Re: [Samba] Static/shared linking woes
On Sat, Sep 27, 2003 at 02:02:17AM +0200, MaXxX wrote: ... What?? The bin/ directory amounted to over 400 MB! smbd over 24 MB, when the 2.3.x one I have is 1.7 MB? You can get them down to a much more reasonable size by stripping all the binaries. On my Linux system they still seem a little larger than they should be, though. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Multiple PDCs, Single Domain
On Tue, Sep 16, 2003 at 09:28:30AM -0500, Matt Schillinger wrote: On Mon, 2003-09-15 at 15:44, Michael Heironimus wrote: You're trying to do it backwards. You want one PDC and multiple BDC's, not the other way around. Take the machines that are slated for PDC use and just use them as BDC's instead. You would do the same thing with Windows servers, one PDC in the main building and a BDC at each remote site. I understand what the standard would be, but the reason that I'm trying 'backwards' is that I want to keep authentication traffic off of the T-1 connections that are used for internet/interbuilding traffic. In theory using BDCs should help with that. A machine needing authentication should just look for any server advertising itself as being able to handle logins. I'm a little fuzzy on the internals of how Windows/Samba does that, but BDCs do handle domain logins, not just failover. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] How does Samba delete files ?
On Mon, Sep 15, 2003 at 04:52:44PM -0300, Bruno Tobias Stella wrote: I'd like to know how does Samba delete files, because I need do something to instead Samba removes files, it moves the deleted files to another directory, like a Netware Salvage File or a Windows Trash Can. A standard Samba setup just deletes the files immediately. You want to look at the recycle VFS module, which does what you want. I know that 3.0 includes it, but I don't remember if it's bundled with 2.2.8 or if you'll have to download it. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Multiple PDCs, Single Domain
On Mon, Sep 15, 2003 at 10:34:22AM -0500, Matt Schillinger wrote: I have to admit that I don't see why you can't live live one PDC and X BDCs. You would have construct your LDAP servers this way anyway. If a PDC goes down (or the connection breaks) the BDC would still be able process logons on his own. The only Problem here is resources. The plan is that there are already machines that can be used as PDC, one per building. However, there isn't budget for a BDC per building, so the hope was to have a single BDC at the main building.. I can see that this would be difficult, particularly if ports 137-139 were blocked at T1 Router. You're trying to do it backwards. You want one PDC and multiple BDC's, not the other way around. Take the machines that are slated for PDC use and just use them as BDC's instead. You would do the same thing with Windows servers, one PDC in the main building and a BDC at each remote site. To do what I think you want, you probably want a central LDAP server and Samba PDC in your main building. In each remote building run a slave LDAP server replicating from the main one and a Samba BDC. Look at chapter 6 of the Samba-HOWTO-Collection document, it has a pretty thorough description of how all this works. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] C'mon guys. Get some virus protection.
On Wed, Aug 20, 2003 at 03:07:56PM -0700, Jim C wrote: Anyone who is smart enough to be on this list is smart enough to get some proper virus protection. However it may be the case that some cannot afford commercial liscenses and/or are not aware of the free virus checkers that are available. Since this *is* a list issue, I don't feel that it is off topic to ask for folks to publish various means for such. I did notice that some were available at http://www.utilitygeek.com/ when I was there. Also, is it not true that Samba has some virus protection built in? Anybody else know of some other good places/utilities? Actually the main problem I've been seeing is that people have antivirus software, but it's (mis)configured to send replies to the address listed in the From header. I think all of the recent Outlook worms have been forging the return address. At least one of the Debian Linux mailing lists is having the same problem, silly autoresponders configured to politely inform the sender that they send out a virus/worm, blindly assuming that the From address is correct. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Viruses and the list
On Wed, Aug 20, 2003 at 05:59:07PM -0700, Philip Edelbrock wrote: I was forced to put a filter (spambayes) on my list (Lm_sensors) to keep out most of the garbage. It's really helped a ton, and I can scan the 'spam' to make sure nothing real got blocked from the rest of the recipients of the list. It's pretty easy (I used procmail, spambayes, and a large amount of spam and normal mail to train it). It's also easy to refine the training as time goes on. In a nutshell, for my main mail server I created a database: hammiefilter.py -n -d/mypathtothedatabase/hammie.db Then trained it: nice mboxtrain.py -d/mypathtothedatabase/hammie.db -g /pathtomyGOODmail.mbox -s /pathtomyBADmail.mbox (You can run the line above as many times as you want with just -g or just -s or multiples to keep appending to the database) And then I added the rule to the top of /etc/procmailrc: :0fw | /pathtothebins/hammiefilter.py -d /mypathtothedatabase/hammie.db Finally, the emails will now contain a new header (nothing gets blocked or modified other than the addition of this header): X-Spambayes-Classification: ham; 0.01 ham/unsure/spam refers to the general classification, and 0.00-1.00 refers to the percentage likelihood that it is spam. From there, you can filter/forward/etc. in procmail scripts or on the client end, or whatever you want to do. You can even create multiple databases to do levels of classification (e.g. percentage chance that it is a virus, or that it is from your parole officer, etc.) and use formail to rename the header after each scan. Just a related FYI... Recent versions of spamassassin also include bayesian filtering. Until you've trained it with enough messages spamassassin will only use its other filtering rules, which are pretty good but don't catch these antivirus bounces. If you're using spamassassin already you don't need to set up a new tool, you just need to train the one you've got (or upgrade and train it if you're using an old version). -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Cannot start smbd and nmbd demons
On Tue, Aug 05, 2003 at 11:31:30AM -0700, [EMAIL PROTECTED] wrote: I am running a Samba 2.x.x on a Solaris 9 and I get this when I start the demon at the command line. # /usr/local/samba/bin/smbd -D ld.so.1: /usr/local/samba/bin/smbd: fatal: libpopt.so.0: open failed: No such file or directory Killed The error message tells you what the problem is - smbd is dynamically linked against libpopt and you don't have it. Install the popt package from sunfreeware.com and see if it works. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbmount 2GB file size limit ?
On Sat, Jul 05, 2003 at 01:02:17PM -0700, k n wrote: I'm running RH9 with kernel 2.4.20 and Samba 2.2.8a. I can copy files larger than 2GB from Windows to Linux and vice versa through Samba. However, when I copy 2GB files from one Linux machine to another (using smbmount to mount) I get File size limit exceeded when 2GB is reached. It looks like the problem is with smbmount. Is there a 2GB file size limit with smbmount? If the problem is with smbmount, is there a patch or workaround? This question comes up a lot on this list. The smbfs driver in the current stable Linux kernel can't handle files over 2GB. I think cifs (which is replacing smbfs in the development kernels) is supposed handle large files and a lot of the other things that just don't work with smbfs. For mounting between UNIX machines a native UNIX system like NFS is better right now, but I think you can also get a backported cifs driver for the Linux 2.4 kernels. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] error compiling samba-2.2.8
On Mon, Jun 16, 2003 at 11:37:11AM +0200, Norah Saadi wrote: Compiling smbd/server.c In file included from smbd/server.c:22: include/includes.h:702:18: popt.h: No such file or directory *** Error code 1 make: Fatal error: Command failed for target `smbd/server.o' can someone tell me what is the problem? Samba is looking for libpopt and you don't have it installed (or don't have it installed in a standard location). Off the top of my head I don't remember where the source code is, but I do remember that you can get a precompiled libpopt package from sunfreeware.com. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] winpopup
On Wed, Jun 04, 2003 at 07:02:14PM +, Solymos P?ter wrote: got some winpopup probs. Sending goes okay, and I'd like to get an xmessage window by receiving. Thus, I added a line like this to the [global] section in /etc/samba/smb.conf: message command = /bin/sh -c '/opt/scripts/winpopup.sh %m %f' The invoked script (/opt/scripts/winpopup.sh) looks like this: - #!/bin/sh #$1 is the name of the sending machine, %m #$2 is the file where samba saves the message, %f echo $2 #appends a blank line to the message echo $1 $2 #appends the name of the sending machine xmessage -center -file $2 #pops up a window with the whole thing rm $2 #removes the message file - Prob is that by receiving a message, sender machine says sent OK, but nothing happens at all. Any ideas? (file permissions are okay, script is working when invoked from command line) The environment that's running the script probably doesn't have a $DISPLAY, so xmessage can't run because it doesn't know what X display to connect to. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] client side permisions of a samba directory
On Thu, May 29, 2003 at 09:25:38AM -0700, Steve deRosier wrote: I've recently noticed that when I have a directory remotely mounted via samba to my linux desktop, the mode bits of directories and files in it don't necessarily resemble those of the actual files on the server. Neither does a chmod seem to have any effect. I noticed that smbmount has a fmask and a dmask argument and these arguments control what I view the mode as. Leaving out these arguments just gets me a different mask. Question: How can I get my mounted directory to simply behave just like any other directory? I just want to be able to view and modify the REAL mode bits from my konsole. Answer: don't use smbfs. You can't see or change the permissions on smbfs-mounted filesystems. If you need to be able to change permissions you should use some UNIX-native filesystem, like NFS. I think I've heard that the upcoming Linux replacement for smbfs (cifs) and the unix extensions in current versions of Samba will work much better for UNIX-UNIX mounts, but I haven't looked in to that. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: w: bad number in 2.2.8
On Mon, Mar 24, 2003 at 02:05:58PM -0800, Dennis, David M. wrote: On Solaris 8, Ultra 3 platform, with the Forte compiler 6.2 : (openssl 0.9.7a successfully compiled / installed) samba-2.2.8 ./configure --with-ssl --with-sslinc --with-ssllib \ --with-syslog --with-libsmbclient --with-winbind Results in . . checking whether to use SSL... yes ./configure: w: bad number Any help with what this is saying? The configure script may be getting confused because you're giving it --with-sslinc and --with-ssllib without supplying the paths. Try using --with-sslinc=/path/to/headers --with-ssllib=/path/to/libraries -- Michael Heironimus
Re: [Samba] To all who helped with Ext3fs/ReiserFS PerformanceEnhancing
On Fri, Mar 21, 2003 at 04:19:48PM -0500, Robert Adkins II wrote: It appears that the issue could be a bad switch. At this time, I have turned down the server's NIC to run at 10baseT-FD and the performance has seriously increased. It now takes roughly 25 to 35 seconds to copy and 8mb file to the server, but it now takes a little longer to copy a file from the server. Sometimes neither the NIC nor the switch is entirely to blame for speed/duplex mismatches, some cards and some switches just don't seem to negotiate properly. I had that problem at one job with Sun E450s and Cisco smart switches - the switches and the Sun hme cards both worked fine, but they would never negotiate duplex properly. Forcing the NIC and the port both to 100/full fixed everything. If you can do that you won't have to buy and install new hardware, at least not right away. Of course, if you can't force the settings on your switch that won't help you any, and as I recall not all Linux NIC drivers support forcing speed/duplex so it might not work with a different card either. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: Urgent: Cvs download has changed unexpectedly
On Mon, Mar 10, 2003 at 08:11:32AM -0500, David Collier-Brown -- Customer Engineering wrote: Dave Collier-Brown wrote: 1) If I run cvs update -d :pserver:[EMAIL PROTECTED]:/cvsroot -P it returns No CVSROOT specified! Please use the `-d' option, which, you understand, I did (;-)) This also applies if I change the host from [EMAIL PROTECTED] to [EMAIL PROTECTED] I believe the syntax you're looking for is: cvs -d :pserver:[EMAIL PROTECTED]:/cvsroot update -P -- Michael Heironimus
Re: Urgent: Cvs download has changed unexpectedly
On Mon, Mar 10, 2003 at 07:42:02PM -0500, Dave Collier-Brown wrote: Michael Heironimus wrote: I believe the syntax you're looking for is: cvs -d :pserver:[EMAIL PROTECTED]:/cvsroot update -P No such luck... $ pwd /export/home/davecb/projects/samba $ cvs -d :pserver:[EMAIL PROTECTED]:/cvsroot update -P cvs server: Updating . $ ls $ On the other hand, $ cvs -d :pserver:[EMAIL PROTECTED]:/cvsroot co samba is working once more. The syntax for cvs is cvs [cvs-options] command [command-options]. So cvs -d update is different from cvs update -d. The -d for setting CVSROOT is a cvs option, not an update (or checkout etc) option, so it needs to be between cvs and the cvs command. Normally you don't need to specify the CVSROOT when you do an update because it keeps that as part of the information it stores when you do the initial checkout. By default, cvs update only updates directories that you already have. If you cleaned out your source tree like you said in one of the other posts, you won't get anything from a cvs update until you do a checkout. If you want to get directories you don't already have, you need to do cvs update -d. Note that this -d is an option for update, not an option for cvs - it's different from the -d CVSROOT CVS option. -- Michael Heironimus
Re: [Samba] Migration from WindowsNT to Samba
On Fri, Mar 07, 2003 at 09:47:35AM +0100, [EMAIL PROTECTED] wrote: My problem is when I copy the files, I want the ownership of the files preserved. When I copy the files, as it is now, the user copying the files are set as owner. This is not, what I want. I want the original owner to own the files after copying. And I'm not talking about files in personal shares, it is the public and group shares with several possible file owners. I think the standard answer to how do I keep ownerships/ACLs when copying files in NT is use scopy from the resource kit. scopy is a Windows NT command-line tool that works just like xcopy, but can retain ownerships and permissions. In Windows 2000 that functionality is available in the standard xcopy program, but I think there still isn't a way to do it from explorer. This has always been one of NT's significant flaws as a file server - you don't really have any more advanced tools for managing this kind of thing than you do on a single-user workstation. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] security = server and password server sometimes rejectspassword
On Tue, Mar 04, 2003 at 07:16:41PM +0200, John Newhouse wrote: I have two samba servers, PDC (3.0a21) , which has only [netlogon] share and FSERVER (samba 2.2.5), which uses PDC as password server and also shares out [homes] and [profile] . Time to time it happens that when I log in from WS I get error message that \\fserver\profiles can't be accessed. And when I look into FSERVER log then it complains: password server PDC rejected the password. Many people have found security = server to be flakey like that, you would probably be better off with security = domain. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Thoughts for you geniuses
On Mon, Feb 24, 2003 at 12:45:58PM -0500, David Brodbeck wrote: Is anyone else seeing Andrew's posts as blank messages like this with text files attached? How can I get around them showing up this way? I like to read his posts but this makes it pretty aggravating. :) They show up fine for me, but I'm guessing that your problem is from the PGP signature. The modern way of doing PGP signatures is to have the signature as an attachment. As I recall, it's mainly a problem for older mail clients (or new but crappy mail clients) that make no attempt to do reasonable things with mail that has MIME attachments. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Difficulties getting Windows 2000 and NT working withSamba on Redhat 8
On Mon, Feb 17, 2003 at 06:40:46PM -, Roger Harden wrote: Having set up the Windows clients and Samba (version 2.2.5-10) with a 'tmp' share the share cannot be accessed from the Windows clients. On the Windows clients, after attempting to map a network drive to the Samba share using Windows Explorer the message 'No service is operating at the destination network endpoint on the remote system' is diplayed. I believe I have checked all the settings and get the smb prompt successfully on the Samba server using the Windows user login using 'smbclient //server/tmp -U username' after inputting the required password. Have you verified that the server does not have firewall rules configured? Red Hat's default installation sets up some default rules if you say yes, I want a secure machine but doesn't exactly tell you what it's doing, so it's a fairly common problem. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] security = domain
On Tue, Feb 11, 2003 at 02:57:46PM +0100, Michael Herber wrote: Hm, but as I did understand, in both cases, the log in at the samba-server is sent to the NT-machine to validate. After what I've read, server means that only the username and the password is sent and domain menas that more than these two values are sent. I am completely wrong? As I recall, one major difference is that security = server requires that a connection to the password server machine remain open for the entire duration of the client's connection to Samba. security = domain opens and closes connections for authentication as needed, just like a Windows server in an NT domain would. This makes domain a better choice in general, since temporary network problems are less likely to cause problems. It also produces less of a load on your password server: if you have several servers with many clients each, your password server would have to support one connection for each user on each server. Anyhow, server also needs a password server for authentification (at least this is what my sources are saying!). So what's the difference? Or are my sources wrong? Yes, you need a password server if the Samba machine isn't authenticating locally. The difference is mainly in how it accesses that server to check the user/pass. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba user becomes root user
On Sun, Feb 09, 2003 at 10:27:16AM +0100, Jorge Videgain Marquez wrote: Why when i log into a Samba server wit a valid user name and passwor that has not root privileges he is anounced as root and all files modifyed by him are set as root owner? When he log in this message apear at log reg: snip [2003/02/09 08:18:44, 0] smbd/service.c:make_connection(381) rcorrea logged in as admin user (root privileges) This message says that user rcorrea is an admin user, so you either have the admin users or the admin group set in smb.conf. All actions performed by an admin user are done as root. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: A Union of two directories
On Tue, Feb 04, 2003 at 10:03:36AM +, David Lee wrote: Way, way back in the days of SunOS 4.1.x, Sun had their translucent file service: tfs. (We never used this; I simply recall its existence.) Might this model be the sort of thing you are looking for? I see that the man pages for Sun's tfs are still around (I found a copy on the FreeBSD WWW site). I think the BSDs still have something of this sort, called unionfs or some such. I think the main time people actually use it is for mounting a source tree from CD as /usr/src to avoid actually copying all of it around. -- Michael Heironimus
Re: [Samba] Net Send?
On Mon, Feb 03, 2003 at 08:52:00PM +, root wrote: Does anyone know if you can use Samba to send messages over the network using Windows' Messenger service (which uses mailslots which are part of the SMB protocol - hence why I ask) in the same was as using 'NET SEND' on a Windows machine? smbclient can send winpopup messages with the -M flag. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Remove the infected user
On Mon, Jan 27, 2003 at 03:46:10PM -0800, Daniel Fenwick wrote: The better solution is to block attachments to the list. That eliminates almost all viruses as well as all the other junk that floats around in attachments. Except that then people couldn't attach copies of log files when they ask for help, or patch files if they have a bug fix. These things would have to be pasted as in-line text, which means they could not be compressed and would be subject to line-wrapping. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] cleanup_recycle.pl problem (maybe OT)
On Thu, Jan 23, 2003 at 08:16:14AM -0800, [EMAIL PROTECTED] wrote: This maybe slightly OT, but I just noticed an interesting difficulty with the cleanup_recycle.pl script that comes with 2.2.7a. I run it on a cron job every night, deletes files and directories after 3 days. The trouble I have is that some of my directory are named with spaces in them ie Base Maps rather than a more proper Base_Maps The script really doesn't like those spaces, it tries to delete Base and then stops. My perl is rather non-existent. I was wondering if anybody out there has run into this and figured a work around. Many thanks. Looking at that script, I think it probably needs to be rewritten altogether. But as a quick-fix I think you can probably replace the line $r = `rm -f $_ 2 /dev/zero`; with chomp($_); unlink($_); and replace $r = `rmdir $_ 2 /dev/zero`; with chomp($_); rmdir($_); This assumes you're using perl 5, perl 4 didn't have chomp(). Most people have perl 5 now, though. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] UNIX/SAMBA file permission interaction
On Sat, Jan 18, 2003 at 10:44:35PM +1100, David Beards wrote: Without the sticky bit set on a folder that has rwx set for ogw a file can be deleted from within this folder (using Windows Explorer) regardless of whether you are the owner or part of the group that this file belongs to. (as long as rw is set for the owner) If you use an application to modify this same file the application behaves as expected and prohibits you from modifying the file. If you set the sticky bit on the folder, Windows Explorer then behaves as it should (as does the application), and if you are not the owner or part of the group that the file belongs to you can not delete the file. I'm sorry, I must be missing something as this does not make sense. Surely I would have expected SAMBA to adhere to the UNIX permissions without the sticky bit being set on the folder. Samba is adhering to the UNIX permissions, that's how directory permissions work. rw on the directory means that you (everyone, in your case) can add/remove directory entries. Deleting a file is nothing more than removing a directory entry, so you can do it because you're modifying the directory and not the file. Setting the sticky bit on a directory changes this behavior to only allow the owner of the file and the owner of the directory to delete the file. If you're curious, the sticky bit used to have another meaning (which is where the name came from). I'm not clear on the details, but it had something to do with keeping an executable's code segment in memory even if there wasn't an instance running. I'm not sure if any current variety of UNIX still implements that behavior, but I think most/all of them do support sticky bits on directories (it's particularly important for /tmp and /var/tmp). -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] multiple vfs object extensions per share ?
On Thu, Jan 16, 2003 at 03:03:55PM +0100, Friedhelm B?scher wrote: i wonder, if there is a way to enable more than one vfs object per samba share. My understanding is that you can't do this with 2.2, but you will be able to with 3.0 (it will have a stackable VFS). -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] How can I restart samba?
On Mon, Jan 13, 2003 at 11:37:54AM -0500, Jamie Risk wrote: I invoke the smbd, and nmbd binaries from a root bash command line, each with the -D option. I can't seem to send a kill SIGHUP command to the PID I read from a ps -ex command because I get the message bash: kill: SIGHUP: no such pid. kill SIGHUP pid is the wrong syntax. You want kill -HUP pid. Or you can just wait a few minutes, current versions of Samba are supposed to check the config file for changes. All UNIX signal names are SIGname, to send them to a process by signal name you use kill -name pid, without the SIG. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Message Command
On Fri, Jan 10, 2003 at 10:54:49PM +1100, David Andrew Patterson wrote: First, my question:- Does Samba do anything in particular with the standard output of the program specified here? What would it take to have it WinPopUp-ed back to the sender of the message? Have your message command run smbclient to send a winpopup back. I'm presently working on a program** to enable simple commands of some kind to be WinPopUp-ed to a Linux box and acted on or responded to in some way. For example, rather than having to telnet to my Linux box, log in, enter ifup ppp0 to dial into my ISP and then something else to activate my masquerading, I think it would be rather nice if I could simply WinPopUp a simple command such as DIAL_IN and then get a nice, user-friendly response such as Your Internet connection is now active popped back to me upon successful completion. One problem you're going to face is that the message command gets run as the guest account (defaults to nobody). In order to run something like ifup you're going to have to either use a setuid executable (which raises all sorts of potential security issues) or set your guest account to something privileged like root (which raises even bigger security issues). -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Blocking one subdirectory
On Mon, Dec 16, 2002 at 10:28:22AM -0500, Cyndi Hendricks wrote: I have users set up to read only a directory on a unix server. I need to block all access for these users to one of the subdirectories. Can this be done? If you set the UNIX filesystem permissions so that those users can not read the directory they will not be able to access it through Samba either. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Dumb question time
On Tue, Dec 17, 2002 at 09:03:19AM +1100, David Beards wrote: A file existing on a SAMBA share with unix permissions 755 e.g. -rw-r--r-- 1 root other 0 Dec 17 08:51 test.txt can be opened in any Windows application and the security acts as expected. i.e. any user other than root can open the file but if they try and save it they are prohibited and must save it as a new file. However if a user browses using Explorer they have the ability to delete the file from within explorer. (The only exception is if no user has write permissions to the file.) What are the UNIX ownerships/permissions on the directory containing test.txt? If the directory is writable to the users they will be able to delete any file in the directory, regardless of ownership. If you want the directory to remain writable to the users but have them only be able to delete files they own you'll need to chmod +t directory. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Symbolic links and SAMBA
On Fri, Dec 13, 2002 at 12:11:05PM -0600, Long, Jesse wrote: ln: creating symbolic link 'asm' to 'asm-i386': Operation not permitted. If you're trying to create a symlink on a remote filesystem mounted via Samba/smbfs, it's not at all surprising that it would not work. Samba makes your UNIX machine look like a Windows server, and Windows has no concept of what a symbolic link is. The follow symlinks option allows people to browse through symlinks that you created on the server. If you're sharing from one UNIX machine to another, just use NFS. It's native to UNIX, so things like symlinks will work. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [samba] File Systems - Which one to use?
On Wed, Dec 11, 2002 at 03:58:15PM -0600, Corey Hart wrote: We are looking at implementing a Linux box running samba in the near future with about 1TB of disk online. The purpose of this box will be for basic file and printer sharing needs. I am doing research on the different journaling file systems avaible in RH 7.3 and up (ext3, reiserFS, and JFS) and was wondering if anyone has had any real world experience with them (mostly reiserFS and JFS) and what you would have to say about them. I am mostly looking for cavets or gotchas pertaining to them. I think the main caveat to JFS is that everything I've seen so far says that it is far slower than any of the other common Linux filesystems. It's still not close enough to being a finished product for me to use it, and I'd guess that you probably won't find many people who are using it already. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Help to a wet-behind-the-ears Linux newbie
On Tue, Dec 10, 2002 at 10:46:19AM -0600, Andrew Fellingham wrote: I am attempting to set up SAMBA to provide file sharing for our Windows clients (something not for the faint of heart, I understand). I was able to configure both Webmin and SWAT, and can access both services from a remote machine, but am unable to see the server (FLASHSRV.WORKGROUP) in the Network Neighborhood or when I list all available hosts in nmblookup (nmblookup -d 2 '*') and nmblookup acts as if the server isn't even available at the IP address specified for it. I have checked the /etc/services file and it lists all ports properly for the nmbd and smbd Daemons (137 through 139) so it doesn't appear to be a port issue. The NIC doesn't appear to be the problem, as I am very able to access the internet via ethernet. Are smbd and nmbd actually running? Don't trust what swat/webmin might say, log in and check yourself. As I recall, Red Hat's installer asks if you want to have your machine secured with some firewall rules. If you say yes, it blocks the Samba ports (and others), but doesn't actually tell you what it's blocking. Also, as a general rule you should ignore Network Neighborhood. Machines that have been shut off for days will sometimes still show up, and machines that have been up and running for days sometimes won't. Network Neighborhood is utterly worthless for any kind of diagnostic, regardless of whether you use an NT server or a Samba server. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] directory vs. file delete permissions
On Sat, Dec 07, 2002 at 04:15:02PM -0500, root wrote: Here's the dilemma: In order for users to be able to change a file, the file and directory it's in need to have rw permissions (right?). But if If the UNIX filesystem permissions are set so that the file is writable but the directory is not a user can still modify the file, but can not delete or create ANY files in that directory (including ones they own). -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Limiting User Space on Samba Share
On Wed, Nov 20, 2002 at 01:20:27PM -0600, Kevin Bramblett wrote: Can someone tell me if Samba can limit users to certain amounts of space on specified shares? If so, where would I go to find out how to implement it? Samba can't do it, but you can use filesystem quotas in the underlying OS to limit users' disk usage. The one shortcoming is that it's not done by share, it's done by filesystem. So if you want to control (for example) people's user directory sizes on a /home filesystem, it's easy, but if you have one big /export filesystem with a dozen different shares all accessible by the same users quotas can't do what you want. As I recall, Samba has a quota compile-time option that will check the filesystem quotas and use that for the free-space display when users check the properties. Not necessary, but useful. I have the following setup: RHL 7.2, Samba 2.2.3a using a Windows 2000 PDC with Winbind. I want to be able to set a limit for each user on certain folders/shares on the Linux box that they are accessing from Windows systems. I think RH's stock kernels have quota support enabled. If you're using Red Hat's bundled Samba packages, I think those have the quota support I mentioned above compiled in too. You will need the RPMs for the quota tools installed, I think the RPM is just quota or quotas. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ms dfs? What is it?
On Wed, Nov 06, 2002 at 02:37:20PM +1100, Matthew Hannigan wrote: On Tue, Nov 05, 2002 at 04:39:59PM -0600, Michael Heironimus wrote: It's a distributed filesystem for Windows, allowing you to split the logical view of shares from the physical locations. You have one top-level DFS share that can be mounted by 95 and newer clients (as far [ ... ] But I guess it uses the SMB protocol for the basics? Right, the actually share connections are done with SMB. I don't think the real servers even know they're being accessed via a DFS mount. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ms dfs? What is it?
On Tue, Nov 05, 2002 at 03:09:45PM -0500, David Shapiro wrote: What is msdfs? What can you do with it that you could not do without it? It's a distributed filesystem for Windows, allowing you to split the logical view of shares from the physical locations. You have one top-level DFS share that can be mounted by 95 and newer clients (as far as I know smbclient is not DFS-aware). Within that mounted drive you have folders representing shares on any number of machines. When you open one the appropriate share on the appropriate machine is transparently accessed. It's sort of like mounting shares from several servers at once, but only having one mounted drive to deal with. I think MS-DFS also allows for failover and load balancing, one DFS link can actually point to multiple servers. I think DFS is mentioned in the Samba documentation, and I know MS has it described on their web site. Both of those are probably better than my bird's-eye description. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Collisions
On Fri, Nov 01, 2002 at 06:17:27PM +0700, Jean-Francois Pelletier wrote: noticed that on my hub, the Collision LED was flashing very fast and constantly. All my files transferred fast, no problem at all, and my question might be stupid especially that I don't have a problem. Is it normal that the collision LED flashes during files transfer? As I recall, with a 10baseT hub a collision just means that two machines tried to transmit at the same time. Heavy network activity (such as transferring a large file) will often cause a sudden burst of collisions as a perfectly normal by-product. It's definitely to be expected if you also have a number of Windows machines on the hub, since they tend to broadcast constantly. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Directory size display discrepency
That actually looks pretty normal. Windows properties show two sizes because it shows both the real size of a file (Size) and the amount of space it's reserving on disk because of the cluster size (Size on Disk). Your user will see the same thing looking at a small file or directory in C:. I'm not sure how Windows handles the size on disk for a file server, it probably either asks for it or guesses based on the total size of the disk. In any case, it's normal to have different sizes showing. I'm assuming that the directory contents actually do total around 33 bytes. It's been a while since I used a DEC so I don't remember how its du handles the size of small directories. If you use ls -l you'll probably see that the directory shows 4096 as the size. On Mon, Oct 14, 2002 at 11:55:52AM +0100, Stephen Kitchener wrote: I would liek to ask the list if any one can explain why there should be a discrepency in the directory sizes that are displayed when I use explorer on Windows. This has been reported to me by a user, I have never seen this before as I dont use windows if I can help it :-)... When I slect properties of a directory it has two enties Size and Size on disk As an example size says 33 bytes, size on disk says 512kb and if I du a du -ks on the directory it reports 4 k. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba Error Message
On Mon, Oct 14, 2002 at 11:21:37AM -0700, Richard Amadori wrote: Failed to open byte range locking database ERROR: Failed to initialize locking database Can't initialize locking module - exiting I think I remember getting this before, it went away as soon as I used one of the shares on the machine. I think the problem was that it tried to open the lock DB file, and when it didn't exist smbstatus just gave an error instead of assuming that there weren't any locks. Using the share created the file, and once it existed smbstatus never complained again. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Specific directory permissions
On Thu, Oct 10, 2002 at 02:20:23PM -0400, Thom Paine wrote: I have 5 users that need to belong to the blswin32 group. I want any files in that folder rw to everyone. I would guess that I would want it to force a user and group? I've done something like this before for group access. To make sure I understand what you want: folder X shared by samba, with all files and directories (existing and future) r/w by all members of group blswin32. In smb.conf you'll want to use force group, but you don't really need force user. You will want to force the permissions of new files to be group-writable, though. I think that's the create mask and directory mask parameters, but (as always) check the documentation yourself. You may also want to look in to inherit permissions. On the UNIX side, set the group of the entire directory tree to blswin32 (chgrp -R). Set all the file permissions to 664 (or 660) so they're r/w by group and owner, and all the directory permissions to 2775 (or 2770). I recommend GNU find+xargs for setting the permissions, something like find /directory -type f -print0 | xargs -0 chmod 664. That will allow for spaces in names. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Limit drive space
On Tue, Oct 08, 2002 at 06:13:14PM +, Bob Crandell wrote: I inherited a new client that has an old peer to peer network. Their accounting is done with an old Fox database that can't handle drives larger than 2 gigs. Back in the day, Novell has a way to limit the size of a drive that the application looks at. Is there a way to do that for a share in Samba? Set the max disk size parameter in smb.conf. It's documented in the smb.conf man page. -- Michael Heironimus -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Request For Help With Samba Connectivity
It's generally unnecessary to set the guest account unless you have a good reason. Normally the default of nobody is fine, and if you specify the guest account you'll have to create it. On Wed, Sep 18, 2002 at 08:59:36PM -0600, John Benedetto wrote: When you post your smb.conf, it is nice to DELETE ANY COMMENTS, to save on bandwith... You'll also make more friends on mailing lists if you configure your mail client to send plain text (no enormous HTML attachment) and to wrap lines in a conventional manner (usually around 72 columns). -- Michael Heironimus msg04551/pgp0.pgp Description: PGP signature
