[Samba] issue with tesparam
OS: Debian squeeze Samba: 3.5.6 # testparm --section-name=global -s 2>&1|grep ALIX returns nothing # grep ALIX /etc/samba/smb.conf netbios name = ALIX works -- Regards Harry Jede -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba users profiles directory failing to mount in windows client
On 23:55:42 wrote greep elem: > I am having some issues with Samba with roaming profiles running on > Ubuntu server. When a user logs in they get prompted with an error: > > windows error-- > Windows cannot locate the server copy of your roaming profile and is > attempting to log you > on with your local profile. Changes to the profile will not be copied > to the server when > you logoff. Possible causes of this error include network problems or > insufficient security > rights. If this problem persists, contact your network administrator. > > DETAIL - The network path was not found. > windows error-- > > While trying to figure this out I believe I have found the problem > but am unsure how to fix it. It would appear that for the "logon > path = \\%N\Profiles\%U" entry in smb.conf that the %N (or even %L) > does not get translated to the netbios name of the server. > > doing the following command shows the %N still untranslated while the > %U is correctly updated to the user name > > # pdbedit -Lv testuser | grep Path > Profile Path: \\%N\profiles\testuser > > If I manually hard code the %N to the servers name instead of using > %N or %L the roaming profile works perfectly. > > > Can anyone point me in the right direction so as to resolve this > issue? Use "netbios name" instead of "netbios aliases" -- Regards Harry Jede -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] wbinfo command generate a winbindd core dump
OS Debian squeeze # wbinfo -V Version 3.5.6 ute@alix:~$ wbinfo --getdcname=KRONPRINZ Could not get dc name for KRONPRINZ As root and as unprivilegd user, this command results in a winbind core dump. [2011/10/04 23:40:18.022674, 0] lib/fault.c:46(fault_report) === [2011/10/04 23:40:18.030995, 0] lib/fault.c:47(fault_report) INTERNAL ERROR: Signal 11 in pid 20226 (3.5.6) Please read the Trouble-Shooting section of the Samba3-HOWTO [2011/10/04 23:40:18.031215, 0] lib/fault.c:49(fault_report) From: http://www.samba.org/samba/docs/Samba3-HOWTO.pdf [2011/10/04 23:40:18.031412, 0] lib/fault.c:50(fault_report) === [2011/10/04 23:40:18.031550, 0] lib/util.c:1465(smb_panic) PANIC (pid 20226): internal error [2011/10/04 23:40:18.063944, 0] lib/util.c:1569(log_stack_trace) BACKTRACE: 17 stack frames: #0 /usr/sbin/winbindd(log_stack_trace+0x1a) [0x7fc86ae39b0a] #1 /usr/sbin/winbindd(smb_panic+0x1f) [0x7fc86ae39bcf] #2 /usr/sbin/winbindd(+0x1a374d) [0x7fc86ae2974d] #3 /lib/libc.so.6(+0x321e0) [0x7fc86893d1e0] #4 /usr/sbin/winbindd(winbindd_getdcname_recv+0xc4) [0x7fc86adb73c4] #5 /usr/sbin/winbindd(+0xe1a7d) [0x7fc86ad67a7d] #6 /usr/sbin/winbindd(+0x12aa96) [0x7fc86adb0a96] #7 /usr/sbin/winbindd(+0x10c757) [0x7fc86ad92757] #8 /usr/sbin/winbindd(+0x10c07d) [0x7fc86ad9207d] #9 /usr/sbin/winbindd(+0x13459d) [0x7fc86adba59d] #10 /usr/sbin/winbindd(+0x134d4b) [0x7fc86adbad4b] #11 /usr/sbin/winbindd(run_events+0x1b2) [0x7fc86ae49342] #12 /usr/sbin/winbindd(+0x1c3601) [0x7fc86ae49601] #13 /usr/sbin/winbindd(_tevent_loop_once+0x90) [0x7fc86ae499e0] #14 /usr/sbin/winbindd(main+0x933) [0x7fc86ad68fa3] #15 /lib/libc.so.6(__libc_start_main+0xfd) [0x7fc868929c4d] #16 /usr/sbin/winbindd(+0xe0a79) [0x7fc86ad66a79] [2011/10/04 23:40:18.070826, 0] lib/fault.c:326(dump_core) dumping core in /var/log/samba/cores/winbindd -- Regards Harry Jede -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] security of ntlmauth / winbindd_privileged dir
I have a working setup with samba & squid on one machine. However it seems that ntlm_auth is not doing what I expected. As an unprivilegd user I am able to test succesfull password: ute@alix:~$ ntlm_auth -V Version 3.5.6 ute@alix:~$ ntlm_auth --username=hans --password=keins NT_STATUS_OK: Success (0x0) Surely I know this password. Now the same with diagnostics on: ute@alix:~$ ntlm_auth --diagnostics --username=hans --password=keins winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) [2011/10/01 14:56:15.107135, 1] utils/ntlm_auth_diagnostics.c:601(diagnose_ntlm_auth) Test LM failed! winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) [2011/10/01 14:56:15.108233, 1] utils/ntlm_auth_diagnostics.c:601(diagnose_ntlm_auth) Test LM and NTLM failed! winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) [2011/10/01 14:56:15.108713, 1] utils/ntlm_auth_diagnostics.c:601(diagnose_ntlm_auth) Test NTLM failed! winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) [2011/10/01 14:56:15.108951, 1] utils/ntlm_auth_diagnostics.c:601(diagnose_ntlm_auth) Test NTLM in LM failed! winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) [2011/10/01 14:56:15.109218, 1] utils/ntlm_auth_diagnostics.c:601(diagnose_ntlm_auth) Test NTLM in both failed! winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) [2011/10/01 14:56:15.109478, 1] utils/ntlm_auth_diagnostics.c:601(diagnose_ntlm_auth) Test NTLMv2 failed! winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) [2011/10/01 14:56:15.109611, 1] utils/ntlm_auth_diagnostics.c:601(diagnose_ntlm_auth) Test NTLMv2 and LMv2 failed! winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) [2011/10/01 14:56:15.109742, 1] utils/ntlm_auth_diagnostics.c:601(diagnose_ntlm_auth) Test LMv2 failed! winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) [2011/10/01 14:56:15.109871, 1] utils/ntlm_auth_diagnostics.c:601(diagnose_ntlm_auth) Test NTLMv2 and LMv2, LMv2 broken failed! winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) [2011/10/01 14:56:15.110300, 1] utils/ntlm_auth_diagnostics.c:601(diagnose_ntlm_auth) Test NTLM and LM, LM broken failed! winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) [2011/10/01 14:56:15.110751, 1] utils/ntlm_auth_diagnostics.c:601(diagnose_ntlm_auth) Test Plaintext failed! winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) [2011/10/01 14:56:15.110874, 1] utils/ntlm_auth_diagnostics.c:601(diagnose_ntlm_auth) Test Plaintext LM broken failed! winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) [2011/10/01 14:56:15.92, 1] utils/ntlm_auth_diagnostics.c:601(diagnose_ntlm_auth) Test Plaintext NT only failed! winbind client not authorized to use winbindd_pam_auth_crap. Ensure permissions on /var/run/samba/winbindd_privileged are set correctly. (0xc022) [2011/10/01 14:56:15.111303, 1] utils/ntlm_auth_diagnostics.c:601(diagnose_ntlm_auth) Test Plaintext LM only failed! This time the password test failed. Here is the relevant config: # ls -la /var/run/samba/winbindd_privileged/ insgesamt 8 drwxr-x--- 2 root winbindd_priv 4096 1. Okt 14:33 . drwxr-xr-x 3 root root 4096 1. Okt 14:33 .. srwxrwxrwx 1 root root 0 1. Okt 14:33 pipe # getent group winbindd_priv winbindd_priv:x
[Samba] Samba users profiles directory failing to mount in windows client
I am having some issues with Samba with roaming profiles running on Ubuntu server. When a user logs in they get prompted with an error: windows error-- Windows cannot locate the server copy of your roaming profile and is attempting to log you on with your local profile. Changes to the profile will not be copied to the server when you logoff. Possible causes of this error include network problems or insufficient security rights. If this problem persists, contact your network administrator. DETAIL - The network path was not found. windows error-- While trying to figure this out I believe I have found the problem but am unsure how to fix it. It would appear that for the "logon path = \\%N\Profiles\%U" entry in smb.conf that the %N (or even %L) does not get translated to the netbios name of the server. doing the following command shows the %N still untranslated while the %U is correctly updated to the user name # pdbedit -Lv testuser | grep Path Profile Path: \\%N\profiles\testuser If I manually hard code the %N to the servers name instead of using %N or %L the roaming profile works perfectly. Can anyone point me in the right direction so as to resolve this issue? Server setup: Ubuntu server 11.04 Samba 3.5.8 OpenLDAP 2.4.23 Windows XP SP3 clients smb.conf below: --[ smb.conf [global] workgroup = TESTDOMAIN netbios aliases = TESTSRV obey pam restrictions = Yes passdb backend = ldapsam:ldap://localhost passwd program = /usr/sbin/smbldap-passwd -u %u passwd chat = "Changing *\nNew password*" %n\n "*Retype new password*" %n\n" passwd chat timeout = 4 log level = 3 syslog = 0 log file = /var/log/samba/log.%m max log size = 1000 add user script = /usr/sbin/smbldap-useradd -m '%u' delete user script = /usr/sbin/smbldap-userdel %u add group script = /usr/sbin/smbldap-groupadd -p '%g' delete group script = /usr/sbin/smbldap-groupdel '%g' add user to group script = /usr/sbin/smbldap-groupmod -m '%u' '%g' delete user from group script = /usr/sbin/smbldap-groupmod -x '%u' '%g' set primary group script = /usr/sbin/smbldap-usermod -g '%g' '%u' add machine script = /usr/sbin/smbldap-useradd -w '%u' logon path = \\%N\Profiles\%U logon drive = H: domain logons = Yes preferred master = Yes domain master = Yes dns proxy = No wins support = Yes ldap admin dn = cn=admin,dc=testdomain ldap group suffix = ou=Groups ldap idmap suffix = ou=Idmap ldap machine suffix = ou=Computers ldap passwd sync = yes ldap suffix = dc=testdomain ldap ssl = no ldap user suffix = ou=Users panic action = /usr/share/samba/panic-action %d [homes] comment = Home Directories valid users = %S Read only = No browseable = No [netlogon] comment = Network Logon Service path = /home/samba/netlogon admin users = root guest ok = Yes browseable = No [Profiles] comment = Roaming Profile Share path = /home/samba/profiles read only = No profile acls = Yes browseable = No --[ smb.conf -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba 4 Permission
On Tue, Oct 4, 2011 at 3:42 PM, Marcel de Reuver wrote: > 2011/10/4 Mike <1100...@gmail.com>Do it from a Windows pc with > Administration Tools installed. > See: > > http://wiki.samba.org/index.php/Samba4/HOWTO#Step_1:_Installing_Windows_Remote_Administration_Tools_onto_Windows > > Thank you, Marcel. It's quite a different world now -- configuring linux servers with gui tools, and windows tools at that. I need to go forward and try it. Best regards, Mike -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba 4 Permission
2011/10/4 Mike <1100...@gmail.com> > On Tue, Oct 4, 2011 at 2:01 AM, Daniel Müller >wrote: > > > For every share in samba4 login as administator from a windows client. > Give > > your rights according to your > > groups and users as you would for an windows ads server that’s all. > Working > > for me. > > > > Greetings > > Daniel > > > > Daniel, > Thank you for writing. > Assume I have completed a new server installation, what commands are used > in > Samba4 to create the users,groups, and various share 'masks'. > Best regards, > Mike > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba > Do it from a Windows pc with Administration Tools installed. See: http://wiki.samba.org/index.php/Samba4/HOWTO#Step_1:_Installing_Windows_Remote_Administration_Tools_onto_Windows -- BR, Marcel de Reuver -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] LDAP: Mixing local and LDAP-Users
On 10/04/2011 01:21 PM, Felipe Augusto van de Wiel wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 04-10-2011 04:16, Daniel Müller wrote: When you use LDAP?! Why do you need local users and ldap users? Just you need LDAP that’s all. I'm pretty sure different networks have differents demands. This is not "one rule fit them all". Kind regards, - -- Felipe Augusto van de Wiel Tecnologia da Informação (TI) - Complexo Pequeno Príncipe http://www.pequenoprincipe.org.br/T: +55 41 3310 1747 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBCgAGBQJOi0CdAAoJECCPPxLgxLxPRoEP/Rk3cGxiHjKSoIG4RZfWICAL HcjT1L+tjpsUswgjupVnN4xQT5tAG92BfUoQJ0Qtw9ZMSjW3JOnGsp2BHfhAehrZ 7dZ+vsKjFSNrK2HmfCIQUiIxe1RZ5Gipsp7IVtJMEtUfQYah2bMdLp78JyGDEERT ojMc97DWhRL1do2bE1MnNCVDU5o93OdZzEIAOo5jhj3yjqsGxnqnzPAy9TMvfpDD RIeCFlM6jKHvlrHfUmgQAA7b83MS7tPSAQoJTxAPVmXW98JeAuhhAfGPoowd5K+d xoHCaGwLrbhBvCJmWogos/yXPPwXs3g72Dn2tBwbWUZd6YtsZzEb1Gdv4umq/G1m UZMkafPjRPGjo45MeqOFiH/W1HuUB/FjYi5oRbPVzyYwalPexl+Jh3dgBxq0tB3B MM2gmCu+v3S+PFbB6mDa3Z2S9yiRUY2eQZQvgfwvlGb2Bssdclj5adQBu/Y9GvWi W+IeDtHxMWu7G0M0XLNg/oHWLNSOE4XkQceSu6G6T6BnkgCGM2PkXY+hP3JY4epf 2Y2J65eY08L8nnpQkDL3oSrvaEc8+YuvM174E0mq/WPenoDcdBWVta1ixXOeVcqi zq3RqPtZzulqYeTv4iWgYjN1TMToWlyHcxQmDD37RAUIRvtvlhDLSqTvKIw1DTGD 75OXG/sYRLlWSkRFSLkC =HJdF -END PGP SIGNATURE- Windows OS domain members will at least have a local Administrator account.I have two member servers and two DC's. All use LDAP for unix backends. One member server uses TBD backed for the one local user (Administrator) - though the unix account for the Administrator is actually the same as the domain Administrator. It also uses tbd for group mappings. The 2nd member server does not have any local samba accounts or groups.The samba shares are pretty open since we rely on the local unix permissions for security, and set them via unix not windows.But if I wanted to manage perms from windows clients I would probably need to define the local Administrator user, local Admins group, and local users group. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Fwd: Win 7 Pro
On 10/04/2011 01:45 PM, Harry Jede wrote: On 19:40:52 wrote sa...@printflow.eu: I added WINS server to my DHCP config and now I join domain. THX ! I did not undo settings from http://wiki.samba.org/index.php/Windows7 to check. I will try with next machine in about week. This page also noted that registry setting is not needed with patch from MS witch seems be instaled. This led me to other question, I have two PDCs on my network for two companies. If I set both WINS server in DHCP setting may I expect it will work? Does w7 checks both of them? You should have *one and only one* WINS-Server per ethernet segment. WINS use broadcasts. I thought WINS clients registered with WINS servers- which means that the WINS DB is updated with that client, and that the WIN client can then resolve client names to IP address. WINS lets you avoid issues with finding machines by broadcast. If you have a windows server as a WINS server, it can replicate/sync data with other WINS servers. I believe there is an recommended max limit for how many clients a WINS server should support- although I think it is unlikely that one ethernet segment would have so many to really need more than 1 WINS server. Conceptually, if you had two completely separate Windows or Samba domains, each with its own PDC. I could see that you could allow them each to have their own WINS server, and the WINS server's would not replicate. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] USB Drive Permissions?
More... Here is the mtab entry: noleks-ub:~> cat /etc/mtab /dev/sda1 / ext4 rw,errors=remount-ro 0 0 proc /proc proc rw 0 0 none /sys sysfs rw,noexec,nosuid,nodev 0 0 none /sys/fs/fuse/connections fusectl rw 0 0 none /sys/kernel/debug debugfs rw 0 0 none /sys/kernel/security securityfs rw 0 0 none /dev devtmpfs rw,mode=0755 0 0 none /dev/pts devpts rw,noexec,nosuid,gid=5,mode=0620 0 0 none /dev/shm tmpfs rw,nosuid,nodev 0 0 none /var/run tmpfs rw,nosuid,mode=0755 0 0 none /var/lock tmpfs rw,noexec,nosuid,nodev 0 0 none /lib/init/rw tmpfs rw,nosuid,mode=0755 0 0 binfmt_misc /proc/sys/fs/binfmt_misc binfmt_misc rw,noexec,nosuid,nodev 0 0 gvfs-fuse-daemon /home/noleks/.gvfs fuse.gvfs-fuse-daemon rw,nosuid,nodev,user=noleks 0 0 */dev/sdb1 /media/Personal1 fuseblk rw,nosuid,nodev,allow_other,blksize=4096,default_permissions 0 0* I think I'm real close here as a result of Chris' guidance. Is there a way to control what options the automounter uses when I plug in the drive? On Tue, Oct 4, 2011 at 2:31 PM, wrote: > Hi Chris > An update... > Sharing /media worked, but I still cannot access /media/Personal1, which is > actually a Western Digital portable HD. > I can see all the directories in /media. I made a test folder called > public, chmod 777, and I can edit files in there from my client. > > The Disk Utility reports that the drive is Partition Type HPFS/NTFS, Type: > NTFS. > > Not sure how to figure out what Ubuntu is using for automount... > > > On , nolek...@gmail.com wrote: > > Hi Chris: > > Thanks for the help. I will investigate the automounter documentation re: > filesystem types and permissions. > > Can you help me understand what "Force user" mode is? > > I am going to try to share /media with "User" authentication mode. > > Thanks again > > > > On , Chris Weiss cwe...@gmail.com> wrote: > > > On Tue, Oct 4, 2011 at 12:11 PM, Nicholas Oleksinski > nolek...@gmail.com> wrote: > > > > > > > I just installed Samba on my Karmic box and I am trying to share a > USB drive > > > > > > > that has been mounted to /media/Personal1. > > > > > > > 1) It is owned by noleks (me) > > > > > > > 2) Its permissions are 700, unchangeable (?) > > > > > > > > > > > > To change default permissions, you'd have to consult your automounter > > > > > > docs. As most usb sticks are fat32, they don't actually have > > > > > > permissions, so what you are seeing is a posix permission emulation > > > > > > layer in the vfat fs driver, which is controlled by mount flags. > > > > > > > > > > > > However, and a bigger problem, is that when you make a share on a > > > > > > mount point and the connect to it, smbd will tend to lock the mount > > > > > > point and you won't be able to cleanly unmount the disk without > > > > > > manually killing the smbd process that has it locked. > > > > > > > > > > > > What I have done in the past is to share out /media with the "force > > > > > > user" option so that access to the usb disks is done as my desktop > > > > > > login user. As I recall, this locks /media but not /media/Personal1 > > > > > > so that issue is resolved. The force user option is a lot easier to > > > > > > deal with than automounters. And sharing /media means all your usb > > > > > > drives will work without adding a share for each one. you also get > > > > > > cd/dvd-rom sharing. > > > > > > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] USB Drive Permissions?
Hi Chris An update... Sharing /media worked, but I still cannot access /media/Personal1, which is actually a Western Digital portable HD. I can see all the directories in /media. I made a test folder called public, chmod 777, and I can edit files in there from my client. The Disk Utility reports that the drive is Partition Type HPFS/NTFS, Type: NTFS. Not sure how to figure out what Ubuntu is using for automount... On , nolek...@gmail.com wrote: Hi Chris: Thanks for the help. I will investigate the automounter documentation re: filesystem types and permissions. Can you help me understand what "Force user" mode is? I am going to try to share /media with "User" authentication mode. Thanks again On , Chris Weiss cwe...@gmail.com> wrote: > On Tue, Oct 4, 2011 at 12:11 PM, Nicholas Oleksinski nolek...@gmail.com> wrote: > > > I just installed Samba on my Karmic box and I am trying to share a USB drive > > > that has been mounted to /media/Personal1. > > > 1) It is owned by noleks (me) > > > 2) Its permissions are 700, unchangeable (?) > > > > To change default permissions, you'd have to consult your automounter > > docs. As most usb sticks are fat32, they don't actually have > > permissions, so what you are seeing is a posix permission emulation > > layer in the vfat fs driver, which is controlled by mount flags. > > > > However, and a bigger problem, is that when you make a share on a > > mount point and the connect to it, smbd will tend to lock the mount > > point and you won't be able to cleanly unmount the disk without > > manually killing the smbd process that has it locked. > > > > What I have done in the past is to share out /media with the "force > > user" option so that access to the usb disks is done as my desktop > > login user. As I recall, this locks /media but not /media/Personal1 > > so that issue is resolved. The force user option is a lot easier to > > deal with than automounters. And sharing /media means all your usb > > drives will work without adding a share for each one. you also get > > cd/dvd-rom sharing. > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] USB Drive Permissions?
search this page for "force user" http://www.samba.org/samba/docs/man/manpages-3/smb.conf.5.html On Tue, Oct 4, 2011 at 1:15 PM, wrote: > Hi Chris: > Thanks for the help. I will investigate the automounter documentation re: > filesystem types and permissions. > Can you help me understand what "Force user" mode is? > I am going to try to share /media with "User" authentication mode. > Thanks again > > On , Chris Weiss wrote: >> On Tue, Oct 4, 2011 at 12:11 PM, Nicholas Oleksinski nolek...@gmail.com> >> wrote: >> >> > I just installed Samba on my Karmic box and I am trying to share a USB >> > drive >> >> > that has been mounted to /media/Personal1. >> >> > 1) It is owned by noleks (me) >> >> > 2) Its permissions are 700, unchangeable (?) >> >> >> >> To change default permissions, you'd have to consult your automounter >> >> docs. As most usb sticks are fat32, they don't actually have >> >> permissions, so what you are seeing is a posix permission emulation >> >> layer in the vfat fs driver, which is controlled by mount flags. >> >> >> >> However, and a bigger problem, is that when you make a share on a >> >> mount point and the connect to it, smbd will tend to lock the mount >> >> point and you won't be able to cleanly unmount the disk without >> >> manually killing the smbd process that has it locked. >> >> >> >> What I have done in the past is to share out /media with the "force >> >> user" option so that access to the usb disks is done as my desktop >> >> login user. As I recall, this locks /media but not /media/Personal1 >> >> so that issue is resolved. The force user option is a lot easier to >> >> deal with than automounters. And sharing /media means all your usb >> >> drives will work without adding a share for each one. you also get >> >> cd/dvd-rom sharing. >> >> -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] USB Drive Permissions?
Hi Chris: Thanks for the help. I will investigate the automounter documentation re: filesystem types and permissions. Can you help me understand what "Force user" mode is? I am going to try to share /media with "User" authentication mode. Thanks again On , Chris Weiss wrote: On Tue, Oct 4, 2011 at 12:11 PM, Nicholas Oleksinski nolek...@gmail.com> wrote: > I just installed Samba on my Karmic box and I am trying to share a USB drive > that has been mounted to /media/Personal1. > 1) It is owned by noleks (me) > 2) Its permissions are 700, unchangeable (?) To change default permissions, you'd have to consult your automounter docs. As most usb sticks are fat32, they don't actually have permissions, so what you are seeing is a posix permission emulation layer in the vfat fs driver, which is controlled by mount flags. However, and a bigger problem, is that when you make a share on a mount point and the connect to it, smbd will tend to lock the mount point and you won't be able to cleanly unmount the disk without manually killing the smbd process that has it locked. What I have done in the past is to share out /media with the "force user" option so that access to the usb disks is done as my desktop login user. As I recall, this locks /media but not /media/Personal1 so that issue is resolved. The force user option is a lot easier to deal with than automounters. And sharing /media means all your usb drives will work without adding a share for each one. you also get cd/dvd-rom sharing. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Fwd: Win 7 Pro
On 19:40:52 wrote sa...@printflow.eu: > I added WINS server to my DHCP config and now I join domain. THX ! I > did not undo settings from http://wiki.samba.org/index.php/Windows7 > to check. I will try with next machine in about week. This page also > noted that registry setting is not needed with patch from MS witch > seems be instaled. > > This led me to other question, I have two PDCs on my network for two > companies. If I set both WINS server in DHCP setting may I expect it > will work? Does w7 checks both of them? You should have *one and only one* WINS-Server per ethernet segment. WINS use broadcasts. -- Regards Harry Jede -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] USB Drive Permissions?
On Tue, Oct 4, 2011 at 12:11 PM, Nicholas Oleksinski wrote: > I just installed Samba on my Karmic box and I am trying to share a USB drive > that has been mounted to /media/Personal1. > 1) It is owned by noleks (me) > 2) Its permissions are 700, unchangeable (?) To change default permissions, you'd have to consult your automounter docs. As most usb sticks are fat32, they don't actually have permissions, so what you are seeing is a posix permission emulation layer in the vfat fs driver, which is controlled by mount flags. However, and a bigger problem, is that when you make a share on a mount point and the connect to it, smbd will tend to lock the mount point and you won't be able to cleanly unmount the disk without manually killing the smbd process that has it locked. What I have done in the past is to share out /media with the "force user" option so that access to the usb disks is done as my desktop login user. As I recall, this locks /media but not /media/Personal1 so that issue is resolved. The force user option is a lot easier to deal with than automounters. And sharing /media means all your usb drives will work without adding a share for each one. you also get cd/dvd-rom sharing. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] LDAP: Mixing local and LDAP-Users
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 04-10-2011 04:16, Daniel Müller wrote: > When you use LDAP?! Why do you need local users and ldap users? > Just you need LDAP that’s all. I'm pretty sure different networks have differents demands. This is not "one rule fit them all". Kind regards, - -- Felipe Augusto van de Wiel Tecnologia da Informação (TI) - Complexo Pequeno Príncipe http://www.pequenoprincipe.org.br/T: +55 41 3310 1747 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBCgAGBQJOi0CdAAoJECCPPxLgxLxPRoEP/Rk3cGxiHjKSoIG4RZfWICAL HcjT1L+tjpsUswgjupVnN4xQT5tAG92BfUoQJ0Qtw9ZMSjW3JOnGsp2BHfhAehrZ 7dZ+vsKjFSNrK2HmfCIQUiIxe1RZ5Gipsp7IVtJMEtUfQYah2bMdLp78JyGDEERT ojMc97DWhRL1do2bE1MnNCVDU5o93OdZzEIAOo5jhj3yjqsGxnqnzPAy9TMvfpDD RIeCFlM6jKHvlrHfUmgQAA7b83MS7tPSAQoJTxAPVmXW98JeAuhhAfGPoowd5K+d xoHCaGwLrbhBvCJmWogos/yXPPwXs3g72Dn2tBwbWUZd6YtsZzEb1Gdv4umq/G1m UZMkafPjRPGjo45MeqOFiH/W1HuUB/FjYi5oRbPVzyYwalPexl+Jh3dgBxq0tB3B MM2gmCu+v3S+PFbB6mDa3Z2S9yiRUY2eQZQvgfwvlGb2Bssdclj5adQBu/Y9GvWi W+IeDtHxMWu7G0M0XLNg/oHWLNSOE4XkQceSu6G6T6BnkgCGM2PkXY+hP3JY4epf 2Y2J65eY08L8nnpQkDL3oSrvaEc8+YuvM174E0mq/WPenoDcdBWVta1ixXOeVcqi zq3RqPtZzulqYeTv4iWgYjN1TMToWlyHcxQmDD37RAUIRvtvlhDLSqTvKIw1DTGD 75OXG/sYRLlWSkRFSLkC =HJdF -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] USB Drive Permissions?
Here comes a newbie question... I just installed Samba on my Karmic box and I am trying to share a USB drive that has been mounted to /media/Personal1. It's not working now even though I see it as a listed share. So I went through the 'Samba Checklist'. The tmp share worked immediately, which leads me to think that this has something to do with the ownership and permissions on the USB drive. 1) It is owned by noleks (me) 2) Its permissions are 700, unchangeable (?) Has anyone else dealt with such an issue? It's gotta be easy. I've been around Linux enough to know when I'm missing something. :) Thanks -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba 4 Permission
On Tue, Oct 4, 2011 at 2:01 AM, Daniel Müller wrote: > For every share in samba4 login as administator from a windows client. Give > your rights according to your > groups and users as you would for an windows ads server that’s all. Working > for me. > > Greetings > Daniel > Daniel, Thank you for writing. Assume I have completed a new server installation, what commands are used in Samba4 to create the users,groups, and various share 'masks'. Best regards, Mike -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] ctdb issues
Hi, it is: 1.102pre-126.el5_6.6 local-rhels5.7-x86_64-Server However before the upgrade - where I am sure the kexec-tools were not at a level higher than this, ctdb worked perfectly fine. What is there I could do? Lydia On Tue, 4 Oct 2011, L.P.H. van Belle wrote: Hai, which version is kexec-tools? should be 2.0.0-45 or higher. ( link https://bugzilla.redhat.com/show_bug.cgi?id=683769 ) Louis -Oorspronkelijk bericht- Van: lydia.h...@durham.ac.uk [mailto:samba-boun...@lists.samba.org] Namens Lydia Heck Verzonden: 2011-10-04 13:41 Aan: samba@lists.samba.org Onderwerp: [Samba] ctdb issues I have been running ctdb on our cluster for ~6 months to serve a gpfs filesystem over nfs. It has been running a treat :) ! Recently the servers were upgraded to redhat 5.7 and ctdb-1.0.112-1.el5 is part of the package list. Since the upgrade the log file is filled with messages 2011/10/04 12:35:37.933801 [ 1779]: basename: missing operand 2011/10/04 12:35:37.933850 [ 1779]: Try `basename --help' for more information. 2011/10/04 12:35:48.332844 [ 1779]: basename: missing operand 2011/10/04 12:35:48.332900 [ 1779]: Try `basename --help' for more information. I have tried to start a more recent version of ctdb but have failed to make that work with my present configuration. I would like to keep with the packaged version, as it is very much easier to maintain. Any idea what I can do to get rid of this ? Lydia -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Fwd: Win 7 Pro
> This led me to other question, I have two PDCs on my network for two > companies. If I set both WINS server in DHCP setting may I expect it will > work? Does w7 checks both of them? > That one I can not help you with. I have 1 PDC and multiple BDCs on the same network and domain for the last decade. John -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] ctdb issues
Hai, which version is kexec-tools? should be 2.0.0-45 or higher. ( link https://bugzilla.redhat.com/show_bug.cgi?id=683769 ) Louis >-Oorspronkelijk bericht- >Van: lydia.h...@durham.ac.uk >[mailto:samba-boun...@lists.samba.org] Namens Lydia Heck >Verzonden: 2011-10-04 13:41 >Aan: samba@lists.samba.org >Onderwerp: [Samba] ctdb issues > > >I have been running ctdb on our cluster for ~6 months to serve >a gpfs filesystem >over nfs. It has been running a treat :) ! > >Recently the servers were upgraded to redhat 5.7 and ctdb-1.0.112-1.el5 >is part of the package list. Since the upgrade the log file is >filled with >messages > >2011/10/04 12:35:37.933801 [ 1779]: basename: missing operand >2011/10/04 12:35:37.933850 [ 1779]: Try `basename --help' for >more information. >2011/10/04 12:35:48.332844 [ 1779]: basename: missing operand >2011/10/04 12:35:48.332900 [ 1779]: Try `basename --help' for >more information. > > > >I have tried to start a more recent version of ctdb but have >failed to make that >work with my present configuration. I would like to keep with >the packaged >version, as it is very much easier to maintain. Any idea what >I can do to get >rid of this ? > >Lydia > >-- >To unsubscribe from this list go to the following URL and read the >instructions: https://lists.samba.org/mailman/options/samba > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] ctdb issues
I have been running ctdb on our cluster for ~6 months to serve a gpfs filesystem over nfs. It has been running a treat :) ! Recently the servers were upgraded to redhat 5.7 and ctdb-1.0.112-1.el5 is part of the package list. Since the upgrade the log file is filled with messages 2011/10/04 12:35:37.933801 [ 1779]: basename: missing operand 2011/10/04 12:35:37.933850 [ 1779]: Try `basename --help' for more information. 2011/10/04 12:35:48.332844 [ 1779]: basename: missing operand 2011/10/04 12:35:48.332900 [ 1779]: Try `basename --help' for more information. I have tried to start a more recent version of ctdb but have failed to make that work with my present configuration. I would like to keep with the packaged version, as it is very much easier to maintain. Any idea what I can do to get rid of this ? Lydia -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Anyone can create empty files (v 3.5.11)
Just a follow up incase someone else runs into this problem. It turns out this was a bug in the cifs driver. I submitted a patch to fix this. http://marc.info/?l=linux-cifs&m=131715894203568&w=2 regards, dan carpenter -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Fwd: Win 7 Pro
I added WINS server to my DHCP config and now I join domain. THX ! I did not undo settings from http://wiki.samba.org/index.php/Windows7 to check. I will try with next machine in about week. This page also noted that registry setting is not needed with patch from MS witch seems be instaled. This led me to other question, I have two PDCs on my network for two companies. If I set both WINS server in DHCP setting may I expect it will work? Does w7 checks both of them? Oto On 2011-10-04 0:57, Andrew Bartlett wrote: On Mon, 2011-10-03 at 13:51 -0400, John Drescher wrote: On Mon, Oct 3, 2011 at 1:46 PM, wrote: On 2011-10-03 19:40, John Drescher wrote: Is there anything else I may try ? Make sure you have your WINS settings in your windows 7 client so that the client can find the PDC. Any hint in this ? In ipconfig I see only WINS proxy disabled. I usually set the PDC as a WINS server and add that to the windows client. Or make sure your DNS servers have the PDC records so the windows client can find the PDC. http://www.linuxquestions.org/questions/linux-networking-3/does-samba-pdc-need-dns-544436/ I'm sorry, but almost every suggestion in that forum post is wrong. If you are joining Windows 7 to Samba (3.x) domain controllers, follow our official instructions: http://wiki.samba.org/index.php/Windows7 Andrew Bartlett -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] LDAP: Mixing local and LDAP-Users
Hi, When you use LDAP?! Why do you need local users and ldap users? Just you need LDAP that’s all. --- EDV Daniel Müller Leitung EDV Tropenklinik Paul-Lechler-Krankenhaus Paul-Lechler-Str. 24 72076 Tübingen Tel.: 07071/206-463, Fax: 07071/206-499 eMail: muel...@tropenklinik.de Internet: www.tropenklinik.de --- -Ursprüngliche Nachricht- Von: samba-boun...@lists.samba.org [mailto:samba-boun...@lists.samba.org] Im Auftrag von Felipe Augusto van de Wiel Gesendet: Donnerstag, 22. September 2011 23:46 An: samba@lists.samba.org Betreff: Re: [Samba] LDAP: Mixing local and LDAP-Users -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Hi Denis, On 18-09-2011 17:18, Denis Witt wrote: > is it possible to mix local and LDAP-Users? Especially I need to > know if it's possible to use an LDAP-Group (like the group that > is mapped to Domain Administrators) together with an local user. It is, but you aren't going to do that with "standard" tools. :-) > (If I use "adduser $username $ldap-group" the group isn't found, > even if the group is shown using "getent group".) Just go to LDAP Group and use the member attribute to add your user. Depend if you are using rfc2703bis or not that may vary. Once LDAP reports the user is present in the group, the system should do the rest. :) > If this isn't possible, is there a way to map more than one > group to the rid=512 (ntgroup="Domain Admins")? That's also possible, you should use 'net groupmap' Kind regards, - -- Felipe Augusto van de Wiel Tecnologia da Informação (TI) - Complexo Pequeno Príncipe http://www.pequenoprincipe.org.br/T: +55 41 3310 1747 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iQIcBAEBCgAGBQJOe6yUAAoJECCPPxLgxLxP86UP/3fz4TVezW3+EZ0cIM4oBXtV 4Zgna0Mdx8GuREcXyU/wQYiLbd5VK7k6xF1T9rkIS4fjWlfNk7W9jWHadiMnlKOr +KIHeG43bH2YdxO784T0vNyuz1dZgpLaA9LKJeCxY/8j/JrzAIuBJNayarFtyU7D yDJ9CI5zJMM2IL9GvDLcQKeoW+61mjVCxpnMiI3Wd+PYjjwIY+YDJZAGYx8bWoKo +hpShR6VbmOqR7hjbMheaVeoHv9GPEvGLwroCAnYHsvO0oyD6ksmm9XFZQfLVt/E 1SxDu0WPCRkiuUGFLpCQrUMWOi21S8+ge5lsMSHFKjuMOslvU/6rfhrS3SkfAX3q 47nQMw/FIPqrNRRIa6kwSFTiD749r1bAjibhvI4A8p2qehsf0/MNF012Od3zNfcY v2P/OXBJfoO3mfUlSQAz4rhWHp7YdWBh+eY4Gt0fsLYwae8QjB2vBmL0FwvE6Kb7 mB1XaNr6BGoPXiTTziUi14wkqpaQt/geIxg92r0iUWH1G5WPCCxsHE0jBX2mDF8B dOr67hkWMY9/2m6ch1P4eW2psyRyVYlDxyq3RFGlcO2Q6FP0Ox/tYlVDbB4i744j gKDYeJAMKTMo2XasnI5bdiC96p9tvI4syi8Tq95RDoqKHJgUJKyaysDf+shZ4CzZ effZ/6aquAS0E91O8Pjx =9yjd -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba