[Samba] Winbind log errors: string_to_sid...
I'm running Winbind 3.0.33 with FreeRadius for windows authentication. Has anyone found a solution to these error messages in the samba.log? [r...@pr01 log]# tail samba.log [2009/03/12 09:28:33, 0] lib/util_sid.c:string_to_sid(242) string_to_sid: Sid S-0-0 is not in a valid format. [2009/03/12 09:33:33, 0] lib/util_sid.c:string_to_sid(242) string_to_sid: Sid S-0-0 is not in a valid format. [2009/03/12 09:33:33, 0] lib/util_sid.c:string_to_sid(242) string_to_sid: Sid S-0-0 is not in a valid format. [2009/03/12 09:38:35, 0] lib/util_sid.c:string_to_sid(242) string_to_sid: Sid S-0-0 is not in a valid format. I get several a minute. I've found many posts with the same complaint, but no solution. Is upgrading (or downgrading) likely to stop it? It seems to be a purely cosmetic issue, but I'd still like to find a solution. winbindd version 3.0.33-3.7.el5 (RH5 RPM) RedHat Linux 5, release 2 fully patched -Mike _ Mike DigginsVoice: 905.525.9140 Ext. 27471 Network Analyst, Enterprise NetworksFAX:905.522.0511 University Technology Services E-Mail: mike.digg...@mcmaster.ca McMaster University, Hamilton, Ontario -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Domain Privileges on Samba 3.2
Hi all; I'm using samba 3.2 with smbldap-tools ( not ldapsam:*, but dosen't works too ), until that i work with centos 4 and debian etch's samba, I always set the same configuration and works fine, but with debian lenny ( 3.2.5 ) i getting problems with privileges, and i set one user ( "administrator" ) with all privileges this user can't open gpedit.msc ou change configs on regedit. Is that normal?? or there are something wrong here? Thanks for all help!!! JC -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Using smbtorture to test performance
Hello, Could someone give me a quick howto or link on how to do benchmarking using smbtorture. I want to compare a Windows 2003 R2 vs Samba 3.0.33, exact same hardware. Thank you, Ken -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Sun ONE and Samba
Yes we have been using Sun ONE (5.2) LDAP as our backend for years, contact me directly and ill happily send you our schema. Regards, -- Daniel Wilson BSc (Hons) Systems Manager Student and Learning Support University of Sunderland Tel: 0191 515 2695 - Original Message - From: Cameron Laird Date: Sunday, March 15, 2009 3:18 pm Subject: [Samba] Sun ONE and Samba > Has anyone had success using Sun ONE as an LDAP (authentication) > back-end to Samba (preferably 4.0, but 3.3 would be fine)? > > I've found people who've tried and given up. > > Sun itself hasn't provided answers, but I haven't given up on them; > I'll keep reformulating my questions, and asking again. > > One speculation on my part is that, if I can just figure out where in > Sun ONE the LANMAN passwords are kept, I could write my own PAM and > get somewhere. > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Sun ONE and Samba
One can use the netscape schema that comes with samba to use SunOne. I have had more success with openldap i have to say. Cameron Laird wrote: > Has anyone had success using Sun ONE as an LDAP (authentication) > back-end to Samba (preferably 4.0, but 3.3 would be fine)? > > I've found people who've tried and given up. > > Sun itself hasn't provided answers, but I haven't given up on them; > I'll keep reformulating my questions, and asking again. > > One speculation on my part is that, if I can just figure out where in > Sun ONE the LANMAN passwords are kept, I could write my own PAM and > get somewhere. > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Trustdom not working if trusted smbd > 3.2.4
I'm trying (for a while now) to upgrade to 3.3.x my samba PDC, but I've troubles with the trusting PDC. While using samba > 3.2.4 on the trusted side, the trusting side can no more enumerate users and groups from the trusted PDC. Winbind raises the error NETWORK_ACCESS_DENIED while trying to connect with NTLMMSP. I saw this behaviour with 3.2.6, 3.3.0 and now 3.3.2 on the trusted end. The trusting end work ok with 3.3.2. Can anybody help ? Thanks Franois -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Postfix and Samba best practice
Hi, We have a server which is going to be a Samba file server and a Postfix server where the users will access their mail over IMAP. We normally prefer to use Maildir storage as it seems to be recommended over mailbox - for me, for example, I am subscribed to a dozen or so lists and have tens if not hundreds of thousands of emails on the server. The combination of Postfix and Courier-imap has worked perfectly for a couple of years. So - in /etc/postfix/main.cf we set mailbox_command = /usr/bin/procmail -a "$EXTENSION" DEFAULT=$HOME/Maildir/ MAILDIR=$HOME/Maildir to put the mail under my home directory and to enable procmail to work. (I can then use procmail to sort mail into subdirectories etc). Now, if I set up Samba as default on Debian it shares out my home directory to Windows clients. If I allow the viewing of hidden files then the .Maildir directory shows up on Windows where it can be explored or even deleted. In my case it's not a problem because I won't (intentionally) delete that folder - but we're setting up a server for a client with normal users. So, we want to separate the Maildir from the directory being shared out over Samba. My question is this: Is it better to store the mail somewhere else entirely - i.e. /var/mail/users or something or a new home directory (/home/mailstorage) or something? In which case how best to set up permissions? It seems that when the mail is stored it gets the username as the owner:group. This should mean that logging in over imap should allow that user to read/manipulate mail. Or should I try to share out a different directory via Samba. I.e. Leave the mail in /home/username/.Maildir and get Samba to share out /home/username/samba for example? Obviously, I can bodge this around with permissions etc but would prefer any links to best practice so that we can implement the best way on all future installs. BTW - I've (sorry!) cross posted this to the Samba/Postfix list to see what both sides say - hope that's OK. Regards, Kevin -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Sun ONE and Samba
