[Samba] Linux with AD auth
This is kind of a side question, Have you missed anything in using MS Services for Unix over some opensource solution ? I am considering both solutions now and I need some input > > Criterium 1: > - > > extend the MsAD schema to include posix attributes. I think Ms calls > this 'Ms Services For Unix'. Doing so will add uid, gid, homedir, and > login-shell attributes. They have their own ms-hopped-up names, but > that's what they're for. > > Populate the MsAD schema w. the values you already have in your unix > system. You could do this manually, but you could also write > scripts to > do it. The script(s) would use LDAP to update MsAD. > > I did this 2 years ago. It's some work, but you only do it once, and > then you're set ever after. > NOTICE: This email contains privileged and confidential information and is intended only for the individual to whom it is addressed. If you are not the named addressee, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this transmission by mistake and delete this communication from your system. E-mail transmission cannot be guaranteed to be secured or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. AVIS: Le présent courriel contient des renseignements de nature privilégiée et confidentielle et nest destiné qu'à la personne à qui il est adressé. Si vous nêtes pas le destinataire prévu, vous êtes par les présentes avisés que toute diffusion, distribution ou reproduction de cette communication est strictement interdite. Si vous avez reçu ce courriel par erreur, veuillez en aviser immédiatement lexpéditeur et le supprimer de votre système. Notez que la transmission de courriel ne peut en aucun cas être considéré comme inviolable ou exempt derreur puisque les informations quil contient pourraient être interceptés, corrompues, perdues, détruites, arrivées en retard ou incomplètes ou contenir un virus. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] password strength
If you are using PAM in your setup, http://samba.org/samba/docs/man/Samba-HOWTO-Collection/pam.html You might want to look into passwdqc pam module which gives similar password restrictions as on windows domains. Jean-Sébastien Pilon Systems Administrator Penson Financial Services Canada Inc. % Tel.: 514.841.9724 #269 % Cell: 514.771.0365 > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On > Behalf Of Cleber P. de Souza > Sent: Thursday, November 16, 2006 10:01 AM > To: Philip Washington > Cc: Samba list > Subject: Re: [Samba] password strength > > With the 'check password script' and use the crackcheck available in > the Samba > (http://samba.org/ftp/unpacked/samba_3_0_release/examples/auth > /crackcheck/). > You may need to install the cracklib and cracklib-dicts packages too. > > > On 11/16/06, Philip Washington <[EMAIL PROTECTED]> wrote: > > I have Samba PDC with an LDAP backend. I just realized > that the users > > can reset their passwords to anything, a single character a > space. Is > > there anyway to prevent this? > > -- > > To unsubscribe from this list go to the following URL and read the > > instructions: https://lists.samba.org/mailman/listinfo/samba > > > > > -- > *** > Cleber P. de Souza > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba > NOTICE: This email contains privileged and confidential information and is intended only for the individual to whom it is addressed. If you are not the named addressee, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this transmission by mistake and delete this communication from your system. E-mail transmission cannot be guaranteed to be secured or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. AVIS: Le présent courriel contient des renseignements de nature privilégiée et confidentielle et nest destiné qu'à la personne à qui il est adressé. Si vous nêtes pas le destinataire prévu, vous êtes par les présentes avisés que toute diffusion, distribution ou reproduction de cette communication est strictement interdite. Si vous avez reçu ce courriel par erreur, veuillez en aviser immédiatement lexpéditeur et le supprimer de votre système. Notez que la transmission de courriel ne peut en aucun cas être considéré comme inviolable ou exempt derreur puisque les informations quil contient pourraient être interceptés, corrompues, perdues, détruites, arrivées en retard ou incomplètes ou contenir un virus. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] cant save to smb from apps?
I don't like the colon neither. I would just call it C > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On > Behalf Of Josh Hester > Sent: Wednesday, November 15, 2006 12:47 PM > To: John Drescher > Cc: samba > Subject: Re: [Samba] cant save to smb from apps? > > Yes, I did name the Directory C: Im not running a Domain just > a simple > network. > > On Tue, 14 Nov 2006, John Drescher wrote: > > >> > >> > >> > > >> > [C:] > >> > comment = Point Files > >> > path = /C: > >> > writeable = yes > >> > browseable = yes > >> > only guest = yes > >> > >> Josh, did you create a directory on a unix box and name it > "C:"? AFAIK, > >> windows thinks the root of the 'C' drive is 'C:\', not > 'C:'. Maybe that > >> confuses windows. The colon ':' is not a legal char in > windows file > >> names. > >> > > > > Agreed, you should also not name the share C: as I do not > believe this is a > > valid windows share name for the same reason as above. > > > > John > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba > NOTICE: This email contains privileged and confidential information and is intended only for the individual to whom it is addressed. If you are not the named addressee, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this transmission by mistake and delete this communication from your system. E-mail transmission cannot be guaranteed to be secured or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. AVIS: Le présent courriel contient des renseignements de nature privilégiée et confidentielle et nest destiné qu'à la personne à qui il est adressé. Si vous nêtes pas le destinataire prévu, vous êtes par les présentes avisés que toute diffusion, distribution ou reproduction de cette communication est strictement interdite. Si vous avez reçu ce courriel par erreur, veuillez en aviser immédiatement lexpéditeur et le supprimer de votre système. Notez que la transmission de courriel ne peut en aucun cas être considéré comme inviolable ou exempt derreur puisque les informations quil contient pourraient être interceptés, corrompues, perdues, détruites, arrivées en retard ou incomplètes ou contenir un virus. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] PAM authentication to Active Directory
Hello list, I want to authenticate (only authenticate) through active directory with PAM. I googled around and everything I found, wheter it is forum posts or howtos, it always talks about winbind and joining the linux machine to the windows domain. I do not which to do this, I only want to get PAM to authenticate with the AD and then everything else is local. Should I use pam_winbind ? pam_ntdom ? Some help/hints would be greatly appreciated. Regards, Jean-Sébastien Pilon Systems Administrator Penson Financial Services Canada Inc. % Tel.: 514.841.9724 #269 % Cell: 514.771.0365 NOTICE: This email contains privileged and confidential information and is intended only for the individual to whom it is addressed. If you are not the named addressee, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this transmission by mistake and delete this communication from your system. E-mail transmission cannot be guaranteed to be secured or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. AVIS: Le présent courriel contient des renseignements de nature privilégiée et confidentielle et nest destiné qu'à la personne à qui il est adressé. Si vous nêtes pas le destinataire prévu, vous êtes par les présentes avisés que toute diffusion, distribution ou reproduction de cette communication est strictement interdite. Si vous avez reçu ce courriel par erreur, veuillez en aviser immédiatement lexpéditeur et le supprimer de votre système. Notez que la transmission de courriel ne peut en aucun cas être considéré comme inviolable ou exempt derreur puisque les informations quil contient pourraient être interceptés, corrompues, perdues, détruites, arrivées en retard ou incomplètes ou contenir un virus. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] AutoCad and ArcView
1. Are the files constantly accessed by the applications ( like an excel file opened on a share ) ? 2. What RAID settings does your controller support other than 5? I know IBM servers use 5E, 5EE and 1E which are a little more interesting than plain 5 A raid 10 could be interesting too for file serving where writes are as common as reads. > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On > Behalf Of James McLaughlin > Sent: Wednesday, November 15, 2006 11:31 AM > To: samba@lists.samba.org > Subject: [Samba] AutoCad and ArcView > > Hello all, > > Just curious if anyone else has a SAMBA server that is serving up > AutoCad and ArcView files to users on Windows. > > We are utilizing a RAID 5 setup on dual 2.8 GHZ > 4 GB RAM > Intel Controller card (all latest firmware, BIOS etc...etc..) > > Only 4 users are accessing the server, but it seems after a > few days the > server starts to choke up, lock files, and it causes a hardware issue. > (We have burned through 2 320GB drives in 2 months) > > It is possible of course that the controller card is failing, but to > take some of the stress off of the machine does anyone have a tweaked > smb.conf that has NO issues with serving up files of this size all day > (80-200MB) > > Thanks in advance > -- > James C. McLaughlin > Montrose County IT > Office: (970) 252-4598 > Cell: (970) 209-8329 > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba > NOTICE: This email contains privileged and confidential information and is intended only for the individual to whom it is addressed. If you are not the named addressee, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this transmission by mistake and delete this communication from your system. E-mail transmission cannot be guaranteed to be secured or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. AVIS: Le présent courriel contient des renseignements de nature privilégiée et confidentielle et nest destiné qu'à la personne à qui il est adressé. Si vous nêtes pas le destinataire prévu, vous êtes par les présentes avisés que toute diffusion, distribution ou reproduction de cette communication est strictement interdite. Si vous avez reçu ce courriel par erreur, veuillez en aviser immédiatement lexpéditeur et le supprimer de votre système. Notez que la transmission de courriel ne peut en aucun cas être considéré comme inviolable ou exempt derreur puisque les informations quil contient pourraient être interceptés, corrompues, perdues, détruites, arrivées en retard ou incomplètes ou contenir un virus. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba