Re: [Samba] DC outage
Hi Michael Thats what I thought after reading the manual again. is this entry needed for joining? as far as i remember, the join was not working when i had no pw server defined. hm... i will test again. cheers On Thu, Jul 10, 2008 at 10:05 PM, Michael Adam <[EMAIL PROTECTED]> wrote: > Hi Urs, > > you should not set any specific password server in the smb.conf > if you want DC failover to work. Instead, leave it at the default, > which is *, so that dns lookups of srv records is enabled. > > Cheers, Michael > > Urs Golla wrote: >> it is the latest stable from sernet for rhel4 32bit >> >> On Thu, Jul 10, 2008 at 6:27 PM, Jeremy Allison <[EMAIL PROTECTED]> wrote: >> > On Thu, Jul 10, 2008 at 05:05:48PM +0200, Urs Golla wrote: >> >> Hello >> >> >> >> We had an outage of one of our domain controllers today and all Linux >> >> servers have lost their connection to the ADS. I always thought >> >> winbind should switch to another DC if one is not reachable anymore. >> >> The windows servers in the same domain switched to a new one. do i >> >> have to specify more than 1 password server in smb.conf? >> > >> > No you shouldn't. What version of Samba is this ? >> > >> > Jeremy. >> > >> -- >> To unsubscribe from this list go to the following URL and read the >> instructions: https://lists.samba.org/mailman/listinfo/samba > > -- > Michael Adam <[EMAIL PROTECTED]> <[EMAIL PROTECTED]> > SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen > phone: +49-551-37-0, fax: +49-551-37-9 > AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen > http://www.SerNet.DE, mailto: Info @ SerNet.DE > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Automatic Integrated Windows Auth (IWA) in firefox & nautilus
Hi, all My problem is concerning Automatic Integrated Windows Auth (IWA). I've successfully on my ubuntu a) joined a Windows domains (by net join -S), b) list domain users (by wbinfo -u), c) logined gnome with a domain user (domain\username). What drives me to do all this is to expect 1) my firefox automatically answers ntlm (a.k.a. iwa, integrated windows auth) when I visit an Outlook Web Access site. (network.automatic-ntlm-auth.trusted-uris is set to proper value, which works in Windows) 2) nautilus automatically login when I visit a share folder inside the domain (by addresss starting smb://machine/folder.///) But neither works. Firefox prompt for username & password when I visit an Exchange site using IWA. nautilus still prompt for password although he auto correctly fills the name & domain field. Is this a configuration problem of samba? or that the implementation of firefox & nautilus take charge and they haven't implemented? Many Thanks Dikan Xing -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] failed to create kerberos keytab with samba-3.2.0 [solved (sort of)]
Hi all, I compiled samba-3.2.0 on a brand new machine and when i try to join the domain, i get the following result: bash-3.00# net ads join -U administrator Enter administrator's password: Failed to join domain: failed to create kerberos keytab A keytab file is created as /etc/krb5.keytab as it should be It does not seem to depend on the version of kerberos samba was linked against, i tried with 1.5.3 and 1.6.3 . If i set "use kerberos keytab = no" in my smb.conf file, samba 3.2 is able to join the domain although samba 3.0.x was working fine with "use kerberos keytab = yes". I tried this on 2 different machines both running solaris 10 update 5. Strangely enough, when messing with different versions of samba, kerberos and keytab files, i discovered a procedure to make it work. 1 - Compile and install samba-3.0.30 2 - join the domain 3 - delete the keytab file that has been created by the previous step 4 - compile and install samba-3.2.0 5 - join the domain Than i tested with net ads testjoin, wbinfo -u, wbinfo -g, everything seems fine. Worked for me, has anyone else experienced this? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Solaris 10 + Samba + LDAP - how to?
Hi all, Some of you may recall a little while ago I posted a fairly complex request about integrating samba into a solaris 10 fileserver and using Open LDAP as the primary authentication source. Well, I got no responses as I believe it may have been too complicated-a-request/ question. So, a simplification and some different questions. 1. I have a Solaris 10 x86 host that I'd like to run samba on 2. This same Solaris 10 x86 host is bound to an LDAP master (separate host!) to get authentication information for users who have fileshares on the host 3. I'd like to know how to go about... ...Setting up samba so that it can use the authentication information from the LDAP master (am assuming I need PAM here somewhere!), so that users can connect to the solaris 10 fileserver using their LDAP credentials, then r/w/x as the correct users, maintaining permissions, GUID's and UID's et al. I don't think it is too complex a request, just needed simplification. Please let me know if anyone needs further details to work out a simple solution to this question. Thanks for your time. Regards, -- Jake Carroll | Senior Systems Programmer The Queensland Brain Institute The University of Queensland, Australia -- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba 3.0.31 Available for Download
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 == "Silence is Golden" == Release Announcements = This is a bug fix release of the Samba 3.0 production series and is the version that servers should be run for all current Samba 3.0 bug fixes. User visible bug fixes in this release include: o Correct issues with running Winbind runing on a Samba PDC. o Problems with trusted Windows 2008 domains. o Difficulty joining an NT4 or Windows 2000 AD domain. = End-of-Life Announced = With the release of Samba 3.2.0 on July 1, the clock has been started to End-Of-Life the Samba 3.0 series on July 1, 2009. Moving forward, any 3.0.x releases will be on a as needed basis for critical bug fixes or security issues only. Download Details The uncompressed tarballs and patch files have been signed using GnuPG (ID 6568B7EA). The source code can be downloaded from: http://download.samba.org/samba/ftp/ The release notes are available online at: http://www.samba.org/samba/history/samba-3.0.31.html Binary packages will be made available on a volunteer basis at http://download.samba.org/samba/ftp/Binary_Packages/ Our Code, Our Bugs, Our Responsibility. (https://bugzilla.samba.org/) --Enjoy The Samba Team -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.6 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFIdnzoIR7qMdg1EfYRAqkgAJ4nsmrUViUQI3bMcwu5yuGBQ2Pd5QCfTCVz Loi4I2onfkKcNU/6Ut2cYy4= =iFj8 -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] update to cifs-mount-3.2.0-24.1.122 from .121 broke mount.cifs [.123 is still broken]
David C. Rankin wrote: David C. Rankin wrote: David C. Rankin wrote: Jerry, Jeremy, et. al. Last night's upgrade from cifs-mount-3.2.0-24.1.121 to cifs-mount-3.2.0-24.1.122 on a openSuSE 10.3 x86_64 machine broke mount -t cifs. Now attempting to mount shares results in the following: 11:10 alchemy/home/david/bin] # mount.cifs -v //nirvana/david /mnt/nirvana-david -o username=david,uid=1000,password=notmypass parsing options: username=david,uid=1000,password=notmypass Mounting the DFS root for domain not implemented yet No ip address specified and hostname not found Huh? Can I get .121 back? This is purely a client issue. Nothing is showing in the server logs with log level = 10. Client only has entries in /var/log/messages showing that the mount command was entered: Jul 3 10:51:46 alchemy sudo:david : TTY=pts/1 ; PWD=/home/david/bin ; USER=root ; COMMAND=/sbin/mount.cifs -v //nirvana/david /mnt/nirvana-david -o username=david,uid=1000,password=notmypass Help. Let me know what else I can send and I'll be happy to do it. Thanks. Guys, I did a downgrade to the latest in openSuSE/update (3.0.26a) and all works as it should. It's confirmed, whatever changes were made to cifs-mount-3.2.0-24.1.122 broke it. Let me know if I can send anything else. Does anyone know if this was fixed in the .123 release? Yes, David, Now that you mention it, I have the answer! I installed: cifs-mount-3.2.0-24.1.123 samba-winbind-32bit-3.2.0-24.1.123 samba-3.2.0-24.1.123 samba-32bit-3.2.0-24.1.123 samba-client-3.2.0-24.1.123 samba-client-32bit-3.2.0-24.1.123 and cifs is still broken. Upon install all of the Linux-to-Linux cifs mounts immediately fail and cannot be remounted until all samba/cifs packages are downgraded to the only available openSuSE alternative of 3.0.26a--bummer. Am I the only one affected by this??? Is there a workaround? Can I check/send anything else to help fix this? -- David C. Rankin, J.D., P.E. Rankin Law Firm, PLLC 510 Ochiltree Street Nacogdoches, Texas 75961 Telephone: (936) 715-9333 Facsimile: (936) 715-9339 www.rankinlawfirm.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3.2.0 doesn't compile under Solaris8
FYI: I have fixed that in v3-3-test in a bigger rewrite and filed a bug for 3.2.0 (#5608). Michael Michael Adam wrote: > Oops, looks like an old bin/libtalloc.so.1 is in the way. > For now "rm bin/libtalloc.so.1" before make should be a > workaround. > > I'll have to look if this is a bug in the build system... > > Cheers - Michael > > Oliver Weinmann wrote: > > Dear All, > > > > Yesterday I downloaded the latest Samba release 3.2.0 and tried to compile > > it against blastwave.org packages, as I always do. But it fails with error: > > > > "/usr/include/sys/termios.h", line 38: warning: macro redefined: CTRL > > "./librpc/gen_ndr/srvsvc.h", line 232: warning: enumerator value overflows > > INT_M > > AX (2147483647) > > "./librpc/gen_ndr/srvsvc.h", line 235: warning: enumerator value overflows > > INT_M > > AX (2147483647) > > "./librpc/gen_ndr/srvsvc.h", line 238: warning: enumerator value overflows > > INT_M > > AX (2147483647) > > "./librpc/gen_ndr/srvsvc.h", line 242: warning: enumerator value overflows > > INT_M > > AX (2147483647) > > "./librpc/gen_ndr/wkssvc.h", line 10: warning: useless declaration > > "./librpc/gen_ndr/samr.h", line 633: warning: useless declaration > > "./librpc/gen_ndr/nbt.h", line 496: warning: useless declaration > > "./librpc/gen_ndr/netlogon.h", line 204: warning: useless declaration > > "./librpc/gen_ndr/netlogon.h", line 206: warning: useless declaration > > "./librpc/gen_ndr/libnet_join.h", line 10: warning: useless declaration > > Linking non-shared library bin/libtalloc.a > > Compiling lib/replace/replace.c > > Compiling lib/replace/snprintf.c > > Compiling lib/replace/getpass.c > > Compiling lib/replace/strptime.c > > Compiling lib/replace/timegm.c > > Compiling lib/replace/inet_aton.c > > "/usr/include/netdb.h", line 412: warning: macro redefined: MAXHOSTNAMELEN > > Compiling lib/replace/getifaddrs.c > > "/usr/include/netdb.h", line 412: warning: macro redefined: MAXHOSTNAMELEN > > creating /opt/SOURCES/samba-3.2.0/source/exports/libtalloc.syms > > Linking shared library bin/libtalloc.so > > ln: cannot create bin/libtalloc.so.1: File exists > > *** Error code 2 > > make: Fatal error: Command failed for target `bin/libtalloc.so' > > Build failed! Exiting > > > > On the same build machine I'm able to compile Samba 3.0.30 without any > > problems at all. > > > > A few informations about my workstation: > > > > bash-2.03# uname -a > > SunOS ares 5.8 Generic_117350-02 sun4u sparc SUNW,Sun-Fire-480R > > > > I'm using Sun Studio 11 Compiler: > > > > bash-2.03# /opt/studio11/SUNWspro/bin/cc -V > > cc: Sun C 5.8 2005/10/13 > > usage: cc [ options] files. Use 'cc -flags' for details > > > > my environment variables: > > > > bash-2.03# echo $CPPFLAGS > > -I/opt/csw/include > > bash-2.03# echo $LD_OPTIONS > > -R/opt/csw/lib/$ISALIST -R/opt/csw/lib -L/opt/csw/lib > > > > and my configure options: > > > > > > *./configure –with-ads –with-krb5=/opt/csw –with-pam –with-winbind > > –with-shared-modules=idmap_ad –prefix=/opt/csw > > –with-swatdir=/opt/csw/share/samba/swat –with-configdir=/opt/csw/etc/samba > > –with-privatedir=/opt/csw/etc/samba/private* > > > > ** > > > > *I also tried using gcc from blastwave.org but it fails at the same stage.* > > > > ** > > > > *Any ideas? I couldn't find anything related on google as 3.2.0 is quite new > > I guess.* > > > > ** > > > > ** > > -- > > To unsubscribe from this list go to the following URL and read the > > instructions: https://lists.samba.org/mailman/listinfo/samba -- Michael Adam <[EMAIL PROTECTED]> <[EMAIL PROTECTED]> SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen phone: +49-551-37-0, fax: +49-551-37-9 AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen http://www.SerNet.DE, mailto: Info @ SerNet.DE pgp780LYKg4UM.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3.2.0 on Ubuntu
Quoting Chris Robinson <[EMAIL PROTECTED]>: There are UNOFFICIAL, UNSUPPORTED prebuilt packages in my PPA: http://launchpad.net/~pgquiles/+archive Hi I can not run config : ./configure --with-ldap --with-krb5 I get the following error: configure:3730: checking how to run the C preprocessor configure:3770: gcc -E conftest.c configure:3776: $? = 0 configure:3807: gcc -E conftest.c conftest.c:10:28: error: ac_nonexistent.h: No such file or directory configure:3813: $? = 1 configure: failed program was: | /* confdefs.h. */ | #define PACKAGE_NAME "Samba" | #define PACKAGE_TARNAME "samba"| #define PACKAGE_VERSION "3"| #define PACKAGE_STRING "Samba 3" | #define PACKAGE_BUGREPORT "[EMAIL PROTECTED]" | #define CONFIG_H_IS_FROM_SAMBA 1 | #define _GNU_SOURCE 1 | /* end confdefs.h. */ Chris -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- Pau Garcia i Quiles http://www.elpauer.org (Due to my workload, I may need 10 days to answer) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Install error when trying to install ver 3.2.0
The problem here is that ln -s -f does now work as expected on solaris 8 (at least). Here "expected" means that it will remove the link if it already exists, i.e. the behaviour I experienced on linux. I have fixed that in the v3-3-test branch (with a whole rewrite and cleanup of the library build system). Since the whole rewrite will probably not make it into 3.2.X bugfix releases, I will see if I can get a small bugfix into v3-2-test... I have filed a new bug #5608 for this issue. Michael David Eisner wrote: > On Wed, Jul 9, 2008 at 12:21 PM, William Edward Wilson > <[EMAIL PROTECTED]> wrote: > > ln: cannot create bin/libtalloc.so.1: File exists > > *** Error code 2 > > make: Fatal error: Command failed for target `bin/libtalloc.so' > > > > What needs to be changed to get the make install to work? > > William, > > I haven't had a chance to figure out what in the build setup is > responsible for this bug, but as a work-around I just delete > bin/libtalloc.so.1 and type make again to continue the build. > > -David > > -- > David Eisner http://cradle.brokenglass.com > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- Michael Adam <[EMAIL PROTECTED]> <[EMAIL PROTECTED]> SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen phone: +49-551-37-0, fax: +49-551-37-9 AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen http://www.SerNet.DE, mailto: Info @ SerNet.DE pgpkE2bjfzmIb.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] DC outage
Hi Urs, you should not set any specific password server in the smb.conf if you want DC failover to work. Instead, leave it at the default, which is *, so that dns lookups of srv records is enabled. Cheers, Michael Urs Golla wrote: > it is the latest stable from sernet for rhel4 32bit > > On Thu, Jul 10, 2008 at 6:27 PM, Jeremy Allison <[EMAIL PROTECTED]> wrote: > > On Thu, Jul 10, 2008 at 05:05:48PM +0200, Urs Golla wrote: > >> Hello > >> > >> We had an outage of one of our domain controllers today and all Linux > >> servers have lost their connection to the ADS. I always thought > >> winbind should switch to another DC if one is not reachable anymore. > >> The windows servers in the same domain switched to a new one. do i > >> have to specify more than 1 password server in smb.conf? > > > > No you shouldn't. What version of Samba is this ? > > > > Jeremy. > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- Michael Adam <[EMAIL PROTECTED]> <[EMAIL PROTECTED]> SerNet GmbH, Bahnhofsallee 1b, 37081 Göttingen phone: +49-551-37-0, fax: +49-551-37-9 AG Göttingen, HRB 2816, GF: Dr. Johannes Loxen http://www.SerNet.DE, mailto: Info @ SerNet.DE pgpxFZCcKmxPy.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] unable to load netlogon scripts
running samba 3.0.30 on fedora core 8 and i'm not able to have windows xp load the netlogon script. In their LDAP info I have: sambaProfilePath: \\roark\profiles\jholland sambaHomePath: \\roark\jholland sambaLogonScript: scripts\jholland.bat sambaHomeDrive: R: and the share info is: [netlogon] path = /var/lib/samba/netlogon read only = yes guest ok = no browseable = no write list = awilliam and the script is: [EMAIL PROTECTED] ldap]# cat /var/lib/samba/netlogon/scripts/jholland.bat net time \\roark /set /yes net use r: \\roark\homes /yes net use s: \\roark\share /yes net use p: \\roark\pubinfo /yes but when the user logs in, they don't get p: or s: shared, but when i click on start, run, and type in \\roark\netlogon\scripts\jholland.bat it runs fine. any ideas? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba 3.2.0 on Ubuntu
Hi I can not run config : ./configure --with-ldap --with-krb5 I get the following error: configure:3730: checking how to run the C preprocessor configure:3770: gcc -E conftest.c configure:3776: $? = 0 configure:3807: gcc -E conftest.c conftest.c:10:28: error: ac_nonexistent.h: No such file or directory configure:3813: $? = 1 configure: failed program was: | /* confdefs.h. */ | #define PACKAGE_NAME "Samba" | #define PACKAGE_TARNAME "samba" | #define PACKAGE_VERSION "3" | #define PACKAGE_STRING "Samba 3" | #define PACKAGE_BUGREPORT "[EMAIL PROTECTED]" | #define CONFIG_H_IS_FROM_SAMBA 1 | #define _GNU_SOURCE 1 | /* end confdefs.h. */ Chris -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba 3.2.0 on Ubuntu
Hi I can not run config : ./configure --with-ldap --with-krb5 I get the following error: configure:3730: checking how to run the C preprocessor configure:3770: gcc -E conftest.c configure:3776: $? = 0 configure:3807: gcc -E conftest.c conftest.c:10:28: error: ac_nonexistent.h: No such file or directory configure:3813: $? = 1 configure: failed program was: | /* confdefs.h. */ | #define PACKAGE_NAME "Samba" | #define PACKAGE_TARNAME "samba" | #define PACKAGE_VERSION "3" | #define PACKAGE_STRING "Samba 3" | #define PACKAGE_BUGREPORT "[EMAIL PROTECTED]" | #define CONFIG_H_IS_FROM_SAMBA 1 | #define _GNU_SOURCE 1 | /* end confdefs.h. */ Chris -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Security tab is no longer available in Windows clients.
Miguel Da Silva - Centro de Matemática wrote: Dear users, some days ago a user of the local network told me that she was not able to change ACL's through Windows. I've done some tests and indeed, when I right click a file/folder that is on the Samba server, the "Security" tab is no longer available. It does appear when I right-click any local file. The clients are running Windows XP Professional SP2 and the Samba server is being running on a Solaris 10 system. The system is already using ACL. Any suggestion?! Greetings. I could track the problem down. It seems the option "protrocol LANMAN2" was causing te problem. Does any one know more what this does? Greetings. -- Miguel Da Silva Administrador Junior de Sistemas Unix Centro de Matemática - http://www.cmat.edu.uy Facultad de Ciencias - http://www.fcien.edu.uy Universidad de la República - http://www.rau.edu.uy -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] DC outage
it is the latest stable from sernet for rhel4 32bit On Thu, Jul 10, 2008 at 6:27 PM, Jeremy Allison <[EMAIL PROTECTED]> wrote: > On Thu, Jul 10, 2008 at 05:05:48PM +0200, Urs Golla wrote: >> Hello >> >> We had an outage of one of our domain controllers today and all Linux >> servers have lost their connection to the ADS. I always thought >> winbind should switch to another DC if one is not reachable anymore. >> The windows servers in the same domain switched to a new one. do i >> have to specify more than 1 password server in smb.conf? > > No you shouldn't. What version of Samba is this ? > > Jeremy. > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Distributed Setup Suggestions
On Thu, Jul 10, 2008 at 3:05 AM, Scott Grizzard <[EMAIL PROTECTED]> wrote: > What types of files are you trying to share? >> > > Most files are in the under 25MB range. > >> >> If they are primarily small (under 100meg) files that you need read/write >> access to (especially documents), you might want to adopt some type of >> document management system like KnowledgeTree instead of using Samba. I >> suggest this not only because you get document management features, but >> KnowlegeTree works over http, and if you are using webdav you already have >> an Apache infrastructure set up. >> > > We are actually using KnowledgeTree right now for sharing files with > client/vendors. Oracle Drive provides the same features, but is actually a > bit better (minus cost). They have a windows client that maps network drives > (similar to WebDrive) and a great web interface. We could move to KT, but > this doesn't solve our problems of a distributed environment. We would still > have to setup multiple servers and users would have to contact each one > individually. > >> >> At my last job, we used Subversion for the same purpose: distributed >> document management. However, using it for distributed document management >> requires training the staff to use TortoiseSVN (and disciplining them to use >> locks), and the Subversion experience is not intuitive to the >> "non-developer". KnowlegeTree has a much more intuitive flow for documents. >> However, Subversion can use WebDav as its interface, so the transition may >> not be too rough. >> >> Subversion is very traffic efficient (in my opinion). The latest version >> of Subversion (1.5.x) allows you to mirror your repositories. Since most of >> the traffic is of a "read nature", mirroring your repositories will >> drastically reduce your WAN traffic. In fact, the only traffic across your >> WAN (if I understand the technology correctly) is the "diff" between the old >> document version and the new document version. >> >> Because both of these solutions (Subversion and KnowlegeTree) work with >> Apache, you can authenticate to them using your Windows user base (either >> through mod_auth_kerb if you are using Active Directory or another >> Kerberos), or through mod_authnz_ldap to your Samba PDC (if you are using >> NT, there is also some way to authenticate to it, but I have never used it). >> However, fine grained file permissions in Subversion are a pain to set up >> and maintain, so if your ACL's run 40 lines each and are different for every >> file, stick to something else. >> >> If you do go with Subversion, I recommend using Insurrection as a >> front-end to mod_dav_svn. Insurrection is very difficult to set up, >> especially if you need SSL support for it. But the time is worth it, since >> it gives a great user front-end for repo browsing. Throw in the Firefox >> TortoiseSVN menu plug-in, and you are good to go. >> >> If the files are large and primarily read-only, set up a master server at >> one office, and mirror it to the other offices using rsync. Set up the >> remote samba servers as read-only, and the problem is solved efficiently. I >> don't know if rsync preserves ACL's, but I heard there was a patch in the >> wild somewhere... >> >> > In our environment, some data is read-only. But with more & more > inter-office work, they are constantly needing to share read/write files. > > >> >> I was very pleased how the Subversion solution came out, but I never set >> up remote mirrors for anything other than read-only backups. We added Trac >> for project and issue management, and made the non-developer staff use it. >> The working-copy thing was tough for them to get used to, but the webdav >> access worked well for them. >> >> I just think straight Samba servers may be the wrong tool for what you are >> trying to do, though they may appear to be the simplest solution. >> > > I will take a look at subversion, thanks! > > >> >> - Scott >> >> Bill Baird wrote: >> >>> My company is approx 200 users. We have 10 offices each with 5-30 users >>> each. A few offices work independently, but there has been a lot more >>> inter-office work lately. I am looking for a way to provide fast local >>> access to files stored in the same office as the user, but also >>> acceptable >>> performance for inter-office file transfers. >>> >>> >> >> -- >> To unsubscribe from this list go to the following URL and read the >> instructions: https://lists.samba.org/mailman/listinfo/samba >> > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] DC outage
On Thu, Jul 10, 2008 at 05:05:48PM +0200, Urs Golla wrote: > Hello > > We had an outage of one of our domain controllers today and all Linux > servers have lost their connection to the ADS. I always thought > winbind should switch to another DC if one is not reachable anymore. > The windows servers in the same domain switched to a new one. do i > have to specify more than 1 password server in smb.conf? No you shouldn't. What version of Samba is this ? Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Distributed Setup Suggestions
On Thu, Jul 10, 2008 at 02:10:40AM -0400, Bill Baird wrote: > > - I have been trying to figure out a way to have Samba servers in each > office that would mount remote servers/folders via NFS. This would provide > access from the local server with hopefully better speeds for remote files > (NFS is my experience has been much faster over WAN links). But I'm not sure > how file locking will work. From searching, it seems that samba/nfs locking > isn't reliable. What is the current status of this? I also saw in Samba 3.2, > the CTDB project is becoming more mature. Would this be a possibility? Or is > that really only for clusters on a fast local network? Re-exporting via NFS works, but not for a multiple-node site sharing the same data. > - There is MS DFS, but we really don't want to implement MS servers. Samba supports MS-DFS. Whatever you want to build with MS-DFS you can build with Samba servers. Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] AUTO: Luc Sainte-Marie en Vacance // In vacation (returning Sun 07/13/2008)
I am out of the office from Thu 07/10/2008 until Sun 07/13/2008. En cas d'urgence, svp contacter Frederic Bergeron au 450-432-1128 ext.279 ou [EMAIL PROTECTED] . If you have big problems, please contact Frederic Bergeron 450-432-1128 ext.279 or [EMAIL PROTECTED] Note: This is an automated response to your message samba Digest, Vol 67, Issue 11 sent on 2008-07-10 08:00:42. This is the only notification you will receive while this person is away. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] DC outage
Hello We had an outage of one of our domain controllers today and all Linux servers have lost their connection to the ADS. I always thought winbind should switch to another DC if one is not reachable anymore. The windows servers in the same domain switched to a new one. do i have to specify more than 1 password server in smb.conf? cheers urs -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] charaters problem
Thank u for the reply :-) > 1. Do you have a mounted local ntfs volume, which you now want to share >(export) with samba to other clients? Yes :-) I already shared the mounted directory > 2. Have you mounted a _remote_ ntfs share using smbfs or cifs vfs ? Using smbfs Pol -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] charaters problem
Am Donnerstag, 10. Juli 2008 schrieb Günter Kukkukk: > Am Donnerstag, 10. Juli 2008 schrieb Pol Hallen: > > Hi folks :-) > > > > Mounting a shared ntfs volume in debian os, I see some files like this: > > L'?uomo di notte.jpg > > the real name is: L'ùomo di notte.jpg > > > > So, when I try to open this file (from a client) a message error appear: > > "the > > file doesn't exist". > > > > How can I resolve this problem? > > Thanks > > > > Pol > > what kernel module did you use for mounting that remote share, > smbfs or cifs vfs ? > Cheers, Günter Sorry to reply to my own post, i possibly misunderstood your problem. 1. Do you have a mounted local ntfs volume, which you now want to share (export) with samba to other clients? 2. Have you mounted a _remote_ ntfs share using smbfs or cifs vfs ? Which of the above 1. or 2. matches your environment? Cheers, Günter -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Win2000 SP4 + Vmware 3.5: unable to brownse shares on Samba fileserver
Hello! I have a Windows 2000 SP4 (polish version) machine on VMware 3.5 and a Samba 3.0.28a fileserver on linux box (kerenl 2.6.24.2). Both are members of Active Directory. When I try to map a samba share, I get a message like this (may differ from exact english message as I translated it from polish): "This folder has been moved or deleted" or "unexpected network error has occured 59" (the later when using command line "net use x: \\FILESERV\SHARE"). Both machines see each other (I'm able to ping each other by domain names), in logs I can see that user gets authenticated properly, from windows machine side I can list all shares, but I'm unable to open any (the above message shows up). All other Windows hosts on the network are able to brownse the samba fileserver without any problem and on the other hand the Win2000 virtual machine can access shares on other machines on the network. The user I'm logged in is a member of domain admins group. Here is the smb.conf: [global] workgroup = <...> passdb backend = smbpasswd security = ads encrypt passwords = yes private dir = /etc/samba/private smb passwd file = /etc/samba/private/smbpasswd syslog = 3 syslog only = yes log level = 3 lock directory = /var/lock pid directory = /var/run os level = 65 announce version = 5.2 announce as = NT Server preferred master = no wins support = yes local master = no winbind separator = + disable spoolss = yes smb ports = 139 445 max xmit = 65535 realm = <...> server string = Serwer Plikow password server = 10.140.0.8 idmap uid = 1-5 idmap gid = 1-5 inherit acls = yes inherit owner = yes winbind enum users = yes winbind enum groups = yes template homedir = /ftp template shell = /bin/false unix charset = UTF-8 host msdfs = yes msdfs root = yes map system = no map readonly = yes map archive = yes map hidden = no interfaces = 10.140.0.17 bind interfaces only = yes winbind use default domain = no ldap admin dn = ldap suffix = ldap user suffix = ldap group suffix = ldap ssl = all shares have th same definition (except for paths;), eg. : [BCOS] path = /mnt/FILESERV/FILESERV/Group/BCOS comment = inherit permissions = yes security mask = 0777 force security mode = 0 directory security mask = 0777 force directory security mode = 0 create mask = 755 read only = no veto files = /.AppleDB/.AppleDouble/.bin/.AppleDesktop/Network Trash Folder/:2eDS_Store/.Trash*/ admin users = @"<...>+domain admins" @"builtin+administrators" @"<...>+Administratorzy domeny" In logs I can't see anything indicating an error. However I managed to capture transmission betweene stations - there a few repeating parts that look strange - but I'm not good at decrypting it... I can mail it if needed. Thanks in advance. Michal -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] charaters problem
Hi,
i tested with the name your using, and i dont have a problem.
these are the things you should check for.
nt acl support = yes
map acl inherit = yes
map hidden = no
map system = no
map archive = no
store dos attributes = yes
ea support = yes
dos charset = 850
preserve case = yes
short preserve case = yes
case sensitive = auto
directory mask = 0755
hide dot files = yes
hide unreadable = yes
hide files = /RECYCLER/desktop.ini/Desktop.ini/Thumbs.db/
veto files = /*.eml/*.nws/*.{*}/
im running debian linux samba 3.0.26a
kernel 2.6.18-6-686
Good Luck
>-Oorspronkelijk bericht-
>Van: [EMAIL PROTECTED]
>[mailto:[EMAIL PROTECTED] Namens
>Pol Hallen
>Verzonden: donderdag 10 juli 2008 14:01
>Aan: samba@lists.samba.org
>Onderwerp: [Samba] charaters problem
>
>Hi folks :-)
>
>Mounting a shared ntfs volume in debian os, I see some files like this:
>L'?uomo di notte.jpg
>the real name is: L'ùomo di notte.jpg
>
>So, when I try to open this file (from a client) a message
>error appear: "the
>file doesn't exist".
>
>How can I resolve this problem?
>Thanks
>
>Pol
>--
>To unsubscribe from this list go to the following URL and read the
>instructions: https://lists.samba.org/mailman/listinfo/samba
>
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] charaters problem
Am Donnerstag, 10. Juli 2008 schrieb Pol Hallen: > Hi folks :-) > > Mounting a shared ntfs volume in debian os, I see some files like this: > L'?uomo di notte.jpg > the real name is: L'ùomo di notte.jpg > > So, when I try to open this file (from a client) a message error appear: "the > file doesn't exist". > > How can I resolve this problem? > Thanks > > Pol what kernel module did you use for mounting that remote share, smbfs or cifs vfs ? Cheers, Günter -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] charaters problem
> How can I resolve this problem? dos charset = ISO8859-1 unix charset = ISO8859-1 display charset = ISO8859-1 Pol -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] charaters problem
Hi folks :-) Mounting a shared ntfs volume in debian os, I see some files like this: L'?uomo di notte.jpg the real name is: L'ùomo di notte.jpg So, when I try to open this file (from a client) a message error appear: "the file doesn't exist". How can I resolve this problem? Thanks Pol -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Distributed Setup Suggestions
What types of files are you trying to share? If they are primarily small (under 100meg) files that you need read/write access to (especially documents), you might want to adopt some type of document management system like KnowledgeTree instead of using Samba. I suggest this not only because you get document management features, but KnowlegeTree works over http, and if you are using webdav you already have an Apache infrastructure set up. At my last job, we used Subversion for the same purpose: distributed document management. However, using it for distributed document management requires training the staff to use TortoiseSVN (and disciplining them to use locks), and the Subversion experience is not intuitive to the "non-developer". KnowlegeTree has a much more intuitive flow for documents. However, Subversion can use WebDav as its interface, so the transition may not be too rough. Subversion is very traffic efficient (in my opinion). The latest version of Subversion (1.5.x) allows you to mirror your repositories. Since most of the traffic is of a "read nature", mirroring your repositories will drastically reduce your WAN traffic. In fact, the only traffic across your WAN (if I understand the technology correctly) is the "diff" between the old document version and the new document version. Because both of these solutions (Subversion and KnowlegeTree) work with Apache, you can authenticate to them using your Windows user base (either through mod_auth_kerb if you are using Active Directory or another Kerberos), or through mod_authnz_ldap to your Samba PDC (if you are using NT, there is also some way to authenticate to it, but I have never used it). However, fine grained file permissions in Subversion are a pain to set up and maintain, so if your ACL's run 40 lines each and are different for every file, stick to something else. If you do go with Subversion, I recommend using Insurrection as a front-end to mod_dav_svn. Insurrection is very difficult to set up, especially if you need SSL support for it. But the time is worth it, since it gives a great user front-end for repo browsing. Throw in the Firefox TortoiseSVN menu plug-in, and you are good to go. If the files are large and primarily read-only, set up a master server at one office, and mirror it to the other offices using rsync. Set up the remote samba servers as read-only, and the problem is solved efficiently. I don't know if rsync preserves ACL's, but I heard there was a patch in the wild somewhere... I was very pleased how the Subversion solution came out, but I never set up remote mirrors for anything other than read-only backups. We added Trac for project and issue management, and made the non-developer staff use it. The working-copy thing was tough for them to get used to, but the webdav access worked well for them. I just think straight Samba servers may be the wrong tool for what you are trying to do, though they may appear to be the simplest solution. - Scott Bill Baird wrote: My company is approx 200 users. We have 10 offices each with 5-30 users each. A few offices work independently, but there has been a lot more inter-office work lately. I am looking for a way to provide fast local access to files stored in the same office as the user, but also acceptable performance for inter-office file transfers. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Distributed Setup Suggestions
What types of files are you trying to share? If they are primarily small (under 100meg) files that you need read/write access to (especially documents), you might want to adopt some type of document management system like KnowledgeTree instead of using Samba. I suggest this not only because you get document management features, but KnowlegeTree works over http, and if you are using webdav you already have an Apache infrastructure set up. At my last job, we used Subversion for the same purpose: distributed document management. However, using it for distributed document management requires training the staff to use TortoiseSVN (and disciplining them to use locks), and the Subversion experience is not intuitive to the "non-developer". KnowlegeTree has a much more intuitive flow for documents. However, Subversion can use WebDav as its interface, so the transition may not be too rough. Subversion is very traffic efficient (in my opinion). The latest version of Subversion (1.5.x) allows you to mirror your repositories. Since most of the traffic is of a "read nature", mirroring your repositories will drastically reduce your WAN traffic. In fact, the only traffic across your WAN (if I understand the technology correctly) is the "diff" between the old document version and the new document version. Because both of these solutions (Subversion and KnowlegeTree) work with Apache, you can authenticate to them using your Windows user base (either through mod_auth_kerb if you are using Active Directory or another Kerberos), or through mod_authnz_ldap to your Samba PDC (if you are using NT, there is also some way to authenticate to it, but I have never used it). However, fine grained file permissions in Subversion are a pain to set up and maintain, so if your ACL's run 40 lines each and are different for every file, stick to something else. If you do go with Subversion, I recommend using Insurrection as a front-end to mod_dav_svn. Insurrection is very difficult to set up, especially if you need SSL support for it. But the time is worth it, since it gives a great user front-end for repo browsing. Throw in the Firefox TortoiseSVN menu plug-in, and you are good to go. If the files are large and primarily read-only, set up a master server at one office, and mirror it to the other offices using rsync. Set up the remote samba servers as read-only, and the problem is solved efficiently. I don't know if rsync preserves ACL's, but I heard there was a patch in the wild somewhere... I was very pleased how the Subversion solution came out, but I never set up remote mirrors for anything other than read-only backups. We added Trac for project and issue management, and made the non-developer staff use it. The working-copy thing was tough for them to get used to, but the webdav access worked well for them. I just think straight Samba servers may be the wrong tool for what you are trying to do, though they may appear to be the simplest solution. - Scott Bill Baird wrote: My company is approx 200 users. We have 10 offices each with 5-30 users each. A few offices work independently, but there has been a lot more inter-office work lately. I am looking for a way to provide fast local access to files stored in the same office as the user, but also acceptable performance for inter-office file transfers. We are currently using Oracle Drive for a central file server, it utilizes WebDAV and has good performance over the WAN. There are samba & adaptec snap servers for local file access, but these are currently only accessible when in the same office as the local server. - I have done a lot of research and demoing of OpenAFS (even went to their conference last month!). While it is a true distributed filesystem; it is very complex to setup, requires client software, requires a kerberos server and seems to have a lot of quirks of its own. I don't think I am ready to trust that... - I have been trying to figure out a way to have Samba servers in each office that would mount remote servers/folders via NFS. This would provide access from the local server with hopefully better speeds for remote files (NFS is my experience has been much faster over WAN links). But I'm not sure how file locking will work. From searching, it seems that samba/nfs locking isn't reliable. What is the current status of this? I also saw in Samba 3.2, the CTDB project is becoming more mature. Would this be a possibility? Or is that really only for clusters on a fast local network? - There is MS DFS, but we really don't want to implement MS servers. - ?? I have been searching and searching, but haven't found anything that would solve our problem...so I'm hoping someone can help! Any suggestions would be greatly appreciated. Thank you! --Bill -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