Has anyone had success using Sun ONE as an LDAP (authentication) back-end to Samba (preferably 4.0, but 3.3 would be fine)? I've found people who've tried and given up. Sun itself hasn't provided answers, but I haven't given up on them; I'll keep reformulating my questions, and asking again. One speculation on my part is that, if I can just figure out where in Sun ONE the LANMAN passwords are kept, I could write my own PAM and get somewhere. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Patch for NGROUPS_MAX on FreeBSD with more then 64 groups
Hi! On Sun, Mar 15, 2009 at 12:28:01PM +0100, Valerio Daelli wrote: > on FreeBSD it happens that without this patch the number of groups is limited > to 32. > Since we need a greater number of groups, we send this patch. Sorry, I don't agree with the patch. The first part (adding param.h) is probably okay, but the second part is not. It might be possible that we have a bug when extending the temp_groups array, but if that is the case this bug needs fixing. Does your platform have a getgrouplist call? Volker pgpRgdfqDXvxR.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Patch for NGROUPS_MAX on FreeBSD with more then 64 groups
Hi on FreeBSD it happens that without this patch the number of groups is limited to 32. Since we need a greater number of groups, we send this patch. Hope it is approved early. Bye diff -ruN /root/work/samba-3.2.8/source/lib/replace/system/passwd.h /usr/ports/net/samba32/work/samba-3.2.8/source/lib/replace/system/passwd.h --- /root/work/samba-3.2.8/source/lib/replace/system/passwd.h 2009-02-03 17:10:07.0 +0100 +++ /usr/ports/net/samba32/work/samba-3.2.8/source/lib/replace/system/passwd.h 2009-03-15 12:12:52.0 +0100 @@ -76,6 +76,7 @@ #endif #endif +#include #ifndef NGROUPS_MAX #define NGROUPS_MAX 32 /* Guess... */ #endif diff -ruN /root/work/samba-3.2.8/source/lib/system_smbd.c /usr/ports/net/samba32/work/samba-3.2.8/source/lib/system_smbd.c --- /root/work/samba-3.2.8/source/lib/system_smbd.c 2009-02-03 17:10:07.0 +0100 +++ /usr/ports/net/samba32/work/samba-3.2.8/source/lib/system_smbd.c 2009-03-15 12:14:59.0 +0100 @@ -153,7 +153,7 @@ gid_t *groups; int i; - max_grp = MIN(32, groups_max()); + max_grp = NGROUPS_MAX; temp_groups = SMB_MALLOC_ARRAY(gid_t, max_grp); if (! temp_groups) { return False; -- [- Il Tuo 5 per Mille a favore della Ricerca dell'IFOM! L'IFOM Fondazione Istituto FIRC di Oncologia Molecolare e uno degli enti a cui e possibile destinare il Tuo 5 per mille, apponendo la Tua firma e inserendo il codice fiscale dell'IFOM (97358780159) nella casella riservata al Finanziamento della Ricerca Sanitaria che si trova sui modelli Unico, 730 e CUD. - NON COSTA NULLA E NON COMPORTA ALCUN AUMENTO DELLE IMPOSTE DA VERSARE - NON E UN'ALTERNATIVA ALL'8 PER MILLE - E' UN GESTO CONCRETO E DI GRANDE VALORE Per saperne di piu vai al sito dell'IFOM www.ifom-firc.it Segnala ad un amico questa opportunit`a. -] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] bad performance Vista <-> Samba over gbit
On Sun, Mar 15, 2009 at 10:37:57AM +0100, Neo [GC] wrote: > Both directions. > I've made another little tests. I've again copied the same test-file to > the samba-server (still 7MB/s) and my MacBook (which runs the > Apple-provided version of Samba) (still over 20MB/s with 40MB/s peak) > and vice versa. > Then I copied the same file to and from the samba-server, but with ftp > (proftpd running on the fileserver) and guess what: 45MB/s! Can you upload a sniff of the complete network connection somewhere? Information on how to create useful sniffs can be found under http://wiki.samba.org/index.php/Capture_Packets Thanks, Volker pgpMbHLsHcQnE.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] bad performance Vista <-> Samba over gbit
Jeremy Allison schrieb: On Sat, Mar 14, 2009 at 10:21:20AM +0100, Neo [GC] wrote: Hi, I've a strange issue with the performance of file transfers between a Samba server and a Vista client. Is this reading or writing to the Samba server ? Jeremy. Both directions. I've made another little tests. I've again copied the same test-file to the samba-server (still 7MB/s) and my MacBook (which runs the Apple-provided version of Samba) (still over 20MB/s with 40MB/s peak) and vice versa. Then I copied the same file to and from the samba-server, but with ftp (proftpd running on the fileserver) and guess what: 45MB/s! Does Vista maybe under some circumtances use some kind of screwed up fallback protocol, which is so much slower than it should be? Even over 100Mbit fast ethernet I should get more than 7MB/s! I'm beginning to believe, that M$ wan't to tell me, to use their overpriced so-called "server software". :-/ Neo / Tom -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba