[Samba] Solaris 11 ZFS - acl_xattr still needed ?
Dear list, Setup is: Solaris 11 ZFS + Samba 3.5.10 What is the recommended way nowadays of performing strict permissions mapping between Samba and Windows NT 6.1 ? And a more broader question: is it desirable ? As we know ZFS has native NFSv4 ACL's and this would mean that permissions applied on Windows side should have an exact match on the ZFS side. Is it acl_xattr module still needed ? Example: [samba] path=/export/home/samba writable=yes vfs objects=acl_xattr By the way: acl_xattr is production ready now if I am not mistaken ? Dragos -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu 12.04)
On Thu, May 17, 2012 at 11:07 PM, wrote: > Hi all, > > I want to thank you for your help. I will be in class tomorrow and likely > unable to test much, if at all. I'll be able to re-engage with this problem > on Monday. My apologies for getting you all focused on my problem just when > I have to step away from it for a bit. > > > > Scott Purcell > Content Development: Linux, Virtualization, and Cloud Solutions > Dell | GSD Learning & Development > > From: Shirish Pargaonkar [shirishpargaon...@gmail.com] > Sent: Thursday, May 17, 2012 8:08 PM > To: Günter Kukkukk > Cc: Purcell, Scott; samba@lists.samba.org > Subject: Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu > 12.04) > > On Thu, May 17, 2012 at 8:02 PM, Günter Kukkukk wrote: >> Am Donnerstag, 17. Mai 2012, 20:29:25 schrieb scott_purc...@dell.com: >>> Modinfo reports: >>> >>> $ modinfo cifs >>> filename: /lib/modules/3.2.0-24-generic/kernel/fs/cifs/cifs.ko >>> version: 1.76 >>> description: VFS to access servers complying with the SNIA CIFS >>> Specification e.g. Samba and Windows license: GPL >>> author: Steve French >>> srcversion: B869252FD0961045466332F >>> depends: >>> intree: Y >>> vermagic: 3.2.0-24-generic SMP mod_unload modversions >>> parm: CIFSMaxBufSize:Network buffer size (not including header). >>> Default: 16384 Range: 8192 to 130048 (int) parm: >>> cifs_min_rcv:Network buffers in pool. Default: 4 Range: 1 to 64 (int) >>> parm: cifs_min_small:Small network buffers in pool. Default: 30 >>> Range: 2 to 256 (int) parm: cifs_max_pending:Simultaneous >>> requests to server. Default: 32767 Range: 2 to 32767. (int) parm: >>> echo_retries:Number of echo attempts before giving up and reconnecting >>> server. Default: 5. 0 means never reconnect. (ushort) parm: >>> enable_oplocks:Enable or disable oplocks (bool). Default:y/Y/1 (bool) >>> >>> >>> >>> Scott Purcell >>> Content Development: Linux, Virtualization, and Cloud Solutions >>> Dell | GSD Learning & Development >>> >>> From: Shirish Pargaonkar [shirishpargaon...@gmail.com] >>> Sent: Thursday, May 17, 2012 12:15 PM >>> To: Purcell, Scott >>> Cc: samba@lists.samba.org >>> Subject: Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu >>> 12.04) >>> >>> On Thu, May 17, 2012 at 11:38 AM, wrote: >>> > Passing "sec=ntlmssp" did not help. Nor did moving the options prior to >>> > the device and mount-point specifications. >>> > >>> > I'm not comfortable sending a full tcpdump to the list whose membership I >>> > do not know (but I can send it directly to formal members of the Samba >>> > team -- I see Gunter's name on the website. Shirish, are you on the team >>> > as well?) since it would reveal things about my network environment that >>> > our data security folks would not want revealed. But I have performed >>> > such a capture -- are there specific things I should be looking for? >>> >>> I think your session setup is failing. Basically what does negotiate >>> protocol response >>> returns (capabilities etc.). >>> Also, what is the version of cifs module? (modinfo cifs command >>> would tell that) >>> >>> > -- >> Hi Scott, >> >> just had a first look at your network trace: >> - negprot ok >> - sess_setup ok >> - treeconnect ok (for shared tree and IPC$) >> >> Then cifs is doing a QUERY_PATH_INFO (query file all info (263)) >> request on the shared tree (path = ""), which is failing with >> STATUS_ACCESS_DENIED. >> >> In a former post you used: >> >> $ sudo smbclient //pc.com/D**NAS2 -A /etc/.smb_creds.txt >> Domain=[A*S] OS=[EMC-SNAS:T5.6.50.205] Server=[NT1] >> smb: \> ls training/ >> NT_STATUS_ACCESS_DENIED listing \training\ >> smb: \> cd training >> smb: \training\> ls >> . DA 0 Tue Jan 10 13:17:11 2012 >> .. DA 0 Thu Sep 1 11:54:48 2011 >> Enterprise DA 0 Fri Oct 21 07:03:08 2011 >> enterprise_services_offering DA 0 Mon Jun 13 16:31:21 2011 >> Flash_Beta DA 0 Wed Apr 14 13:46:40 2010 >> Functions DA 0 Sat Feb 27 09:47:17 2010 >> GCSS DA 0 Wed Apr 14 13:46:49 2010 >> >> After connect you do a "ls training/" and get access denied, but then you >> cd into that subdir and "ls" is working. >> Do you _always_ see this behavior? >> >> When you use "ls" directly after connect, do you get some error? >> >> Cheers, Günter >> -- >> To unsubscribe from this list go to the following URL and read the >> instructions: https://lists.samba.org/mailman/options/samba > > yes, I do not understand tree connect succeeding but query path info > failing on the very same share path. > The version of cifs module is 1.76 which is fairly recent. >
Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu 12.04)
Hi all, I want to thank you for your help. I will be in class tomorrow and likely unable to test much, if at all. I'll be able to re-engage with this problem on Monday. My apologies for getting you all focused on my problem just when I have to step away from it for a bit. Scott Purcell Content Development: Linux, Virtualization, and Cloud Solutions Dell | GSD Learning & Development From: Shirish Pargaonkar [shirishpargaon...@gmail.com] Sent: Thursday, May 17, 2012 8:08 PM To: Günter Kukkukk Cc: Purcell, Scott; samba@lists.samba.org Subject: Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu 12.04) On Thu, May 17, 2012 at 8:02 PM, Günter Kukkukk wrote: > Am Donnerstag, 17. Mai 2012, 20:29:25 schrieb scott_purc...@dell.com: >> Modinfo reports: >> >> $ modinfo cifs >> filename: /lib/modules/3.2.0-24-generic/kernel/fs/cifs/cifs.ko >> version:1.76 >> description:VFS to access servers complying with the SNIA CIFS >> Specification e.g. Samba and Windows license:GPL >> author: Steve French >> srcversion: B869252FD0961045466332F >> depends: >> intree: Y >> vermagic: 3.2.0-24-generic SMP mod_unload modversions >> parm: CIFSMaxBufSize:Network buffer size (not including header). >> Default: 16384 Range: 8192 to 130048 (int) parm: >> cifs_min_rcv:Network buffers in pool. Default: 4 Range: 1 to 64 (int) >> parm: cifs_min_small:Small network buffers in pool. Default: 30 >> Range: 2 to 256 (int) parm: cifs_max_pending:Simultaneous >> requests to server. Default: 32767 Range: 2 to 32767. (int) parm: >> echo_retries:Number of echo attempts before giving up and reconnecting >> server. Default: 5. 0 means never reconnect. (ushort) parm: >> enable_oplocks:Enable or disable oplocks (bool). Default:y/Y/1 (bool) >> >> >> >> Scott Purcell >> Content Development: Linux, Virtualization, and Cloud Solutions >> Dell | GSD Learning & Development >> >> From: Shirish Pargaonkar [shirishpargaon...@gmail.com] >> Sent: Thursday, May 17, 2012 12:15 PM >> To: Purcell, Scott >> Cc: samba@lists.samba.org >> Subject: Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu >> 12.04) >> >> On Thu, May 17, 2012 at 11:38 AM, wrote: >> > Passing "sec=ntlmssp" did not help. Nor did moving the options prior to >> > the device and mount-point specifications. >> > >> > I'm not comfortable sending a full tcpdump to the list whose membership I >> > do not know (but I can send it directly to formal members of the Samba >> > team -- I see Gunter's name on the website. Shirish, are you on the team >> > as well?) since it would reveal things about my network environment that >> > our data security folks would not want revealed. But I have performed >> > such a capture -- are there specific things I should be looking for? >> >> I think your session setup is failing. Basically what does negotiate >> protocol response >> returns (capabilities etc.). >> Also, what is the version of cifs module? (modinfo cifs command >> would tell that) >> >> > -- > Hi Scott, > > just had a first look at your network trace: > - negprot ok > - sess_setup ok > - treeconnect ok (for shared tree and IPC$) > > Then cifs is doing a QUERY_PATH_INFO (query file all info (263)) > request on the shared tree (path = ""), which is failing with > STATUS_ACCESS_DENIED. > > In a former post you used: > > $ sudo smbclient //pc.com/D**NAS2 -A /etc/.smb_creds.txt > Domain=[A*S] OS=[EMC-SNAS:T5.6.50.205] Server=[NT1] > smb: \> ls training/ > NT_STATUS_ACCESS_DENIED listing \training\ > smb: \> cd training > smb: \training\> ls > . DA0 Tue Jan 10 13:17:11 2012 > .. DA0 Thu Sep 1 11:54:48 2011 > Enterprise DA0 Fri Oct 21 07:03:08 2011 > enterprise_services_offering DA0 Mon Jun 13 16:31:21 2011 > Flash_Beta DA0 Wed Apr 14 13:46:40 2010 > Functions DA0 Sat Feb 27 09:47:17 2010 > GCSS DA0 Wed Apr 14 13:46:49 2010 > > After connect you do a "ls training/" and get access denied, but then you > cd into that subdir and "ls" is working. > Do you _always_ see this behavior? > > When you use "ls" directly after connect, do you get some error? > > Cheers, Günter > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba yes, I do not understand tree connect succeeding but query path info failing on the very same share path. The version of cifs module is 1.76 which is fairly recent. Regards, Shirish -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu 12.04)
On Thu, May 17, 2012 at 8:02 PM, Günter Kukkukk wrote: > Am Donnerstag, 17. Mai 2012, 20:29:25 schrieb scott_purc...@dell.com: >> Modinfo reports: >> >> $ modinfo cifs >> filename: /lib/modules/3.2.0-24-generic/kernel/fs/cifs/cifs.ko >> version: 1.76 >> description: VFS to access servers complying with the SNIA CIFS >> Specification e.g. Samba and Windows license: GPL >> author: Steve French >> srcversion: B869252FD0961045466332F >> depends: >> intree: Y >> vermagic: 3.2.0-24-generic SMP mod_unload modversions >> parm: CIFSMaxBufSize:Network buffer size (not including header). >> Default: 16384 Range: 8192 to 130048 (int) parm: >> cifs_min_rcv:Network buffers in pool. Default: 4 Range: 1 to 64 (int) >> parm: cifs_min_small:Small network buffers in pool. Default: 30 >> Range: 2 to 256 (int) parm: cifs_max_pending:Simultaneous >> requests to server. Default: 32767 Range: 2 to 32767. (int) parm: >> echo_retries:Number of echo attempts before giving up and reconnecting >> server. Default: 5. 0 means never reconnect. (ushort) parm: >> enable_oplocks:Enable or disable oplocks (bool). Default:y/Y/1 (bool) >> >> >> >> Scott Purcell >> Content Development: Linux, Virtualization, and Cloud Solutions >> Dell | GSD Learning & Development >> >> From: Shirish Pargaonkar [shirishpargaon...@gmail.com] >> Sent: Thursday, May 17, 2012 12:15 PM >> To: Purcell, Scott >> Cc: samba@lists.samba.org >> Subject: Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu >> 12.04) >> >> On Thu, May 17, 2012 at 11:38 AM, wrote: >> > Passing "sec=ntlmssp" did not help. Nor did moving the options prior to >> > the device and mount-point specifications. >> > >> > I'm not comfortable sending a full tcpdump to the list whose membership I >> > do not know (but I can send it directly to formal members of the Samba >> > team -- I see Gunter's name on the website. Shirish, are you on the team >> > as well?) since it would reveal things about my network environment that >> > our data security folks would not want revealed. But I have performed >> > such a capture -- are there specific things I should be looking for? >> >> I think your session setup is failing. Basically what does negotiate >> protocol response >> returns (capabilities etc.). >> Also, what is the version of cifs module? (modinfo cifs command >> would tell that) >> >> > -- > Hi Scott, > > just had a first look at your network trace: > - negprot ok > - sess_setup ok > - treeconnect ok (for shared tree and IPC$) > > Then cifs is doing a QUERY_PATH_INFO (query file all info (263)) > request on the shared tree (path = ""), which is failing with > STATUS_ACCESS_DENIED. > > In a former post you used: > > $ sudo smbclient //pc.com/D**NAS2 -A /etc/.smb_creds.txt > Domain=[A*S] OS=[EMC-SNAS:T5.6.50.205] Server=[NT1] > smb: \> ls training/ > NT_STATUS_ACCESS_DENIED listing \training\ > smb: \> cd training > smb: \training\> ls > . DA 0 Tue Jan 10 13:17:11 2012 > .. DA 0 Thu Sep 1 11:54:48 2011 > Enterprise DA 0 Fri Oct 21 07:03:08 2011 > enterprise_services_offering DA 0 Mon Jun 13 16:31:21 2011 > Flash_Beta DA 0 Wed Apr 14 13:46:40 2010 > Functions DA 0 Sat Feb 27 09:47:17 2010 > GCSS DA 0 Wed Apr 14 13:46:49 2010 > > After connect you do a "ls training/" and get access denied, but then you > cd into that subdir and "ls" is working. > Do you _always_ see this behavior? > > When you use "ls" directly after connect, do you get some error? > > Cheers, Günter > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba yes, I do not understand tree connect succeeding but query path info failing on the very same share path. The version of cifs module is 1.76 which is fairly recent. Regards, Shirish -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu 12.04)
Am Donnerstag, 17. Mai 2012, 20:29:25 schrieb scott_purc...@dell.com: > Modinfo reports: > > $ modinfo cifs > filename: /lib/modules/3.2.0-24-generic/kernel/fs/cifs/cifs.ko > version:1.76 > description:VFS to access servers complying with the SNIA CIFS > Specification e.g. Samba and Windows license:GPL > author: Steve French > srcversion: B869252FD0961045466332F > depends: > intree: Y > vermagic: 3.2.0-24-generic SMP mod_unload modversions > parm: CIFSMaxBufSize:Network buffer size (not including header). > Default: 16384 Range: 8192 to 130048 (int) parm: > cifs_min_rcv:Network buffers in pool. Default: 4 Range: 1 to 64 (int) > parm: cifs_min_small:Small network buffers in pool. Default: 30 > Range: 2 to 256 (int) parm: cifs_max_pending:Simultaneous > requests to server. Default: 32767 Range: 2 to 32767. (int) parm: > echo_retries:Number of echo attempts before giving up and reconnecting > server. Default: 5. 0 means never reconnect. (ushort) parm: > enable_oplocks:Enable or disable oplocks (bool). Default:y/Y/1 (bool) > > > > Scott Purcell > Content Development: Linux, Virtualization, and Cloud Solutions > Dell | GSD Learning & Development > > From: Shirish Pargaonkar [shirishpargaon...@gmail.com] > Sent: Thursday, May 17, 2012 12:15 PM > To: Purcell, Scott > Cc: samba@lists.samba.org > Subject: Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu > 12.04) > > On Thu, May 17, 2012 at 11:38 AM, wrote: > > Passing "sec=ntlmssp" did not help. Nor did moving the options prior to > > the device and mount-point specifications. > > > > I'm not comfortable sending a full tcpdump to the list whose membership I > > do not know (but I can send it directly to formal members of the Samba > > team -- I see Gunter's name on the website. Shirish, are you on the team > > as well?) since it would reveal things about my network environment that > > our data security folks would not want revealed. But I have performed > > such a capture -- are there specific things I should be looking for? > > I think your session setup is failing. Basically what does negotiate > protocol response > returns (capabilities etc.). > Also, what is the version of cifs module? (modinfo cifs command > would tell that) > > > -- Hi Scott, just had a first look at your network trace: - negprot ok - sess_setup ok - treeconnect ok (for shared tree and IPC$) Then cifs is doing a QUERY_PATH_INFO (query file all info (263)) request on the shared tree (path = ""), which is failing with STATUS_ACCESS_DENIED. In a former post you used: $ sudo smbclient //pc.com/D**NAS2 -A /etc/.smb_creds.txt Domain=[A*S] OS=[EMC-SNAS:T5.6.50.205] Server=[NT1] smb: \> ls training/ NT_STATUS_ACCESS_DENIED listing \training\ smb: \> cd training smb: \training\> ls . DA0 Tue Jan 10 13:17:11 2012 .. DA0 Thu Sep 1 11:54:48 2011 Enterprise DA0 Fri Oct 21 07:03:08 2011 enterprise_services_offering DA0 Mon Jun 13 16:31:21 2011 Flash_Beta DA0 Wed Apr 14 13:46:40 2010 Functions DA0 Sat Feb 27 09:47:17 2010 GCSS DA0 Wed Apr 14 13:46:49 2010 After connect you do a "ls training/" and get access denied, but then you cd into that subdir and "ls" is working. Do you _always_ see this behavior? When you use "ls" directly after connect, do you get some error? Cheers, Günter -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba compilation issue
On 05/17/12 18:18, Gaiseric Vandal wrote: > On 05/17/12 11:15, prabu.muru...@emc.com wrote: >> >> Hi, >> >> As a security concern we are upgrading samba to 3.4.17. >> >> I tried all possible option to compile samba 3.4.17 on Solaris >> 10_U10. But it is not going through. >> >> >> >> User requirement is to compile samba 3.4.17 to support their >> application. 3.4.17 is working on Solaris 9 and Solaris 10_U5. But >> not on Solaris 10_U10. >> >> ./configure and make gives error related to talloc. I have set the >> PKG_CONFIG_PATH. Still the error is same. >> >> >> >> I tried the solution provided by you on URL >> http://lists.samba.org/archive/samba/2010-June/156711.html >> >> Can you help me with this issue. >> >> >> >> bash-3.2# pwd >> >> /usr/local/samba-3.4.17/source3 >> >> bash-3.2# more config.err >> >> Package talloc was not found in the pkg-config search path. >> >> Perhaps you should add the directory containing `talloc.pc' >> >> to the PKG_CONFIG_PATH environment variable >> >> No package 'talloc' found >> >> >> >> bash-3.2# echo $LD_LIBRARY_PATH >> >> /usr/local/samba-extras/lib/ >> >> bash-3.2# echo $PKG_CONFIG_PATH >> >> /usr/local/samba-extras/lib/pkgconfig/ >> >> >> >> bash-3.2# ls -l /usr/local/samba-extras/lib/pkgconfig/ >> >> total 6 >> >> -rw-r--r-- 1 root root 334 May 16 19:13 pytalloc-util.pc >> >> -rw-r--r-- 1 root root 324 May 16 19:13 talloc.pc >> >> -rw-r--r-- 1 root root 277 May 16 19:17 tdb.pc >> >> >> >> bash-3.2# ls -l /usr/local/samba-extras/lib/ >> >> total 188 >> >> lrwxrwxrwx 1 root root 25 May 16 19:14 >> libpytalloc-util.so -> libpytalloc-util.so.2.0.7 >> >> lrwxrwxrwx 1 root root 25 May 16 19:14 >> libpytalloc-util.so.2 -> libpytalloc-util.so.2.0.7 >> >> -rw-r--r-- 1 root root9412 May 16 19:14 >> libpytalloc-util.so.2.0.7 >> >> lrwxrwxrwx 1 root root 18 May 16 19:14 libtalloc.so -> >> libtalloc.so.2.0.7 >> >> lrwxrwxrwx 1 root root 18 May 16 19:14 libtalloc.so.2 >> -> libtalloc.so.2.0.7 >> >> -rw-r--r-- 1 root root 79556 May 16 19:14 libtalloc.so.2.0.7 >> >> drwxr-xr-x 2 root root 512 May 16 19:19 pkgconfig >> >> drwxr-xr-x 3 root root 512 May 16 19:14 python2.6 >> >> >> >> Thanks, >> >> Prabu >> > > I see on http://www.samba.org/ftp/talloc/ that there is both talloc > 1.3.x and talloc 2.0.x.I am looking through some of my old builds > and my old build notes. With samba I seem to have compiled talloc > 2.0.x separately (I have the pkgconfig files.) I think samba 3.4.x > I have just compiled with out talloc. > > > Can you cat talloc.pc- make sure the config file shows the correct path. > > > I wonder what the significant difference is between your two solaris > 10 machines. Which gcc are you using. Do either of them have the > sunfreeware versions of samba? Or the sun bundled versions of > samba. Maybe one machine already has libtalloc installed.What > does "pkginfo | grep -i samba" show? I think samba 3.0x. binaries > from Sun/Oracle may have been in /usr/sfw/bin not /usr/bin. > > What is the current version of samba you are running. Did you compile > that or is if from a package? Is the current version in the > PKG_CONFIG_PATH or LD_LIBRARY_PATH when compiling the new one? > > > > PS The samba 3.4.17 source code includes talloc. But it might be 1.0.x Maybe try downloading and compiling 1.0.x instead. And I would try building it into the same directory that you are building the rest of samba. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba compilation issue
On 05/17/12 11:15, prabu.muru...@emc.com wrote: > > Hi, > > As a security concern we are upgrading samba to 3.4.17. > > I tried all possible option to compile samba 3.4.17 on Solaris 10_U10. > But it is not going through. > > > > User requirement is to compile samba 3.4.17 to support their > application. 3.4.17 is working on Solaris 9 and Solaris 10_U5. But not > on Solaris 10_U10. > > ./configure and make gives error related to talloc. I have set the > PKG_CONFIG_PATH. Still the error is same. > > > > I tried the solution provided by you on URL > http://lists.samba.org/archive/samba/2010-June/156711.html > > Can you help me with this issue. > > > > bash-3.2# pwd > > /usr/local/samba-3.4.17/source3 > > bash-3.2# more config.err > > Package talloc was not found in the pkg-config search path. > > Perhaps you should add the directory containing `talloc.pc' > > to the PKG_CONFIG_PATH environment variable > > No package 'talloc' found > > > > bash-3.2# echo $LD_LIBRARY_PATH > > /usr/local/samba-extras/lib/ > > bash-3.2# echo $PKG_CONFIG_PATH > > /usr/local/samba-extras/lib/pkgconfig/ > > > > bash-3.2# ls -l /usr/local/samba-extras/lib/pkgconfig/ > > total 6 > > -rw-r--r-- 1 root root 334 May 16 19:13 pytalloc-util.pc > > -rw-r--r-- 1 root root 324 May 16 19:13 talloc.pc > > -rw-r--r-- 1 root root 277 May 16 19:17 tdb.pc > > > > bash-3.2# ls -l /usr/local/samba-extras/lib/ > > total 188 > > lrwxrwxrwx 1 root root 25 May 16 19:14 > libpytalloc-util.so -> libpytalloc-util.so.2.0.7 > > lrwxrwxrwx 1 root root 25 May 16 19:14 > libpytalloc-util.so.2 -> libpytalloc-util.so.2.0.7 > > -rw-r--r-- 1 root root9412 May 16 19:14 > libpytalloc-util.so.2.0.7 > > lrwxrwxrwx 1 root root 18 May 16 19:14 libtalloc.so -> > libtalloc.so.2.0.7 > > lrwxrwxrwx 1 root root 18 May 16 19:14 libtalloc.so.2 > -> libtalloc.so.2.0.7 > > -rw-r--r-- 1 root root 79556 May 16 19:14 libtalloc.so.2.0.7 > > drwxr-xr-x 2 root root 512 May 16 19:19 pkgconfig > > drwxr-xr-x 3 root root 512 May 16 19:14 python2.6 > > > > Thanks, > > Prabu > I see on http://www.samba.org/ftp/talloc/ that there is both talloc 1.3.x and talloc 2.0.x.I am looking through some of my old builds and my old build notes. With samba I seem to have compiled talloc 2.0.x separately (I have the pkgconfig files.) I think samba 3.4.x I have just compiled with out talloc. Can you cat talloc.pc- make sure the config file shows the correct path. I wonder what the significant difference is between your two solaris 10 machines. Which gcc are you using. Do either of them have the sunfreeware versions of samba? Or the sun bundled versions of samba. Maybe one machine already has libtalloc installed.What does "pkginfo | grep -i samba" show? I think samba 3.0x. binaries from Sun/Oracle may have been in /usr/sfw/bin not /usr/bin. What is the current version of samba you are running. Did you compile that or is if from a package? Is the current version in the PKG_CONFIG_PATH or LD_LIBRARY_PATH when compiling the new one? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows 7 often creates new user profiles
> Indeed. > No need to guess or waste time. Pinpoint the exact file and process / > network transaction with pSexec and process monitor. > > HOWTO: > http://blogs.technet.com/b/markrussinovich/archive/2010/01/13/3305263.aspx > > On Thursday, 17 May 2012, Cain, Marc wrote: > >> >> On May 12, 2012, at 1:12 PM, steve wrote: >> >> > On 05/12/2012 09:57 PM, Jorell wrote: >> >> On 5/12/2012 8:54 AM, John Drescher wrote: >> >>> On Sat, May 12, 2012 at 11:47 AM, Christian Meier >> wrote: >> Hi, >> >> we're using Samba 3.5.6 (Debian). >> >> Windows 7 clients often create new roaming profiles for existing >> users for no identifiable reason. Windows XP isn't affected. the end. >> >> Is this a known problem? >> >> >>> >> >>> I have never ever had that happen in the 2+ years I had windows 7 >> >>> machines on my samba based domain. >> >>> >> >>> John >> >> >> >> When Windows 7 creates the new profile is it creating %USERNAME%.V2? >> >> >> > Hi >> > Yes. That's what we observe. xp creates %USERNAME% and win7 creates the >> same but with .V2 at the end. They are _extremely_ permission sensitive >> folders. win7 seems unable to load the profile from the server if the hive >> at NTUSER.DAT has been changed, e.g. even simply moved from one place to >> another. One workaround we use is to put the profile in the home folder of >> the user. Then it always seem to work. >> > HTH >> > Steve >> >> The creation of a new profile with a .V2 extension is is a Windows 7 >> feature that prevents Windows 7 from overwriting incompatible settings in >> earlier Windows profile versions. >> >> Windows user profile folders need full permissions for the user and >> ownership by user. >> >> >> >> >> -- >> To unsubscribe from this list go to the following URL and read the >> instructions: https://lists.samba.org/mailman/options/samba >> > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows 7 often creates new user profiles
On May 12, 2012, at 1:12 PM, steve wrote: > On 05/12/2012 09:57 PM, Jorell wrote: >> On 5/12/2012 8:54 AM, John Drescher wrote: >>> On Sat, May 12, 2012 at 11:47 AM, Christian Meier wrote: Hi, we're using Samba 3.5.6 (Debian). Windows 7 clients often create new roaming profiles for existing users for no identifiable reason. Windows XP isn't affected. the end. Is this a known problem? >>> >>> I have never ever had that happen in the 2+ years I had windows 7 >>> machines on my samba based domain. >>> >>> John >> >> When Windows 7 creates the new profile is it creating %USERNAME%.V2? >> > Hi > Yes. That's what we observe. xp creates %USERNAME% and win7 creates the same > but with .V2 at the end. They are _extremely_ permission sensitive folders. > win7 seems unable to load the profile from the server if the hive at > NTUSER.DAT has been changed, e.g. even simply moved from one place to > another. One workaround we use is to put the profile in the home folder of > the user. Then it always seem to work. > HTH > Steve The creation of a new profile with a .V2 extension is is a Windows 7 feature that prevents Windows 7 from overwriting incompatible settings in earlier Windows profile versions. Windows user profile folders need full permissions for the user and ownership by user. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows 7 often creates new user profiles
On May 14, 2012, at 5:54 AM, Donny Brooks wrote: > On Saturday, May 12, 2012 04:48 PM CDT, Christian Meier > wrote: > > We too have seen this behavior but only on one of our pc's. It is not the > server side that gets the rename as someone else mentioned but rather on the > PC side. If you look in C:\Users\ you will see: > > username > username.DOMAIN > username.DOMAIN.000 > username.DOMAIN.001 > username.DOMAIN.002 > etc > > The profile seems to be pulling/writing to the server just fine. We have > tried removing all the entries in the registry for all users on the machine > except the local administrator one, removing/rejoining the pc to the domain, > and double checking permissions all to no avail. It will do "right" for a few > weeks and then it will start doing the multiple profiles again. To this date > we have not found a way to fix the issue. These local profiles are the result of the previous profile not fully unloading at logout. It is a Windows problem, not a Samba problem. There are many causes for this behavior. In Windows 7 the typical reason is a service or process has locked a resource in the profile and is not releasing it at logoff. Try looking in the profile to see what files/folders may be being left on the drive. You can also try logging in as local administrator, disabling all services and startup processes that are non-standard and then enabling them one at a time to see if you can isolate the problem. We had this issue and turned out to be the Altiris DAgent. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu 12.04)
Modinfo reports: $ modinfo cifs filename: /lib/modules/3.2.0-24-generic/kernel/fs/cifs/cifs.ko version:1.76 description:VFS to access servers complying with the SNIA CIFS Specification e.g. Samba and Windows license:GPL author: Steve French srcversion: B869252FD0961045466332F depends: intree: Y vermagic: 3.2.0-24-generic SMP mod_unload modversions parm: CIFSMaxBufSize:Network buffer size (not including header). Default: 16384 Range: 8192 to 130048 (int) parm: cifs_min_rcv:Network buffers in pool. Default: 4 Range: 1 to 64 (int) parm: cifs_min_small:Small network buffers in pool. Default: 30 Range: 2 to 256 (int) parm: cifs_max_pending:Simultaneous requests to server. Default: 32767 Range: 2 to 32767. (int) parm: echo_retries:Number of echo attempts before giving up and reconnecting server. Default: 5. 0 means never reconnect. (ushort) parm: enable_oplocks:Enable or disable oplocks (bool). Default:y/Y/1 (bool) Scott Purcell Content Development: Linux, Virtualization, and Cloud Solutions Dell | GSD Learning & Development From: Shirish Pargaonkar [shirishpargaon...@gmail.com] Sent: Thursday, May 17, 2012 12:15 PM To: Purcell, Scott Cc: samba@lists.samba.org Subject: Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu 12.04) On Thu, May 17, 2012 at 11:38 AM, wrote: > > Passing "sec=ntlmssp" did not help. Nor did moving the options prior to the > device and mount-point specifications. > > I'm not comfortable sending a full tcpdump to the list whose membership I do > not know (but I can send it directly to formal members of the Samba team -- I > see Gunter's name on the website. Shirish, are you on the team as well?) > since it would reveal things about my network environment that our data > security folks would not want revealed. But I have performed such a capture > -- are there specific things I should be looking for? I think your session setup is failing. Basically what does negotiate protocol response returns (capabilities etc.). Also, what is the version of cifs module? (modinfo cifs command would tell that) > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu 12.04)
On Thu, May 17, 2012 at 11:38 AM, wrote: > > Passing "sec=ntlmssp" did not help. Nor did moving the options prior to the > device and mount-point specifications. > > I'm not comfortable sending a full tcpdump to the list whose membership I do > not know (but I can send it directly to formal members of the Samba team -- I > see Gunter's name on the website. Shirish, are you on the team as well?) > since it would reveal things about my network environment that our data > security folks would not want revealed. But I have performed such a capture > -- are there specific things I should be looking for? I think your session setup is failing. Basically what does negotiate protocol response returns (capabilities etc.). Also, what is the version of cifs module? (modinfo cifs command would tell that) > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu 12.04)
Passing "sec=ntlmssp" did not help. Nor did moving the options prior to the device and mount-point specifications. I'm not comfortable sending a full tcpdump to the list whose membership I do not know (but I can send it directly to formal members of the Samba team -- I see Gunter's name on the website. Shirish, are you on the team as well?) since it would reveal things about my network environment that our data security folks would not want revealed. But I have performed such a capture -- are there specific things I should be looking for? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Trouble with mount.cifs while smbclient works (Ubuntu 12.04)
Hi Helmut On 17 May 2012 06:16, Helmut Hullen wrote: > Hallo, Scott_Purcell, > > Du meintest am 16.05.12: > >> mount.cifs fails (with "mount error(13): Permission denied"): > > >> sudo mount.cifs //server/share /mnt/ -o >> credentials=/etc/.smb_creds.txt > > > Just try > > sudo mount.cifs -o ... //server/share ... > > "mount.cifs" needs the options early. I'm not sure that's true. The manpage says this: SYNOPSIS mount.cifs {service} {mount-point} [-o options] -- Michael Wood -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] mount.cifs Is it possible to have a file owned by the user who creates the file?
On 05/17/2012 02:34 AM, Jeff Layton wrote: On Wed, 16 May 2012 17:30:23 +0200 steve wrote: On 05/16/2012 02:56 PM, steve wrote: Hi e.g. mount.cifs //192.168.1.6/reports /mnt -o rw,setuids,nodev,user=steve2 Any file created in the share is always owned by steve2 (or the person who mounted the share). According to man cifs(8), the setuids overrides this but doesn't seem to work for us. We'd like it to be the same behavior as nfs if that's possible. Version 4.0.0alpha21-GIT-46a41d0 with s3fs Cheers, Steve CORRECTION: It _looks_ as though it's owned by the person specified as user _when in the share_ but the actual file (the unmounted file) is always owned by root. Steve Sadly, permissions enforcement and handling in cifs.ko are badly broken by default. The only way to do this properly is to switch to using multiuser mounts. Have a look at the multiuser option in mount.cifs(8) and cifscreds(1). Cheers, Hi Jeff Thanks for the confirmation. Strangely, I found by accident that using the .gvfs smb:// mount in Nautilus does actually create user owned files. I'm sure that there must be a catch there somewhere though: kinit Administrator mount.cifs -o rw,uid=308,sec=krb5 //server/share /somewhere produces uid 308 files no matter who accesses the share. Leaving off the uid= creates files as uid=root. Maybe the .gvfs is doing what you described on a who-ever-is-logged-in-and-access's-it basis? Cheers, Steve -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] cross-compile samba4
On Tue, 2012-05-15 at 10:40 +0100, Mike Howard wrote: > Hi All, > > Are there any good, up-to-date hints out there for cross compiling > Samba4 for Arm? > > I've looked at http://wiki.samba.org/index.php/Waf#cross-compiling but > the info is a little dated it appears. I'm looking to build for the > dreamplug and based on the info on the wiki I've installed qemu and an > arm toolchain but 'cross-execute' appears to be ignored. At least that's > what it looks like to me. > > The 'config' step fails complaining it can't find the python libraries > but I suspect the process is failing to run the created arm code. > > Of course I could be way off of base with my assumtions. Maybe I'd be > better off not using waf? Either way, any hints on cross-compiling > samba4 greatly appreciated. Mike, I've CC'ed Kai, who is our expert on Samba4 on ARM. Hopefully he can help you out. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] [samba] getting files and ACLs from a fileshare in Python
On Sat, 2012-05-12 at 13:17 +0200, Jean-Daniel wrote: > Hi, > > I am weighing Python for an application which needs to connect to a > fileshare, to index the documents and also to retrieve the ACLs. > > Is there an equivalent of the Java libjcifs in Python? Yes. in Samba master we have a python interface on our smb client library, which also reads ACLs. We use it to manipulate group policies in particular. I have seen proposals to extend this layer, if it isn't enough at the moment. It is released as part of Samba 4.0 alpha releases. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Edit security/permissions of Windows share from Linux client?
Is there a way to edit the security/permissions of a Windows share from a Linux client? The Windows share belongs to a Windows Server 2008 server. From a Windows client I can go to the "Security" tab of the "Properties" dialog and edit the permissions. I want to do effectively the same thing, but from my Linux client Is there any way? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows 7 often creates new user profiles
On Sun, 13 May 2012 09:33:02 -0700 Jorell wrote: > Do you have ACL enabled on the partition? No, there aren't ACLs enabled. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba