[Samba] File share permissions act different on member server than on DC
Hi, To enable my member server's ACLs to work just like the DC, as far as Windows is concerned, I needed to add the following parameters to the global section of smb.conf file on the member server: vfs objects = acl_xattr map acl inherit = yes store dos attributes = Yes These parameters are apparently added in the background by default for the smbd processes that are spawned by samba. Until I added those items, just like you I could never get the ACLs to stick and work correctly. Many of them were incorrectly labeled, also, even though the number was correct and the same as on the DC. Something to note: I believe the vfs object parameter does require that xattrs work on the file system that you use. Cheers, KeithM On Sun, 2013-10-13 at 22:31 +0200, Marc Muehlfeld wrote: Hello, a while ago I wrote the http://wiki.samba.org/index.php/Setup_and_configure_file_shares HowTo. When I wrote the HowTo, I setup and configured the share on a DC - what still works like described. Today I tried the first time to do exactly the same on a 4.0.10 and 4.1.0 _member server_, and it doesn't work there. The share in smb.conf: [demo] path = /srv/samba/Demo read only = no The folder in the filesystem (XFS): drwxr-xr-x 2 root root6 13. Okt 22:16 /srv/samba/Demo I connect to the share as Domain Admin, right-click to it and go to the security tab. Here I see now everyone and two root entries. - I click the edit button and remove the two root entries. When I click apply, everything is reset (the two entries went back. - If i grant modify to everyone - where all allow entries are empty per default and click apply, then all boxes are checked automatically (full access) and CREATOR OWNER and CREATOR GROUP appear. And this two can't be removed as well any more. If I do exactly the same on a DC, then already the security tab shows on the first time I open it very different settings. The wiki screenshot shows them: http://wikiupload.samba.org/images/8/8f/Demo_Share_Security.png). But the folder on Linux side is also just 755 (and without any extended ACLs when I begin). Also whatever I change (like remove root from the ACLs) everything is done like expected and saved. The member server is also self compiled. I installed all packages on my RHEL6 that I have installed on the DC too. Any idea what could be different on a 4.x member than on a DC? Or did I find a bug? Regards Marc -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba errors
Hello, I saw that as well and no that isn't the real address. Everything is correct except the last octet. I was wondering why it is doing that. Thanks, Keith Stevens Jeremy Allison j...@samba.org 11/14/2011 01:57 PM Please respond to Jeremy Allison j...@samba.org To keith.stev...@fms.treas.gov cc samba@lists.samba.org Subject Re: [Samba] Samba errors On Thu, Nov 10, 2011 at 11:48:57AM -0500, keith.stev...@fms.treas.gov wrote: Hi, We are trying to start and use Samba with a very simple configuration. We are just trying to connect to an existing Windows AD Domain and trying to mount filesystems from the AIX 5.3TL12 server to a Windows server. Can someone tell me what the error really means for nmbd and where should I start to look to resolve it? log.samba: smbd version 3.5.8 started. Copyright Andrew Tridgell and the Samba Team 1992-2010 [2011/11/06 18:41:53.813636, 0] smbd/server.c:1165(main) standard input is not a socket, assuming -D option log.nmdb: Failed to open nmb bcast socket on interface 10.66.239.239 for port 137. Error was Can't assign requested address [2011/11/06 18:42:07.034770, 0] nmbd/nmbd.c:963(main) ERROR: Failed when creating subnet lists. Exiting. This means it can't bind to that network address. Is 10.66.239.239 the correct IP address it should be using ? Jeremy. - This E-mail and its attachments (if any) are intended solely for the use of the addressee(s) and may contain sensitive but unclassified information. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you have received this E-mail in error, please notify the sender immediately and destroy the E-mail and any attachments. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Issue with Links on shares
Hello, We are having issues when accessing linked directories within a share. If we create a share at the linked level its fine. We get access denied when we try to access any linked directory from within the share otherwise. Here is the smb.conf: (The share that we are having the problem with is in bold.) # FROM CLEARCASE GUIDE ON HOW TO SETUP host msdfs = no bind interfaces only = no # Share Definitions == [ccstg] comment = clearcase path = /usr/clearcase/ccstg/views/cm public = yes read only = no # writable = yes # FROM CLEARCASE GUIDE ON HOW TO SETUP create mask = 0775 directory mask = 0775 # MS-DOS attribute mapping option map archive = no map hidden = no map system = no # Locking options oplocks = no level2 oplocks = no # kernel oplocks = no # File-name handling options case sensitive = no preserve case = yes # Other follow symlinks = yes # wide links = yes [ccadmin] comment = clearcase admin path = /usr/clearcase read list = jpage001, mrober01, dnalla01, mkuzme01 write list = jpage001, mrober01, dnalla01, mkuzme01 Thanks, Keith Stevens - This E-mail and its attachments (if any) are intended solely for the use of the addressee(s) and may contain sensitive but unclassified information. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including any reliance thereon) is strictly prohibited. If you have received this E-mail in error, please notify the sender immediately and destroy the E-mail and any attachments. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba errors
Hi, We are trying to start and use Samba with a very simple configuration. We are just trying to connect to an existing Windows AD Domain and trying to mount filesystems from the AIX 5.3TL12 server to a Windows server. Can someone tell me what the error really means for nmbd and where should I start to look to resolve it? log.samba: smbd version 3.5.8 started. Copyright Andrew Tridgell and the Samba Team 1992-2010 [2011/11/06 18:41:53.813636, 0] smbd/server.c:1165(main) standard input is not a socket, assuming -D option log.nmdb: Failed to open nmb bcast socket on interface 10.66.239.239 for port 137. Error was Can't assign requested address [2011/11/06 18:42:07.034770, 0] nmbd/nmbd.c:963(main) ERROR: Failed when creating subnet lists. Exiting. smb.conf: [global] # workgroup = NT-Domain-Name or Workgroup-Name, eg: MIDEARTH workgroup = FMSAD # server string is the equivalent of the NT Description field server string = IR/CMD KROC Samba Server # Security mode. Defines in which mode Samba will operate. Possible # values are share, user, server, domain and ads. Most people will want # user level security. See the Samba-HOWTO-Collection for details. security = domain # This option is important for security. It allows you to restrict # connections to machines which are on your local network. The # following example restricts access to two C class networks and # the loopback interface. For more examples of the syntax see # the smb.conf man page ; hosts allow = 192.168.1. 192.168.2. 127. # If you want to automatically load your printer list rather # than setting them up individually then you'll need this ; load printers = yes # you may wish to override the location of the printcap file ; printcap name = /etc/printcap # on SystemV system setting printcap name to lpstat should allow # you to automatically obtain a printer list from the SystemV spool # system ; printcap name = lpstat # It should not be necessary to specify the print system type unless # it is non-standard. Currently supported print systems include: # bsd, cups, sysv, plp, lprng, aix, hpux, qnx ; printing = cups smb.conf 276 lines, 9810 characters ;[printers] ; comment = All Printers ; path = /usr/spool/samba ; browseable = no # Set public = yes to allow user 'guest account' to print ; guest ok = no ; writable = no ; printable = yes # This one is useful for people to share files ;[tmp] ; comment = Temporary file space ; path = /tmp ; read only = no ; public = yes # A publicly accessible directory, but read only, except for people in # the staff group ;[public] ; comment = Public Stuff ; path = /home/samba ; public = yes ; writable = no ; printable = no ; write list = @staff # Other examples. # # A private printer, usable only by fred. Spool data will be placed in fred's # home directory. Note that fred must have write access to the spool directory, # wherever it is. ;[fredsprn] ; comment = Fred's Printer ; valid users = fred ; path = /homes/fred ; printer = freds_printer ; public = no ; writable = no ; printable = yes # A private directory, usable only by fred. Note that fred requires write # access to the directory. ;[fredsdir] ; comment = Fred's Service ; path = /usr/somewhere/private ; valid users = fred ; public = no ; writable = yes ; printable = no # a service which has a different directory for each machine that connects # this allows you to tailor configurations to incoming machines. You could # also use the %U option to tailor it by user name. # The %m gets replaced with the machine name that is connecting. ;[pchome] ; comment = PC Directories ; path = /usr/pc/%m ; public = no # directory must be writable by the default user. Another user could of course # be specified, in which case all files would be owned by that user instead. ;[public] ; path = /usr/somewhere/else/public ; public = yes ; only guest = yes ; writable = yes ; printable = no # The following two entries demonstrate how to share a directory so that two # users can place files there that will be owned by the specific users. In this # setup, the directory should be writable by both users and should have the # sticky bit set on it to prevent abuse. Obviously this could be extended to # as many users as required. ;[myshare] ; comment = Mary's and Fred's stuff ; path = /usr/somewhere/shared ; valid users = mary fred ; public = no ; writable = yes ; printable = no ; create mask = 0765 [clearcase] path = /usr/clearcase/ccstg public = yes writable = yes Thanks, Keith Stevens - This E-mail and its attachments (if any) are intended solely for the use of the addressee(s) and may contain sensitive but unclassified information. If you are not the intended recipient, you are hereby notified that any disclosure, copying, distribution, or use of the information contained herein (including
[Samba] Samba - Ldap InetOrgPerson
I don't know if I should post this here or in the samba bugzilla but here goes... I am trying to get samba-ldap (editposix) to use the Inetorgperson schema so that I can setup a samba domain using our existing ldap directory. Our websites users are held in a LDAP directory that has user info stored in the Intetorgperson schema where user names are in cn=Username but smba-ldap users are stored in the 'account' schema as uid=Username. I think these patches https://bugzilla.samba.org/show_bug.cgi?id=4597 will change samba to use the InetOrgPerson schema so have built Samba-ldap from the OpenBSD ports tree along with the two included patches. I've read about the patches and have had a look at them but don't realy understand how they work and whether I need to modify the patches to enable the correct schema but have blindly started up samba and my ldap server and have run the net sam provision command to populate the directory but the users are still have uid= and not cn= The ldap server that I am using with samba doesn't actually have the inetorgperson schema in it yet as I haven't been able to figure out how to get a working tree structure setup that contains InetOrgPerson schema. I was hoping that as because I have applied the patches that the net sam provision command would fail as the schema was wrong but as it's not I am wondering if the patches have worked. Can anyone give me some advice on what I could try next ? Thanks Keith -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Question regarding shares
Is it possible using Samba to have a user access a share for a one-time only session? In particular, what I mean is, is it possible to have a printer shared through Samba so that everytime a user tries to print through the share, they are asked to reaunthenticate? Thanks for your help. Keith Lynn -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Ldapsam Editposix idmap help required
Hi, I am more or less following this tutorial Ldapsam Editposix = http://wiki.samba.org/index.php/Ldapsam_Editposix but can't quite get my domain to work. I think the issue is with the idmap part of the smb.conf but can't quite figure out what's wrong with it or what the correct format should be. My SMB.CONF file #interfaces = lo0 em0 127.0.0.1 bind interfaces only = no workgroup = GYLE encrypt passwords = true passdb backend = ldapsam ldap ssl = off security = user local master = yes domain master = yes os level = 33 preferred master = yes domain logons = yes ldapsam:trusted=yes ldapsam:editposix=yes ldap admin dn = cn=admin,dc=gyle,dc=ourdomain,dc=com ldap delete dn = yes ldap group suffix = ou=groups ldap machine suffix = ou=computers ldap user suffix = ou=users ldap suffix = dc=gyle,dc=ourdomain,dc=com #idmap uid = 2000-4000 #idmap gid = 2000-4000 #idmap domains = DEFAULT idmap config DEFAULT:backend = ldap idmap config DEFAULT:readonly = no idmap config DEFAULT:default = yes idmap config DEFAULT:ldap_base_dn = ou=idmap,dc=gyle,dc=ourdomain,dc=com idmap config DEFAULT:ldap_user_dn = cn=admin,dc=gyle,dc=ourdomain,dc=com idmap config DEFAULT:ldap_url = ldap://localhost idmap config DEFAULT:range = 5-50 idmap alloc backend = ldap idmap alloc config:ldap_base_dn = ou=idmap,dc=gyle,dc=ourdomain,dc=com idmap alloc config:ldap_user_dn = cn=admin,dc=gyle,dc=ourdomain,dc=com idmap alloc config:ldap_url = ldap://localhost idmap alloc config:range = 5-50 I've commented out the line idmap domains = DEFAULT as if it don't then I get lots of warnings. So If I start up my ldap server and import an basic schema, then do the following. # smbpasswd -w secret Setting stored password for cn=admin,dc=gyle,dc=ourdomain,dc=com in secrets.tdb #net idmap secret DEFAULT secret Secret stored #net idmap secret alloc secret Secret stored # /usr/local/libexec/winbindd # net sam provision Checking for Domain Users group. Adding the Domain Users group. Unable to allocate a new gid to create Domain Users group! Checking for Domain Admins group. Adding the Domain Admins group. Unable to allocate a new gid to create Domain Admins group! Check for Administrator account. Adding the Administrator user. Can't create Administrator user, Domain Admins group not available! #cat log.winbindd-idmap [2011/08/09 12:00:25.850065, 1] /usr/obj/ports/samba-3.5.6-ldap/samba-3.5.6/source3/winbindd/idmap_ldap.c:268(idmap_ldap_alloc_init) idmap uid or idmap gid missing [2011/08/09 12:00:25.850452, 0] /usr/obj/ports/samba-3.5.6-ldap/samba-3.5.6/source3/winbindd/idmap.c:589(idmap_alloc_init) ERROR: Initialization failed for alloc backend, deferred! [2011/08/09 12:00:25.852415, 0] /usr/obj/ports/samba-3.5.6-ldap/samba-3.5.6/source3/winbindd/idmap.c:201(smb_register_idmap_alloc) idmap_alloc module ldap already registered! [2011/08/09 12:00:25.852698, 0] /usr/obj/ports/samba-3.5.6-ldap/samba-3.5.6/source3/winbindd/idmap.c:201(smb_register_idmap_alloc) idmap_alloc module tdb already registered! [2011/08/09 12:00:25.852769, 0] /usr/obj/ports/samba-3.5.6-ldap/samba-3.5.6/source3/winbindd/idmap.c:149(smb_register_idmap) Idmap module passdb already registered! [2011/08/09 12:00:25.852828, 0] /usr/obj/ports/samba-3.5.6-ldap/samba-3.5.6/source3/winbindd/idmap.c:149(smb_register_idmap) Idmap module nss already registered! [2011/08/09 12:00:25.852915, 1] /usr/obj/ports/samba-3.5.6-ldap/samba-3.5.6/source3/winbindd/idmap_ldap.c:268(idmap_ldap_alloc_init) idmap uid or idmap gid missing [2011/08/09 12:00:25.852945, 0] /usr/obj/ports/samba-3.5.6-ldap/samba-3.5.6/source3/winbindd/idmap.c:589(idmap_alloc_init) ERROR: Initialization failed for alloc backend, deferred! If anyone can help then it would really be appreciated. Thanks for reading. Oh yeah this is all being done on an OpenBSD 4.9 server running their ldapd server. Keith -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba and Active Directory 2008
Yeah, i've got files/compat and winbind in the nssconfig.conf file, still cant get it to pull the UID from active directory. I'm going to keep trying various options, but if anyone had any suggestions that would be great Thanks On Tue, Jul 12, 2011 at 3:43 AM, Puyal Tolosa, Noé npu...@valls.cat wrote: The important part is that you insert winbind keyword just after the files keyword -Missatge original- De: samba-boun...@lists.samba.org [mailto:samba-boun...@lists.samba.org] En nom de Keith Enviat: lunes, 11 de julio de 2011 17:33 Per a: samba@lists.samba.org Tema: Re: [Samba] Samba and Active Directory 2008 Yeah, but i'm not using compat, but files. Not sure if it makes a big difference? Thanks On Mon, Jul 11, 2011 at 10:06 AM, Robert Freeman-Day pres...@gmail.comwrote: Have you also edited your /etc/nsswitch.conf file to pull those entries properly? You should at least have it looking like below: passwd: compat winbind group: compat winbind shadow: compat -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba and Active Directory 2008
I was wondering if anyone has had any luck getting samba working with a Windows 2008 domain? I've got mine working for the most part except for UID lookups. I've got identity management for unix installed on on the windows box and have several users configured with custom home directories, login shell, and UID on the Unix attributes tab. My samba server is joined to the domain, wbinfo -u and -g both provide a list of users and groups. When i run getent passwd i get a list of local users and domain users. With the domain users it pulls the home directory and login shell just fine from active directory, but i cant get it to pull the UID. I've got it setup and working using RID, which is ok, but we would rather get it working with the UID. I'm using samba version 3.5.4 and here is a copy of the global settings workgroup=test realm=pizza.com security=ads password server = password-server.pizza.com idmap uid = 1 - 2 idmap guid = 1 - 2 idmap backend = rid:pizza.com=1-2 winbind use default domain = yes winbind enum users = yes winbind refresh tickets = yes client use spnego = yes client ntlmv2 auth = yes encrypt passwords = yes restrict anonymous = 2 winbind nss info = rfc2307 client ldap sasl wrapping = sign Any help would be greatly appreciated. Thanks Keith -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba and Active Directory 2008
Yeah, but i'm not using compat, but files. Not sure if it makes a big difference? Thanks On Mon, Jul 11, 2011 at 10:06 AM, Robert Freeman-Day pres...@gmail.comwrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On 07/11/2011 10:09 AM, Keith wrote: I was wondering if anyone has had any luck getting samba working with a Windows 2008 domain? I've got mine working for the most part except for UID lookups. I've got identity management for unix installed on on the windows box and have several users configured with custom home directories, login shell, and UID on the Unix attributes tab. My samba server is joined to the domain, wbinfo -u and -g both provide a list of users and groups. When i run getent passwd i get a list of local users and domain users. With the domain users it pulls the home directory and login shell just fine from active directory, but i cant get it to pull the UID. I've got it setup and working using RID, which is ok, but we would rather get it working with the UID. I'm using samba version 3.5.4 and here is a copy of the global settings workgroup=test realm=pizza.com security=ads password server = password-server.pizza.com idmap uid = 1 - 2 idmap guid = 1 - 2 idmap backend = rid:pizza.com=1-2 winbind use default domain = yes winbind enum users = yes winbind refresh tickets = yes client use spnego = yes client ntlmv2 auth = yes encrypt passwords = yes restrict anonymous = 2 winbind nss info = rfc2307 client ldap sasl wrapping = sign Any help would be greatly appreciated. Thanks Keith Have you also edited your /etc/nsswitch.conf file to pull those entries properly? You should at least have it looking like below: passwd: compat winbind group: compat winbind shadow: compat - -- Robert Freeman-Day https://launchpad.net/~presgas GPG Public Key: http://keyserver.ubuntu.com:11371/pks/lookup?op=getsearch=0xBA9DF9ED3E4C7D36 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.11 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAk4bEVYACgkQup357T5MfTbSqQCcDtAAg1/PR4mc4Q5urgUoOcP4 LCEAn10m5/LFF/Ttvu/13OGYUvD3AbOM =zDL1 -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba and .NET FileSystemWatcher
Hi All, I've been looking into a problem using the .NET FileSystemWatcher class in a VB application. The application is only receiving notifications for events in the root of the directory it is watching. E.g. When monitoring \\SambaServer\Files file:///\\SambaServer\Files \\SambaServer\Files\file.txt file:///\\SambaServer\Files\file.txt will give notifications but not \\SambaServer\Files\Folder\file2.txt via Samba. The same application works fine using a windows CIFS/SMB share or a local drive. The FileSystemWatcher.IncludeSubdirectories option is set to True in the application. The issue appears to be that Samba does not monitoring file events recursively, because inotify in the linux kernel does not monitor directories recursively. From man inotify; Inotify monitoring of directories is not recursive: to monitor subdirectories under a directory, additional watches must be created. I was wondering if there is any method by which Samba can notify for recursive events? I am aware that this could also be achieved by adding individual watches within the afore-mentioned VB application, however this is not an option for me at present. Any help or advice appreciated. Thanks Keith -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] rpcclient and NTLMV2 authentication
rpcclient will honour the same setting in the smb.conf as smbclient - 'client ntlmv2 auth = yes' should do it. Thanks for the prompt reply; this has resolved my issue. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] rpcclient and NTLMV2 authentication
I've seen various notes on this subject, but can't find a definitive answer. Does rpcclient support NTLMv2 authentication ? i.e if the AD server is setup to send NTLMv2 responses only (and reject LM and NTLM) can I still connect with rpcclient ? thanks for any info or pointers -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Permission issue (I think)
No love. I'm getting exactly the same thing. I have attached the log file. I blew away the log file right before I attempted the operation (I attempted a rename). It's interesting, smbstatus still reports RDONLY. I removed NT ACL support entirely (and the tcp buffer sizes) and bounced the service. -Original Message- From: Jeremy Allison [mailto:j...@samba.org] Sent: Wednesday, August 11, 2010 10:32 AM To: Massner, Keith Cc: samba@lists.samba.org Subject: Re: [Samba] Permission issue (I think) On Wed, Aug 11, 2010 at 10:27:22AM -0700, Massner, Keith wrote: I'm attempting to modify/delete files from Vista and am getting an intermittent error that permission is denied. Frustrating. I can create new files all day long. I might be able to rename it once or twice. But then I'll get a permission denied error. I can NEVER delete a file I created. What I want is a share that is world readable, writeable, modifiable, etc. Yes, I know its insecure. But its just me. I'm using Samba 3.5.4 on CentOS 5.5, 32 bit. Yep, I have set all file permissions and ownership. Also of note is that the same directory is exported for NFS (and mounted via nfs on a media player when its turned on). NFS has no permissions problems. Lsattr shows nothing interesting. A sample of smbstatus is: 4667 500DENY_NONE 0x20089 RDONLY NONE /storage1/SharedMedia Music/Alison Krauss/Lonely Runs Both Ways/02 Restless.mp3 Wed Aug 11 01:44:54 2010 Here's my stuff: [global] log file = /var/log/samba/%m.log ; Take this out once you figure this crap out. log level = 10 netbios name = marvin interfaces = 192.168.2.11/24 usershare owner only = false null passwords = yes server string = Samba Server Version %v (%h) security = SHARE encrypt passwords = Yes username map = /etc/samba/smbusers max log size = 50 preferred master = Yes acl check permissions = No guest ok = Yes guest only = Yes nt acl support = No This may be your problem. We *never* test without NT ACL support being set to yes anymore. This option should really be removed. Remove it from your smb.conf and retry. cups options = raw load printers = No socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=65536 SO_SNDBUF=65536 Second guessing the kernel on SNDBUF and RCVBUF sizes is also a bad idea. Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Permission issue (I think)
No love. I'm getting exactly the same thing. It's interesting, smbstatus still reports RDONLY. I removed NT ACL support entirely (and the tcp buffer sizes) and bounced the service. -Original Message- From: Jeremy Allison [mailto:j...@samba.org] Sent: Wednesday, August 11, 2010 10:32 AM To: Massner, Keith Cc: samba@lists.samba.org Subject: Re: [Samba] Permission issue (I think) On Wed, Aug 11, 2010 at 10:27:22AM -0700, Massner, Keith wrote: I'm attempting to modify/delete files from Vista and am getting an intermittent error that permission is denied. Frustrating. I can create new files all day long. I might be able to rename it once or twice. But then I'll get a permission denied error. I can NEVER delete a file I created. What I want is a share that is world readable, writeable, modifiable, etc. Yes, I know its insecure. But its just me. I'm using Samba 3.5.4 on CentOS 5.5, 32 bit. Yep, I have set all file permissions and ownership. Also of note is that the same directory is exported for NFS (and mounted via nfs on a media player when its turned on). NFS has no permissions problems. Lsattr shows nothing interesting. A sample of smbstatus is: 4667 500DENY_NONE 0x20089 RDONLY NONE /storage1/SharedMedia Music/Alison Krauss/Lonely Runs Both Ways/02 Restless.mp3 Wed Aug 11 01:44:54 2010 Here's my stuff: [global] log file = /var/log/samba/%m.log ; Take this out once you figure this crap out. log level = 10 netbios name = marvin interfaces = 192.168.2.11/24 usershare owner only = false null passwords = yes server string = Samba Server Version %v (%h) security = SHARE encrypt passwords = Yes username map = /etc/samba/smbusers max log size = 50 preferred master = Yes acl check permissions = No guest ok = Yes guest only = Yes nt acl support = No This may be your problem. We *never* test without NT ACL support being set to yes anymore. This option should really be removed. Remove it from your smb.conf and retry. cups options = raw load printers = No socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=65536 SO_SNDBUF=65536 Second guessing the kernel on SNDBUF and RCVBUF sizes is also a bad idea. Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Permission issue (I think)
I'm attempting to modify/delete files from Vista and am getting an intermittent error that permission is denied. Frustrating. I can create new files all day long. I might be able to rename it once or twice. But then I'll get a permission denied error. I can NEVER delete a file I created. What I want is a share that is world readable, writeable, modifiable, etc. Yes, I know its insecure. But its just me. I'm using Samba 3.5.4 on CentOS 5.5, 32 bit. Yep, I have set all file permissions and ownership. Also of note is that the same directory is exported for NFS (and mounted via nfs on a media player when its turned on). NFS has no permissions problems. Lsattr shows nothing interesting. A sample of smbstatus is: 4667 500DENY_NONE 0x20089 RDONLY NONE /storage1/SharedMedia Music/Alison Krauss/Lonely Runs Both Ways/02 Restless.mp3 Wed Aug 11 01:44:54 2010 Here's my stuff: [global] log file = /var/log/samba/%m.log ; Take this out once you figure this crap out. log level = 10 netbios name = marvin interfaces = 192.168.2.11/24 usershare owner only = false null passwords = yes server string = Samba Server Version %v (%h) security = SHARE encrypt passwords = Yes username map = /etc/samba/smbusers max log size = 50 preferred master = Yes acl check permissions = No guest ok = Yes guest only = Yes nt acl support = No cups options = raw load printers = No socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=65536 SO_SNDBUF=65536 [SharedMedia] path = /storage1/SharedMedia force user = keith force group = keith read only = No ; acl group control = Yes force create mode = 0666 force directory mode = 6777 directory security mask = 6777 force unknown acl user = Yes map readonly = permissions Any thoughts? Thanks, Keith -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Intermittent file rename problem with Vista, works with XP.
So... It's been driving me nuts. I get intermittent permission denied errors when I try to rename a folder. T I do something like the following (the number of steps to cause the failure varies): Rename folder1 to folder2 works Rename folder2 to folder1 works Rename folder1 to folder2 nope Bouncing smb on the Linux server temporarily corrects things. Out of frustration, I tried an XP machine, and can't get it to break, so SOMETHING with Vista, I guess. What I'm trying to do is have a wide open share. Permissions are set on the files and directories as specified below, all files belong to keith:keith. The files were initially created through Linux. No extended atrributed are set. Operating system is CentOS 5.5, Samba is 3.5.4. [global] log file = /var/log/samba/%m.log ; Take this out once you figure this crap out. log level = 3 netbios name = marvin usershare owner only = false null passwords = yes server string = Samba Server Version %v (%h) security = SHARE encrypt passwords = Yes username map = /etc/samba/smbusers max log size = 50 preferred master = Yes ; acl check permissions = No guest ok = Yes guest only = Yes ; nt acl support = No cups options = raw [SharedMedia] path = /storage1/SharedMedia force user = keith force group = keith read only = No ; acl group control = Yes force create mode = 0666 force directory mode = 6777 directory security mask = 6777 force unknown acl user = Yes map readonly = permissions Anyone have any thoughts? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Authentication
Is it possible to configure samba so that a printer that is shared requires a user on a windows sytem to authenticate every time they print? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Does samba-common-3.0.10-1.4E.12.2 support NTLM?
I would like to know if NTLM is supported in samba version 3.0.10-1.4E.12.2. Thanks Cheers, Keith -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Can I integrate with e-directory?
Can samba integrate with e-directory or does it have to be active directory? ** Electronic Mail is not secure, may not be read every day, and should not be used for urgent or sensitive issues -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Expired account - ldap - smbldap
Hi, I have our CentOS 4.4 server setup using ldap and i use smbldap-tools to admin the box, some how (previous admin) has set an account to expire, and it has just expired! I am wondering how I enable this user account again, he is not using samba but uses this server to auth for his mail against ldap. If I attempt to su, I get the following: Your account has expired; please contact your system administrator Is there a way to enable his account again with smbldap ? or another method? Many Thanks -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Adding users to dirs, acl
I have some users I was to allow access to a dir, I know I will need to setup ACL's however when this is done can I add users to dirs like I can in windows? Thanks -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Adding users to dirs, acl
John Drescher wrote: On Thu, Aug 28, 2008 at 5:51 AM, Keith Sudbury [EMAIL PROTECTED] wrote: I have some users I was to allow access to a dir, I know I will need to setup ACL's however when this is done can I add users to dirs like I can in windows? Yes, this works for me. Make sure your idmap is working. Here is what works for me on a test domain called YOUR_DOMAIN [global] idmap domains = YOUR_DOMAIN TRUSTEDDOMAINS idmap config YOUR_DOMAIN:backend = nss idmap config YOUR_DOMAIN:readonly = yes idmap config TRUSTEDDOMAINS:default = yes idmap config TRUSTEDDOMAINS:backend = tdb idmap config TRUSTEDDOMAINS:range = 1 - 5 idmap alloc backend = tdb idmap alloc config:range = 1 - 5 BTW, I am using ldap with this PDC [global] add user script = /usr/sbin/smbldap-useradd -m %u delete user script = /usr/sbin/userdel -r %u add group script = /usr/sbin/smbldap-groupadd -p %g delete group script = /usr/sbin/groupdel %g add user to group script = /usr/sbin/smbldap-groupmod -m %u %g delete user from group script = /usr/sbin/smbldap-groupmod -x %u %g set primary group script = /usr/sbin/smbldap-usermod -g %g %u add machine script = /usr/sbin/smbldap-useradd -w %u ldap admin dn = cn=Manager,dc=example,dc=net ldap delete dn = Yes ldap group suffix = ou=Groups ldap idmap suffix = ou=Idmap ldap machine suffix = ou=Computers ldap suffix = dc=example,dc=net ldap ssl = no ldap user suffix = ou=Users ldapsam:trusted = yes ldapsam:editposix = yes John Ah I am using winbind, I can chown dir's with domain users etc. I can even set rwx etc with setfacl -m u: DOMAIN\user:rwx file However it does not seem to see the acls from windows... also i can't edit them from the windows server via the security tab it gives me access denied, any ideas why? do I need to map my AD administrator account to root so it will have perms to edit file system perms?? Or am I missing some thing... Would be great to be able to edit the perms from Windows tbh. Cheers Keith -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] ACL howto that works with windows explorer security tab
Does anyone have a guide / howto that allows the setup of ACL's the works with the windows security tab. Or any advice on the above, am I wasting my time trying to make it work with the security tab in windows explorer? Many Thanks Keith -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Problem with permissions
Bikrish Amatya wrote: Hi everyone. I have to task where i have to replace windows NT server by samba. The problem i facing is with permissions. In windows NT , administrator can provide a share permissision like , full control, read write but no delete and read. But i have provide same functionality in samba server. How can i set such permission , write but no delete in linux through samba. I have googled a lot but couldn't find the solution. Any help would be apperciated. Thanks Hi Bikrish, If you setup ACL, you can actually set up permissions using the security tab in windows explorer from another windows box, you you can use the cmd line. You might have to remount your FS with acl enabled, what distro are you using? Check out http://www.bluelightning.org/linux/samba_acl_howto/ or google some other guides. I am setting this up atm so let me know if you get the Explorer thing to work! Keith -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ACL -Manage with Windows security tab?
John Drescher wrote: On Thu, Aug 7, 2008 at 8:10 PM, Keith Sudbury [EMAIL PROTECTED] wrote: Hi Guys, I am attempting to configure AC:L's I have enabled it in smb.conf for my share and remounted my fs with acl enabled. However if I attempt to edit security permissions for the group Domain Users it creates two more group CREATOR GROUP and CREATOR OWNER and refreshes the security properties and then just resets the tick boxes i had selected. I have attached a screenshot of the windows security tab, here is the share aprt of my smb.conf # scratch space // Sneakernet // ***NOT BACKED UP*** [Scratch] comment = Sneakernet path = /home/scratch public = no writable = yes browseable = yes follow symlinks = yes force group = Domain Users nt acl support = yes create mask = 770 directory mask = 770 Have you configured idmap? Here is what I have for a test domain called YOUR_DOMAIN idmap domains = YOUR_DOMAIN TRUSTEDDOMAINS idmap config YOUR_DOMAIN:backend = nss idmap config YOUR_DOMAIN:readonly = yes idmap config TRUSTEDDOMAINS:default = yes idmap config TRUSTEDDOMAINS:backend = tdb idmap config TRUSTEDDOMAINS:range = 1 - 5 idmap alloc backend = tdb idmap alloc config:range = 1 - 5 John Hi John, I have... security = ads passdb backend = tdbsam password server = server01.mydomain.local realm = MYDOMAIN.LOCAL idmap uid = 16777216-33554431 idmap gid = 16777216-33554431 template shell = /bin/bash winbind use default domain = yes winbind enum users = yes obey pam restrictions = yes I will test what you pasted above in a VM. Regards -- Keith Sudbury Netzen Solution Ltd Suite 5, Piccadilly House, London Rd, Bath, BA1 6PL, UK Mobile: +44 (0)7921464106 Tel: +44 (0)1225 588 588 Fax: +44 (0)1225 580 061 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] ACL -Manage with Windows security tab?
Hi Guys, I am attempting to configure AC:L's I have enabled it in smb.conf for my share and remounted my fs with acl enabled. However if I attempt to edit security permissions for the group Domain Users it creates two more group CREATOR GROUP and CREATOR OWNER and refreshes the security properties and then just resets the tick boxes i had selected. I have attached a screenshot of the windows security tab, here is the share aprt of my smb.conf # scratch space // Sneakernet // ***NOT BACKED UP*** [Scratch] comment = Sneakernet path = /home/scratch public = no writable = yes browseable = yes follow symlinks = yes force group = Domain Users nt acl support = yes create mask = 770 directory mask = 770 Thanks in advance! Keith -- Keith Sudbury Netzen Solution Ltd Suite 5, Piccadilly House, London Rd, Bath, BA1 6PL, UK Mobile: +44 (0)7921464106 Tel: +44 (0)1225 588 588 Fax: +44 (0)1225 580 061 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba / ACL / File System Permissions Active Directory winbind
Hi Guys, I have a windows 2003 SBS handling domain logins, I also have an Ubuntu machine being used as a file server this is using winbind and is on the domain I can chown dirs etc with Active Directory users. However I have the following problem, I need to allow certain users to access some dirs and not others... for example. folder1 would need to be accessed by user1 user2 and user3 Now my understanding of this would be to add users 1,2 3 to a group say for example group1 then chown folder1 with that group? chown -R :DOMAIN\Domain Users folder1 Thats fine but then when user 1,2 or 3 access folder1 and write to the folder and there primary group is Domain Users for example it will make it unreadable for other users? I could force it to take permissions from the parent directory using sticky bit? but what if the users creates a dir and then another dir would it still take its permissions from its parent directory then? It must be fairly common to want to set a bunch of users that are not in the same primary group access to one dir that no other users can access? If any one has any ideas / feedback at all on how they have done this it would be great as im melting my brain thinking a way around this if im honest... Many Thanks Keith -- Keith Sudbury Netzen Solution Ltd Suite 5, Piccadilly House, London Rd, Bath, BA1 6PL, UK Mobile: +44 (0)7921464106 Tel: +44 (0)1225 588 588 Fax: +44 (0)1225 580 061 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Incorrect/incomplete group information when authenticating against AD
Summary: a Samba server authenticating against AD can only retrieve some, not all, groups that users belong to. I have a Linux server oldsys (all version info given below) making files available via Samba and authenticating against Windows AD. This works without problems. We want to migrate the data, and thus the Samba configuration, to a new server newsys. This has been done, with the smb.conf file being copied from oldsys to newsys. I have joined newsys to the AD tree. wbinfo -t, wbinfo -u and wbinfo -g give the expected results. The group information for a given user is incomplete on newsys. Here's the output from each system for one user: oldsys # id Tiger uid=10353(tiger) gid=10001(Domain Users) groups=10001(Domain Users),10008(Domain Admins),10004(Services),10012(Compbio),10016(Admin),10020(Techserv), 10023(Inkjet),10024(Sysadmin),10063(IFRpan),10048(qcall) newsys # id Tiger uid=10004(tiger) gid=1(domain users) groups=1(domain users) Not only is the newsys group list much shorter, but also the Domain Users group is a different gid and the user has a different uid. There is no user Tiger in the passwd database on either Linux server, so the response is apparently coming from the AD tree. One other anomaly: a getent passwd on the old system lists all the /etc/passwd entries as well as the AD users; the same command on the new system lists only the /etc/passwd users. An egrep '(^passwd|^group|^shadow)' /etc/nsswitch.conf produces the same results on each system: passwd: files winbind shadow: files group: files winbind I'm at a loss to understand why the group information (and the getent passwd list) are different on the two systems, and I'd welcome any pointers. Versions: oldsys # smbd -V Version 3.0.21a oldsys # cat /etc/redhat-release Red Hat Linux release 9 (Shrike) newsys # smbd -V Version 3.0.24 newsys # cat /etc/debian_version 4.0 Thanks for any ideas, Keith -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Help with Remote Desktop Users group with Samba PDC
Hello, I have a Samba PDC chugging away, one of the clients is a Windows 2003 Server machine with Remote Desktop enabled. Regular users can log in to the 2003 Server just fine *if they are at the actual computer*. Now, I want people to be able to log on to this machine (authenticated by the Samba PDC) over Remote Desktop. Right now, when I try to log on over Remote Desktop, I get this error from Windows: To log on to this remote computer, you must be granted 'Allow lon on through Terminal Services' right. By defualt, members of the 'Remote Desktop Users' group have this right. If you are not a member of the Remote Desktop Users group or another group ... etc. etc. etc. So... how do I tell my Samba PDC that my users are members of this group? I can add users to the Domain Admins group, Domain Users group, etc., but I *don't have* a Remote Desktop Users group, and am unsure how to add it, what the sambaSID for this group should be, etc. This is Samba 3.x, OpenLDAP backend, with smbldap-tools installed on Mandriva. Thanks! -- - Keith Palmer [EMAIL PROTECTED] http://www.AcademicKeys.com/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] SCO 6 and Samba
Hello, I have a client upgrading their Unix server to version 6 and want to use their shared Windows printers attached to the individual workstations as Unix printers. Is this possible with Samba? I'm new to using Samba but have alot of experience with Unix. The Samba version is 30.13-2sco-SCO. Thank you for any help! Keith Peterson Raymar Information Technologies PH # 1-800-695-1951 FAx # 1-916-783-1952 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Strange Profiles Problem
This is a problem I've been experiencing lately after an upgrade from Samba 2.2.8 to Samba 3.0.23d. The problem seems to have to do with either the user's profile or the ntuser files in the profile. Normally what happens when a user logs in is that either the desktop.ini file's contents are displayed, or the user's program menu appears just like you had hit the Start button. What happens now is that when the user logs in, only a portion of the programs menu appears. The icons that appear normally on the left-hand side aren't there. The user's name still appears at the top. When this does happen, when running a Powerpoint slide, then the user is asked several times to input their name and initial, and then finally the program shuts down and asks if you want to send an error report. The only way I've been able to restore the use of Powerpoint is to remove the user's profile on the machine, remove the one on the server, and then have them login again. After doing this, and running diff on the directories, the only real differences were the ntuser.dat files were not the same, and the log files were different. Also, and I'm not sure if this has anything to do with this, there is an annoying .tmp file that keeps showing up. It's dated Feb 1, but I don't know if it was because of a partial load or something like that. Also, in the damaged profile, the size of ntuser.dat is only 262144, whereas in the correct profile, the size is 786432. Has anyone experienced anything like this. Is there any suggestion about what I can do to diagnose the problem? Thanks. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] ntuser.dat
What are the implications of locking the ntuser.dat file on the user's server profile? That is, if I make the ntuser.dat file read-only, what affects will that have on the client? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Profile problems
I have a very perplexing issue with a client machine running XP Pro connecting to a Samba PDC running Samba 3.0.23d. When the user logins, and clicks on the Start Button, none of the icons that normally show up on the left side are there. The name of the user is at the top, and you still have the button for All Programs, but none of the normal icons are there. The user can't run programs like Powerpoint because it constantly shuts down. Has anyone experienced this error before? It appears to me that possibly the users roaming profile is not loading completely. Does anyone have any idea how I can make it work normally? Thanks. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Windows Share Issue
Hello all, I have a Samba server running version 2.2.8 that works fine for most of the needs that I have. However, I plan to use the Samba server to host shares that my users running Windows will use to run backup programs using Robocopy. The problem is that when the destination is a Windows drive, Robocopy is very fast because it only backs up what hasn't changed. With a Linux share, the backup takes a great deal longer I believe because of a bit that Windows uses and Linux doesn't. My question is, do the later versions of Samba have a way to deal with this problem or is it something that can't happen with Linux? Thanks. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] [fixed?] winbind authentication issue
I think I may have found the fix for this issue (it has been running for 3 days without an error.) I went through and manually checked each user and group on Windows NT4. There was one group I could not access: MTS Trusted Impersonators Searching I found this: http://ask.support.microsoft.com/kb/181775/ Basically, the group is invalid because the name is over the max length (which is 20 characters long). The account was created by Microsoft. The fix supposedly came with NT4 SP6, but that was installed on all of my NT4 servers all ready, yet the account still existed. I could not delete or modify the account with the default tools. Luckily, I had previously installed the NT4 resource kit on one of the servers, and a text utility called addusers (addusers /?) was able to remove that account. [addusers /d file.txt write all users and groups to file.txt then edit file to delete all the users and groups you do not wish to delete (leave headers intact) (i.e. remove all lines except for the ones in [] and the one beginning with MTS Trusted Impersonators) then addusers /e file.txt will erase all users and groups in file.txt. The program only returns an answer on success - if it fails to do anything it is silent. (wonder how you samba guys keep any hair) Hope this helps someone, -Keith -- Forwarded message -- Date: Thu, 7 Sep 2006 08:43:30 -0500 (CDT) From: Keith Howanitz [EMAIL PROTECTED] To: samba@lists.samba.org Subject: winbind authentication issue [SNIP] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] winbind authentication issue
I am running a very mixed network, Linux, win nt4 servers OS X, Linux, Win 98SE, 2k, XP clients just added a new ubuntu server running samba 3.0.22. (new server a replacement for an old NT4 server) NT 4 is PDC Everything was mostly fine for about a month, then started getting errors logging into shares. At first I could fix this by restarting winbind, but then came times when I was forced to restart WINS service on NT4 machine. I figured it was an issue with WINS, so I shut this service off on NT4, and migrated it to the new ubuntu server (6.06). Still having login problems about once a day or so, restarting winbind always fixes it. Not even sure what to look for in the logs??? Here is the logwatch (replaced PDC server name w/ [PDC]) TIA, -Keith: **Unmatched Entries** lib/util_sid.c:string_to_sid(285) string_to_sid: Sid S-0-0 is not in a valid format. : 31 Time(s) libsmb/clientgen.c:cli_rpc_pipe_close(375) cli_rpc_pipe_close: cli_close failed on pipe \NETLOGON, fnum 0xf00b to machine [PDC]. Error was Write error: Success : 1 Time(s) libsmb/clientgen.c:cli_rpc_pipe_close(375) cli_rpc_pipe_close: cli_close failed on pipe \lsarpc, fnum 0xf00c to machine [PDC]. Error was Write error: Success : 1 Time(s) libsmb/clientgen.c:cli_rpc_pipe_close(375) cli_rpc_pipe_close: cli_close failed on pipe \samr, fnum 0xf800 to machine [PDC]. Error was Write error: Success : 1 Time(s) libsmb/credentials.c:creds_client_check(256) creds_client_check: credentials check failed. : 3 Time(s) nsswitch/winbindd_dual.c:child_read_request(49) Got invalid request length: 0 : 9 Time(s) nsswitch/winbindd_group.c:winbindd_getgrgid(330) could not lookup sid : 10 Time(s) nsswitch/winbindd_group.c:winbindd_getgrnam(255) group common in domain DATX does not exist : 32 Time(s) nsswitch/winbindd_user.c:winbindd_dual_userinfo(157) error getting user info for sid S-1-5-21-32718380-1069048975-798045042-1101 : 2 Time(s) nsswitch/winbindd_user.c:winbindd_dual_userinfo(157) error getting user info for sid S-1-5-21-32718380-1069048975-798045042-1185 : 4 Time(s) rpc_client/cli_netlogon.c:rpccli_netlogon_sam_network_logon(898) rpccli_netlogon_sam_network_logon: credentials chain check failed : 3 Time(s) rpc_client/cli_pipe.c:cli_rpc_pipe_open_noauth(2240) cli_rpc_pipe_open_noauth: rpc_pipe_bind for pipe \lsarpc failed with error NT_STATUS_BUFFER_TOO_SMALL : 3 Time(s) smbd/service.c:make_connection_snum(457) Couldn't find group DATX+common : 32 Time(s) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] nmbd[1892] error
Approximately every 30 seconds a friend receives a nmbd[1892] error. I believe it is related to Samba. As I'm a complete novice can someone please advise. Carbon -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] nmbd[1892] error
Approximately every 30 seconds a friend receives a nmbd[1892] error. I believe it is related to Samba. As I'm a complete novice can someone please advise. Carbon -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Network path not found - Windows to Linux connection
I am trying to use Samba to access files on Linux server from a Windows XP client. The server is running RedHat Linux 9 with Samba 3.0.21a installed, and the client is running Windows XP Home Edition, Service Pack 2. After installing the new Samba package on the server, I edited the configuration file, started the service and added a user with smbpasswd. To test that this was all working, I ran smbclient //dellex.net/mydir -U myuser on the server itself. This prompted for a password. Once the password was entered, the smb prompt appeared : smb: \ and I was able to access files. So far so good. Over on the Windows side, I opened a DOS box and entered the following: net use q: \\dellex.net\mydir After about a 20 second delay, it prompted for a user name and then a password. I entered these, and received the following message: System error 53 has occurred. The network path was not found. I see from the postings that this is a very common error message, but I have not been able to ferret out a solution from the information posted. One posting suggested that I needed to turn on the Allow Netbios over TCP/IP flag - I did this, but it did not solve the problem. In the log file, /var/log/samba/log.smdbd, I found a message showing that the first connection (using smbclient on the server) worked properly. However, there are no error messages or any other indication that the the Windows-initiated connection even happened. This seems to indicate that the connection request is not getting from the client to the server at all. I tried turning off the Windows firewall and the wireless router firewall (briefly) to no avail. Note that the server I am trying to reach is hosted at a remote ISP. I also have a local Linux server with an almost identical configuration. I am able to use Samba on that local server with no problem. Any idea what I should try next? -- Here is /etc/samba/smb.conf: # This is the main Samba configuration file. You should read the # smb.conf(5) manual page in order to understand the options listed # here. Samba has a huge number of configurable options (perhaps too # many!) most of which are not shown in this example # # Any line which starts with a ; (semi-colon) or a # (hash) # is a comment and is ignored. In this example we will use a # # for commentry and a ; for parts of the config file that you # may wish to enable # # NOTE: Whenever you modify this file you should run the command testparm # to check that you have not made any basic syntactic errors. # #=== Global Settings = [global] # workgroup = NT-Domain-Name or Workgroup-Name workgroup = linux # server string is the equivalent of the NT Description field server string = Samba Server # This option is important for security. It allows you to restrict # connections to machines which are on your local network. The # following example restricts access to two C class networks and # the loopback interface. For more examples of the syntax see # the smb.conf man page ; hosts allow = 192.168.1. 192.168.2. 127. # if you want to automatically load your printer list rather # than setting them up individually then you'll need this printcap name = /etc/printcap load printers = yes # It should not be necessary to spell out the print system type unless # yours is non-standard. Currently supported print systems include: # bsd, sysv, plp, lprng, aix, hpux, qnx ; printing = bsd # Uncomment this if you want a guest account, you must add this to /etc/passwd # otherwise the user nobody is used ; guest account = pcguest # this tells Samba to use a separate log file for each machine # that connects # log file = /var/log/samba/%m.log # all log information in one file log file = /var/log/samba/log.smbd # Put a capping on the size of the log files (in Kb). max log size = 50 # Security mode. Most people will want user level security. See # security_level.txt for details. security = user # Use password server option only with security = server ; password server = NT-Server-Name # Password Level allows matching of _n_ characters of the password for # all combinations of upper and lower case. ; password level = 8 ; username level = 8 # You may wish to use password encryption. Please read # ENCRYPTION.txt, Win95.txt and WinNT.txt in the Samba documentation. # Do not enable this option unless you have read those documents encrypt passwords = yes smb passwd file = /etc/samba/smbpasswd # The following are needed to allow password changing from Windows to # update the Linux system password also. # NOTE: Use these with 'encrypt passwords' and 'smb passwd file' above. # NOTE2: You do NOT need these to allow workstations to change only #the encrypted SMB passwords. They allow the Unix password #to be kept in sync with the SMB password. ;
[Samba] HLP access without SMB
Greetings, I am a technical writer for a medical software company. I'm currently developing the online Help for a new product line using an older version of RoboHelp. We are currently trying to overcome an issue with the HLP Help file format that has to do with Windows SMB. Basically, our new software will operate on machines with SMB turned off. When we turn SMB off, the HLP files do not work. There is also a secondary issue where users connecting to the software in proxy mode (that is, not in the hospital's network, but say as a doctor at an airport) cannot access the Help files. One possible solution is to have an SMB server with the Help files on it, but then they still do not work in proxy mode. Is Samba something that could help with this type of situation? Thank you in advance for your help, and sorry for the complexity of my question. Sincerely, Keith Ferguson Keith Ferguson, Senior Technical Writer, 781-774-5513 Medical Information Technology, Inc. Mailstop: C2S170W, MEDITECH Circle, Westwood, MA 02090 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] 3.0.14a: print driver deletion w/ rpcclient
W/ Samba 3.0.14a I've installed an apparently buggy printer driver (for a Brother HL1670N). From a Win2kSP4 client: - log into the samba server as me (the printer admin) - go to Printers share - right-click on printer, go to Properties - it bitches about print driver not being installed, asks if I want to install it, I click No - go to Advanced tab, click New Driver - proceed to add driver for printer - click Apply - Explorer (Exploder?) commits some error and will be closed Strangely the printer can be added by win2k clients and printed to, but when trying to access the Properties dialog it barfs with some useless error: Function address 0x699044eb caused a protection fault... blah blah So I want to remove the printer drivers from the Samba server, and I thought I could do this with rpcclient using 'deldriver': rpcclient $ deldriver 'Brother HL-1650/1670N series' Failed to remove driver Brother HL-1650/1670N series for arch [Windows NT x86] - error 0xbb9! Failed to remove driver Brother HL-1650/1670N series for arch [Windows NT x86] - error 0xbb9! result was WERR_UNKNOWN_PRINTER_DRIVER WERR_UNKNOWN_PRINTER_DRIVER? hrmm. Apparently the driver has to be unassigned from the printer? How is this done? Thanks, Keith -- SA Valaran Corp GPG: 0xEC705AE9 I put the sh in IT. pgpLtNXkv4YGH.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba, VPN, and Mac OSX 10.4.2
* [EMAIL PROTECTED] [29/07/2005 1028EDT]: We're having an odd problem with connecting to Samba shares over a VPN with a Mac client. [...] Brian Daniels Brian, curious -- which VPN client are you using? I know there were issue w/ Tiger and some versions of Cisco's client. Keith -- SA Valaran Corp GPG: 0xEC705AE9 I put the sh in IT. pgpwaJndoYGZt.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba permissions
* [EMAIL PROTECTED] [29/07/2005 1119EDT]: I am working on my permissions and something does not quite make sense to me. Here is what I have set. /DIR (Unix permissions are 3777) Then in samba I have the following [dir] path = /DIR read only = no valid users @teach @student create mask 3660 directory mask 3770 Then from a windows workstation, I create a new directory inside 'dir', and call it 'teach'. The permissions of 'teach' are 2770. It looks like it should be 3770 to me since the 'directory mask' commands does a bitwise 'AND'. Anyone know why this is? Maybe it is because of the DOS attributes or something. You're right about the bitwise AND. But default mode for a new directory is 0777. Observe: [EMAIL PROTECTED]:~$ cd tmp [EMAIL PROTECTED]:~/tmp$ umask 0 [EMAIL PROTECTED]:~/tmp$ umask [EMAIL PROTECTED]:~/tmp$ file foodir foodir: cannot open (foodir) [EMAIL PROTECTED]:~/tmp$ mkdir foodir [EMAIL PROTECTED]:~/tmp$ ls -ld foodir drwxrwxrwx 2 kw users 4096 Jul 29 11:59 foodir However, your new directory *inherited* the setgid bit (effectively a bitwise OR); this is simply the behavior of setgid bits on directories. From the man page for the stat() system call (section 2): The set GID bit (S_ISGID) has several special uses: For a directory it indicates that BSD semantics is to be used for that directory: files created there inherit their group ID from the directory, not from the effective gid of the creating process, and directories created there will also get the S_ISGID bit set. For a file that does not have the group execution bit (S_IXGRP) set, it indicates mandatory file/record locking. So, for your case: (3770 0777) | 2000 = 2770 It is doing exactly what it should be doing. :) Keith -- SA Valaran Corp GPG: 0xEC705AE9 I put the sh in IT. pgp7T4uJeN89b.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba permissions
* [EMAIL PROTECTED] [29/07/2005 1205EDT]: [...] However, your new directory *inherited* the setgid bit (effectively a bitwise OR); this is simply the behavior of setgid bits on directories. From the man page for the stat() system call (section 2): The set GID bit (S_ISGID) has several special uses: For a directory it indicates that BSD semantics is to be used for that directory: files created there inherit their group ID from the directory, not from the effective gid of the creating process, and directories created there will also get the S_ISGID bit set. For a file that does not have the group execution bit (S_IXGRP) set, it indicates mandatory file/record locking. So, for your case: (3770 0777) | 2000 = 2770 I hate replying to my own mails, but just to clarify it'd make more sense to write the above like so: 0777|2000 = 2777 = new dir mode before 'directory mask' 3770 is applied 27773770 = 2770 = new dir mode after directory mask is applied -- SA Valaran Corp GPG: 0xEC705AE9 I put the sh in IT. pgpwuwJQSGEvn.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba, VPN, and Mac OSX 10.4.2
* [EMAIL PROTECTED] [29/07/2005 1242EDT]: We have tried both IPSecuritas and VPN Tracker on the client machines. Both have the same errors. A google on that error message suggests that it is being generated in smbfs_smb.c in the Samba code. At least we know where the problem is probably hiding. I don't have access to Tiger; still running Panther (10.3.9) on my laptop. However I could try to reproduce this error over the weekend. Any other mac users out there? Please chime in. :) One thing I forgot to mention - the Mac clients can connect without problems to a WinNT server, VPN or local. Dangit. :/ -- SA Valaran Corp GPG: 0xEC705AE9 I put the sh in IT. pgp0IYUaO5qk5.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] poppassd and pam_winbind.so
Hi, I saw your post about poppassd and winbind and wondered if you got anywhere or found a solution. Thanks, Keith -- Keith Conger Server Systems Administrator Information Technology Onondaga Community College phone:(315)498-2767 nextel:(315)575-7197 email:[EMAIL PROTECTED] jabber: [EMAIL PROTECTED] http://www.sunyocc.edu/~congerk/ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] SAMBA + LDAP + add machine script bug?
Recently I was having some trouble getting the add machine script to work with samba-3.0.10. Initially, I attempted to add a Windoze XP box (i.e. Control Panel -System - Computer Name tab) to my domain with a user ID of root. This would always fail because there was no user named root in ou=Users,dc=somedomain,dc=org. Next, I tried to add the XP box with a user named Administrator. Samba would add the computer to ou=Computers,dc=somedomain,dc=org but still fail and would return an error back to the XP box The user name could not be found. I turned some tracing on in Samba and plowed through some Samba source and discovered that Samba is attempting to do a getpwnam on the newly added computer name. In short, first it does: 1. /var/lib/samba/sbin/smbldap-useradd.pl -w 'computer_name$' 2. Then it does getpwnam(computer_name$) The problem is that the second step kept failing because my ldap.conf did not list ou=Computers,dc=somedomain,dc=org as a naming context for nss_base_passwd. I updated /etc/ldap.conf to the following and was able to successfully add the computer: nss_base_passwd ou=Users,dc=somedomain,dc=org?one nss_base_passwd ou=Computers,dc=somedomain,dc=org?one # This line was added nss_base_shadow ou=Users,dc=somedomain,dc=org?one nss_base_group ou=Group,dc=somedomain,dc=org?one Is this a bug? Should samba be searching the password database for a computer (i.e. getent passwd)? Shouldn't it just perform a straight search of ou=Computers,dc=somedomain,dc=org? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Samba 3, SLES 9 and ldap
The error you're getting is because you havent populated the LDAP DB yet (ie. smbldap-populate.pl). Don't worry about it. I guess its a chicken and egg scenario. You can't run smbldap-pupulate.pl without a SID and you can't run net getlocalsid without it complaining that the LDAP DB isn't populated. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: RE: [Samba] Samba LDAP and add machine script problems
I have done some further investigation and this is what I found. If I change the uidNumber of uid=Administrator,ou=Users,dc=somedomain,dc=org to 0 Samba will add a computer to ou=Computers. However, it will still return an error to the XP machine that is attempting to join the domain. The error code is The user name could not be found. I plowed through the Samba logs and found this interesting tidbit, though I'm not sure what to make of it. Any help analyzing it would be greatly appreciated. // Begin log 2005/01/21 15:11:08, 3] rpc_server/srv_samr_nt.c:_samr_create_user(2250) _samr_create_user: Running the command `/var/lib/samba/sbin/smbldap-useradd.pl -w 'amp$'' gave 0 [2005/01/21 15:11:08, 5] lib/username.c:Get_Pwnam(293) Finding user amp$ [2005/01/21 15:11:08, 5] lib/username.c:Get_Pwnam_internals(223) Trying _Get_Pwnam(), username as lowercase is amp$ [2005/01/21 15:11:08, 5] lib/username.c:Get_Pwnam_internals(239) Trying _Get_Pwnam(), username as uppercase is AMP$ [2005/01/21 15:11:08, 5] lib/username.c:Get_Pwnam_internals(247) Checking combinations of 0 uppercase letters in amp$ [2005/01/21 15:11:08, 5] lib/username.c:Get_Pwnam_internals(251) Get_Pwnam_internals didn't find user [amp$]! [2005/01/21 15:11:08, 5] rpc_parse/parse_prs.c:prs_debug(82) 00 samr_io_r_create_user [2005/01/21 15:11:08, 5] rpc_parse/parse_prs.c:prs_uint32(642) data1: [2005/01/21 15:11:08, 5] rpc_parse/parse_prs.c:prs_uint32(642) 0004 data2: [2005/01/21 15:11:08, 5] rpc_parse/parse_prs.c:prs_uint16(613) 0008 data3: [2005/01/21 15:11:08, 5] rpc_parse/parse_prs.c:prs_uint16(613) 000a data4: [2005/01/21 15:11:08, 5] rpc_parse/parse_prs.c:prs_uint8s(729) 000c data5: 00 00 00 00 00 00 00 00 [2005/01/21 15:11:08, 5] rpc_parse/parse_prs.c:prs_uint32(642) 0014 access_granted: [2005/01/21 15:11:08, 5] rpc_parse/parse_prs.c:prs_uint32(642) 0018 user_rid : [2005/01/21 15:11:08, 5] rpc_parse/parse_prs.c:prs_ntstatus(672) 001c status: NT_STATUS_NO_SUCH_USER [2005/01/21 15:11:08, 5] rpc_server/srv_pipe.c:api_rpcTNP(1578) api_rpcTNP: called samr successfully // End log I'm trying to integrate Openldap with Samba version 3.0.10. I have populated my LDAP server via smbldap-populate.pl and I've gotten PAM to recognize LDAP as an authentication mechanism. Thus, I can add a user with smbldap- useradd.pl and su to that user. Can you do a straight login / ssh as that new user? Yes The problem I am having is when I attempt to add a computer from MS Windoze XP. When I attempt to join my domain XP prompts me for a user ID and password. If I enter a user ID of root with either my box's actual root password or the password for the LDAP user uid=Administrator,ou=Users,dc=somedomain,dc=org I get the following: unknown user or bad password. I suppose this makes sense because there are only two users in ou=Users (Administrator and nobody) neither of which is root. Alternatively, if I attempt to join the domain with a user ID of Administrator I get Access is denied. Somewhere in those howto's and example books that JHT, et al, has written he says to set the uid of the Administrator to 0. what UID does your administrator have? I believe from vague memory that the smbldap-populate script automatically sets the uid of the Administrator to 0. Just use smbldap-passwd Administrator to make sure that the password is set. then try adding your Machine again. This worked for me last night when I got the same error. tell us what happens. Regards Geoff. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba LDAP and add machine script problems
I'm trying to integrate Openldap with Samba version 3.0.10. I have populated my LDAP server via smbldap-populate.pl and I've gotten PAM to recognize LDAP as an authentication mechanism. Thus, I can add a user with smbldap-useradd.pl and su to that user. The problem I am having is when I attempt to add a computer from MS Windoze XP. When I attempt to join my domain XP prompts me for a user ID and password. If I enter a user ID of root with either my box's actual root password or the password for the LDAP user uid=Administrator,ou=Users,dc=somedomain,dc=org I get the following: unknown user or bad password. I suppose this makes sense because there are only two users in ou=Users (Administrator and nobody) neither of which is root. Alternatively, if I attempt to join the domain with a user ID of Administrator I get Access is denied. So, my question is do I need to create a LDAP user in ou=Users with a user ID of root. If so how should I do this and wouldn't it conflict with the root UID in /etc/passwd? I've been trying to follow the directions in By Example - Making Users Happy but it seems to be a little sketchy on this topic. I can provide logs on request. Here is my smb.conf: # Global parameters [global] workgroup = PEANUTS server string = Snoopy Samba Server log level = 5 log file = /var/log/samba/log.%m max log size = 50 time server = Yes socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=8192 SO_SNDBUF=8192 logon script = %U.bat #logon path = #logon home = domain logons = Yes preferred master = Yes domain master = Yes wins support = Yes #username map = /etc/samba/smbusers # LDAP Related ldap passwd sync = Yes passdb backend = ldapsam:ldap://127.0.0.1/ ldap admin dn = cn=Manager,dc=somedomain,dc=org ldap suffix = dc=somedomain,dc=org ldap group suffix = ou=Groups ldap user suffix = ou=Users ldap machine suffix = ou=Computers ldap idmap suffix = ou=Idmap,dc=somedomain,dc=org # Avoid the risk of UID/GID inconsistencies across systems # by having a common LDAP backend. idmap backend = ldap:ldap://127.0.0.1 # These should match the values specified in smbldap_conf.pm idmap uid = 1-2 idmap gid = 1-2 map acl inherit = Yes #ldap ssl = start_tls add user script = /var/lib/samba/sbin/smbldap-useradd.pl -a -m '%u' delete user script = /var/lib/samba/sbin/smbldap-userdel.pl '%u' add group script = /var/lib/samba/sbin/smbldap-groupadd.pl -p '%g' delete group script = /var/lib/samba/sbin/smbldap-groupdel.pl '%g' add user to group script = /var/lib/samba/sbin/smbldap-groupmod.pl -m '%u' '%g' delete user from group script = /var/lib/samba/sbin/smbldap-groupmod.pl -x '%u' '%g' set primary group script = /var/lib/samba/sbin/smbldap-usermod.pl -g '%g' '%u' add machine script = /var/lib/samba/sbin/smbldap-useradd.pl -w '%u' security = user template shell = /bin/false winbind use default domain = no [netlogon] path = /var/lib/samba/netlogon browseable = No root preexec = /var/lib/samba/netlogon/logon.pl %U %I [common] comment = Common material path = /home/common force group = common read only = No create mask = 0774 directory mask = 0775 browseable = No -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Error: Too many ACE entries for file xxx.txt to convert to posix perms.
When setting permission on a file or folder through Windows XP on a Samba share, I am not able to add additional Active Directory user ID's or groups to the ACL permissions. When I attempt to apply the setting I get a message Unable to save permission changes on .file, access denied. I am receiving error Too many ACE entries for file New Text Document.txt to convert to posix perms., which I think is related to my problem of adding additional Domain ID's or Groups to the permissions of a file. I can set additional ACL permission's to the file or folder using SETFACL, but even if I add additional ACL's to a file, when I view the file through Windows XP security, I do not see the additional ACL's that I have added. I am using Samba version 3.0.9. This is the first time I have installed Samba. Samba see's all objects in the Active Directory Domain and as far as I can tell everything else is functioning properly. I could use any help, thanks. I am running Suse Linux on s390 VM: Linux version 2.6.5-7.111-s390 ([EMAIL PROTECTED]) (gcc version 3.3.3 (SuSE Linux) Here are the options I used to compile Samba: ./configure --prefix=/usr --with-ads --with-winbind --with-pam-winbind --with-pa m --with-quotas --with-smbmount --with-acl-support --with-automount --with-confi gdir=/etc/samba --with-krb5=/usr/lib --with-libsmbclient --with-msdfs --with-pam _smbpass --with-smbwrapper Here are the errors I'm receiving in log.smbd: [2004/11/23 15:19:53, 3] smbd/dosmode.c:unix_mode(111) unix_mode(New Text Document.txt) returning 0766 [2004/11/23 15:19:53, 3] smbd/posix_acls.c:convert_canon_ace_to_posix_perms(2498 ) convert_canon_ace_to_posix_perms: Too many ACE entries for file New Text Docum ent.txt to convert to posix perms. [2004/11/23 15:19:53, 3] smbd/posix_acls.c:set_nt_acl(3139) set_nt_acl: failed to convert file acl to posix permissions for file New Text Document.txt. [2004/11/23 15:19:53, 3] smbd/error.c:error_packet(105) error string = Function not implemented [2004/11/23 15:19:53, 3] smbd/error.c:error_packet(129) error packet at smbd/nttrans.c(2026) cmd=160 (SMBnttrans) NT_STATUS_ACCESS_DEN IED Here is my smb.conf: testparm -v Load smb config files from /etc/samba/smb.conf Processing section [everyone] Loaded services file OK. Server role: ROLE_DOMAIN_MEMBER Press enter to see a dump of your service definitions # Global parameters [global] dos charset = CP850 unix charset = UTF-8 display charset = LOCALE workgroup = PROD realm = DOMAIN.ORG netbios name = Server1 netbios aliases = netbios scope = server string = Samba 3.0.9 interfaces = bind interfaces only = No security = DOMAIN auth methods = encrypt passwords = Yes update encrypted = No client schannel = Auto server schannel = Auto allow trusted domains = Yes hosts equiv = min password length = 5 map to guest = Never null passwords = No obey pam restrictions = No password server = .Domain.org smb passwd file = /usr/private/smbpasswd private dir = /usr/private passdb backend = smbpasswd algorithmic rid base = 1000 root directory = guest account = nobody pam password change = No passwd program = passwd chat = *new*password* %n\n *new*password* %n\n *changed* passwd chat debug = No passwd chat timeout = 2 check password script = username map = /etc/samba/smbusers password level = 0 username level = 0 unix password sync = No restrict anonymous = 0 lanman auth = Yes ntlm auth = Yes client NTLMv2 auth = No client lanman auth = Yes client plaintext auth = Yes preload modules = use kerberos keytab = No log level = 3 syslog = 1 syslog only = No log file = max log size = 5000 debug timestamp = Yes debug hires timestamp = No debug pid = No debug uid = No smb ports = 445 139 large readwrite = Yes max protocol = NT1 min protocol = CORE read bmpx = No read raw = Yes write raw = Yes disable netbios = No acl compatibility = defer sharing violations = Yes nt pipe support = Yes nt status support = Yes announce version = 4.9 announce as = NT max mux = 50 max xmit = 16644 name resolve order = lmhosts wins host bcast max ttl = 259200 max wins ttl = 518400 min wins ttl = 21600 time server = No unix extensions = Yes use spnego = Yes client signing = auto server signing = No client use spnego = Yes change notify timeout = 60 deadtime = 0 getwd cache = Yes keepalive =
[Samba] cross compilation
Is this the correct list for cross compilation questions? Need to compile on x86 for MIPS target. - Keith -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] LDAP WBEL
On Mon, 06 Sep 2004 10:38:17 -0500 Ganeshram Iyer [EMAIL PROTECTED] wrote: Does anyone have any good suggestions for a tool which I can use to check the HD before I install? Most disk vendors have a test tool you can download, usually to create a standalone boot floppy. If your vendor doesn't, try Maxtor's Powermax program, which is supposed to work for all manufacturers' drives (I've only tried it on Maxtor drives). I've found the vendors' test programs to be very good. Keith -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Simple?? questions?
On Mon, 16 Aug 2004 14:52:53 -0700 Chris Trown [EMAIL PROTECTED] wrote: When I log on to the domain with an XP system(not SP2, yet), it takes forever. It stops at Loading/Saving your profile for minutes. I don't see any errors in the log file. How big is your profile? It will be copied from the server to the PC at every login, and back again at every logout. The next question arises mostly due to my inexperience with administering windows domains. However, the more I think about it, the more I think it can't be done. Is it possible to copy local profiles from a windows system to the profiles directory on the samba server and expect everything to work as if the profile were being loaded locally? By locally, I mean non-domain, local profile. In a word: yes. See the Samba HOWTO collection. Keith -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] URGENT : NT4 Standalone server in a Samba-LDAP PDC
On Tue, 10 Aug 2004 22:22:30 -0400 Bousquet Francois [EMAIL PROTECTED] wrote: I have an urgent need, Then you'd be best off using a paid-for support service. Telling the volunteers here who give up their own time and knowledge for free that you need to be given a high priority is likely to have the opposite effect. K. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] pdb_mysql.so?
On Wed, 11 Aug 2004 07:23:44 -0700 Raymond [EMAIL PROTECTED] wrote: This has probably been asked before, but where is pdb_mysql.so? $ find / -name pdb_mysql.so -- -- Small business computer support: http://www.tiger-computing.co.uk Linux consultancy: http://www.TheLinuxConsultancy.co.uk -- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Bizarre failure of samba shares to XP
On Sun, 08 Aug 2004 23:48:26 -0400 Dean Carpenter [EMAIL PROTECTED] wrote: The really weird part is that I can connect to any subdirectory below the share root just fine. I would suspect directory permissions/ownership of the share root. Can the same user successfully access the share root from another PC? Keith -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Windows Server 2000 Server installation
On Mon, 2 Aug 2004 07:58:12 -0700 [EMAIL PROTECTED] wrote: Is there a procedure for installing and configuring SAMBA 3.0 for a Windows 2000 server so as to share files from the Windows 2000 server for Sun Solaris 8 workstations? You just need to use smbmount to mount the Windows shares on the Sun workstations. -- -- Small business computer support: http://www.tiger-computing.co.uk Linux consultancy: http://www.TheLinuxConsultancy.co.uk -- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Authenticating UNIX Cluster with Active Directory
Hi All, We're running Samba 3.0.2 on Solaris and have successfully implemented a number of samba servers authenticating with Active Directory. I now have a requirement to try and implement a samba service using Active Directory authentication within a two-node Veritas Cluster 3.5 environment. My aim is to have the users access the samba share not by the individual cluster node names, but by the clusters Virtual Nodename (the nodename that moves between the cluster nodes). I'm not bothered about heavily integrating Samba itself within the cluster, the logistics of the solution have all been sorted out. It is purely the authentication process that I don't know how to achieve i.e. how to go about registering a virtual ip address with active directory so that no matter which cluster node has possesion of the virtual interface, the users can still access the share without changing anything. Many Thanks, Keith. Senior Technical Analyst (Solaris) -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Samba amiga-mac
Hi I have an ethernet link between these two machines. I can share an internet connection with the mac as the host. I can ping the amiga from Mac with 100% packets returned. I can see a link to Amiga in the network window in the launcher on the Mac. However when I try to 'connect to server' from the Mac, Genesis on the Amiga refuses all connections on port 139. Same thing happens when I try and launch the swat interface via the browser on the Amiga: access to port 901 denied. I have tried editing the samba.config file by hand to set up shares on the amiga. I have endlessly changed settings both for samba and genesis with no obvious effect. If any one has any suggestions it would be greatly appreciated. Keith Bowler -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] round in circles
Hi i am trying to connect my amiga 1200 via ethernet to a g4 imac. I have installed and configured samba and genesis on the amiga. i can ping from the mac and internet sharing works fine with mac as the gateway. Whan I try and access the amiga using connect to server from the mac i get the message access to port 139 denied. Also the same message when I try to access the swat configuration via the web browser: access to port 901 denied. I have checked the configuration files for genesis to allow these hosts. Not sure what to try next as i have reinstalled and configured several times. Thanks keith bowler -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Lag on network using Samba
On Fri, 18 Jun 2004 11:18:20 +0200 binc5 [EMAIL PROTECTED] wrote: I am using Samba for a file server and get a lag when accessing files across the network, I assume it is due to inactivity, because the first file I access takes the longest to access, and then other files I access immediatly after are much faster. What is security = set to in smb.conf? If it is not set, it defaults to user. Are you able/willing/etc to use security = domain? Keith -- -- Small business computer support: http://www.tiger-computing.co.uk Linux consultancy: http://www.TheLinuxConsultancy.co.uk -- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Lag on network using Samba
On Fri, 18 Jun 2004 14:08:07 +0200 binc5 [EMAIL PROTECTED] wrote: This seems to solve the problem, would you mind explaining, what causes the delay, and if I wanted to have user security is there a way I could do this without incuring the delay? The delay is to check for a possible exploitation bug in NT, I believe. I'm not aware of any way of avoiding the delay with security = user. Keith -- -- Small business computer support: http://www.tiger-computing.co.uk Linux consultancy: http://www.TheLinuxConsultancy.co.uk -- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] i've problem with login script
On Wed, 16 Jun 2004 10:12:32 +0700 andry [EMAIL PROTECTED] wrote: any can help me how to make login script work fyi i use dos and win 9x as client, how to about the configuration to make login script work for client You don't say what the problem is. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] how to make login script..
On Wed, 16 Jun 2004 09:57:37 +0700 andry [EMAIL PROTECTED] wrote: 1. how to make samba as PDC, how about the configuration..? 2. how to make login script for client ( dos win 9x,nt,2k) Take a look at the Samba Howto document (from http://www.samba.org/ find your local mirror, then head for documentation). Keith -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC and Windows client problem
On Wed, 02 Jun 2004 11:18:20 +0200 Edy Incoletti [EMAIL PROTECTED] wrote: Username and password are checked, the user profile is downloaded (I found the folder on the machine) and then Windows crash (and reboot) with Exception c005 in winlogon.exe. Try it without the profile. I've had problems like this when the profile is corrupt. Keith -- -- Small business computer support: http://www.tiger-computing.co.uk Linux consultancy: http://www.TheLinuxConsultancy.co.uk -- -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] changing smbpasswd password rules
On Tue, 01 Jun 2004 11:02:51 -0400 Jeff Kraeger [EMAIL PROTECTED] wrote: Where does smbpasswd get its password rules from? pdbedit is what you need. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Old domain name an't delete record with tdbtool
Samba V3, tdbsam backend. I've had to change the workgroup name in smb.conf on a Samba PDC (ie, I've changed the domain name). However, the old domain name still shows up in Windows PCs' Microsoft Windows Network (together with the new name, which works just fine). I want to remove the old domain name, and I assume it is still showing because it is still present in secrets.tdb. A tdbdump secrets.tdb shows (actual domain names changed): key = SECRETS/SID/OLDNAME data = [deleted] key = SECRETS/SID/NEWNAME data = [deleted] So I tried to remove the old name with tdbtool: $ tdbtool secrets.tdb tdb delete SECRETS/SID/OLDNAME delete failed tdb delete SECRETS/SID/OLDNAME delete failed tdb Some questions: 1. Is the reason that the old domain name is showing because it is in secrets.tdb? 2. Is deleting it from secrets.tdb the right way to remove it? 3. How do I delete it? Many thanks for any suggestions - K. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Domain members list
Hi World I posted this a few weeks ago, but to no response. I would have thought that this were possible, but am I mistaken? Thanks Keith On Wed, 28 Apr 2004 19:29:18 +0100 Keith Edmunds [EMAIL PROTECTED] wrote: Using Samba 3.0.2a as a PDC, I wanted to add a domain user to the workstation's local 'administrators' group. I logged into the workstation (Win2K) as the local admin, and browsed the domain for usernames. The domain members list seems to contain every entry in /etc/passwd - how can I restrict the list to just those people for whom the command 'smbpasswd -a x' has been run? Thanks -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Domain members list
Using Samba 3.0.2a as a PDC, I wanted to add a domain user to the workstation's local 'administrators' group. I logged into the workstation (Win2K) as the local admin, and browsed the domain for usernames. The domain members list seems to contain every entry in /etc/passwd - how can I restrict the list to just those people for whom the command 'smbpasswd -a x' has been run? Thanks -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Using mount -t smbfs in /etc/fstab and can't control chmod
On Wed, 28 Apr 2004 19:32:15 + Brian Johnson [EMAIL PROTECTED] wrote: How can I mount it so the group has full permissions to it? See the dmask, umask and fmask options to 'mount'. Keith -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Mac OS X Server 10.3: Monotonically increasing Samba processes?
Through my Server Admin, a graph of Samba connected users shows that the number of smbd server processes grows and grows without end -- processes never time out/log out and die. This was no problem under light usage, but when I moved a heavily used share to the server, the number of processes spun out of control. What made it all worse was that many of the supposedly dormant processes still took up 0.5% of the CPU, which, when the process numbers grew into the hundreds, did a nice job of locking up the server. Can anyone else report a similar experience? Is there a fix? -- Keith Bettinger Lead Programmer/Head Systems Administrator Stanford Psychiatry Neuroimaging Laboratory (650) 498-4620 -- Technical Details: Machine Model: Xserve CPU Type: PowerPC G4 (3.3) Number Of CPUs: 2 CPU Speed: 1.33 GHz L2 Cache (per CPU): 256 KB L3 Cache (per CPU): 2 MB Memory: 2 GB Bus Speed: 167 MHz Boot ROM Version: 4.65f3 smb.conf: [global] log level = 2 display charset = UTF-8-MAC print command = /usr/sbin/PrintServiceAccess printps %p %s lprm command = /usr/sbin/PrintServiceAccess remove %p %j security = domain log file = /var/log/samba/log.%m guest account = unknown encrypt passwords = yes password server = * printing = BSD allow trusted domains = no preferred master = no lppause command = /usr/sbin/PrintServiceAccess hold %p %j netbios name = spnlXserve wins support = no add machine script = /usr/bin/opendirectorypdbconfig -c create_computer_account -r %u -n /LDAPv3/127.0.0.1 max smbd processes = 0 printcap = server string = spnlXserve MEGA Server lpresume command = /usr/sbin/PrintServiceAccess release %p %j logon drive = H: domain logons = no lpq command = /usr/sbin/PrintServiceAccess jobs %p admin users = @admin passdb backend = opendirectorysam guest dos charset = CP437 unix charset = UTF-8-MAC auth methods = ntdomain local master = no domain master = no map to guest = Bad User use spnego = yes printer admin = @admin, @staff, unknown logon path = \\%N\profiles\%u workgroup = SPNL-BNRC [Yale-PT] oplocks = 0 map archive = no path = /Volumes/SPNLBNRC-Server/Yale-PT read only = no inherit permissions = 0 strict locking = 1 comment = macosx create mask = 0644 guest ok = 1 directory mask = 0755 [Public] oplocks = 0 map archive = no path = /Shared Items/Public read only = no inherit permissions = 0 strict locking = 1 comment = macosx create mask = 0666 guest ok = 1 directory mask = 0777 [printers] printable = yes path = /tmp -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Having problems uninstalling Samba 2.2.7a in RH 9
with file from package samba-2.2.7a-7.9.0 file /usr/share/man/man8/smbd.8.gz from install of samba-3.0.2a-1 conflicts with file from package samba-2.2.7a-7.9.0 file /sbin/mount.smb from install of samba-3.0.2a-1 conflicts with file from package samba-client-2.2.7a-7.9.0 file /sbin/mount.smbfs from install of samba-3.0.2a-1 conflicts with fil e from package samba-client-2.2.7a-7.9.0 file /usr/bin/nmblookup from install of samba-3.0.2a-1 conflicts with fi le from package samba-client-2.2.7a-7.9.0 file /usr/bin/rpcclient from install of samba-3.0.2a-1 conflicts with fi le from package samba-client-2.2.7a-7.9.0 file /usr/bin/smbcacls from install of samba-3.0.2a-1 conflicts with fil e from package samba-client-2.2.7a-7.9.0 file /usr/bin/smbclient from install of samba-3.0.2a-1 conflicts with fi le from package samba-client-2.2.7a-7.9.0 file /usr/bin/smbmnt from install of samba-3.0.2a-1 conflicts with file from package samba-client-2.2.7a-7.9.0 file /usr/bin/smbprint from install of samba-3.0.2a-1 conflicts with fil e from package samba-client-2.2.7a-7.9.0 file /usr/bin/smbspool from install of samba-3.0.2a-1 conflicts with fil e from package samba-client-2.2.7a-7.9.0 file /usr/bin/smbtar from install of samba-3.0.2a-1 conflicts with file from package samba-client-2.2.7a-7.9.0 file /usr/share/man/man1/nmblookup.1.gz from install of samba-3.0.2a-1 conflicts with file from package samba-client-2.2.7a-7.9.0 file /usr/share/man/man1/rpcclient.1.gz from install of samba-3.0.2a-1 conflicts with file from package samba-client-2.2.7a-7.9.0 file /usr/share/man/man1/smbcacls.1.gz from install of samba-3.0.2a-1 conflicts with file from package samba-client-2.2.7a-7.9.0 file /usr/share/man/man1/smbclient.1.gz from install of samba-3.0.2a-1 conflicts with file from package samba-client-2.2.7a-7.9.0 file /usr/share/man/man1/smbtar.1.gz from install of samba-3.0.2a-1 conf licts with file from package samba-client-2.2.7a-7.9.0 file /usr/share/man/man8/smbmnt.8.gz from install of samba-3.0.2a-1 conflicts with file from package samba-client-2.2.7a-7.9.0 file /usr/share/man/man8/smbmount.8.gz from install of samba-3.0.2a-1 conflicts with file from package samba-client-2.2.7a-7.9.0 file /usr/share/man/man8/smbspool.8.gz from install of samba-3.0.2a-1 conflicts with file from package samba-client-2.2.7a-7.9.0 file /usr/share/man/man8/smbumount.8.gz from install of samba-3.0.2a-1 conflicts with file from package samba-client-2.2.7a-7.9.0 Can someone help me out here? Also after I get this corrected will I be able to install the RPM package from the command line. Thanks very much, Keith -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] User shell folders
I'm setting up roaming profiles (Samba 3, Win2K). The profile is stored in a subdirectory of the user's home directory, .profile. Chapter 24 of the (excellent) Samba Howto Collection discusses changing the registry entries (\user shell folders) to point to a network location to avoid downloading all the profile files at every login and logout. I have replaced the %USERPROFILE% there with: %LOGONSERVER%\%USERNAME%\.profile ...in other words, the precise location of the roaming profile, so in fact no copying at all should be needed. This seems to work, but is there any danger I should be aware of in setting 'user shell folders' to the location of the roaming profile? Thanks, Keith -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] After Install now what? Urgent
On Tue, 17 Feb 2004 06:35:26 -0800 (PST) Paul Stanard [EMAIL PROTECTED] wrote: I have gone through the ./configure the make ...and the make install...could you send me a link as to what to do next to get samba configured to my network? http://samba.mirror.ac.uk/samba/docs/man/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] homes share now prevents access to static share
User share is preventing access to static share. How do I fix? User (masters) with home directory (/home/masters) the same name as a permanent share (masters - /disk1/masters) is picking up the 'home' share /home/masters directory instead of the 'masters' share. All other users mapping to share masters pick up the correct folder /disk1/masters. Only user masters is getting the incorrect (to my way of thinking) folder. Previously I was running redhat 8.0 with samba 2.something, and this was working fine. User Masters was the only user allowed to update a masters directory. All other users had read only permission to the masters directory and all was good. This is per the documentation for samba 2.0 included in the swat application. I have recently rebuilt the linux server, which is now on fedora 1 samba version: 3.0.0-15. I copied the directories section of smb.conf from the old installation to the new installation. Directory structure for samba shared files are very similar. Windows Client is running win98se, logging onto the samba domain. Just for the record # Samba config file created using SWAT # from 192.168.0.48 (192.168.0.48) # Date: 2004/01/13 22:11:41 # Global parameters [global] workgroup = MONASH server string = Samba Server guest account = guest unix password sync = Yes log file = /var/log/samba/%m.log max log size = 50 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 logon script = logon.bat domain logons = Yes preferred master = Yes domain master = Yes dns proxy = No wins support = Yes ldap ssl = no homedir map = /home/%U hosts allow = 192.168.0., 127. [homes] comment = Home Directories read only = No guest ok = Yes browseable = No ... [masters] path = /disk1/masters guest ok = Yes [netlogon] comment = Logon Directory path = /etc/samba/netlogon guest ok = Yes logon.bat echo Setting Current Time... net time \\junior /set /yes echo Mapping Network Drives to Samba Server Junior ... net use u: /home /yes net use x: \\junior\masters /yes net use p: \\junior\public /yes net use z: \\junior\masters /yes pause Yahoo! Messenger - Communicate instantly...Ping your friends today! Download Messenger Now http://uk.messenger.yahoo.com/download/index.html -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Windows 2000 network browsing sometimes works, other times not on Samba 3.0.1!
Please help, I've seen some people now mentioning about this problem. Has anyone got the answer yet? I heard that downgrading works? Is there no other solution? Please reply to this email, cause I did not subscribe to the mailing list, as I don't want to be bombarded with virus again -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3 and MMC (Microsoft Management Console)
Hi there, In a scenarion where you only have a Samba3 PDC can one also use these tools? Is it possible to run these usrmgr and srvmgr from NT on a Win2000 workstation? Where can one find these tools? Download? Thanks in advance Keith Williams - Original Message - From: John H Terpstra [EMAIL PROTECTED] To: Nils Kalchhauser [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Friday, November 07, 2003 11:18 AM Subject: Re: [Samba] Samba 3 and MMC (Microsoft Management Console) On Fri, 7 Nov 2003, Nils Kalchhauser wrote: rruegner [EMAIL PROTECTED] wrote (Thu, 6 Nov 2003 23:44:30 +0100): It works in parts but not in a whole cause its to deep inbound in active directory. So giving advice to use them would be no real advice for a stable use of samba Samba 3 can act as win nt 4 pdc and admined via with usrmgr and srvmgr without trouble thanks for your answers... I tried srvtools.exe too, but the user manager has New User... greyed out and editing an existing user just does not work. however, listing the exsting users with their real names works. now some of you suggest that the nt4 usermgr really works nice... what can be done with it? If you logon using the administrator (root) account and log onto the Domain you should be able to administer uses and groups using the NT4 Domain User Manager. If this does not work, it means your configuration if whacky. - John T. -- John H Terpstra Email: [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Patches for samba 3.0.0 client/client.c
Patch against samba 3.0.0 client/client.c Mainly for -L parameter options 1.) Add a configurable connection delay. The default is too long. Add items to long_options of poptOption for help message, however I just put something i.e. CONNSETUP to the last parameter of long_options. It seems for use of documentation 2.) Remark the code that require list_servers must using port 139. It seems that 445 can also used.. Also a user may be forced to make a connection to port 139, however he may wants to use port 445 only. 3.) Add OS, Domain and server name display for -L option. (Just copy from do_connect debug message). It is better to let user always know is the os of the remote machine. Keith Mok = --- client.c.orig2003-10-27 01:38:55.0 +0800 +++ client.c2003-10-27 01:38:37.0 +0800 @@ -49,6 +49,8 @@ static int process_tok(fstring tok); static int cmd_help(void); +static int connect_timeout = 20*1000; + /* 30 second timeout on most commands */ #define CLIENT_TIMEOUT (30*1000) #define SHORT_TIMEOUT (5*1000) @@ -2533,7 +2535,9 @@ if (have_ip) ip = dest_ip; /* have to open a new connection */ -if (!(c=cli_initialise(NULL)) || (cli_set_port(c, port) != port) || + +if (!(c=cli_initialise(NULL)) || !(c-timeout = connect_timeout) || +(cli_set_port(c, port) != port) || !cli_connect(c, server_n, ip)) { d_printf(Connection to %s failed\n, server_n); return NULL; @@ -2650,22 +2654,33 @@ if (!cli) return 1; +if (*cli-server_domain) { +printf(Domain=[%s] OS=[%s] Server=[%s]\n, +cli-server_domain,cli-server_os,cli-server_type); +} else if (*cli-server_os || *cli-server_type){ +printf(OS=[%s] Server=[%s]\n, +cli-server_os,cli-server_type); +} + browse_host(True); +/* if (port != 139) { - -/* Workgroups simply don't make sense over anything - else but port 139... */ + + Seems not true + Workgroups simply don't make sense over anything + else but port 139... cli_shutdown(cli); port = 139; cli = do_connect(query_host, IPC$); } - + if (cli == NULL) { d_printf(NetBIOS over TCP disabled -- no workgroup available\n); return 1; } +*/ list_servers(lp_workgroup()); @@ -2721,8 +2736,9 @@ zero_ip(ip); if (have_ip) ip = dest_ip; - -if (!(cli=cli_initialise(NULL)) || (cli_set_port(cli, port) != port) || + +if (!(cli=cli_initialise(NULL)) || !(cli-timeout = connect_timeout) || +(cli_set_port(cli, port) != port) || !cli_connect(cli, server_name, ip)) { d_printf(Connection to %s failed\n, desthost); return 1; @@ -2795,6 +2811,7 @@ { command, 'c', POPT_ARG_STRING, cmdstr, 'c', Execute semicolon separated commands }, { send-buffer, 'b', POPT_ARG_INT, io_bufsize, 'b', Changes the transmit/send buffer, BYTES }, { port, 'p', POPT_ARG_INT, port, 'p', Port to connect to, PORT }, +{ conn_timeout, 'e', POPT_ARG_INT, connect_timeout, 'e', Connection timeout in millisecond, CONNTIMEOUT }, POPT_COMMON_SAMBA POPT_COMMON_CONNECTION POPT_COMMON_CREDENTIALS -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] smbclient -L xx.xx.xx.xx port 139 problem
Hi I am using smbclient 3.0.0. Linux version In the previous version 2.x.x: smbclient -L xx.xx.xx.xx -p 445 will only send request to remote host through port 445, but not 139. But in 3.0.0 smbclient -L xx.xx.xx.xx -p 445 will send request to remote host through port 445, and then port 139. The problem is I cannot subpress smbclient to send request to another machine throught port 139. And if port 139 of remote machine is closed, it takes a long time for connection timeout. Any suggestion or help please ? Keith Mok -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Thank you!
Please see the attached file for details.-- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Problems with Email after logging into Domain
Hello, For sometime I have been running Samba 3.0b2 and with help of John T is running very good. Last night my vendow$ computer blew up on me- I tried to change the drive letter from f to C and it did not like that and no matter what I did it would not boot back in to the OS. Nice going M$. Anyway I loaded XP and it joined the Samba Domain so easy it was scary. But the one glitch I have is that I can recieve email from SBC just fine but I can not send. It says that the address I am trying to send it too - my self [EMAIL PROTECTED] is not correct? Is there a setting I need to set in the server so that I can send my email out? I can see my shares on the server perfect. Like I said I think it thought I was logging into a windows domain. Can anyone help me out here? Thanks for your help, ikw - Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Problems with adding Windows printer drivers to a Sambabox
Chris Nolan wrote: Hi all! Here is an interesting problem: I have installed Mandrake 9.0 on two server boxes, both of which are running very happily and have been for a year now (and a year or two before that on earlier versions of Mandrake). I was able to successfully add printer drivers to one of these boxes (as it was the only one running Samba at the time, called MAIN) without any problems. Yesterday, I had to install some drivers for a Toshiba photocopier (for all those considering Toshiba photocopier purchase/rental for network printing *DON'T*. Their drivers are horrible, unstable bodies of code). On the existing Samba box and on the new one (with security = domain pointing at MAIN), I could not add the driver. It turns out that one of my administrator friends had previously added the driver to the MAIN box, after setting the following options on the [Printers] and [print$] shares: nt acl support = no write list = list of users read list = list of users Apparently, this resulted in the Toshiba driver spewing method call failures to the screens of the workstations. He cleaned that up and deleted the printer driver files from MAIN (but not the driver). I have since used rpcclient to remove the driver entry. Now, whether adding to the MAIN box or the newly setup Samba instance (on a box called GRUNTMASTER), I always get Operation could not be completed when attempting to add the driver. The logs show that Samba's conversation with the client attempting to add the driver results in a service (along the lines of ::{a34af-25df4-cdf4a-a65gc}) not being found. This is probably completely unrelated, but -- this isn't one of those Toshiba copier/printer with two different possible controllers, is it? In other words, are you *sure* you have the right driver? I ask, because I have pulled my own hair out over this issue. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Problems with Loggin on Samba Server
Dear Team, While I can log on to my Samba Server just fine, I still get this error in it Windows cannot create a profile on \\server\profiles\ikw38.pds you will not be able to save any changes to the server but you you will have local profile on the machine. No changes will be saved. I looked at smb.conf file it looks to in order according to the documentation. John T helped me set this up. I think it is something very simple. Here is the current smb.conf file [global] workgroup = netbios name = samuel server string = Samba PDC running %v passdb backend = tdbsam, guest log level = 1 syslog = 0 log file = /var/log/samba/%m max log size = 50 socket options = TCP_NODELAY SO_KEEPALIVE SO_SNDBUF=8192 SO_RCVBUF=8192 disable spoolss = Yes add machine script = /usr/sbin/adduser -n -g machines -c Machine -d /dev/null -s /bin/false %u logon path = \\%L\profiles\%U logon drive = H: logon home = domain logons = Yes os level = 35 preferred master = Yes domain master = Yes wins support = Yes idmap uid = 15000-2 idmap gid = 15000-2 printing = lprng use client driver = Yes [printers] comment = All Printers path = /var/spool/samba guest ok = Yes printable = Yes browseable = No [public] comment = A public share for vendor docs, etc. path = /usr/public read only = No create mask = 0755 force directory mode = 0755 guest ok = Yes [temp] comment = A place to drop off temporary files path = /tmp read only = No create mask = 0755 force directory mode = 0755 guest ok = Yes [docs] comment = Main Document Share for important Corporate Documents path = /doc read only = No create mask = 0755 force directory mode = 0755 guest ok = Yes [homes] comment = Home directories valid users = %S read only = No create mask = 0755 browseable = No [profiles] comment = User Profiles (change path as needed) path = /var/spool/profiles read only = No profile acls = Yes Can anyone help me out here?? Thanks ikw38 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Any Idea why this would happen??
Windows cannot create a profile directory \\samuel\ikw38 you be logged to a local profile only. Then it comes saying any changes made in this session will not be saved. All changes made in the session will be lost. Is some setting I need to check in Windows? Thanks ikw38 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Need a little help here.
Hi all, I am back for more punishment- Anyway I reinstalled my Linux using SuSe 8.2 pro. I did not install the defualt Samba , instead I got the latest tarball for 3.0b2 I also installed webmin. Now it comes up with error The Samba server executable /usr/sbin/smbd was not found. Either Samba is not installed on your system or your module configuration is incorrect. Now when I downloaded it I stored it on the Desktop and used terminal to extract it and install it from there. How can I fix this problem? Or is there a way to uninstall it without redoing the whole thing again? Sorry for my mistake but any help would be greatly apreciated. K Williams -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] I get two diffrent errors now...:-(
Hi Team, For the last several days I have worked very hard in trying to get a Samba PDC up. I have now reinstalled RH9- running Samba 2.2.7a and everything is running. But now I can't even get it to comeup as workf group. One error i get SMIS DOMAIN - Network Path not found. This is what iget with current SMB.CONF The othe one is in the attachment. Here is the current SMB.CONF file. Now I have tried user, Domain, server as security none seem to like anything. [global] workgroup = SMIS netbios name = Linux_Server server string = Samba PDC running %v logon drive = H: security = server encrypt passwords = yes browsable = yes local master = yes domain master = yes os level = 64 preferred master = yes domain logons = yes logon path = \\%L\profiles\%U add user script = /usr/sbin/adduser -n -g machines -c Machine -d /dev/null -s /bin/false %m$ domain admin group = @ntadmins hosts allow = 192.168.1.100/50 127.0.0.1 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 log file = /var/log/samba/%m.log max log size = 50 printcap = /etc/printcap load printers = yes printing = lprng use client driver = yes #= Share Definitions [printers] comment = All Printers path = /var/spool/samba browsable = no public = yes writable = no printable = yes [public] comment = A public share for vendor docs, etc. path = /usr/public public = yes create mask = 0755 force directory mode = 0755 writable = yes [temp] comment = A place to drop off temporary files path = /tmp public = yes create mask = 0755 force directory mode = 0755 writable = yes [docs] comment = Main Document Share for important Corporate Documents path = /doc public = yes create mask = 0755 force directory mode = 0755 writable = yes [home] comment = Home directory for %U path = /home/%U browsable = yes public = no hide dot files = yes writeable = yes create mask = 0755 directory mask = 0755 username = %U ** Thanks for the help I think we are close here but I am unsure what to try next? -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Keep getting Error Network Path not found
Hi Team, I keep getting the new error Network Path Not found. I have changed security to all of them samething. I have installed 3.0b2-- samething. I enabled WINS with a private address of 10.0.0.1 Samthing. I even tried setting up a DNS but that mucked everything up. I can ping both boxes just fine it just with Samba and w2k joining the Domain. I do have a router that acts as my dhcp server for the net- Linux likes this just fine cause i can fly on the net with Linux - one of the reasons I like it so mucm. :-)) I hope someone can give me a clue as to what is causing this. I am willing to try another config file if need to be. Anything just to see some success would be great. Thanks for your help guys, Here is the current SMB.CONF file [global] log file = /var/log/samba/%m.log load printers = yes socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 logon drive = H: domain master = yes encrypt passwords = yes browsable = yes wins support = true allow hosts = 10.0.0.1 192.168.1.100/24 127.0.0.1 use client driver = yes netbios name = Linux_Server server string = Samba PDC running %v printing = lprng local master = yes logon path = \\%L\profiles\%U workgroup = SMIS os level = 64 add user script = /usr/sbin/adduser -n -g machines -c Machine -d /dev/null -s /bin/false %m$ security = user max log size = 50 domain admin group = root printcap = /etc/printcap domain logons = yes [printers] comment = All Printers path = /var/spool/samba browsable = no public = yes writable = no printable = yes [public] comment = A public share for vendor docs, etc. path = /usr/public public = yes create mask = 0755 force directory mode = 0755 writable = yes [temp] comment = A place to drop off temporary files path = /tmp public = yes create mask = 0755 force directory mode = 0755 writable = yes [docs] comment = Main Document Share for important Corporate Documents path = /doc public = yes create mask = 0755 force directory mode = 0755 writable = yes [home] comment = Home directory for %U path = /home/%U browsable = yes public = no hide dot files = yes writeable = yes create mask = 0755 directory mask = 0755 username = %U -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Still having the same problem with Samba
Dear Team, I am still getting this error even after making the change from security = user to security = domain. I even tried changing the domain name from SMIS to MARS.This is the error The Following error occurred to join the domain smis.(MARS) The account used is a computer account. Use your global user account or local user account to access this server. I am really wondering if I need to reinstall Linux? Because this broken record is getting rather old. I am using RH9. I can use SuSE 8.2 PRO as well. I really need to get this working so I can begin to test this in a work environment- we want to do away with our NT4 box and eventually do away with Vendow$ as much as we can. Now I get this error when trying to get W2k pro to join the Linux Domain. Here is the SMB.Conf file again for review. Thanks so much K Williams [global] workgroup = MARS netbios name = Linux_Server server string = Linux Server %v security = DOMAIN encrypt passwords = yes browsable = yes local master = yes domain master = yes os level = 99 preferred master = yes domain logons = yes domain admin group = @ntadmins hosts allow = 192.168.1.100/24 127.0.0.1 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 log file = /var/log/samba/%m.log max log size = 0 printcap = /etc/printcap load printers = yes printing = lprng use client driver = yes #= Share Definitions [printers] comment = All Printers path = /var/spool/samba browsable = yes public = yes writable = no printable = yes [public] comment = A public share for vendor docs, etc. path = /usr/public public = yes create mask = 0755 force directory mode = 0755 writable = yes [temp] comment = A place to drop off temporary files path = /tmp public = yes create mask = 0755 force directory mode = 0755 writable = yes[global] workgroup = SMIS netbios name = Linux_Server server string = Linux Server %v security = DOMAIN encrypt passwords = yes browsable = yes local master = yes domain master = yes os level = 99 preferred master = yes domain logons = yes domain admin group = @ntadmins hosts allow = 192.168.1.100/24 127.0.0.1 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 log file = /var/log/samba/%m.log max log size = 0 printcap = /etc/printcap load printers = yes printing = lprng use client driver = yes #= Share Definitions [printers] comment = All Printers path = /var/spool/samba browsable = yes public = yes writable = no printable = yes [public] comment = A public share for vendor docs, etc. path = /usr/public public = yes create mask = 0755 force directory mode = 0755 writable = yes [temp] comment = A place to drop off temporary files path = /tmp public = yes create mask = 0755 force directory mode = 0755 writable = yes [docs] comment = Main Document Share for important Corporate Documents path = /doc public = yes create mask = 0755 force directory mode = 0755 writable = yes [home] comment = Home directory for %U path = /home/%U browsable = yes public = no hide dot files = yes writeable = yes create mask = 0755 directory mask = 0755 username = %U [docs] comment = Main Document Share for important Corporate Documents path = /doc public = yes create mask = 0755 force directory mode = 0755 writable = yes [home] comment = Home directory for %U path = /home/%U browsable = yes public = no hide dot files = yes writeable = yes create mask = 0755 directory mask = 0755 username = %U -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Problems with Smaba STILL
Ok I have done everything you guys have asked me to do and I still get the same error- I even went out downloaded Webmin to help me out and the blasted Vendow$ keep coming up with the same error. The Following error occurred to join the domain smis. The account used is a computer account. Use your global user account or local user account to access this server. here is the SMB.Conf file [global] log file = /var/log/samba/%m.log load printers = yes socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 null passwords = no domain master = yes encrypt passwords = yes browsable = yes use client driver = yes netbios name = Linux_Server printing = lprng server string = Linux Server %v local master = yes workgroup = SMIS os level = 66 security = user domain admin group = root = 192.168.1.100/50 127 max log size = 0 domain logons = yes printcap = /etc/printcap [printers] comment = All Printers path = /var/spool/samba browsable = yes public = yes writable = no printable = yes [public] socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 comment = A public share for vendor docs, etc. path = /usr/public public = yes create mask = 0755 force directory mode = 0755 writable = yes [temp] comment = A place to drop off temporary files path = /tmp public = yes create mask = 0755 force directory mode = 0755 writable = yes [docs] comment = Main Document Share for important Corporate Documents path = /doc public = yes create mask = 0755 force directory mode = 0755 writable = yes [home] comment = Home directory for %U path = /home/%U browsable = yes public = no hide dot files = yes writeable = yes create mask = 0755 directory mask = 0755 username = %U For some reason the root' is not recognize by it own authentication process. I am about to reinstall Linux and go back to using SuSe Pro which I had the same darn problem but maybe the change will work. Anybody got any suggestions here?? Thanks so much. K Williams -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Problems with Samba and W2K
Dear Group, I have been working very hard for the last 3 days trying to get my W2K To join a Samba Domain. I have tried it seems like everything to do it and it won't go. I really think its something simple but I don't know how to fix it. The error I get is this one from W2k when trying to join the samba domain. The Following error occurred to join the domain smis. The account used is a computer account. Use your global user account or local user account to access this server. Here is a copy of my SMB.CONF file for your review. [global] workgroup = SMIS netbios name = Linux_Server server string = Linux Server %v security = DOMAIN encrypt passwords = yes browsable = yes local master = yes domain master = yes os level = 99 preferred master = yes domain logons = yes domain admin group = @ntadmins hosts allow = 192.168.1.100/24 127.0.0.1 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 log file = /var/log/samba/%m.log max log size = 0 printcap = /etc/printcap load printers = yes printing = lprng use client driver = yes #= Share Definitions [printers] comment = All Printers path = /var/spool/samba browsable = yes public = yes writable = no printable = yes [public] comment = A public share for vendor docs, etc. path = /usr/public public = yes create mask = 0755 force directory mode = 0755 writable = yes [temp] comment = A place to drop off temporary files path = /tmp public = yes create mask = 0755 force directory mode = 0755 writable = yes[global] workgroup = SMIS netbios name = Linux_Server server string = Linux Server %v security = DOMAIN encrypt passwords = yes browsable = yes local master = yes domain master = yes os level = 99 preferred master = yes domain logons = yes domain admin group = @ntadmins hosts allow = 192.168.1.100/24 127.0.0.1 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 log file = /var/log/samba/%m.log max log size = 0 printcap = /etc/printcap load printers = yes printing = lprng use client driver = yes #= Share Definitions [printers] comment = All Printers path = /var/spool/samba browsable = yes public = yes writable = no printable = yes [public] comment = A public share for vendor docs, etc. path = /usr/public public = yes create mask = 0755 force directory mode = 0755 writable = yes [temp] comment = A place to drop off temporary files path = /tmp public = yes create mask = 0755 force directory mode = 0755 writable = yes [docs] comment = Main Document Share for important Corporate Documents path = /doc public = yes create mask = 0755 force directory mode = 0755 writable = yes [home] comment = Home directory for %U path = /home/%U browsable = yes public = no hide dot files = yes writeable = yes create mask = 0755 directory mask = 0755 username = %U [docs] comment = Main Document Share for important Corporate Documents path = /doc public = yes create mask = 0755 force directory mode = 0755 writable = yes [home] comment = Home directory for %U path = /home/%U browsable = yes public = no hide dot files = yes writeable = yes create mask = 0755 directory mask = 0755 username = %U Now one note I need to add I have tried using , user, Domain, Share d for security settings none work. I have tried using the command to to add machine to Linux_Server and it comes up saying already added? If someone would kindly help me I would be appreciative. Thanks so much for your help here, ikw38 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] smbpasswd without expect/send
Hi All, Is there a way to use smbpasswd like usermod(usermod -u username -g users -p password username) Just one command line option where I can specify a password on the line itself. I dont want to use Expect/Send. Regards, Keith The linuX Files -- The Source is Out There. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Ext3fs/ReiserFS Performance Enhancing
Robert Adkins II wrote: The speed is nearly identical, regardless of which server that I attempt to write data to. Running ifconfig reveals the following information... UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:9588652 errors:3 dropped:0 overruns:1 frame:3 TX packets:10666832 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:100 RX bytes:1953448761 (1862.9 Mb) TX bytes:1870489113 (1783.8 Mb) Interrupt:10 Base address:0xe000 Having 3 errors out of 9588652 packets sent is extremely acceptable in my book. The error rate is so far beneath 1% that it is for all intent and purposes, irrelevant. I think it would concern me, if it happened consistently on each transfer. I typically see 0 errors on a (small) functioning Ethernet LAN. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Linux to windoze
xsmbrowser works great in KDE and GNOME. Regards, Keith The linuX Files -- The Source is Out There. - Original Message - From: mark [EMAIL PROTECTED] To: pshook [EMAIL PROTECTED] Cc: Samba [EMAIL PROTECTED] Sent: Sunday, March 02, 2003 12:00 AM Subject: Re: [Samba] Linux to windoze On 2003.03.01 17:28 pshook wrote: Is it possible to allow your Liunx box see your winbox, just like the winbox can see or browse the Linux box with Samba? with gnome2 on my slackware 8.1 box I can use smb:// in the file manager to view the network. I know that kde also has the ability to view the windows networks. mark -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] SWAT login - is password entry secure?
Dan Rickhoff wrote: Samba group members, Is the password that I specify when logging into SWAT handled securely? I'd like to use the Samba Web Administration Tool (SWAT) to create and administer Samba shares that will be used by our users of ClearCase on Windows. That requires that I log in to the Samba host as root. I access SWAT via Internet Explorer (from any machine) buy specifying the URL http://machine:901;, For my ClearCase-related Samba Administration, our UNIX Sys Administrator is OK with giving me the password for user root on that machine, but he fears that the password entered in that login window will be transferred over the network as cleartext. That is, he fears that the password might be too easily observed by prying eyes. QUESTIONS: 1) Is the password handled securely during my SWAT login? Without knowing anything at all about SWAT specifically, I can tell you that your administrator is exactly right to be worried, because you are almost without doubt using clear HTTP; the 'http:', rather than 'https:' tells me this. You might want to look into running SWAT with secure-HTTP. It might be as easy as changing a couple of configuration parameters. Or, login in with SSH using Putty or TeraTerm, port-forwarding 901, then run your browser against http://localhost:901. :-) 2) If the answer to Q1 is No, then might it be Yes if I used a browser (Netscape) that is running on the same machine that I'm loggng in to? Yeah, pretty much, if there's nobody on that machine getting into your socket communication. :-) -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Could Linux load average problem be related to smbfs?
This is more a has anybody seen this? question than anything else. I'm using smbfs version 2.2.3a-12 on 2.4.18 kernel, Debian 3.0. The other day, I had a problem where df got hung in D state because of smbfs mounting a share, then the PC exposing the share rebooting. (This has happened with smbfs across several versions). umount gave device is busy errors, and I couldn't kill the df processes; I used 'umount -l' to work around the problem. The weird thing is, I noticed less than a day later that the system was getting about an 8 load average, with very little actually running. All those df processes were still around of course, still in D state. Thanks for any comments. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [samba] windows client use Linux printer
David Harel wrote: Hi and thanks Joel, This information is priceless. I did what you recommended and got it printing. As I see the problem, the most problematic part is to set the driver on the windows client that will produce the desired postscript image. The printer you recommended is not on the list as you typed it. I found the printer: HP Laser Jet III Postscript Plus v2010.118 which works black and white only. Now I am looking for a printer driver that will produce color images. As the role of the driver on the windows system is only to produce postscript image I think samba documents should include a recommendation for such a driver. Why not try the raw queue like Joel described, and use the Lexmark driver on your Windows PC? I suspect a lot of people do this when they're printing from Windows, and that may be why there's little focus on a more suitable postscript driver for a particular printer. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Could Linux load average problem be related to smbfs?
%%jrrs wrote: On Thu, 27 Feb 2003, Keith G. Murphy wrote: [ getting about an 8 load average, with very little actually running. ] this might be wholly inapplicable, but i once had a situation similar to that, where my reported load was much much greater than my perception of what the system was actually *doing*. i had enabled the diskd cache whatnot method of squid, rather than the normal ufs method. either the squid process itself or one of its child processes was polling something ( i don't believe it was the physical disk, but i don't fancy being quoted on that ) once every second or so. the poll was only a blip, but it was enough to keep the load high. so, perhaps if those processes were strobing/polling something, it wouldn't make the system run as busily as the load was telling you? again, that might not be terribly applicable. ? It might be quite applicable. One interesting thing is that the load was *exactly* at 8 when nothing was really going into R state. I wish I had noted how many of those hung df processes there were. 4 or 8 would be interesting numbers! -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Write-Protection-problem with opening Documents w/ Samba2.2.5 / AIX 4.3.3
Köhler Andreas wrote: Dear Members, When opening a document the first time in the folder, it's opening write-protected in MS-Word2000. If the same document is opened the second time afterwards, then it's opening correct w/o write-protection set. Do you have any solution for that problem ? 'man smb.conf' and look at 'force create mode' ? -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba