost idmap uid = 1000-2 idmap gid = 1000-2 winbind nested groups = Yes printer admin = root, kudlek.c, maurer.k, maurer.g, meinzinger.u, frank.h, bruecks.m, trumpfheller.s, moser.m directory mask = 0777 ea support = Yes map acl inherit = Yes printing = cups printcap = cups strict locking = No profile acls = Yes time server = Yes # Add for fixing Bug 20051124 NM use sendfile = No [technik] comment = Alle Dokumente der Technik path = /samba/technik read only = No create mask = 0777 force create mode = 0777 force security mode = 0 [sekretariat] comment = Alle Dokumente des Sekretariats path = /samba/sekretariat read only = No create mask = 0777 force create mode = 0777 [konstruktion] comment = Alle Dokumente der Konstruktionsabteilung path = /samba/konstruktion read only = No create mask = 0777 force create mode = 0777 [cd-images] comment
Re: [Samba] Connecting from XP to samba shares
Adam Nielsen wrote on 10/01/2006: > If you run smbd with debug info turned on, what username/ > password is the XP box connecting as? That might narrow things > down a bit. I'll try to get additional data. > Is there a reason why you can't use security=user? You could > still use 'force user' to make all file accesses appear as > though they come from 'someuser', and you could make a local > account called anything you want and list that as the only > valid user for the share. Then you'd have to put in a username > as well as a password when you connected, but provided they > matched the valid user you'd be allowed in. Hmmm... That might be a good compromise. But doesn't "security=user" imply I have to create samba users with the same names (and passwords?) as the XP users? Now that I think of it, this doesn't make sense if there is a propt for username and password, but I believe that's what I've read... Also, how would that work with Win98? Anyway, I'd like to know why "security=share" is not working for me... Thanks Ignacio ___ NEW Yahoo! Cars - sell your car and browse thousands of new and used cars online! http://uk.cars.yahoo.com/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba