Re: [Samba] Windows 2008 Standard SP2 cannot access samba share by hostname but ok with IP
Your share is on a NFS server ? if yes, maybe look your NFS server configuration ! --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 10/10/2013 16:31:44: > De : Jerome Yanga > A : Rowland Penny , > Cc : samba@lists.samba.org > Date : 10/10/2013 16:32 > Objet : Re: [Samba] Windows 2008 Standard SP2 cannot access samba > share by hostname but ok with IP > Envoyé par : samba-boun...@lists.samba.org > > Rowland, > > Here are the info that you have requested. I had to change the names a > bit. :) > > The two issues that I am having are as follows: > 01) Windows 2008 Standard servers cannot access the samba shares via the > hostname. > 02) The popup window "Error 0x80070021: The process cannot access the > file because another process has locked the portion of the file" is > encountered whenever a file is copied into the share. > > OS: RHEL 6.4 (32 bit) > Samba version 4.0.0-55 > > [global] > workgroup = TEST > realm = SAMPLE.COM > netbios aliases = SAMBA1, SAMBA2 > server string = Samba Server Version %v > security = DOMAIN > map to guest = Bad Uid > username map = /etc/samba/user_map > syslog = 2 > log file = /var/log/samba/samba.log > max log size = 5 > deadtime = 5 > max smbd processes = 300 > socket options = SO_RCVBUF=32767 SO_SNDBUF=32767 TCP_NODELAY IPTOS_LOWDELAY > IPTOS_THROUGHPUT > load printers = No > printcap name = /dev/null > disable spoolss = Yes > show add printer wizard = No > os level = 1 > local master = No > browse list = No > wins server = 10.1.1.1 > host msdfs = No > idmap config * : backend = tdb > printing = bsd > cups options = raw > print command = lpr -r -P'%p' %s > lpq command = lpq -P'%p' > lprm command = lprm -P'%p' %j > oplocks = No > level2 oplocks = No > > [nfs_share1] > path = /net/server1/nfs_share1 > read only = No > > regards, > j > > > > On Thu, Oct 10, 2013 at 7:14 AM, Rowland Penny > wrote: > > > On 10/10/13 15:02, Jerome Yanga wrote: > > > > Stephane, > > > > NetBIOS is set to Default. > > > > Rowland, > > > > The DNS works on the Windows 2008 server. I can ping the hostname of my > > RHEL machine from the windows server. > > > > regards, > > j > > > > > > On Thu, Oct 10, 2013 at 2:40 AM, Rowland Penny < > > rowlandpe...@googlemail.com> wrote: > > > >> On 09/10/13 18:04, Jerome Yanga wrote: > >> > >>> Has anyone seen this situation? > >>> > >>> My Windows 2008 Standard SP2 x86_64 cannot access my samba share using > >>> \\ but connects properly when connecting to it by > >>> \\. > >>> > >>> regards, > >>> j > >>> > >> This sounds like a DNS problem, can you ping from the > >> windows 2008 server ? > >> > >> rowland > >> > > > > OK, what version of samba are you using on your RHEL machine ? and could > > you please post your smb.conf. > > > > Rowland > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows 2008 Standard SP2 cannot access samba share by hostname but ok with IP
is netbios client work on your Windows 2008 server ? --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 09/10/2013 19:04:26: > De : Jerome Yanga > A : samba@lists.samba.org, > Date : 09/10/2013 19:05 > Objet : [Samba] Windows 2008 Standard SP2 cannot access samba share > by hostname but ok with IP > Envoyé par : samba-boun...@lists.samba.org > > Has anyone seen this situation? > > My Windows 2008 Standard SP2 x86_64 cannot access my samba share using > \\ but connects properly when connecting to it by > \\. > > regards, > j > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Address family not supported by protocol
I have the same message regards Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 08/10/2013 22:18:00: > De : Thiago Fernandes Crepaldi > A : samba , > Date : 08/10/2013 22:19 > Objet : [Samba] Address family not supported by protocol > Envoyé par : samba-boun...@lists.samba.org > > I've compile a Samba 4.0.9 for x86_64 with the following options: > > CPPFLAGS="-D_LARGEFILE64_SOURCE -D_FILE_OFFSET_BITS=64 -D_GNU_SOURCE > -march=atom -O2 -pipe -fomit-frame-pointer" \ > samba_cv_HAVE_GETTIMEOFDAY_TZ=yes \ > samba_cv_HAVE_IFACE_IFCONF=yes \ > samba_cv_HAVE_IFACE_IFREQ=yes \ > ac_cv_have_setresuid=yes \ > ac_cv_have_setresgid=yes \ > ac_cv_file__proc_sys_kernel_core_pattern=yes \ > samba_cv_USE_SETRESUID=yes \ > samba_cv_HAVE_KERNEL_OPLOCKS_LINUX=yes \ > samba_cv_HAVE_WRFILE_KEYTAB=yes \ > samba_cv_HAVE_OFF64_T=yes \ > samba_cv_have_longlong=yes \ > samba_cv_HAVE_MMAP=yes \ > samba_cv_HAVE_INO64_T=yes \ > samba_cv_CC_NEGATIVE_ENUM_VALUES=yes \ > smb_krb5_cv_enctype_to_string_takes_krb5_context_arg=no \ > smb_krb5_cv_enctype_to_string_takes_size_t_arg=yes \ > ./configure \ > --without-pie \ > --disable-cups \ > --disable-iprint \ > --with-configdir=/etc/samba \ > --with-logfilebase=/tmp/samba \ > --with-lockdir=/tmp/samba \ > --with-piddir=/tmp/samba \ > --with-privatedir=/etc/samba/private \ > --with-sendfile-support \ > --with-ldap \ > --with-ads \ > --with-pam \ > --with-pammodulesdir=/lib/x86_64-linux-gnu/security \ > --with-pam_smbpass \ > --with-winbind \ > --with-acl-support \ > --with-automount \ > --enable-pthreadpool \ > --with-dnsupdate \ > --with-shared-modules=idmap_ad,idmap_rid \ > --localstatedir=/var \ > --with-libiconv=/usr \ > --with-cachedir=/mnt/system/samba/system \ > --prefix=/usr/local/samba \ > --without-ad-dc \ > --without-swat \ > --without-quotas \ > --with-aio-support \ > --fail-immediately \ > --jobs=8 > > After joining samba on a AD environment, I am not able to list users/groups > domains. I changed Log Level =2 and got this weird "Address family not > supported by protocol" error on *log.smbd* > > [2013/10/08 11:49:55, 0] ../source3/smbd/server.c:1201(main) > smbd version 4.0.9 started. > Copyright Andrew Tridgell and the Samba Team 1992-2012 > [2013/10/08 11:49:55.136632, 0] ../source3/smbd/server.c:1281(main) > standard input is not a socket, assuming -D option > [2013/10/08 11:49:55.763906, 0] > ../source3/printing/print_standard.c:68(std_pcap_cache_reload) > Unable to open printcap file lpstat for read! > [2013/10/08 11:49:55.765678, 0] > ../source3/lib/util_sock.c:423(open_socket_in) > open_socket_in(): socket() call failed: Address family not supported by > protocol > [2013/10/08 11:49:55.765901, 0] > ../source3/smbd/server.c:685(smbd_open_one_socket) > smbd_open_once_socket: open_socket_in: Address family not supported by > protocol > [2013/10/08 11:49:55.768391, 0] > ../source3/lib/util_sock.c:423(open_socket_in) > open_socket_in(): socket() call failed: Address family not supported by > protocol > [2013/10/08 11:49:55.768565, 0] > ../source3/smbd/server.c:685(smbd_open_one_socket) > smbd_open_once_socket: open_socket_in: Address family not supported by > protocol > [2013/10/08 11:50:56.374475, 0] > ../source3/printing/print_standard.c:68(std_pcap_cache_reload) > Unable to open printcap file lpstat for read! > [2013/10/08 12:03:57.631802, 0] > ../source3/printing/print_standard.c:68(std_pcap_cache_reload) > Unable to open printcap file lpstat for read! > [2013/10/08 12:16:58.867944, 0] > ../source3/printing/print_standard.c:68(std_pcap_cache_reload) > Unable to open printcap file lpstat for read! > [2013/10/08 12:29:59.868909, 0] > ../source3/printing/print_standard.c:68(std_pcap_cache_reload) > Unable to open printcap file lpstat for read! > [2013/10/08 12:43:01.144145, 0] > ../source3/printing/print_standard.c:68(std_pcap_cache_reload) > Unable to open printcap file lpstat for read! > [2013/10/08 12:56:02.329592, 0] > ../source3/printing/print_standard.c:68(std_pcap_cache_reload) > Unable to open printcap file lpstat for read! > [2013/10/08 13:09:03.247922, 0] > ../source3/printing/print_standard.c:68(std_pcap_cache_reload) > Unable to open printcap file
Re: [Samba] default idmap range in samba4
I not found the solution and samba team seems to have other think to do :-( --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 Denis Cardon wrote on 26/09/2013 11:57:39: > De : Denis Cardon > A : Stéphane PURNELLE , > Cc : samba@lists.samba.org > Date : 26/09/2013 11:57 > Objet : Re: [Samba] default idmap range in samba4 > > Hi Stéphane, > > > > migration from samba 3 (without winbind) to samba4. > > > > New user use idmap range. But I don't know what is the range. > > By uidNumber, I just see 300 is the first uidNumber but what is the > > max (default max) ? > > I had the same issue yesterday when I upgraded a NAS on a small branch > office from samba3 member server to samba4 in order to have on site > authentication in case or internet failure. > > I didn't found anyway to reproduce the same behavior of rid/uid mapping > of winbind 3.6 with samba4. I gave up quickly as it was not a big deal > to have different sid/uid mapping on that site. However I'd be glad to > hear from you if you have found a solution. > > Cheers, > > Denis > > > > > > > After migration can I change range in smb.conf by > > > > idmap config *:range = 2500-100 > > > > ty > > > > Stéphane Purnelle > > > > --- > > Stéphane PURNELLE Admin. Systèmes et Réseaux > > Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 > > > > > -- > Denis Cardon > Tranquil IT Systems > Les Espaces Jules Verne, bâtiment A > 12 avenue Jules Verne > 44230 Saint Sébastien sur Loire > tel : +33 (0) 2.40.97.57.55 > http://www.tranquil-it-systems.fr > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] default idmap range in samba4
hi all, migration from samba 3 (without winbind) to samba4. New user use idmap range. But I don't know what is the range. By uidNumber, I just see 300 is the first uidNumber but what is the max (default max) ? After migration can I change range in smb.conf by idmap config *:range = 2500-100 ty Stéphane Purnelle --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] On Machine Accounts
Hi, machine account is a rules of windows domains. since NT4 domain, W2k domain, AD domain, all requiere a machine account. It's a security purpose who exist in samba and microsoft domain controler. You cannot bypass this rules if your network use a domain controler. You have to possibility : put your DC on standalone server who just have share (no home and no profile) or create your full disk image on a client out of your domain and sysadmin just change machine name and add to the domain. best regards Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 15/09/2013 20:53:11: > De : Yannick Gingras > A : Andrew Bartlett , > Cc : samba@lists.samba.org > Date : 16/09/2013 14:04 > Objet : Re: [Samba] On Machine Accounts > Envoyé par : samba-boun...@lists.samba.org > > On 09/14/2013 05:33 PM, Andrew Bartlett wrote: > > On Fri, 2006-10-06 at 12:32 -0400, Yannick Gingras wrote: > >> [...] > > You can't do a domain logon without a machine account. You could set > > them up as just standalone workstation however. > > > > Andrew Bartlett > > > > Andrew, > while I appreciate you taking the time to answer this question, I have > to confess that this was a problem that I had 7 years ago and that I am > no longer in charge of these machines. > > Wishing you an excellent day, > > -- > Yannick Gingras > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Problem with GPO and kerberos
Hi, I have problem with GPO and dns/kerberos resolution I do a samba -i -d3 to a log file and started on client: gpupdate /force: lpcfg_load: refreshing parameters from /srv/samba/etc/smb.conf params.c:pm_process() - Processing configuration file "/srv/samba/etc/smb.conf" samba version 4.1.0rc2 started. Copyright Andrew Tridgell and the Samba Team 1992-2013 ... ldb_wrap open of privilege.ldb samba: using 'standard' process model ... ldb_wrap open of secrets.ldb ldb_wrap open of idmap.ldb dreplsrv_partition[CN=Configuration,DC=cormandom,DC=int-corman,DC=be] loaded dreplsrv_partition[CN=Schema,CN=Configuration,DC=cormandom,DC=int-corman,DC=be] loaded dreplsrv_partition[DC=cormandom,DC=int-corman,DC=be] loaded dreplsrv_partition[DC=DomainDnsZones,DC=cormandom,DC=int-corman,DC=be] loaded dreplsrv_partition[DC=ForestDnsZones,DC=cormandom,DC=int-corman,DC=be] loaded /usr/local/samba/sbin/smbd: smbd version 4.1.0rc2 started. /usr/local/samba/sbin/smbd: Copyright Andrew Tridgell and the Samba Team 1992-2013 /usr/local/samba/sbin/smbd: INFO: Current debug levels: ... kccsrv_partition[CN=Configuration,DC=cormandom,DC=int-corman,DC=be] loaded /usr/local/samba/sbin/smbd: scavenger: 5 kccsrv_partition[CN=Schema,CN=Configuration,DC=cormandom,DC=int-corman,DC=be] loaded kccsrv_partition[DC=DomainDnsZones,DC=cormandom,DC=int-corman,DC=be] loaded /usr/local/samba/sbin/smbd: dns: 5 kccsrv_partition[DC=ForestDnsZones,DC=cormandom,DC=int-corman,DC=be] loaded /usr/local/samba/sbin/smbd: ldb: 5 /usr/local/samba/sbin/smbd: doing parameter log file = /var/log/samba/%U.%m.log /usr/local/samba/sbin/smbd: doing parameter unix charset = ISO-8859-15 /usr/local/samba/sbin/smbd: doing parameter dos charset = ISO-8859-15 /usr/local/samba/sbin/smbd: pm_process() returned Yes /usr/local/samba/sbin/smbd: get_current_groups: user is in 1 groups: 0 /usr/local/samba/sbin/smbd: Registering messaging pointer for type 2 - private_data=(nil) /usr/local/samba/sbin/smbd: Registering messaging pointer for type 9 - private_data=(nil) /usr/local/samba/sbin/smbd: Registered MSG_REQ_POOL_USAGE /usr/local/samba/sbin/smbd: Registering messaging pointer for type 11 - private_data=(nil) /usr/local/samba/sbin/smbd: Registering messaging pointer for type 12 - private_data=(nil) /usr/local/samba/sbin/smbd: Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED /usr/local/samba/sbin/smbd: Registering messaging pointer for type 1 - private_data=(nil) /usr/local/samba/sbin/smbd: Registering messaging pointer for type 5 - private_data=(nil) /usr/local/samba/sbin/smbd: lp_load_ex: refreshing parameters /usr/local/samba/sbin/smbd: Freeing parametrics: /usr/local/samba/sbin/smbd: Initialising global parameters /usr/local/samba/sbin/smbd: rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384) /usr/local/samba/sbin/smbd: params.c:pm_process() - Processing configuration file "/srv/samba/etc/smb.conf" /usr/local/samba/sbin/smbd: Processing section "[global]" /usr/local/samba/sbin/smbd: doing parameter workgroup = CORMAN /usr/local/samba/sbin/smbd: doing parameter realm = cormandom.int-corman.be /usr/local/samba/sbin/smbd: doing parameter netbios name = ADMIN01 /usr/local/samba/sbin/smbd: doing parameter server role = active directory domain controller /usr/local/samba/sbin/smbd: doing parameter server services = s3fs, rpc, nbt, wrepl, ldap, cldap, kdc, drepl, winbind, ntp_signd, kcc /usr/local/samba/sbin/smbd: doing parameter idmap_ldb:use rfc2307 = yes /usr/local/samba/sbin/smbd: doing parameter acl:search = no /usr/local/samba/sbin/smbd: doing parameter ntp signd socket directory = /srv/samba/ntp_signd/ /usr/local/samba/sbin/smbd: doing parameter pid directory = /var/run/samba /usr/local/samba/sbin/smbd: doing parameter max log size = 5 /usr/local/samba/sbin/smbd: doing parameter log level = 5 /usr/local/samba/sbin/smbd: INFO: Current debug levels: /usr/local/samba/sbin/smbd: all: 5 /usr/local/samba/sbin/smbd: tdb: 5 /usr/local/samba/sbin/smbd: printdrivers: 5 /usr/local/samba/sbin/smbd: lanman: 5 /usr/local/samba/sbin/smbd: smb: 5 /usr/local/samba/sbin/smbd: rpc_parse: 5 /usr/local/samba/sbin/smbd: rpc_srv: 5 /usr/local/samba/sbin/smbd: rpc_cli: 5 /usr/local/samba/sbin/smbd: passdb: 5 /usr/local/samba/sbin/smbd: sam: 5 /usr/local/samba/sbin/smbd: auth: 5 /usr/local/samba/sbin/smbd: winbind: 5 /usr/local/samba/sbin/smbd: vfs: 5 /usr/local/samba/sbin/smbd: idmap: 5 /usr/local/samba/sbin/smbd: quota: 5 /usr/local/samba/sbin/smbd: acls: 5 /usr/local/samba/sbin/smbd: locking: 5 /usr/local/samba/sbin/smbd: msdfs: 5 /usr/local/samba/sbin/smbd: dmapi: 5 /usr/local/samba/sbin/smbd: registry: 5 /usr/local/samba/sbin/smbd: scavenger: 5 /usr/local/samba/sbin/smbd: dns: 5 /usr/local/samba/sbin/smbd: ldb: 5 /usr/local/samba/sbin/smbd: doing parameter log file = /var/log/samba/%U.%m.log /usr/local/samba/sbin/smbd: doing parameter unix charset = ISO-8859-15 /usr/local/samba/sbin/smbd: doing
[Samba] Fw: Problem with kerberos and GPO
I found other problem in error log (samba -i -d 3) GSS server Update(krb5)(1) Update failed: Miscellaneous failure (see text): Failed to find ADMIN01$@CORMANDOM.INT-CORMAN.BE(kvno 3) in keytab FILE:/srv/samba/private/secrets.keytab (arcfour-hmac-md5) I sent a bug for my problems. best regards Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 09/09/2013 13:40:30: > De : Stéphane PURNELLE > A : samba@lists.samba.org, > Cc : samba-techni...@lists.samba.org > Date : 09/09/2013 13:42 > Objet : Re: [Samba] Problem with kerberos and GPO > Envoyé par : samba-boun...@lists.samba.org > > Hi, > > anyone can help me ? > > ty > > Stéphane > > --- > Stéphane PURNELLE Admin. Systèmes et Réseaux > Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 > > samba-boun...@lists.samba.org wrote on 06/09/2013 10:22:04: > > > De : Stéphane PURNELLE > > A : samba@lists.samba.org, > > Date : 06/09/2013 10:22 > > Objet : [Samba] Problem with kerberos and GPO > > Envoyé par : samba-boun...@lists.samba.org > > > > Hi, > > > > I have problem with GPO and dns/kerberos resolution > > > > I do a samba -i -d3 to a log file and started on client: gpupdate > /force: > > > > lpcfg_load: refreshing parameters from /srv/samba/etc/smb.conf > > params.c:pm_process() - Processing configuration file > > "/srv/samba/etc/smb.conf" > > samba version 4.1.0rc2 started. > > Copyright Andrew Tridgell and the Samba Team 1992-2013 > > ... > > ldb_wrap open of privilege.ldb > > samba: using 'standard' process model > > ... > > ldb_wrap open of secrets.ldb > > ldb_wrap open of idmap.ldb > > dreplsrv_partition[CN=Configuration,DC=cormandom,DC=int-corman,DC=be] > > loaded > > dreplsrv_partition[CN=Schema,CN=Configuration,DC=cormandom,DC=int- > > corman,DC=be] > > loaded > > dreplsrv_partition[DC=cormandom,DC=int-corman,DC=be] loaded > > dreplsrv_partition[DC=DomainDnsZones,DC=cormandom,DC=int-corman,DC=be] > > loaded > > dreplsrv_partition[DC=ForestDnsZones,DC=cormandom,DC=int-corman,DC=be] > > loaded > > /usr/local/samba/sbin/smbd: smbd version 4.1.0rc2 started. > > /usr/local/samba/sbin/smbd: Copyright Andrew Tridgell and the Samba Team > > > 1992-2013 > > /usr/local/samba/sbin/smbd: INFO: Current debug levels: > > ... > > kccsrv_partition[CN=Configuration,DC=cormandom,DC=int-corman,DC=be] > loaded > > /usr/local/samba/sbin/smbd: scavenger: 5 > > > kccsrv_partition[CN=Schema,CN=Configuration,DC=cormandom,DC=int-corman,DC=be] > > > loaded > > kccsrv_partition[DC=DomainDnsZones,DC=cormandom,DC=int-corman,DC=be] > > loaded > > /usr/local/samba/sbin/smbd: dns: 5 > > kccsrv_partition[DC=ForestDnsZones,DC=cormandom,DC=int-corman,DC=be] > > loaded > > /usr/local/samba/sbin/smbd: ldb: 5 > > /usr/local/samba/sbin/smbd: doing parameter log file = > > /var/log/samba/%U.%m.log > > /usr/local/samba/sbin/smbd: doing parameter unix charset = ISO-8859-15 > > /usr/local/samba/sbin/smbd: doing parameter dos charset = ISO-8859-15 > > /usr/local/samba/sbin/smbd: pm_process() returned Yes > > /usr/local/samba/sbin/smbd: get_current_groups: user is in 1 groups: 0 > > /usr/local/samba/sbin/smbd: Registering messaging pointer for type 2 - > > private_data=(nil) > > /usr/local/samba/sbin/smbd: Registering messaging pointer for type 9 - > > private_data=(nil) > > /usr/local/samba/sbin/smbd: Registered MSG_REQ_POOL_USAGE > > /usr/local/samba/sbin/smbd: Registering messaging pointer for type 11 - > > private_data=(nil) > > /usr/local/samba/sbin/smbd: Registering messaging pointer for type 12 - > > private_data=(nil) > > /usr/local/samba/sbin/smbd: Registered MSG_REQ_DMALLOC_MARK and > > LOG_CHANGED > > /usr/local/samba/sbin/smbd: Registering messaging pointer for type 1 - > > private_data=(nil) > > /usr/local/samba/sbin/smbd: Registering messaging pointer for type 5 - > > private_data=(nil) > > /usr/local/samba/sbin/smbd: lp_load_ex: refreshing parameters > > /usr/local/samba/sbin/smbd: Freeing parametrics: > > /usr/local/samba/sbin/smbd: Initialising global parameters > > /usr/local/samba/sbin/smbd: rlimit_max: increasing rlimit_max (1024) to > > minimum Windows limit (16384) > > /usr/local/samba/sbin/smbd: par
Re: [Samba] Problem with kerberos and GPO
Hi, anyone can help me ? ty Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 06/09/2013 10:22:04: > De : Stéphane PURNELLE > A : samba@lists.samba.org, > Date : 06/09/2013 10:22 > Objet : [Samba] Problem with kerberos and GPO > Envoyé par : samba-boun...@lists.samba.org > > Hi, > > I have problem with GPO and dns/kerberos resolution > > I do a samba -i -d3 to a log file and started on client: gpupdate /force: > > lpcfg_load: refreshing parameters from /srv/samba/etc/smb.conf > params.c:pm_process() - Processing configuration file > "/srv/samba/etc/smb.conf" > samba version 4.1.0rc2 started. > Copyright Andrew Tridgell and the Samba Team 1992-2013 > ... > ldb_wrap open of privilege.ldb > samba: using 'standard' process model > ... > ldb_wrap open of secrets.ldb > ldb_wrap open of idmap.ldb > dreplsrv_partition[CN=Configuration,DC=cormandom,DC=int-corman,DC=be] > loaded > dreplsrv_partition[CN=Schema,CN=Configuration,DC=cormandom,DC=int- > corman,DC=be] > loaded > dreplsrv_partition[DC=cormandom,DC=int-corman,DC=be] loaded > dreplsrv_partition[DC=DomainDnsZones,DC=cormandom,DC=int-corman,DC=be] > loaded > dreplsrv_partition[DC=ForestDnsZones,DC=cormandom,DC=int-corman,DC=be] > loaded > /usr/local/samba/sbin/smbd: smbd version 4.1.0rc2 started. > /usr/local/samba/sbin/smbd: Copyright Andrew Tridgell and the Samba Team > 1992-2013 > /usr/local/samba/sbin/smbd: INFO: Current debug levels: > ... > kccsrv_partition[CN=Configuration,DC=cormandom,DC=int-corman,DC=be] loaded > /usr/local/samba/sbin/smbd: scavenger: 5 > kccsrv_partition[CN=Schema,CN=Configuration,DC=cormandom,DC=int-corman,DC=be] > loaded > kccsrv_partition[DC=DomainDnsZones,DC=cormandom,DC=int-corman,DC=be] > loaded > /usr/local/samba/sbin/smbd: dns: 5 > kccsrv_partition[DC=ForestDnsZones,DC=cormandom,DC=int-corman,DC=be] > loaded > /usr/local/samba/sbin/smbd: ldb: 5 > /usr/local/samba/sbin/smbd: doing parameter log file = > /var/log/samba/%U.%m.log > /usr/local/samba/sbin/smbd: doing parameter unix charset = ISO-8859-15 > /usr/local/samba/sbin/smbd: doing parameter dos charset = ISO-8859-15 > /usr/local/samba/sbin/smbd: pm_process() returned Yes > /usr/local/samba/sbin/smbd: get_current_groups: user is in 1 groups: 0 > /usr/local/samba/sbin/smbd: Registering messaging pointer for type 2 - > private_data=(nil) > /usr/local/samba/sbin/smbd: Registering messaging pointer for type 9 - > private_data=(nil) > /usr/local/samba/sbin/smbd: Registered MSG_REQ_POOL_USAGE > /usr/local/samba/sbin/smbd: Registering messaging pointer for type 11 - > private_data=(nil) > /usr/local/samba/sbin/smbd: Registering messaging pointer for type 12 - > private_data=(nil) > /usr/local/samba/sbin/smbd: Registered MSG_REQ_DMALLOC_MARK and > LOG_CHANGED > /usr/local/samba/sbin/smbd: Registering messaging pointer for type 1 - > private_data=(nil) > /usr/local/samba/sbin/smbd: Registering messaging pointer for type 5 - > private_data=(nil) > /usr/local/samba/sbin/smbd: lp_load_ex: refreshing parameters > /usr/local/samba/sbin/smbd: Freeing parametrics: > /usr/local/samba/sbin/smbd: Initialising global parameters > /usr/local/samba/sbin/smbd: rlimit_max: increasing rlimit_max (1024) to > minimum Windows limit (16384) > /usr/local/samba/sbin/smbd: params.c:pm_process() - Processing > configuration file "/srv/samba/etc/smb.conf" > /usr/local/samba/sbin/smbd: Processing section "[global]" > /usr/local/samba/sbin/smbd: doing parameter workgroup = CORMAN > /usr/local/samba/sbin/smbd: doing parameter realm = > cormandom.int-corman.be > /usr/local/samba/sbin/smbd: doing parameter netbios name = ADMIN01 > /usr/local/samba/sbin/smbd: doing parameter server role = active directory > domain controller > /usr/local/samba/sbin/smbd: doing parameter server services = s3fs, rpc, > nbt, wrepl, ldap, cldap, kdc, drepl, winbind, ntp_signd, kcc > /usr/local/samba/sbin/smbd: doing parameter idmap_ldb:use rfc2307 = yes > /usr/local/samba/sbin/smbd: doing parameter acl:search = no > /usr/local/samba/sbin/smbd: doing parameter ntp signd socket directory = > /srv/samba/ntp_signd/ > /usr/local/samba/sbin/smbd: doing parameter pid directory = /var/run/samba > /usr/local/samba/sbin/smbd: doing parameter max log size = 5 > /usr/local/samba/sbin/smbd: doing parameter log level = 5 > /usr/local/samba/sbin/smbd: INFO: Current debug levels: > /usr/local/samba/sbin/smbd: all: 5 > ... > /usr/local/samba/sbin/smbd: doing parameter log file = > /var/log/
[Samba] Problem with kerberos and GPO
rman.be: no such entry found in hdb Kerberos: Failed building TGS-REP to ipv4:xx.xxx.x.46:51066 Terminating connection - 'kdc_tcp_call_loop: tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED' single_terminate: reason[kdc_tcp_call_loop: tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED] single_terminate: reason[dcesrv: NT_STATUS_CONNECTION_DISCONNECTED] Kerberos: TGS-REQ m639$@CORMANDOM.INT-CORMAN.BE from ipv4:xx.xxx.x.46:51068 for LDAP/admin01.cormandom.int-corman.be/cormandom.int-corman...@cormandom.int-corman.be [renewable, forwardable] Kerberos: Searching referral for admin01.cormandom.int-corman.be Kerberos: Server not found in database: LDAP/admin01.cormandom.int-corman.be/cormandom.int-corman...@cormandom.int-corman.be: no such entry found in hdb Kerberos: Failed building TGS-REP to ipv4:xx.xxx.x.46:51068 Terminating connection - 'kdc_tcp_call_loop: tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED' single_terminate: reason[kdc_tcp_call_loop: tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED] single_terminate: reason[dcesrv: NT_STATUS_CONNECTION_DISCONNECTED] Server : samba 4.1 rc2 on SLES 11 SP2 Client : Windows 7 64-bits Anyone could help me to find solution ? thant you --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Error on classicupgrade - Unable to get id for sid
Sorry, correct SID is SID - 1-5-21---xxx-500 SID for Administrator account SID - 1-5-21---xxx-512 SID for group Domain Admins regards Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 30/08/2013 16:42:15: > De : Andreas Grabner > A : > Cc : samba@lists.samba.org > Date : 30/08/2013 16:42 > Objet : Re: [Samba] Error on classicupgrade - Unable to get id for sid > Envoyé par : samba-boun...@lists.samba.org > > Thanks again! > but i am confused now. > must the SID be xx-512? > > Andreas > > - "Stéphane PURNELLE" schrieb: > > > You must change this in your samba 3.x ldap tree, not in samba4 ldb. > > SID S-1-5-21--500 is correct value for Administrator > > > > > > --- > > Stéphane PURNELLE Admin. Systèmes et Réseaux > > Service Informatique Corman S.A. Tel : 00 32 > > (0)87/342467 > > > > samba-boun...@lists.samba.org wrote on 30/08/2013 16:32:44: > > > > > De : Andreas Grabner > > > A : > > > Cc : samba@lists.samba.org > > > Date : 30/08/2013 16:33 > > > Objet : Re: [Samba] Error on classicupgrade - Unable to get id for > > sid > > > Envoyé par : samba-boun...@lists.samba.org > > > > > > Hi, > > > > > > Thank you! > > > my admin has SID -500. I tried to change but > > > > > > ./bin/ldbmodify -H private/sam.ldb Admin.ldif > > > ERR: (Unwilling to perform) "samldb: objectSid must not be > > > specified!" on DN CN=Administrator,CN=Users,DC=hla-gs,DC=at at > > block > > > before line 6 > > > Modify failed after processing 0 records > > > > > > Now what? Need help again > > > > > > Andreas > > > > > > - "Stéphane PURNELLE" schrieb: > > > > > > > Hi, > > > > > > > > Verify if Administrator have SID S-1-5-21-x-512 and root have > > uid > > > > = 0 > > > > and a SID > > > > > > > > your ldap tree must not have user with SID S-1-5-32-544 or other > > group > > > > > > > > like this > > > > > > > > > > > > --- > > > > Stéphane PURNELLE Admin. Systèmes et > > Réseaux > > > > Service Informatique Corman S.A. Tel : 00 32 > > > > (0)87/342467 > > > > > > > > samba-boun...@lists.samba.org wrote on 30/08/2013 15:56:40: > > > > > > > > > De : Andreas Grabner > > > > > A : samba@lists.samba.org, > > > > > Date : 30/08/2013 15:57 > > > > > Objet : [Samba] Error on classicupgrade - Unable to get id for > > sid > > > > > Envoyé par : samba-boun...@lists.samba.org > > > > > > > > > > Hi, > > > > > > > > > > i have a problem upgrading an old samba 3.5.x to 4.0.9. The > > > > upgradeends > > > > with: > > > > > > > > > > Setting password for administrator > > > > > Administrator password has been set to password of user 'root' > > > > > set_nt_acl_no_snum: fset_nt_acl returned > > NT_STATUS_INVALID_OWNER. > > > > > ERROR(runtime): uncaught exception - (-1073741734, > > > > 'NT_STATUS_INVALID_OWNER') > > > > > File > > "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/ > > > > > __init__.py", line 175, in _run > > > > > return self.run(*args, **kwargs) > > > > > File > > "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/ > > > > > domain.py", line 1318, in run > > > > > useeadb=eadb, dns_backend=dns_backend, use_ntvfs=use_ntvfs) > > > > > File "/usr/local/samba/lib/python2.7/site-packages/samba/ > > > > > upgrade.py", line 935, in upgrade_from_samba3 > > > > > result.names.domaindn, result.lp, use_ntvfs) > > > > > File "/usr/local/samba/lib/python2.7/site-packages/samba/ > > > > > provision/__init__.py", line 1562, in setsysvolacl > > > > > setntacl(lp,sysvol, SYSVOL_ACL, str(domains
Re: [Samba] Error on classicupgrade - Unable to get id for sid
You must change this in your samba 3.x ldap tree, not in samba4 ldb. SID S-1-5-21--500 is correct value for Administrator --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 30/08/2013 16:32:44: > De : Andreas Grabner > A : > Cc : samba@lists.samba.org > Date : 30/08/2013 16:33 > Objet : Re: [Samba] Error on classicupgrade - Unable to get id for sid > Envoyé par : samba-boun...@lists.samba.org > > Hi, > > Thank you! > my admin has SID -500. I tried to change but > > ./bin/ldbmodify -H private/sam.ldb Admin.ldif > ERR: (Unwilling to perform) "samldb: objectSid must not be > specified!" on DN CN=Administrator,CN=Users,DC=hla-gs,DC=at at block > before line 6 > Modify failed after processing 0 records > > Now what? Need help again > > Andreas > > - "Stéphane PURNELLE" schrieb: > > > Hi, > > > > Verify if Administrator have SID S-1-5-21-x-512 and root have uid > > = 0 > > and a SID > > > > your ldap tree must not have user with SID S-1-5-32-544 or other group > > > > like this > > > > > > --- > > Stéphane PURNELLE Admin. Systèmes et Réseaux > > Service Informatique Corman S.A. Tel : 00 32 > > (0)87/342467 > > > > samba-boun...@lists.samba.org wrote on 30/08/2013 15:56:40: > > > > > De : Andreas Grabner > > > A : samba@lists.samba.org, > > > Date : 30/08/2013 15:57 > > > Objet : [Samba] Error on classicupgrade - Unable to get id for sid > > > Envoyé par : samba-boun...@lists.samba.org > > > > > > Hi, > > > > > > i have a problem upgrading an old samba 3.5.x to 4.0.9. The > > upgradeends > > with: > > > > > > Setting password for administrator > > > Administrator password has been set to password of user 'root' > > > set_nt_acl_no_snum: fset_nt_acl returned NT_STATUS_INVALID_OWNER. > > > ERROR(runtime): uncaught exception - (-1073741734, > > 'NT_STATUS_INVALID_OWNER') > > > File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/ > > > __init__.py", line 175, in _run > > > return self.run(*args, **kwargs) > > > File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/ > > > domain.py", line 1318, in run > > > useeadb=eadb, dns_backend=dns_backend, use_ntvfs=use_ntvfs) > > > File "/usr/local/samba/lib/python2.7/site-packages/samba/ > > > upgrade.py", line 935, in upgrade_from_samba3 > > > result.names.domaindn, result.lp, use_ntvfs) > > > File "/usr/local/samba/lib/python2.7/site-packages/samba/ > > > provision/__init__.py", line 1562, in setsysvolacl > > > setntacl(lp,sysvol, SYSVOL_ACL, str(domainsid), > > > use_ntvfs=use_ntvfs, skip_invalid_chown=True, passdb=s4_passdb) > > > File "/usr/local/samba/lib/python2.7/site-packages/samba/ > > > ntacls.py", line 154, in setntacl > > > smbd.set_nt_acl(file, security.SECINFO_OWNER | > > > security.SECINFO_GROUP | security.SECINFO_DACL | > > security.SECINFO_SACL, > > sd) > > > > > > Seems to be a problem with SID S-1-5-32-544 right? > > > > > > router1:/usr/local/samba# ./bin/samba-tool ntacl sysvolreset > > > X: S-1-5-21-1291026335-3787069601-4058188190-500 > > > X: S-1-5-32-544 > > > ERROR(): uncaught exception - Unable to get id > > for > > sid > > > File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/ > > > __init__.py", line 175, in _run > > > return self.run(*args, **kwargs) > > > File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/ > > > ntacl.py", line 207, in run > > > (BA_gid,BA_type) = s4_passdb.sid_to_id(BA_sid) > > > > > > > > > At the moment i have no idea how to fix it. I already checked for > > > duplicate SIDs, names, wrong flags, domains. > > > I would need some help please > > > > > > best regards > > > Andreas > > > > > > > > > -- > > > Andreas Grabner > > > +43 676 840 775 101 > > > andr...@vianova.cc > > > > > > vianova mediendesign gmbh > > > Augasse 24 > > > A- 7400 oberwart > > > +4333 52 / 32 860 > > > www.vianova.cc > > > -- > > > To unsubscribe from this list go to the following URL and read the > > > instructions: https://lists.samba.org/mailman/options/samba > > -- > > To unsubscribe from this list go to the following URL and read the > > instructions: https://lists.samba.org/mailman/options/samba > > -- > Andreas Grabner > +43 676 840 775 101 > andr...@vianova.cc > > vianova mediendesign gmbh > Augasse 24 > A- 7400 oberwart > +4333 52 / 32 860 > www.vianova.cc > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba 4 file-server usage
>samba-tool user delete dpu
> getent passwd dpu
nothing
>samba-tool user create dpu
> getent passwd dpu
nothing
why getent return nothing, user exist, I can see by ldbsearch.
But not posixAccount objectclass !
samba 4.0.9
---
Stéphane PURNELLE Admin. Systèmes et Réseaux
Service Informatique Corman S.A. Tel : 00 32 (0)87/342467
samba-boun...@lists.samba.org wrote on 30/08/2013 11:57:18:
> De : steve
> A : samba@lists.samba.org,
> Date : 30/08/2013 11:58
> Objet : Re: [Samba] Samba 4 file-server usage
> Envoyé par : samba-boun...@lists.samba.org
>
> On Fri, 2013-08-30 at 11:25 +0200, Stéphane PURNELLE wrote:
> > Hi,
> >
> > I test samba 4 for AD authentification and file-server usage.
> >
> > My file-server use posix ACL (XFS filesystem) for manage acces between
> > user.
> >
> > So I must use some trick ("steve posix-tify script") for adding
> > posixAccount to activedirectory tree.
>
> You do not need to add posixAccount. For recent versions of Samba4:
>
> samba-tool user add stephane --uid-number=322 gid-number=20513
> home-directory=/some/place lofin-shell=/bin/sh
>
> You only need the hack for old versions of Samba.
>
> We use a Samba 4.0.9 file server for a mix of about 80 xp and LXDE
> clients over cifs. It server profiles, home folders and loads of other
> rubbish.
> HTH
> Steve
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Error on classicupgrade - Unable to get id for sid
Hi, Verify if Administrator have SID S-1-5-21-x-512 and root have uid = 0 and a SID your ldap tree must not have user with SID S-1-5-32-544 or other group like this --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 30/08/2013 15:56:40: > De : Andreas Grabner > A : samba@lists.samba.org, > Date : 30/08/2013 15:57 > Objet : [Samba] Error on classicupgrade - Unable to get id for sid > Envoyé par : samba-boun...@lists.samba.org > > Hi, > > i have a problem upgrading an old samba 3.5.x to 4.0.9. The upgradeends with: > > Setting password for administrator > Administrator password has been set to password of user 'root' > set_nt_acl_no_snum: fset_nt_acl returned NT_STATUS_INVALID_OWNER. > ERROR(runtime): uncaught exception - (-1073741734, 'NT_STATUS_INVALID_OWNER') > File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/ > __init__.py", line 175, in _run > return self.run(*args, **kwargs) > File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/ > domain.py", line 1318, in run > useeadb=eadb, dns_backend=dns_backend, use_ntvfs=use_ntvfs) > File "/usr/local/samba/lib/python2.7/site-packages/samba/ > upgrade.py", line 935, in upgrade_from_samba3 > result.names.domaindn, result.lp, use_ntvfs) > File "/usr/local/samba/lib/python2.7/site-packages/samba/ > provision/__init__.py", line 1562, in setsysvolacl > setntacl(lp,sysvol, SYSVOL_ACL, str(domainsid), > use_ntvfs=use_ntvfs, skip_invalid_chown=True, passdb=s4_passdb) > File "/usr/local/samba/lib/python2.7/site-packages/samba/ > ntacls.py", line 154, in setntacl > smbd.set_nt_acl(file, security.SECINFO_OWNER | > security.SECINFO_GROUP | security.SECINFO_DACL | security.SECINFO_SACL, sd) > > Seems to be a problem with SID S-1-5-32-544 right? > > router1:/usr/local/samba# ./bin/samba-tool ntacl sysvolreset > X: S-1-5-21-1291026335-3787069601-4058188190-500 > X: S-1-5-32-544 > ERROR(): uncaught exception - Unable to get id for sid > File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/ > __init__.py", line 175, in _run > return self.run(*args, **kwargs) > File "/usr/local/samba/lib/python2.7/site-packages/samba/netcmd/ > ntacl.py", line 207, in run > (BA_gid,BA_type) = s4_passdb.sid_to_id(BA_sid) > > > At the moment i have no idea how to fix it. I already checked for > duplicate SIDs, names, wrong flags, domains. > I would need some help please > > best regards > Andreas > > > -- > Andreas Grabner > +43 676 840 775 101 > andr...@vianova.cc > > vianova mediendesign gmbh > Augasse 24 > A- 7400 oberwart > +4333 52 / 32 860 > www.vianova.cc > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba 4 and bad lockout attempts
Hi, I have a big problem. I see that samba 4 don't have bad lockout attempts and if samba don't have this, I cannot deploy samba 4. This setting is a security setting, it's very important. A virus attack can be modered by this setting (password crack) and the security bookfor IS from my compagny says : 11.1.3 User password management 11.1.3.1 Recommendations for access account configuration The recommendations for password configuration are as follows: • temporary initial password, to be modified upon first connection, • password chosen by the user and known only by him/her, • at least 8 characters, • renewed at least every three months (90 days), • no reuse of previous passwords (at least the last 10). The recommendations for account configuration are as follows: • suspension after 5 incorrect password entries (automatic or manual unlocking after a certain period) • rapid unlock procedure that also works at a distance, • restriction of connection times during the week for external user accounts (7am-10pm). With samba4, I cannot respect that. and I must best regards Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba 4 file-server usage
Hi,
I test samba 4 for AD authentification and file-server usage.
My file-server use posix ACL (XFS filesystem) for manage acces between
user.
So I must use some trick ("steve posix-tify script") for adding
posixAccount to activedirectory tree.
But my questions are :
who use samba 4 file-server part ?
How other sys admin permit user to store data on a server (and not on
user's workstation)?
I have more than 300 groups, more than 200 users and machines.
I have more than 800 Gb of data.
Create user or group in ADUC and after pass a "posix-tify" script) script
will add complexity for management.
best regards
Stéphane
PS : I see in smb.conf (valid for samba 4) that there is a add user
script, but I don't understand how it work !
---
Stéphane PURNELLE Admin. Systèmes et Réseaux
Service Informatique Corman S.A. Tel : 00 32 (0)87/342467
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Problem with nslcd and samba
Hi Steve nslookup : OK ldbsearch --url=/usr/local/samba/private/sam.ldb cn=admin01: see output file steve2.log samba-tool domain exportkeytab /tmp/test.keytab --principal=ADMIN01$: see output file steve3.log klist -k: see output file steve4.log This last command has a bad result for me. But I don't know why. regards Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 De :steve A : samba@lists.samba.org, Date : 28/08/2013 11:52 Objet : Re: [Samba] Problem with nslcd and samba Envoyé par :samba-boun...@lists.samba.org On Wed, 2013-08-28 at 11:03 +0200, Stéphane PURNELLE wrote: > Hi, > > On the DC > > File-server and DC are on the same server. Hi Is it really there? nslookup admin01 ldbsearch --url=/usr/local/samba/private/sam.ldb cn=admin01 samba-tool domain exportkeytab /tmp/test.keytab --principal=ADMIN01$ klist -k Steve -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Problem with nslcd and samba
Hi, On the DC File-server and DC are on the same server. --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 28/08/2013 10:58:19: > De : steve > A : samba@lists.samba.org, > Date : 28/08/2013 10:59 > Objet : Re: [Samba] Problem with nslcd and samba > Envoyé par : samba-boun...@lists.samba.org > > On Wed, 2013-08-28 at 10:34 +0200, Stéphane PURNELLE wrote: > > Hi, > > > > I try to use nslcd with samba 4 for get suers and group for AD. > > if I do a ldapsearch, I have a message : > > > > Server not in kerberos database > > Hi > You get those errors when you are not joined to the domain. Is this the > DC or a client? > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Problem with nslcd and samba
Hi, I try to use nslcd with samba 4 for get suers and group for AD. if I do a ldapsearch, I have a message : Server not in kerberos database if I do a getent passwd, nslcd display same error message. log of samba4: [2013/08/28 10:15:47, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper) Kerberos: TGS-REQ administra...@cormandom.int-corman.be from ipv4:10.217.7.3:40947 for ldap/admin01.cormandom.int-corman...@cormandom.int-corman.be [canonicalize, renewable] [2013/08/28 10:15:47, 4] ../source4/dsdb/samdb/cracknames.c:169(LDB_lookup_spn_alias) LDB_lookup_spn_alias: no alias for service ldap applicable [2013/08/28 10:15:47, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper) Kerberos: Searching referral for admin01.cormandom.int-corman.be [2013/08/28 10:15:47, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper) Kerberos: Server not found in database: ldap/admin01.cormandom.int-corman...@cormandom.int-corman.be: no such entry found in hdb [2013/08/28 10:15:47, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper) Kerberos: Failed building TGS-REP to ipv4:10.217.7.3:40947 [2013/08/28 10:15:47, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper) Kerberos: TGS-REQ administra...@cormandom.int-corman.be from ipv4:10.217.7.3:38379 for ldap/admin01.cormandom.int-corman...@cormandom.int-corman.be [renewable] [2013/08/28 10:15:47, 4] ../source4/dsdb/samdb/cracknames.c:169(LDB_lookup_spn_alias) LDB_lookup_spn_alias: no alias for service ldap applicable [2013/08/28 10:15:47, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper) Kerberos: Server not found in database: ldap/admin01.cormandom.int-corman...@cormandom.int-corman.be: no such entry found in hdb [2013/08/28 10:15:47, 3] ../source4/auth/kerberos/krb5_init_context.c:80(smb_krb5_debug_wrapper) Kerberos: Failed building TGS-REP to ipv4:10.217.7.3:38379 [2013/08/28 10:15:47, 3] ../source4/smbd/service_stream.c:63(stream_terminate_connection) Terminating connection - 'ldapsrv_call_loop: tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED' [2013/08/28 10:15:47, 5] ../source4/lib/messaging/messaging.c:554(imessaging_cleanup) imessaging: cleaning up /srv/samba/private/smbd.tmp/msg/msg.17615.25 [2013/08/28 10:15:47, 3] ../source4/smbd/process_single.c:114(single_terminate) single_terminate: reason[ldapsrv_call_loop: tstream_read_pdu_blob_recv() - NT_STATUS_CONNECTION_DISCONNECTED] output of ldapsearch SASL/GSSAPI authentication started ldap_sasl_interactive_bind_s: Local error (-2) additional info: SASL(-1): generic failure: GSSAPI Error: Unspecified GSS failure. Minor code may provide more information (Server not found in Kerberos database) DNS config: BIND_DLZ Version of samba: samba 4.1rc1 anyone have idea ? best regards, Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba4 and classicupgrade and winbind
Hi, I found the source of my problem with set_nt_acl_no_snum: fset_nt_acl returned NT_STATUS_INVALID_OWNER (I hope). The problem is dut to winbind. In my ldap tree, I have uid and gid. Why samba 4 don't use theses informations ? In attached file : output of classic-upgrade (debug level 5) I don't want to use winbind. I just want to use pam_ldap or nslcd for have unix information from samba ldb regards Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467-- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] DNS and samba
Hi, I have problem with DNS and samba. I have a DNS who manage 3 zone (internal, foward and external), so I want use my DNS for all zone. how can I do this ? using samba Internal : No using samba BIND_DLZ, I have a conflict between samba reccord and defined reccord in my dns config for my domain are there other option ? regards Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba4 and classicupgrade and winbind
Hi, I found the source of my problem with set_nt_acl_no_snum: fset_nt_acl returned NT_STATUS_INVALID_OWNER (I hope). The problem is dut to winbind. In my ldap tree, I have uid and gid. Why samba 4 don't use theses informations ? log file available I don't want to use winbind. I just want to use pam_ldap or nslcd for have unix information from samba ldb regards Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Classicupgrade "set_nt_acl_no_snum: fset_nt_acl returned NT_STATUS_INVALID_OWNER"
Hi, This trick don't resolve the problem regards Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 Marc Muehlfeld wrote on 16/07/2013 17:52:32: > De : Marc Muehlfeld > A : Stéphane PURNELLE , > Cc : "samba@lists.samba.org" > Date : 16/07/2013 17:52 > Objet : Re: [Samba] Classicupgrade "set_nt_acl_no_snum: fset_nt_acl > returned NT_STATUS_INVALID_OWNER" > > Am 16.07.2013 09:28, schrieb Stéphane PURNELLE: > > I have the same problem with classicupgrade (samba 4.0.6) but on > > S-1-5.21---xxx-500. > > This is the domain Admin account. What happens if you remove it before > the classicupgrade? > > > Regards > Marc > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Classicupgrade "set_nt_acl_no_snum: fset_nt_acl returned NT_STATUS_INVALID_OWNER"
Hi, I have the same problem with classicupgrade (samba 4.0.6) but on S-1-5.21---xxx-500. best regards Stéphane Purnelle --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 15/07/2013 22:09:03: > De : Marc Muehlfeld > A : Axel Urban , "samba@lists.samba.org" > , > Date : 15/07/2013 22:09 > Objet : Re: [Samba] Classicupgrade "set_nt_acl_no_snum: fset_nt_acl > returned NT_STATUS_INVALID_OWNER" > Envoyé par : samba-boun...@lists.samba.org > > Hello Axel, > > Am 15.07.2013 22:00, schrieb Axel Urban: > > I used the 4.0.7 tar.gz. > > > > I removed the groupmap.tdb before. > > Does this change anything when you do the classicupgrade? > > > > > Is there anything more I can do? Does > > samba read the /etc/group-File during classicupgrade? > > I'm not sure on that. I only did upgrades from LDAP backend yet - not > from tdb. > > > When you run the classicupgrade, can you run it with a higher debug > level (-d 5) and see if there's anything else interesting around the > error message? > > > > Regards, > Marc > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba4 - error during classicupgrade
My main Administrator account is "Administrateur" because my workstations language is french. "Administrator" account is for server (Windows 2003 and Windows 2008) I have two administrator accounts for according to profile and language. If you log a french profile on a english workstation, profile will be modify for add english menu (Accessoires <-> accessories)... and this is not good. I already tried to modify python script for ignore "-500" test but when script read my "administrator" account, script hang because administrator alread exist (created by full provision I suppose) regards Stéphane Purnelle --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 Andrew Bartlett wrote on 14/07/2013 14:16:28: > De : Andrew Bartlett > A : Stéphane PURNELLE , > Cc : samba@lists.samba.org > Date : 14/07/2013 14:36 > Objet : Re: [Samba] samba4 - error during classicupgrade > > On Tue, 2013-07-09 at 14:49 +0200, Stéphane PURNELLE wrote: > > Hi all, > > > > I found the problem, unsupported character in displayName prjLeudi+, > > samba don't like the charecter + in displayName. > > The bug here is that we should have escaped this value before we put it > into the DN. > > > Next problem: SID on user Administrator. > > > > samba-tool classicupgrade don't terminate correcly because I saw that > > Administrator user don't have the correct SID (ending -500). > > > > We have 2 administrator user (in french and in english) : > > > > Administrateur > > Administrator > > > > SID S-1-5-21-4023731279-819928261-1073345436-500 is on user > > Administrateur. > > > > How can I force samba to by pass this test ? > > What is happening here is that we simply ignore the -500 user from your > import, and then re-add the administrator. The issue is that we add it > in english, so if you have a second administrator (a bad idea in my > view) it will collide. Just remove that from the import source before > you start. > > Andrew Bartlett > > -- > Andrew Bartlett http://samba.org/~abartlet/ > Authentication Developer, Samba Team http://samba.org > > > > > > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba4 - error during classicupgrade
Hi all, I found the problem, unsupported character in displayName prjLeudi+, samba don't like the charecter + in displayName. Next problem: SID on user Administrator. samba-tool classicupgrade don't terminate correcly because I saw that Administrator user don't have the correct SID (ending -500). We have 2 administrator user (in french and in english) : Administrateur Administrator SID S-1-5-21-4023731279-819928261-1073345436-500 is on user Administrateur. How can I force samba to by pass this test ? Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 > samba-boun...@lists.samba.org wrote on 08/07/2013 17:01:50: > > > De : Stéphane PURNELLE > > A : samba@lists.samba.org, > > Date : 08/07/2013 17:02 > > Objet : [Samba] samba4 - error during classicupgrade > > Envoyé par : samba-boun...@lists.samba.org > > > > Hi all, > > > > I have a problem during classic-upgrade : > > > > Importing groups > > Group already exists sid=S-1-5-21-4023731279-819928261-1073345436-512, > > groupname=Domain Admins existing_groupname=Domain Admins, Ignoring. > > Group already exists sid=S-1-5-21-4023731279-819928261-1073345436-514, > > groupname=Domain Guest existing_groupname=Domain Guests, Ignoring. > > Group already exists sid=S-1-5-21-4023731279-819928261-1073345436-515, > > groupname=Domain Computers existing_groupname=Domain Computers, Ignoring. > > Group already exists sid=S-1-5-21-4023731279-819928261-1073345436-513, > > groupname=Domain Users existing_groupname=Domain Users, Ignoring. > > ERROR(): uncaught exception - unable to > > parse dn string > > File > > "/usr/local/samba/lib/python2.6/site-packages/samba/netcmd/__init__.py", > > line 175, in _run > > return self.run(*args, **kwargs) > > File > > "/usr/local/samba/lib/python2.6/site-packages/samba/netcmd/domain.py", > > line 1328, in run > > useeadb=eadb, dns_backend=dns_backend, use_ntvfs=use_ntvfs) > > File "/usr/local/samba/lib/python2.6/site-packages/samba/upgrade.py", > > line 885, in upgrade_from_samba3 > > add_group_from_mapping_entry(result.samdb, g, logger) > > File "/usr/local/samba/lib/python2.6/site-packages/samba/upgrade.py", > > line 274, in add_group_from_mapping_entry > > m.dn = ldb.Dn(samdb, "CN=%s,CN=Users,%s" % (groupmap.nt_name, > > samdb.get_default_basedn())) > > The connection to the LDAP server was closed > > > > I use ldap backend. > > > > anyone could help me ? > > > > Stéphane Purnelle > > > > > > --- > > Stéphane PURNELLE Admin. Systèmes et Réseaux > > Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 > > -- > > To unsubscribe from this list go to the following URL and read the > > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] samba4 - error during classicupgrade
Hi all, I have a problem during classic-upgrade : Importing groups Group already exists sid=S-1-5-21-4023731279-819928261-1073345436-512, groupname=Domain Admins existing_groupname=Domain Admins, Ignoring. Group already exists sid=S-1-5-21-4023731279-819928261-1073345436-514, groupname=Domain Guest existing_groupname=Domain Guests, Ignoring. Group already exists sid=S-1-5-21-4023731279-819928261-1073345436-515, groupname=Domain Computers existing_groupname=Domain Computers, Ignoring. Group already exists sid=S-1-5-21-4023731279-819928261-1073345436-513, groupname=Domain Users existing_groupname=Domain Users, Ignoring. ERROR(): uncaught exception - unable to parse dn string File "/usr/local/samba/lib/python2.6/site-packages/samba/netcmd/__init__.py", line 175, in _run return self.run(*args, **kwargs) File "/usr/local/samba/lib/python2.6/site-packages/samba/netcmd/domain.py", line 1328, in run useeadb=eadb, dns_backend=dns_backend, use_ntvfs=use_ntvfs) File "/usr/local/samba/lib/python2.6/site-packages/samba/upgrade.py", line 885, in upgrade_from_samba3 add_group_from_mapping_entry(result.samdb, g, logger) File "/usr/local/samba/lib/python2.6/site-packages/samba/upgrade.py", line 274, in add_group_from_mapping_entry m.dn = ldb.Dn(samdb, "CN=%s,CN=Users,%s" % (groupmap.nt_name, samdb.get_default_basedn())) The connection to the LDAP server was closed I use ldap backend. anyone could help me ? Stéphane Purnelle --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] What is the difference between lock dir , state dir and cache dir in samba 4
Hi all? The question is in the subject. I need to know what is the difference betwen theses three directory ? What directory contain persistand tdb, what direcorty will contain sysvol data and what directory for tempoary file and tdb. regards Stéphane Purnellle --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] sysvol path samba-tool classic upgrade
Hi The problem occur during provision. Stéphane Purnelle --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 Ricky Nance wrote on 25/06/2013 18:31:56: > De : Ricky Nance > A : Stéphane PURNELLE , > Cc : "samba@lists.samba.org" > Date : 25/06/2013 18:31 > Objet : Re: [Samba] sysvol path samba-tool classic upgrade > > Is this during provision or after? If its after, you can just modify > your smb.conf under the [sysvol] change the path= line... if its > during, then I will need to do some checking when I get home as I > don't have S4 setup here at work. > > Ricky > > On Tue, Jun 25, 2013 at 9:37 AM, Stéphane PURNELLE < > stephane.purne...@corman.be> wrote: > Hi, > > I test samba4 on test server. > > I have an error when samb-too; try to create sysvol directory. > samba-tool display a error message "FS don't support ACL" > > it seems that sysvol directory is created under "locks directory". > > What are locks directory ? > How can I specify a other path for sysvol (path with ACL support) > > My structure is : > > Samba installation : > /usr/local/samba > > Samba configuration : > /srv/etc/samba > > samba private file > /srv/private > > Samba lock diretory > /srv/var/lib > > Samba state directory > /srv/var/locks > > /srv will be a mirrored FS in production servers without no ACL support. > > data are on other FS with XFS filesystem and are also mirrored. > > regards > > Stéphane Purnelle > > --- > Stéphane PURNELLE Admin. Systèmes et Réseaux > Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] sysvol path samba-tool classic upgrade
Hi, I test samba4 on test server. I have an error when samb-too; try to create sysvol directory. samba-tool display a error message "FS don't support ACL" it seems that sysvol directory is created under "locks directory". What are locks directory ? How can I specify a other path for sysvol (path with ACL support) My structure is : Samba installation : /usr/local/samba Samba configuration : /srv/etc/samba samba private file /srv/private Samba lock diretory /srv/var/lib Samba state directory /srv/var/locks /srv will be a mirrored FS in production servers without no ACL support. data are on other FS with XFS filesystem and are also mirrored. regards Stéphane Purnelle ------- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Problem compil samba 4.0.6
Hi all,
I have a problem when I try to compil samba 4.0.6 on my test machine
(suse linux enterprise server 11 SP2 32-bits).
output of compilation :
[3353/3781] Linking default/lib/param/libsamba-hostconfig.so
[3354/3781] Linking default/lib/tdb_wrap/libtdb-wrap.so
[3355/3781] Linking default/libcli/security/libsamba-security.so
[3356/3781] Linking default/lib/util/libutil_tdb.so
[3357/3781] Linking default/auth/libauth_sam_reply.so
[3358/3781] Linking default/lib/util/libsamba-modules.so
[3359/3781] Linking default/source4/lib/socket/libnetif.so
[3360/3781] Linking default/source4/lib/samba3/libsmbpasswdparser.so
[3361/3781] Linking default/lib/torture/libtorture.so
[3362/3781] Linking default/source3/libsmbd_conn.so
[3363/3781] Linking default/libcli/security/pysecurity.so
[3364/3781] Linking default/source3/libCHARSET3.so
[3365/3781] Linking default/libcli/registry/libutil_reg.so
[3366/3781] Linking default/lib/util/libtevent-util.so
[3367/3781] Linking default/source4/heimdal_build/libkrb5-samba4.so
[3368/3781] Linking default/source4/heimdal_build/libgssapi-samba4.so
[3369/3781] Linking default/libcli/ldap/libcli-ldap-common.so
[3370/3781] Linking default/lib/dbwrap/libdbwrap.so
default/lib/dbwrap/dbwrap_tdb_1.o: In function
`db_tdb_transaction_start_nonblock':
dbwrap_tdb.c:(.text+0xd70): undefined reference to
`tdb_transaction_start_nonblock'
collect2: ld a retourné 1 code d'état d'exécution
Waf: Leaving directory `/root/cd_coradm01/samba-4.0.6/bin'
Build failed: -> task failed (err #1):
{task: cc_link
dbwrap_1.o,dbwrap_util_1.o,dbwrap_rbt_1.o,dbwrap_cache_1.o,dbwrap_tdb_1.o,dbwrap_local_open_1.o
-> libdbwrap.so}
make: *** [all] Erreur 1
what's happen ?
best regards,
Stéphane Purnelle
---
Stéphane PURNELLE Admin. Systèmes et Réseaux
Service Informatique Corman S.A. Tel : 00 32 (0)87/342467
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] FW: samba4 on debian squeeze
Hi, are dev package for acl, attr, ... installed ? --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 19/06/2012 10:16:20: > De : L.P.H. van Belle > A : samba@lists.samba.org , > Date : 19/06/2012 10:17 > Objet : [Samba] FW: samba4 on debian squeeze > Envoyé par : samba-boun...@lists.samba.org > > nobody any suggestions for me ? :-(( > im running kernel 3.2. from backports. > > Greetz, > > Louis > > > >-Oorspronkelijk bericht- > >Van: be...@bazuin.nl [mailto:samba-boun...@lists.samba.org] > >Namens L.P.H. van Belle > >Verzonden: 2012-06-18 15:02 > >Aan: samba@lists.samba.org > >Onderwerp: [Samba] samba4 on debian squeeze > > > >hai, > > > >Im trying to install samba4 on my debian squeeze server. > > > >all needed files are from debian unstable. > > > >When i install samba4 ( apt-get install -t unstable samba4 ) > >which is beta1 is in debian unstable. > >at the end im getting the following error.. > > > >get_nt_acl_no_snum: fset_nt_acl returned zero. > >ProvisioningError: Your filesystem or build does not support > >posix ACLs, s3fs is unworkable in this mode > >dpkg: error processing samba4 (--configure): > > subprocess installed post-installation script returned error > >exit status 1 > >configured to not write apport reports > > Errors were encountered > >while processing: > > samba4 > >E: Sub-process /usr/bin/dpkg returned an error code (1) > > > > > >but > > > >cat /boot/config-3.2.0-0.bpo.2-amd64 |egrep "EXT4|EXT3"|egrep > >"ACL|ATTR|SECURITY" > >CONFIG_EXT3_FS_XATTR=y > >CONFIG_EXT3_FS_POSIX_ACL=y > >CONFIG_EXT3_FS_SECURITY=y > >CONFIG_EXT4_FS_XATTR=y > >CONFIG_EXT4_FS_POSIX_ACL=y > >CONFIG_EXT4_FS_SECURITY=y > > > > > > cat /etc/fstab > ># > >proc/proc procdefaults0 0 > >UUID=5bced605-b939-478b-acd8-2ac65c2b9983 / ext4 > > acl,user_xattr,errors=remount-ro 0 1 > >UUID=8fe1f168-1b1f-4997-b21d-ed47c846875b /boot ext4 > > defaults0 2 > >UUID=2ff0a913-4546-46fa-9cfa-3c60d47d9f0e /home ext4 > > acl,user_xattr 0 2 > >UUID=cc5bc5c6-4419-4796-8cfb-4b842e60266e /home/samba ext4 > > acl,user_xattr 0 2 > >UUID=cab73bbb-ac98-4975-8eb0-28b30dba58c3 /optext4 > > defaults0 2 > >UUID=baf44883-e456-46a5-9c36-53c75a7b5477 /tmpext4 > > defaults0 2 > >UUID=1bf48043-1281-40e3-b2c9-0b9d42b6b384 /usrext4 > > defaults0 2 > >UUID=eed8dd47-494c-4f86-ad26-2fedfbca4c64 /varext4 > > defaults0 2 > >UUID=b48a10a3-331c-4a33-a3db-66cf1a06a98e /var/libext4 > > defaults0 2 > >UUID=7fca3635-b0e1-48b2-b0be-31723e5f2e7c /var/logext4 > > defaults0 2 > >UUID=442eff03-2f25-4bb0-9abb-4f721f0c2572 noneswap > > sw 0 0 > > > > > >any suggestions ? > > > >Louis > > > > > >-- > >To unsubscribe from this list go to the following URL and read the > >instructions: https://lists.samba.org/mailman/options/samba > > > > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba 4 analyse
But I don't want to separate DC and file server. And I don't want to redefine my ACL's (I use xfs filesystem). I have more than 500 Go and many many ACL entries My interest in samba 4 is GPO and AD protocol nothing else. is samba 4 have unix layer in her internal ldap database which can I use with s3fs (read from samba wiki) ? Stéphane Purnelle --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 Andrew Bartlett wrote on 03/06/2012 11:02:38: > De : Andrew Bartlett > A : Stéphane PURNELLE , > Cc : samba@lists.samba.org > Date : 03/06/2012 11:02 > Objet : Re: [Samba] Samba 4 analyse > > On Wed, 2012-05-30 at 12:29 +0200, Stéphane PURNELLE wrote: > > Hi, > > > > My actual config > > > > > > Samba 3 PDC, file and print server use openldap backend > > Posix ACL on XFS FS using pam_ldap and ns_ldap. > > independant wins and DNS server (not DDNS) > > > > Can I have same configuration in samba 4 ? > > LIke : > > DC > > flie server with posix ACL support and pam, ns_ldap . > > independant wins and DNS server (not DDNS). > > > > It's just an analyse ! > > You can still separate your DC from your file server. You then join the > file server to the domain, and use winbindd (not nss_ldap). > > WINS need not be connected, but we need to have certain entries in the > DNS server, and for dynamic DNS registration (which AD clients will want > to do) you will need it to be on the DC. For these reasons we recommend > the bind9 dlz plugin we provide. > > Andrew Bartlett > > -- > Andrew Bartlett http://samba.org/~abartlet/ > Authentication Developer, Samba Team http://samba.org > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba 4 analyse
Hi, My actual config Samba 3 PDC, file and print server use openldap backend Posix ACL on XFS FS using pam_ldap and ns_ldap. independant wins and DNS server (not DDNS) Can I have same configuration in samba 4 ? LIke : DC flie server with posix ACL support and pam, ns_ldap . independant wins and DNS server (not DDNS). It's just an analyse ! Have a nice day Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Problem with printers informations
Hi all, We have a print server (windows 2003) for our xerox printer. We have a PDC (RHEL 5 with samba 3.3.13 and openLDAP backend) We have some workstations (Windows XP and Windows 7) connected to our samba PDC Each printer have some information like "when printing ask for a password" Problem : When user change her password, some information like "when printing ask for a password" is forgot. is it possible that profile lose informations when changing password ? If yes, how to resolve it ? Thank you Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] RE Samba, ldap and machine accounts
With theses parameters, your PDC act as a wins server. If you make ps ax | gre ppnmbd you will sees 2 nmbd process. And for client you must configure client for connect to wins server. If you have a dhcp, add wins address to the configuration or if you work with static ip and wins reccord to the ip configuration on your client. Other tips : be sure that in your ldap tree, you have a account for your workstation like workstation-nameC$ --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 15/07/2010 17:22:39: > Götz Reinicke - IT-Koordinator > Envoyé par : samba-boun...@lists.samba.org > > 15/07/2010 17:23 > > A > > samba@lists.samba.org > > cc > > Objet > > Re: [Samba] RE Samba, ldap and machine accounts > > Hi, > > I never got into that wins topic. In the config of the samba server > there is: > > grep wins /etc/samba/smb.conf > >name resolve order = wins bcast hosts >wins proxy = yes >wins support = yes > > What may I check/setup? > > >THX . Götz > > > > Am 15.07.10 16:32, schrieb Stéphane PURNELLE: > > Have you a wins server ? > > > > > > > > --- > > Stéphane PURNELLE Admin. Systèmes et Réseaux > > Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 > > > > samba-boun...@lists.samba.org wrote on 15/07/2010 15:27:25: > > > >> Götz Reinicke - IT-Koordinator > >> Envoyé par : samba-boun...@lists.samba.org > >> > >> 15/07/2010 15:27 > >> > >> A > >> > >> samba@lists.samba.org > >> > >> cc > >> > >> Objet > >> > >> [Samba] Samba, ldap and machine accounts > >> > >> Hi, > >> > >> some time a go I started to try a migration form our "old" samba PDC > >> with smbpasswd user backend to a new ldap based. > >> > >> I got to the point, that users can login to shares and now I'd liked to > >> set up the server as an PDC with ldap and machine accounts too. > >> > >> The smbldap-toosl are installed and configured and I can add a machine > >> to ldap to a certain point. > >> > >> The ldap entry is created, but when I restart the XP client there is a > >> pop-up at the login window with the message, that the domain is not > >> available. (The domain I joined a few minutes ago.) > >> > >> I restarted the samba server, I restarted the xp client, waited some > >> time over night for the browser announcement to finish. Deleted the > >> cached files on the sambe server in /var/cache/samba/ ... > >> > >> May be I missed something or deleted something I shouln't ... > >> > >> The server is centos 5.5, openldap-2.3.43, samba-3.0.33. > >> > >> The Client is windows xp SP3 with all latest patches and no > >> modifications to the registry or anything else. > >> > >> In the logfiles is not clue to me. > >> > >> Any suggestion or help is appreciate! > >> > >> Thanks a lot and best regards, > >> > >>Götz > >> -- > >> Götz Reinicke > >> IT-Koordinator > >> > >> Tel. +49 7141 969 420 > >> Fax +49 7141 969 55 420 > >> E-Mail goetz.reini...@filmakademie.de > >> > >> Filmakademie Baden-Württemberg GmbH > >> Akademiehof 10 > >> 71638 Ludwigsburg > >> www.filmakademie.de > >> > >> Eintragung Amtsgericht Stuttgart HRB 205016 > >> Vorsitzende des Aufsichtsrats: > >> Prof. Dr. Claudia Hübner > >> > >> Geschäftsführer: > >> Prof. Thomas Schadt > >> > >> -- > >> To unsubscribe from this list go to the following URL and read the > >> instructions: https://lists.samba.org/mailman/options/samba > > > -- > Götz Reinicke > IT-Koordinator > > Tel. +49 7141 969 420 > Fax +49 7141 969 55 420 > E-Mail goetz.reini...@filmakademie.de > > Filmakademie Baden-Württemberg GmbH > Akademiehof 10 > 71638 Ludwigsburg > www.filmakademie.de > > Eintragung Amtsgericht Stuttgart HRB 205016 > Vorsitzende des Aufsichtsrats: > Prof. Dr. Claudia Hübner > > Geschäftsführer: > Prof. Thomas Schadt > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] RE Samba, ldap and machine accounts
Have you a wins server ? --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 15/07/2010 15:27:25: > Götz Reinicke - IT-Koordinator > Envoyé par : samba-boun...@lists.samba.org > > 15/07/2010 15:27 > > A > > samba@lists.samba.org > > cc > > Objet > > [Samba] Samba, ldap and machine accounts > > Hi, > > some time a go I started to try a migration form our "old" samba PDC > with smbpasswd user backend to a new ldap based. > > I got to the point, that users can login to shares and now I'd liked to > set up the server as an PDC with ldap and machine accounts too. > > The smbldap-toosl are installed and configured and I can add a machine > to ldap to a certain point. > > The ldap entry is created, but when I restart the XP client there is a > pop-up at the login window with the message, that the domain is not > available. (The domain I joined a few minutes ago.) > > I restarted the samba server, I restarted the xp client, waited some > time over night for the browser announcement to finish. Deleted the > cached files on the sambe server in /var/cache/samba/ ... > > May be I missed something or deleted something I shouln't ... > > The server is centos 5.5, openldap-2.3.43, samba-3.0.33. > > The Client is windows xp SP3 with all latest patches and no > modifications to the registry or anything else. > > In the logfiles is not clue to me. > > Any suggestion or help is appreciate! > > Thanks a lot and best regards, > >Götz > -- > Götz Reinicke > IT-Koordinator > > Tel. +49 7141 969 420 > Fax +49 7141 969 55 420 > E-Mail goetz.reini...@filmakademie.de > > Filmakademie Baden-Württemberg GmbH > Akademiehof 10 > 71638 Ludwigsburg > www.filmakademie.de > > Eintragung Amtsgericht Stuttgart HRB 205016 > Vorsitzende des Aufsichtsrats: > Prof. Dr. Claudia Hübner > > Geschäftsführer: > Prof. Thomas Schadt > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Question about IPC$ connection
Hi all, Juste a little bit question : why some user have two IPC$ connection. example : 18331 jfc Utilisateurs m559 transferts 18331 m559 Wed Jul 7 08:02:15 2010 sys 18331 m559 Wed Jul 7 08:02:10 2010 jfc 18331 m559 Wed Jul 7 08:01:53 2010 groupes 18331 m559 Wed Jul 7 08:02:15 2010 IPC$ 18331 m559 Wed Jul 7 12:02:41 2010 IPC$ 18331 m559 Wed Jul 7 10:33:31 2010 medias 18331 m559 Wed Jul 7 08:02:15 2010 corman.pub 18331 m559 Wed Jul 7 08:02:15 2010 samba 3.3.11 Thank Stéphane Purnelle --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba memory usage and IPC$
Hi Volker, Stange thing, no output with the command smbcontrol 24429 pool-usage If I execute the same command for the PID 19080, I have data PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND 19080 pym 15 0 197m 38m 17m S 1.7 1.0 1:56.07 smbd thanks for your help Stéphane Purnelle --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 Volker Lendecke 10/05/2010 15:23 Veuillez répondre à volker.lende...@sernet.de A Stéphane PURNELLE cc samba@lists.samba.org Objet Re: [Samba] Samba memoeur usage and IPC$ On Mon, May 10, 2010 at 12:34:34PM +0200, Stéphane PURNELLE wrote: > Hi all, > > I have a question about memory usage and IPC$ share. > > I'am auditing the swap usage of my server because I already have a problem > with a full swap. > I see that the smbd process take < 200Mo on swap : > > Example : > PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND > 24429 lge 15 0 197m 39m 14m S 0.3 1.0 0:15.17 smbd > > but some process use more than 200Mo > 4923 ipcsrv15 0 282m 121m 16m S 10.3 3.1 6:27.57 smbd The "39m" and "121m" are what counts. They are very large. Can you run smbstatus 24429 pool-usage and post the output somewhere? In case, process "24429" does not exist anymore, please replace this number with the process id of a large process. Thanks, Volker -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba memory usage and IPC$
Volker, OK I take note, I will plan to update samba to samba 3.5.2. thanks Stéphane Purnelle --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 Volker Lendecke wrote on 10/05/2010 16:38:40: > Volker Lendecke > 10/05/2010 16:38 > > Veuillez répondre à > volker.lende...@sernet.de > > A > > Stéphane PURNELLE > > cc > > samba@lists.samba.org > > Objet > > Re: [Samba] Samba memory usage and IPC$ > > On Mon, May 10, 2010 at 04:22:28PM +0200, Stéphane PURNELLE wrote: > > Yes, I can. > > Can you look the file, this is the output of the command smbcontrol 24429 > > pool-usage -t 60 > > Ok, this seems to be something real. > > 3.3.10 is not the fancy newest one. Can you try upgrading to > 3.5.2? > > Alternatively, if your packages are official RHEL 5.3 > packages, you might want to contact RedHat for support. > > Volker > [attachment "signature.asc" deleted by Stéphane PURNELLE/COR/SOPARIND] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba memoeur usage and IPC$
Hi all,
I have a question about memory usage and IPC$ share.
I'am auditing the swap usage of my server because I already have a problem
with a full swap.
I see that the smbd process take < 200Mo on swap :
Example :
PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND
24429 lge 15 0 197m 39m 14m S 0.3 1.0 0:15.17 smbd
but some process use more than 200Mo
4923 ipcsrv15 0 282m 121m 16m S 10.3 3.1 6:27.57 smbd
and I see that use user is ipcsrv, the "guest user".
If I do a smbstatus | grep 4923, I can see that the IPC$ is used :
[r...@coradm01-node1 ~]# smbstatus | grep 4923
4923 jld Utilisateurs m557 (10.217.6.3)
jld 4923 m557 Mon May 10 07:59:30 2010
IPC$ 4923 m557 Mon May 10 08:38:07 2010
groupes 4923 m557 Mon May 10 08:38:00 2010
IPC$ 4923 m557 Mon May 10 12:32:30 2010
anyone can explain me how this IPC$ can appear ?
Samba 3.3.10
RedHat Enterprise Linux 5.3
thanks
Stéphane Purnelle
---
Stéphane PURNELLE Admin. Systèmes et Réseaux
Service Informatique Corman S.A. Tel : 00 32 (0)87/342467
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
[Samba] RE Undocumented TDB files
Hi, > /var/lib/samba/locking.tdb status of locked and open file > /var/lib/samba/wins.tdb DB of wins entry, this tdb exist only if samba act as a wins server > /var/lib/samba/mutex.tdb I don't know --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 23/04/2010 11:52:36: > Moray Henderson > Envoyé par : samba-boun...@lists.samba.org > > 23/04/2010 11:53 > > A > > "samba" > > cc > > Objet > > [Samba] Undocumented TDB files > > In samba3-3.3.9-40.el4 and samba3-3.4.7-42.el5 there are 3 .tdb files > > /var/lib/samba/locking.tdb > /var/lib/samba/wins.tdb > /var/lib/samba/mutex.tdb > > which are not documented in > http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/install.html# > tdbdocs. > > Are they persistent or temporary? > > > Moray. > "To err is human. To purr, feline" > > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] RE Windows 7 and samba 3.0.28
Sorry but all version before 3.3.10 not work with windows 7. Please read http://wiki.samba.org/index.php/Windows7 for more information. You must download samba source and compile them or build RPM from samba source. Have a nice day. Stephane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org wrote on 16/04/2010 13:02:21: > vishesh kumar > Envoyé par : samba-boun...@lists.samba.org > > 16/04/2010 13:02 > > A > > samba@lists.samba.org > > cc > > Objet > > [Samba] Windows 7 and samba 3.0.28 > > Dear all > May be this question asked earlier in list but i didn't able to search > exact . I have samba+ldap domain setup on RHEL 5.1 and samba version is > 3.0.28. Today i got a windows 7 system , but i am not able to join that > system in our samba+ldap domain. Do i need to do any registry tweaking. I > can't upgrade own samba version beyond 3.0.33 because this maximum version i > get if i update my system to RHEL 5.5. > > Thanks > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Need connection log
Hi all, I need to have a connection log. I file who will contain all connection information : user/date/IP and a status FAIL or OK What is the better way : utmp/wtmp or VFS object audit on the IPC$ share ? I would like to log ALL connection . thanks for your help Stephane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Problem with printer since update to samba 3.4.5
Hi all, I have a problem with some client about printing. Client unable to print. I must play by restarting spool server services and/or uninstall/reinstall printer on client. And in the log file, I have [2010/02/16 14:18:46, 0] lib/charcnv.c:641(convert_string_allocate) Conversion error: Illegal multibyte sequence(¤) [2010/02/16 14:18:46, 1] ../librpc/ndr/ndr.c:374(ndr_pull_error) ndr_pull_error(5): Bad character conversion [2010/02/16 14:18:46, 0] rpc_server/srv_pipe.c:2332(api_rpcTNP) api_rpcTNP: \spoolss: SPOOLSS_OPENPRINTEREX failed. [2010/02/16 14:18:46, 0] lib/charcnv.c:641(convert_string_allocate) Conversion error: Illegal multibyte sequence(¤) [2010/02/16 14:18:46, 1] ../librpc/ndr/ndr.c:374(ndr_pull_error) ndr_pull_error(5): Bad character conversion [2010/02/16 14:18:46, 0] rpc_server/srv_pipe.c:2332(api_rpcTNP) api_rpcTNP: \spoolss: SPOOLSS_OPENPRINTEREX failed. [2010/02/16 14:25:29, 1] smbd/service.c:1047(make_connection_snum) What's happening ? OS : RedHat Enterprise Linux 5.3 Sincerly Stéphane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Problem when I try to compil samba 3.4.5
Hi, System description : RedHat EL 5.3 Previous version of samba : 3.2.11. The problem : ... Linking bin/smbd /usr/bin/ld: warning: libssl.so.6, needed by /usr/local/lib/libcups.so, may conflict with libssl.so.0.9.8 /usr/bin/ld: warning: libcrypto.so.6, needed by /usr/local/lib/libcups.so, may conflict with libcrypto.so.0.9.8 smbd/ipc.o: In function `api_dcerpc_cmd_write_done': ipc.c:(.text+0x32): undefined reference to `_talloc_get_type_abort' ipc.c:(.text+0x4c): undefined reference to `_talloc_get_type_abort' smbd/ipc.o: In function `api_dcerpc_cmd_read_done': ipc.c:(.text+0x1f01): undefined reference to `_talloc_get_type_abort' ipc.c:(.text+0x1f1b): undefined reference to `_talloc_get_type_abort' smbd/pipes.o: In function `pipe_read_andx_done': pipes.c:(.text+0x1ed): undefined reference to `_talloc_get_type_abort' smbd/pipes.o:pipes.c:(.text+0x207): more undefined references to `_talloc_get_type_abort' follow lib/winbind_util.o: In function `winbind_get_sid_aliases': winbind_util.c:(.text+0x101): undefined reference to `wbcGetSidAliases' lib/winbind_util.o: In function `winbind_getpwsid': winbind_util.c:(.text+0x8d1): undefined reference to `wbcGetpwsid' ../lib/async_req/async_req.o: In function `async_req_immediate_trigger': async_req.c:(.text+0x2cb): undefined reference to `_talloc_get_type_abort' ../lib/async_req/async_req.o: In function `async_trigger': async_req.c:(.text+0x31d): undefined reference to `_talloc_get_type_abort' ../lib/async_req/async_sock.o: In function `writev_recv': async_sock.c:(.text+0x30): undefined reference to `_talloc_get_type_abort' ../lib/async_req/async_sock.o: In function `async_recv_recv': async_sock.c:(.text+0x97): undefined reference to `_talloc_get_type_abort' ../lib/async_req/async_sock.o: In function `async_send_recv': async_sock.c:(.text+0xfe): undefined reference to `_talloc_get_type_abort' ../lib/async_req/async_sock.o:async_sock.c:(.text+0x175): more undefined references to `_talloc_get_type_abort' follow collect2: ld a retourné 1 code d'état d'exécution make: *** [bin/smbd] Erreur 1 I want to put this version today. can anyone help me Stephane --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] RE Need Help on start samba
You have an example of samba init file in the Example sous-directory folder in source directory. --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-boun...@lists.samba.org a écrit sur 22/07/2009 16:49:38 : > I have met inform as following. I see that no smb on init.d folder. > > [r...@maychu1 home]# /etc/rc.d/init.d/smb start > bash: /etc/rc.d/init.d/smb: No such file or directory > > Pls help me how to have smb on init.d folder? Thank you. > Thank you & Best Regards, > > > > -- > > Tran Van Hung > > IT Department > > REX HOTEL > > 141 Nguyen Hue Blvd, Ho Chi Minh City, Vietnam > > Tel:(84-8)38292185 or (84-8)38293115 > > Fax:(84-8)38296536 > > Email: tvhun...@yahoo.com.vn > > Website:http//www.rexhotelvietnam.com > > ** > > Cell Phone: 0983908262 > > YM and Skype: tvhungsg > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Problem when compiling samba 3.3.4
Hi, When I compile samba 3.3.4, I have this error : Using FLAGS = -O -O -D_SAMBA_BUILD_=3 -I/usr/local/include -I/root/samba-3.3.4/source/iniparser/src -Iinclude -I./include -I. -I. -I./lib/replace -I./lib/talloc -I./lib/tdb/include -I./libaddns -I./librpc -DHAVE_CONFIG_H -D_LARGEFILE64_SOURCE -D_FILE_OFFSET_BITS=64 -D_GNU_SOURCE -I/usr/local/include -Iinclude -I./include -I. -I. -I./lib/replace -I./lib/talloc -I./lib/tdb/include -I./libaddns -I./librpc -I./popt -DLDAP_DEPRECATED -I/include -I/root/samba-3.3.4/source/lib -D_SAMBA_BUILD_=3 PICFLAG= -fPIC LIBS = -lcrypt -lcap -lresolv -lnsl -ldl LDFLAGS= -pie -Wl,-z,relro -L/usr/local/lib -Wl,-rpath,/usr/local/lib -L/usr/local/lib -L./bin DYNEXP = -Wl,--export-dynamic LDSHFLAGS = -shared -Wl,-Bsymbolic -Wl,-z,relro -L/usr/local/lib -Wl,-rpath,/usr/local/lib -L/usr/local/lib -L./bin SHLIBEXT = so SONAMEFLAG = -Wl,-soname= Compiling dynconfig.c Compiling lib/iconv.c Compiling passdb/pdb_interface.c Linking shared library bin/libnetapi.so.0 Linking non-shared library bin/libsmbclient.a Linking shared library bin/libsmbclient.so.0 Compiling smbd/vfs.c Compiling auth/auth.c Compiling smbd/build_options.c Compiling smbd/server.c Linking bin/smbd /usr/bin/ld: warning: libssl.so.6, needed by /usr/local/lib/libcups.so, may conflict with libssl.so.0.9.8 /usr/bin/ld: warning: libcrypto.so.6, needed by /usr/local/lib/libcups.so, may conflict with libcrypto.so.0.9.8 Linking bin/nmbd Linking bin/swat /usr/bin/ld: warning: libssl.so.6, needed by /usr/local/lib/libcups.so, may conflict with libssl.so.0.9.8 /usr/bin/ld: warning: libcrypto.so.6, needed by /usr/local/lib/libcups.so, may conflict with libcrypto.so.0.9.8 Compiling winbindd/idmap.c Compiling winbindd/nss_info.c Linking bin/winbindd Linking bin/wbinfo nsswitch/wbinfo.o: In function `wbinfo_change_user_password': wbinfo.c:(.text+0x145d): undefined reference to `wbcChangeUserPassword' nsswitch/wbinfo.o: In function `main': wbinfo.c:(.text+0x2663): undefined reference to `wbcGetDisplayName' wbinfo.c:(.text+0x2f26): undefined reference to `wbcRemoveUidMapping' wbinfo.c:(.text+0x2fb1): undefined reference to `wbcRemoveGidMapping' collect2: ld a retourné 1 code d'état d'exécution make: *** [bin/wbinfo] Erreur 1 Distribution : Red Hat Enterprise Linux Server release 5.3 (Tikanga) Architecture : Linux 2.6.18-128.el5.xfs #1 SMP Fri Apr 3 16:01:45 CEST 2009 x86_64 x86_64 x86_64 GNU/Linux Anyone can help me ? Thanks Stéphane Purnelle --- Stéphane PURNELLE System & Network Admin. Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
RE [Samba] Samba group management understanding
bad rights -rwxrw 1 gbayard enseign 8 avr 29 15:03 truc.txt must be -rwxrwx--- 1 gbayard enseign 8 avr 29 15:03 truc.txt --- Stéphane PURNELLE Admin. Systèmes et Réseaux Service Informatique Corman S.A. Tel : 00 32 (0)87/342467 samba-bounces+stephane.purnelle=corman...@lists.samba.org a écrit sur 06/05/2009 12:50:51 : > Hello all, > > I want to set up a share for a project (enseign) > First thing I did is to create a group for that project (with > smbldap-groupadd) and add project members to that group. > Then I created a test_smb directory on my linux server with the > following access rights: > > drwxrwx--- 2 gbayard enseign 4096 avr 29 15:03 /test_smb > > Note: the idea is that only group members should be able to > create/destroy files in this share (the user value should not be used) > > Then I added the following to smb.conf: > > [test] > path = /test_smb > writable = yes > # browseable = no > # create mask = 0770 > # valid users = @enseign > # directory mask = 0775 > # force group = enseign > > Commented values work fine but are not required to expose my problem so > I use very basic share settings > > Under linux I create the following file in /test_smb: > -rwxrw 1 gbayard enseign 8 avr 29 15:03 truc.txt > > After I restart smb with /etc/init.d/smb restart I switch to XP and go > to my share \\server\test and here is what's happening: > - if I connect with user gbayard (who is the share user) everything is > right. I can create/edit/destroy files > - if I connect with user javerage who belongs to group enseign then I > can modify the content of truc.txt (so group membership seems > acknowledged by windows) but I can't destroy the file (seems like > directory 'write' right to the group enseign is ignored). If I want to > create a new file it works but I can't rename or destroy it (I end up > with a "new document.txt" file that I can edit but not rename or > destroy)... Mmm. I'm puzzled! > > I've check access to the share from a linux client (through gvfs on > ubuntu) and it works as expected. So it seems like a windows XP client > problem. I've checked all smb.conf options and could not find any > workaround option. > > As additionnal info I'm attaching samba log for file deletion trial from > XP (failure) and from linux (success). And also my server's options > (testparm -sv) > > Any ideas? > > Gildas > > > Load smb config files from /etc/samba/smb.conf > Processing section "[homes]" > Processing section "[projects]" > Processing section "[test]" > Processing section "[web]" > Processing section "[netlogon]" > Loaded services file OK. > Server role: ROLE_DOMAIN_PDC > [global] >dos charset = CP850 >unix charset = UTF-8 >display charset = LOCALE >workgroup = HDS >realm = >netbios name = NEO >netbios aliases = >netbios scope = >server string = storage >interfaces = 172.17.1.42/16 >bind interfaces only = Yes >security = USER >auth methods = >encrypt passwords = Yes >update encrypted = No >client schannel = Auto >server schannel = Auto >allow trusted domains = Yes >map to guest = Never >null passwords = No >obey pam restrictions = No >password server = * >smb passwd file = /etc/samba/smbpasswd >private dir = /etc/samba >passdb backend = ldapsam:ldap://ldap.gi.utc:983 >algorithmic rid base = 1000 >root directory = >guest account = ftp >enable privileges = Yes >pam password change = No >passwd program = >passwd chat = *new*password* %n\n *new*password* %n\n *changed* >passwd chat debug = No >passwd chat timeout = 2 >check password script = >username map = /etc/samba/smbusers >password level = 8 >username level = 8 >unix password sync = No >restrict anonymous = 0 >lanman auth = Yes >ntlm auth = Yes >client NTLMv2 auth = No >client lanman auth = Yes >client plaintext auth = Yes >preload modules = >use kerberos keytab = No >log level = 4 >syslog = 1 >syslog only = No >log file = /var/log/samba/%m.log >max log size = 50 >debug timestamp = Yes >debug prefix timestamp = No >debug hires timestamp = No >debug pid = No >debug uid = No >enable core files = Yes >smb ports = 445 139 >large readwrite = Yes >max protocol = NT1 >min protocol = CORE &g
[Samba] vfs audit, ext_audit and full_audit
Hi samba team,
Because some people cut/paste some directory I need to activate auditing
for delete, rename file and directory operation.
I want to know users and file or directory which delete or rename
opration has be made.
I activate full_audit but I don't have theses informations :
mjb|xx.xxx.x.xxx|realpath|ok|/rsrv/vol2/data1/groupes.
What vfs objects can I use for that ?
thanks
Stéphane Purnelle
---
Stéphane PURNELLE Admin. Systèmes et Réseaux
Service Informatique Corman S.A. Tel : 00 32 (0)87/342467
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
RE [Samba] please help me PLEASEEEEEEEE
I think that you find more information on the openldap.org website. --- Stéphane PURNELLE stephane.purne...@corman.be Service Informatique Corman S.A. Tel : 00 32 087/342467 samba-bounces+stephane.purnelle=corman...@lists.samba.org a écrit sur 13/03/2009 09:58:43 : > Dear ALL > > > Please tell me how to configure Openldap in rhel 5 > > > Please send me links & document > > Thanks in advance > > Ankit Jariwala > 9725655020 > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Complex [homes] rule
Could you provide more information about your configuration. a homes share with two access, why ? A idea : about include parameter, if you edit your smb.conf and put end of the file the homes shares and the include parameter like : include = %D%w%S.smb.conf [homes] ... valid user= @postgrad and ofcourse define on %D%w%S.smb.conf (the correct homes share for %D%w%S ) --- Stéphane PURNELLE stephane.purne...@corman.be Service Informatique Corman S.A. Tel : 00 32 087/342467 samba-bounces+stephane.purnelle=corman...@lists.samba.org a écrit sur 10/03/2009 17:52:07 : > If you are referring to http://marc.info/?l=samba&m=122692173903872&w=2 > > This doesnt work for me because postgrad isnt the primary group of those > particular users. > > > On Tue, 10 Mar 2009 16:18:44 +, Miguel Medalha > wrote: > > > >> Im my [homes] share i want to have two access rules. First one is > >> %D%w%S so that DOMAINdmarkey will only be able to access his own home > >> directory and nobody elses > >> But I only want users in the postgrad group to be able to access > >> their home directory. > >> > >> > > > > That question has already been solved in previous posts. Please search > > the list. > > > > The solution lies with the use of the "include" parameter. > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: RE [Samba] Complex [homes] rule
ah ok, sorry, But I don't have the answer for you. Usually, the homes share is the user home directory and is not a standard share. the homes share in smb.conf contain theses parameter (normal config : [homes] path = /path/to/home/directory/%U force user = %U read only = No directory mask = 0700 browseable = No hide dot files = yes maybe I have a solution (a idea while I write this mail), read in samba howto collection on samba website about the include parameter. It's possible to made multiple sub smb.conf for containe particular share... --- Stéphane PURNELLE stephane.purne...@corman.be Service Informatique Corman S.A. Tel : 00 32 087/342467 David Markey a écrit sur 10/03/2009 17:00:02 : > > No Sorry, > > The only people who i want to give access to their own home directory is > postgrad. but I only want them to access their own home dirctory not anyone > elses(i.e the %D%w%S rule) > > Any clearer? > > > On Tue, 10 Mar 2009 16:55:14 +0100, Stéphane PURNELLE > wrote: > > Hi, > > > > In other word (if I understand), each users (%D%w%S) have access to her > > home directory and postgard group must be able to access to all homes > > folder ? > > If you want this, is preferable to create a other share witn the path of > > home directory and put access to postgrad on this share > > > > be carrefull : homes share is particular ! > > > > > > > > --- > > Stéphane PURNELLE stephane.purne...@corman.be > > Service Informatique Corman S.A. Tel : 00 32 087/342467 > > > > samba-bounces+stephane.purnelle=corman...@lists.samba.org a écrit sur > > 10/03/2009 16:46:01 : > > > >> > >> > >> Hi All > >> Im my [homes] share i want to have two access rules. First one is > >> %D%w%S so that DOMAINdmarkey will only be able to access his own home > >> directory and nobody elses > >> But I only want users in the postgrad group to be able to access > >> their home directory. > >> > >> How could i implement both rules on the [homes] share? > >> Example: %D%w%S AND @DOMAINPostgrad > >> Any Ideas? > >> Thanks. > >> > >> > >> -- > >> To unsubscribe from this list go to the following URL and read the > >> instructions: https://lists.samba.org/mailman/options/samba > > > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
RE [Samba] Complex [homes] rule
Hi, In other word (if I understand), each users (%D%w%S) have access to her home directory and postgard group must be able to access to all homes folder ? If you want this, is preferable to create a other share witn the path of home directory and put access to postgrad on this share be carrefull : homes share is particular ! --- Stéphane PURNELLE stephane.purne...@corman.be Service Informatique Corman S.A. Tel : 00 32 087/342467 samba-bounces+stephane.purnelle=corman...@lists.samba.org a écrit sur 10/03/2009 16:46:01 : > > > Hi All > Im my [homes] share i want to have two access rules. First one is > %D%w%S so that DOMAINdmarkey will only be able to access his own home > directory and nobody elses > But I only want users in the postgrad group to be able to access > their home directory. > > How could i implement both rules on the [homes] share? > Example: %D%w%S AND @DOMAINPostgrad > Any Ideas? > Thanks. > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] unable to use myse home share on a member server
Hi all, I have a strange problem : smb.conf : [global] netbios name = CORLI01 workgroup = CORMAN server string = Ancien Serveur administratif (%v) # Definition de la securite #security = user security = domain password server = ADMIN01 # passwd chat debug = yes # passwd chat = *new*password* %n\n *new*password* %n\n successfully* # passwd program = "/usr/local/sbin/smbldap-password -o %u" password level = 2 unix password sync = no admin users = @administrateurs # os level = 160 announce as = NT Server enable privileges = yes reset on zero vc = yes msdfs root = No [homes] comment = Repertoire Home path = /rsrv/vol1/home/%U force user = %U read only = No directory mask = 0700 browseable = No hide dot files = yes veto files = /.bash_logout/.bash_profile/.bash_history/.bashrc/.gtkrc/.kde/.mc/.xarkeia/ inherit permissions = Yes inherit acls = Yes [archives] comment = Repertoire archives path = /rsrv/vol2/archives/%U force user = %U read only = No directory mask = 0700 # browseable = No hide dot files = yes veto files = /.bash_logout/.bash_profile/.bash_history/.bashrc/.gtkrc/.kde/.mc/.xarkeia/ inherit permissions = Yes inherit acls = Yes I'am unable to enter to my "home" : the network cannot be found And the share archives is not visible (I can made \\corli01\archives and I can made all operations) In the log file : [2009/03/03 12:09:54, 3] smbd/process.c:switch_message(1378) switch message SMBtrans2 (pid 3004) conn 0x8700ae8 [2009/03/03 12:09:54, 4] smbd/uid.c:change_to_user(213) change_to_user: Skipping user change - already user [2009/03/03 12:09:54, 3] smbd/msdfs.c:get_referred_path(813) get_referred_path: |spu| in dfs path \corli01\spu is not a dfs root. [2009/03/03 12:09:54, 3] smbd/error.c:error_packet_set(61) error packet at smbd/trans2.c(7286) cmd=50 (SMBtrans2) NT_STATUS_NOT_FOUND [2009/03/03 12:09:54, 5] lib/util.c:show_msg(645) [2009/03/03 12:09:54, 5] lib/util.c:show_msg(655) redhat 4.7 samba 3.3.1 anyone have a idea ? thanks Stéphane ------- Stéphane PURNELLE stephane.purne...@corman.be Service Informatique Corman S.A. Tel : 00 32 087/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] A beautiful panic action
Hi, Samba 3.2.4 compiled from source. Stéphane --- Stéphane PURNELLE stephane.purne...@corman.be Service Informatique Corman S.A. Tel : 00 32 087/342467 Volker Lendecke 16/02/2009 14:44 Veuillez répondre à volker.lende...@sernet.de A Stéphane PURNELLE cc samba@lists.samba.org Objet Re: [Samba] A beautiful panic action On Mon, Feb 16, 2009 at 10:47:25AM +0100, Stéphane PURNELLE wrote: > [2009/02/16 10:40:35, 0] lib/fault.c:fault_report(41) > INTERNAL ERROR: Signal 11 in pid 8619 (3.2.4) > Please read the Trouble-Shooting section of the Samba3-HOWTO Plain 3.2.4 or from some distro that might have patches? Volker -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] A beautiful panic action
Trying to add a new driver using add printer wizard. A panic action occur : m403 (10.217.5.209) connect to service print$ initially as user spu (uid=0, gid=221) (pid 8619) [2009/02/16 10:40:35, 0] lib/fault.c:fault_report(40) === [2009/02/16 10:40:35, 0] lib/fault.c:fault_report(41) INTERNAL ERROR: Signal 11 in pid 8619 (3.2.4) Please read the Trouble-Shooting section of the Samba3-HOWTO [2009/02/16 10:40:35, 0] lib/fault.c:fault_report(43) From: http://www.samba.org/samba/docs/Samba3-HOWTO.pdf [2009/02/16 10:40:35, 0] lib/fault.c:fault_report(44) === [2009/02/16 10:40:35, 0] lib/util.c:smb_panic(1663) PANIC (pid 8619): internal error [2009/02/16 10:40:35, 0] lib/util.c:log_stack_trace(1767) BACKTRACE: 27 stack frames: #0 /usr/local/sbin/smbd(log_stack_trace+0x1a) [0x2af325cab6a0] #1 /usr/local/sbin/smbd(smb_panic+0x5b) [0x2af325cab7b0] #2 /usr/local/sbin/smbd [0x2af325c980da] #3 /lib64/libpthread.so.0 [0x2af327b4de70] #4 /usr/local/sbin/smbd(destroy_fake_file_handle+0x1e) [0x2af325b355a1] #5 /usr/local/sbin/smbd(file_free+0x7d) [0x2af325ac6832] #6 /usr/local/sbin/smbd(close_fake_file+0x9) [0x2af325b35579] #7 /usr/local/sbin/smbd(close_file+0x32e) [0x2af325b1901a] #8 /usr/local/sbin/smbd [0x2af325cd4dcd] #9 /usr/local/sbin/smbd(move_driver_to_download_area+0xa21) [0x2af325cd7728] #10 /usr/local/sbin/smbd(_spoolss_addprinterdriver+0x1c2) [0x2af325bff4fd] #11 /usr/local/sbin/smbd(_spoolss_addprinterdriverex+0x90) [0x2af325bffaa7] #12 /usr/local/sbin/smbd [0x2af325bf4c1a] #13 /usr/local/sbin/smbd(api_rpcTNP+0x2b9) [0x2af325c34b09] #14 /usr/local/sbin/smbd(api_pipe_request+0x21d) [0x2af325c350bd] #15 /usr/local/sbin/smbd [0x2af325c2df12] #16 /usr/local/sbin/smbd [0x2af325c2ed2e] #17 /usr/local/sbin/smbd(write_to_pipe+0x135) [0x2af325c2cc6c] #18 /usr/local/sbin/smbd [0x2af325ad3a6b] #19 /usr/local/sbin/smbd [0x2af325ad40fc] #20 /usr/local/sbin/smbd(reply_trans+0x71d) [0x2af325ad4d5e] #21 /usr/local/sbin/smbd [0x2af325b2b152] #22 /usr/local/sbin/smbd [0x2af325b2ca73] #23 /usr/local/sbin/smbd(smbd_process+0xcac) [0x2af325b2d7df] #24 /usr/local/sbin/smbd(main+0x1eb2) [0x2af325ea4977] #25 /lib64/libc.so.6(__libc_start_main+0xf4) [0x2af32969b8b4] #26 /usr/local/sbin/smbd [0x2af325ab9909] [2009/02/16 10:40:35, 0] lib/util.c:smb_panic(1668) smb_panic(): calling panic action [/srv/bin/panic.sh spu m403] here the bt using gdb #0 0x2af329715f15 in waitpid () from /lib64/libc.so.6 #1 0x2af3296b9f31 in do_system () from /lib64/libc.so.6 #2 0x2af325cab81c in smb_panic () from /usr/local/sbin/smbd #3 0x2af325c980da in sig_fault () from /usr/local/sbin/smbd #4 #5 0x2af325b355a1 in destroy_fake_file_handle () from /usr/local/sbin/smbd #6 0x2af325ac6832 in file_free () from /usr/local/sbin/smbd #7 0x2af325b35579 in close_fake_file () from /usr/local/sbin/smbd #8 0x2af325b1901a in close_file () from /usr/local/sbin/smbd #9 0x2af325cd4dcd in file_version_is_newer () from /usr/local/sbin/smbd #10 0x2af325cd7728 in move_driver_to_download_area () from /usr/local/sbin/smbd #11 0x2af325bff4fd in _spoolss_addprinterdriver () from /usr/local/sbin/smbd #12 0x2af325bffaa7 in _spoolss_addprinterdriverex () from /usr/local/sbin/smbd #13 0x2af325bf4c1a in api_spoolss_addprinterdriverex () from /usr/local/sbin/smbd #14 0x2af325c34b09 in api_rpcTNP () from /usr/local/sbin/smbd #15 0x2af325c350bd in api_pipe_request () from /usr/local/sbin/smbd #16 0x2af325c2df12 in process_complete_pdu () from /usr/local/sbin/smbd #17 0x2af325c2ed2e in write_to_internal_pipe () from /usr/local/sbin/smbd #18 0x2af325c2cc6c in write_to_pipe () from /usr/local/sbin/smbd #19 0x2af325ad3a6b in api_fd_reply () from /usr/local/sbin/smbd #20 0x2af325ad40fc in handle_trans () from /usr/local/sbin/smbd #21 0x2af325ad4d5e in reply_trans () from /usr/local/sbin/smbd #22 0x2af325b2b152 in switch_message () from /usr/local/sbin/smbd #23 0x2af325b2ca73 in process_smb () from /usr/local/sbin/smbd #24 0x2af325b2d7df in smbd_process () from /usr/local/sbin/smbd #25 0x2af325ea4977 in main () from /usr/local/sbin/smbd samba 3.2.4 have a nice day Stéphane --- Stéphane PURNELLE stephane.purne...@corman.be Service Informatique Corman S.A. Tel : 00 32 087/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: RE [Samba] samba & ldap how work group ?
look for smbldap account as this URL : https://gna.org/projects/smbldap-tools/ You will find tools for manage user and group in ldap witn same usage than passwd management. You can find here (in french) some ACL information : http://www.linuxplusvalue.be/mylpv.php?id=153 --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 franck dufau <[EMAIL PROTECTED]> a écrit sur 01/12/2008 15:52:20 : > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > YES posixAccount is in my ldap tree ! > > perhaps everything is ok in fact ! > > i need to find a doc for ACL...!!! > > my pb is all user i create are in group : Domain Users > > i want to add an new/other group for an user > > can a user be in many group in ldap ? > > i don't know how to do this ! > > cordialement > > Franck Dufau > > Stéphane PURNELLE wrote: > > Have you posixAccount objectclass in your ldap tree? > > > > If getent work fine, you can set ACL on group same as you want. > > > > Is secure if users cannot connect to samba PDC. > > > > > > --- > > Stéphane PURNELLE [EMAIL PROTECTED] > > Service Informatique Corman S.A. Tel : 00 32 087/342467 > > > > > > > > franck dufau <[EMAIL PROTECTED]> > > 01/12/2008 15:22 > > > > A > > Stéphane PURNELLE <[EMAIL PROTECTED]> > > cc > > samba@lists.samba.org > > Objet > > Re: RE [Samba] samba & ldap how work group ? > > > > > > > > > > > > > > hye tks for answer, > > > > libnss-ldap.conf & libpam-ldap are installed... > > > > actualy i have modifie libnss-ldap.conf like this : > > > > host 127.0.0.1 > > base dc=domaine,dc=local > > uri ldap://127.0.0.1 > > rootbinddn cn=admin,dc=domaine,dc=local > > bind_policy soft > > > > and pam_ldap.conf like this : > > > > host 127.0.0.1 > > base dc=domaine,dc=local > > uri ldap://127.0.0.1/ > > > > i have modifie too nsswitch.conf like this : > > > > passwd: compat ldap > > group: compat ldap > > shadow: compat ldap > > > > like this win station can use samba pdc with ldap authentification > > but on the pdc samba server users of domaine can NOT logging !! > > > > ldap users are not recognized ! > > > > BUT when i do as root getent passwd result looks like OK with my users > > from domaine !?! > > > > What's wrong ? > > > > many tanks for time and help... > > > > Cordialement > > > > Franck Dufau > > > > Stéphane PURNELLE wrote: > >> You must configure nss_ldad and pam_ldap. > > > >> And Linux will see accounts and groups in your ldap tree same as > >> /etc/group . > > > >> Bien à vous > > > > > >> --- > >> Stéphane PURNELLE [EMAIL PROTECTED] > >> Service Informatique Corman S.A. Tel : 00 32 087/342467 > > > >> [EMAIL PROTECTED] a écrit sur > >> 01/12/2008 14:43:44 : > > > >> Hye all, > > > >> i have install samba as PDC with openldap authentification everything > >> work fine. > > > >> But i want to create différent group with différent privileges on folder > > > >> How gestion of group work with Openldap authentification because users > >> are not in /etc/passwd and domain group are not in /etc/group !? > > > >> I don't find information about this... > > > >> can you help me ? > > > >> cordialement > > > >> Franck Dufau > > > -BEGIN PGP SIGNATURE- > Version: GnuPG v1.4.9 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iEYEARECAAYFAkkz+hwACgkQrKIazktK/hJARACfS6HZUu83yVCPPZDskkdDOz7w > 8WoAnjHbpWCf8W0tKcEqI5BX2lAM7h3P > =oA1T > -END PGP SIGNATURE- > [rattachement "franckdufau.vcf" supprimé par Stéphane PURNELLE/COR/SOPARIND] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: RE [Samba] samba & ldap how work group ?
Have you posixAccount objectclass in your ldap tree? If getent work fine, you can set ACL on group same as you want. Is secure if users cannot connect to samba PDC. --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 franck dufau <[EMAIL PROTECTED]> 01/12/2008 15:22 A Stéphane PURNELLE <[EMAIL PROTECTED]> cc samba@lists.samba.org Objet Re: RE [Samba] samba & ldap how work group ? -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 hye tks for answer, libnss-ldap.conf & libpam-ldap are installed... actualy i have modifie libnss-ldap.conf like this : host 127.0.0.1 base dc=domaine,dc=local uri ldap://127.0.0.1 rootbinddn cn=admin,dc=domaine,dc=local bind_policy soft and pam_ldap.conf like this : host 127.0.0.1 base dc=domaine,dc=local uri ldap://127.0.0.1/ i have modifie too nsswitch.conf like this : passwd: compat ldap group: compat ldap shadow: compat ldap like this win station can use samba pdc with ldap authentification but on the pdc samba server users of domaine can NOT logging !! ldap users are not recognized ! BUT when i do as root getent passwd result looks like OK with my users from domaine !?! What's wrong ? many tanks for time and help... Cordialement Franck Dufau Stéphane PURNELLE wrote: > You must configure nss_ldad and pam_ldap. > > And Linux will see accounts and groups in your ldap tree same as > /etc/group . > > Bien à vous > > > --- > Stéphane PURNELLE [EMAIL PROTECTED] > Service Informatique Corman S.A. Tel : 00 32 087/342467 > > [EMAIL PROTECTED] a écrit sur > 01/12/2008 14:43:44 : > > Hye all, > > i have install samba as PDC with openldap authentification everything > work fine. > > But i want to create différent group with différent privileges on folder > > How gestion of group work with Openldap authentification because users > are not in /etc/passwd and domain group are not in /etc/group !? > > I don't find information about this... > > can you help me ? > > cordialement > > Franck Dufau > - -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkkz8fkACgkQrKIazktK/hLxVACdFpZVCQEeMCvcx+nLq1gKFg1p oKoAn2QNxKcTNrTipUekGoIZW2KiZFMV =s5FS -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE [Samba] samba & ldap how work group ?
You must configure nss_ldad and pam_ldap. And Linux will see accounts and groups in your ldap tree same as /etc/group . Bien à vous --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 01/12/2008 14:43:44 : > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Hye all, > > i have install samba as PDC with openldap authentification everything > work fine. > > But i want to create différent group with différent privileges on folder > > How gestion of group work with Openldap authentification because users > are not in /etc/passwd and domain group are not in /etc/group !? > > I don't find information about this... > > can you help me ? > > cordialement > > Franck Dufau > > -BEGIN PGP SIGNATURE- > Version: GnuPG v1.4.9 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iEYEARECAAYFAkkz6gkACgkQrKIazktK/hInmgCdHNXj1rzoT0L8D7g5kYdCkyBX > iVEAn0SLop9FZTtAoRODQEGAeLUUbUIc > =jWCR > -END PGP SIGNATURE- > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE [Samba] Re: Kernel Panic - Not syncing - Fatal Exception : list_del+0x18/0x5c
samba cause kernel panic !! Strange, very strange. I see that the server is a proliant BL20p G2, is your client have installed the psp (proliant support pack) corresponding to the server. The psp contain drivers and hp management agent which can help to detect or resolve (if is a driver problem) the problem. And also, is the customers have apply some upgrade from redhat. --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 18/11/2008 17:09:36 : > > A customer of ours is having randomly some kernel panics. Via some forum > > posts I might have seen it could have something to do with Samba: > > > > They're running: RHEL 5.1 : Linux krulep03.verhaert.com 2.6.18-8.el5 #1 > > SMP Fri Jan 26 14:15:21 EST 2007 i686 i686 i386 GNU/Linux > > > > rpm -qa | grep samba > > samba-client-3.0.23c-2 > > samba-3.0.23c-2 > > samba-swat-3.0.23c-2 > > samba-common-3.0.23c-2 > > > > He's also using Winbind with it. > > > > System hardware: ProLiant BL20p G2 , 3gb ram > > > > In attachment you can find the screenshot from the panic. > > > > If someone can help us out how to avoid these panics in the future.. > > > > cheers. > > > > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba memory usage - how big is it?
> PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND > 10501 root15 0 1690m 276m 828 S 0.0 27.4 1:01.48 820 > 12333 tarmini25 0 31128 26m 1532 R 26.8 2.6 0:00.81 cc1 > 12342 tarmini25 0 28592 22m 1532 R 24.8 2.3 0:00.75 cc1 > 2577 root16 0 31236 5408 4136 S 0.0 0.5 0:02.73 klnagent > 12351 tarmini17 0 10140 5156 1520 R 4.0 0.5 0:00.12 cc1 > 1732 root16 0 12612 4952 4048 S 0.0 0.5 0:01.67 smbd > 13725 root16 0 12760 4920 3952 S 0.0 0.5 0:06.74 smbd 820 use 1690m (mega) in virtual allocation and 276m in residual or resident memory smbd use 12612 ko in virtual allocation and 4952 ko in residual or resident memory extract of man top : o: VIRT -- Virtual Image (kb) The total amount of virtual memory used by the task. It includes all code, data and shared libraries plus pages that have been swapped out. (Note: you can define the STATSIZE=1 environment vari- able and the VIRT will be calculated from the /proc/#/state VmSize field.) VIRT = SWAP + RES. p: SWAP -- Swapped size (kb) The swapped out portion of a taskâs total virtual memory image. q: RES -- Resident size (kb) The non-swapped physical memory a task has used. RES = CODE + DATA. --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 13/11/2008 13:05:04 : > Well, this is my current top. You can see that smbd's use 12Mb in average. > I'll check this 820 even though I'm not really sure what is it. Thank you. > > > top - 18:57:30 up 4:30, 4 users, load average: 5.06, 3.36, 2.05 > Tasks: 162 total, 6 running, 156 sleeping, 0 stopped, 0 zombie > Cpu(s): 91.2% us, 8.1% sy, 0.0% ni, 0.3% id, 0.2% wa, 0.1% hi, 0.0% si > Mem: 1034040k total, 449740k used, 584300k free, 920k buffers > Swap: 2031608k total, 131240k used, 1900368k free,26144k cached > > PID USER PR NI VIRT RES SHR S %CPU %MEMTIME+ COMMAND > 10501 root15 0 1690m 276m 828 S 0.0 27.4 1:01.48 820 > 12333 tarmini25 0 31128 26m 1532 R 26.8 2.6 0:00.81 cc1 > 12342 tarmini25 0 28592 22m 1532 R 24.8 2.3 0:00.75 cc1 > 2577 root16 0 31236 5408 4136 S 0.0 0.5 0:02.73 klnagent > 12351 tarmini17 0 10140 5156 1520 R 4.0 0.5 0:00.12 cc1 > 1732 root16 0 12612 4952 4048 S 0.0 0.5 0:01.67 smbd > 13725 root16 0 12760 4920 3952 S 0.0 0.5 0:06.74 smbd > 16248 ton.mart 15 0 12632 4848 3888 S 0.0 0.5 0:01.28 smbd > 8280 root16 0 12640 4784 3920 S 0.0 0.5 0:01.51 smbd > 15274 root16 0 12452 4776 3880 S 0.0 0.5 0:03.24 smbd > 26411 nobody 15 0 12400 4748 3988 S 1.7 0.5 0:01.32 smbd > 7157 root16 0 12596 4720 3760 S 0.0 0.5 0:01.57 smbd > 28634 root16 0 12356 4688 3860 S 0.0 0.5 0:00.83 smbd > 15270 root16 0 12376 4620 3936 S 0.0 0.4 0:00.21 smbd > 15046 mayan.lo 16 0 12372 4600 3816 S 0.0 0.4 0:00.80 smbd > 13742 root16 0 12412 4588 3904 S 0.0 0.4 0:00.15 smbd > 4737 neru.saf 16 0 12444 4576 3868 S 0.0 0.4 0:00.86 smbd > 13733 takeshi. 16 0 12404 4560 3892 S 0.0 0.4 0:00.92 smbd > 13722 root16 0 12372 4476 3824 S 0.0 0.4 0:00.17 smbd > 13735 root16 0 12396 4412 3748 S 0.0 0.4 0:00.05 smbd > 15859 root16 0 12276 4404 3700 S 0.0 0.4 0:00.06 smbd > 5099 root 16 0 12344 4400 3756 S 0.0 0.4 0:00.15 smbd > 6849 root 16 0 12384 4400 3752 S 0.0 0.4 0:00.05 smbd > 15053 petrus.t 15 0 12236 4384 3732 S 0.0 0.4 0:00.74 smbd > 15278 root16 0 12276 4384 3780 S 0.0 0.4 0:00.10 smbd > 4705 petrus.t 15 0 12324 4348 3672 S 0.0 0.4 0:00.19 smbd > 11060 root16 0 12368 4344 3716 S 0.0 0.4 0:00.06 smbd > 13720 root16 0 12356 4344 3680 S 0.0 0.4 0:00.02 smbd > 18499 root16 0 12308 4316 3668 S 0.0 0.4 0:00.10 smbd > 13753 samsari 16 0 12428 4304 3636 S 0.0 0.4 0:00.03 smbd > 29261 son.murt 16 0 12352 4300 3656 S 0.0 0.4 0:00.15 smbd > 9134 security 16 0 12440 4292 3636 S 0.0 0.4 0:00.04 smbd > 22912 root16 0 12320 4284 3648 S 0.0 0.4 0:00.09 smbd > 13730 root16 0 12372 4280 3584 S 0.0 0.4 0:00.03 smbd > 12360 tarmini25 0 8424 4260 1472 R 3.0 0.4 0:00.09 cc1 > 8009 root 16 0 12404 4248 3548 S 0.0 0.4 0:00.06 smbd > 2957 root 16 0 8964 4240 1272 S 0.0 0.4 0:05.59 hald > >
Re: [Samba] Failed to init inotity
Sorry, "Trop de fichiers ouverts" eq "too many files open" The actual values of files in /proc/sys/fs/inotify/* is # cat max_queued_events 16384 # cat max_user_instances 128 # cat max_user_watches 8192 What is the better values ? I suppose that I must change theses values for each boot ? Thanks Stéphane --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 Volker Lendecke <[EMAIL PROTECTED]> a écrit sur 07/11/2008 09:43:22 : > On Fri, Nov 07, 2008 at 09:34:48AM +0100, Stéphane PURNELLE wrote: > > I my log I have sometimes this message : > > smbd/notify_inotify.c:inotify_setup(283) Failed to init inotify - Trop de > > fichiers ouverts : 2661 Time(s) > > > > Informations : > > Samba 3.2.4 (ldap backend and acl support) > > Redhat Enterprise Linux 5.1 (data on XFS FS) > > > > What's means ? > > While I don't speak french I assume that this error message > means something along the lines "too many files open" or so. > If this is the case, you might want to increase the values > in /proc/sys/fs/inotify/* > > Volker > [rattachement "attnl9zq.dat" supprimé par Stéphane PURNELLE/COR/SOPARIND] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Failed to init inotity
Hi samba team, I my log I have sometimes this message : smbd/notify_inotify.c:inotify_setup(283) Failed to init inotify - Trop de fichiers ouverts : 2661 Time(s) Informations : Samba 3.2.4 (ldap backend and acl support) Redhat Enterprise Linux 5.1 (data on XFS FS) What's means ? Thanks Stephane Purnelle --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE [Samba] smbd crashes on startup
You have a problem with ldap client (nss_ldap, pam_ldap) Ensure that you have the latest version of theses packages, veirfy if suse not have a patches for theses packages. --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 30/10/2008 17:47:36 : > Sorry for the duplicate I forget to fill in the subject line. > > smbd crashes on startup > > /var/log/samba/smbd output: > > [2008/10/30 00:58:56, 1] > passdb/pdb_ldap.c:ldapsam_enum_group_memberships(2850) > User account [nobody] not found! > [2008/10/30 00:58:56, 0] lib/fault.c:fault_report(40) > === > [2008/10/30 00:58:56, 0] lib/fault.c:fault_report(41) > INTERNAL ERROR: Signal 6 in pid 3902 (3.2.3-0.1-1882-SUSE-SL11.0) > Please read the Trouble-Shooting section of the Samba3-HOWTO > [2008/10/30 00:58:56, 0] lib/fault.c:fault_report(43) > > From: http://www.samba.org/samba/docs/Samba3-HOWTO.pdf > [2008/10/30 00:58:56, 0] lib/fault.c:fault_report(44) > === > [2008/10/30 00:58:56, 0] lib/util.c:smb_panic(1663) > PANIC (pid 3902): internal error > [2008/10/30 00:58:56, 0] lib/util.c:log_stack_trace(1767) > BACKTRACE: 10 stack frames: > #0 /usr/sbin/smbd(log_stack_trace+0x2d) [0xb7dcaaed] > #1 /usr/sbin/smbd(smb_panic+0x2d) [0xb7dcabed] > #2 /usr/sbin/smbd [0xb7db3846] > #3 [0xe400] > #4 /lib/libc.so.6(abort+0x188) [0xb75e3238] > #5 /usr/sbin/smbd(talloc_free+0x22d) [0xb7d992ed] > #6 /usr/sbin/smbd(init_guest_info+0xb8) [0xb7e1d018] > #7 /usr/sbin/smbd(main+0x816) [0xb800afe6] > #8 /lib/libc.so.6(__libc_start_main+0xe5) [0xb75cd5f5] > #9 /usr/sbin/smbd [0xb7b92521] > [2008/10/30 00:58:56, 0] lib/fault.c:dump_core(201) > dumping core in /var/log/samba/cores/smbd > > /etc/samba/smb.conf > > [global] > unix charset = LOCALE > workgroup = MAGABOOKS.ORG > netbios name = arizona > passdb backend =ldapsam:ldap://arizona.magabooks.org > username map = /etc/samba/smbusers > log level = 1 > syslog = 0 > log file = */var/log/samba/*%m > max log size = 0 > name resolve order = wins bcast hosts > time server = Yes > printcap name = CUPS > add user script = /usr/sbin/smbldap-useradd -m '%u' > delete user script = /usr/sbin/smbldap-userdel '%u' > add group script = /usr/sbin/smbldap-groupadd -p '%g' > delete group script = /usr/sbin/smbldap-groupdel '%g' > add user to group script = /usr/sbin/smbldap-groupmod -m '%g' '%u' > delete user from group script = /usr/sbin/smbldap-groupmod -x '%g' '%u' > set primary group script = /usr/sbin/smbldap-usermod -g '%g' '%u' > add machine script = /usr/sbin/smbldap-useradd -w '%u' > logon script = logon.bat > logon path = \\arizona\profiles\%u > logon drive = Z: > domain logons = Yes > domain master = Yes > wins support = Yes > # peformance optimization all users stored in ldap > ldapsam:trusted = yes > ldap suffix = dc=magabooks,dc=org > ldap machine suffix = ou=Computers,ou=Users > ldap user suffix = ou=People,ou=Users > ldap group suffix = ou=Groups > ldap idmap suffix = ou=Idmap > ldap admin dn = cn=sambaadmin,dc=magabooks,dc=org > idmap backend = ldap://127.0.0.1 > idmap uid = 1-2 > idmap gid = 1-2 > # printer admin = root > printing = cups > > #Share Definitions= > > [homes] > comment = Home Directories > valid users = %S > browseable = yes > writable = yes > create mask = 0600 > directory mask = 0700 > > [sysvol] > path = /var/lib/samba/sysvol > read only = no > > [netlogon] > comment = Network Logon Service > path = /var/lib/samba/sysvol/magabooks.org/scripts > writeable = yes > browseable = yes > read only = no > > [profiles] > path = /var/lib/samba/profiles > writeable = yes > browseable = no > read only = no > create mode = 0777 > directory mode = 0777 > > [Documents] > comment = share to test samba > path = /var/lib/samba/documents > writeable = yes > browseable = yes > read only = no > valid users = "@Domain Users" > > If I comment out passdb backend then it does not crash. > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] strange message in a samba log
Hi all,
A user contact me because I cannot open some file on the server.
And when I look her log file I can read :
[2008/10/20 16:21:03, 0] smbd/notify_inotify.c:inotify_setup(283)
Failed to init inotify - Trop de fichiers ouverts (too many open file)
What's happening ?
Stéphane Purnelle
---
Stéphane PURNELLE [EMAIL PROTECTED]
Service Informatique Corman S.A. Tel : 00 32 087/342467
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] 3.2.4 CreateDirectory panic
smbcontrol pid_of_daemon debug 10 --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 20/10/2008 15:11:41 : > On 2008-10-20 15:02, Volker Lendecke wrote: > > On Mon, Oct 20, 2008 at 02:34:23PM +0200, Peter Rindfuss wrote: > >> attached is the subroutine that I used for testing. > >> The part enclosed in #ifdef createdir_alt worked with 3.0.24, but not > >> with 3.2.4. The #else part works with 3.2.4. Both versions are based > >> upon the same security descriptor structure. > > > > Can you also send your smb.conf and a debug level 10 log > > leading to this error? > > > > smb.conf is attached. > > Is it possible to turn on level 10 logging without restarting the > daemon? It is our production server and I'm not willing to disturb any > existing connection. > > Peter > # Samba config file created using SWAT > # from 193.174.6.50 (193.174.6.50) > # Date: 2008/08/15 10:55:55 > > [global] >display charset = UTF-8 >workgroup = WZB >server string = File Server >interfaces = 127.0.0.1, 193.174.6.4 >bind interfaces only = Yes >passdb backend = ldapsam:ldapi://%2fvar%2frun%2fslapd%2fldapi/ >guest account = guest >passwd program = /usr/local/sbin/wzbpasswd -U -M -s -x %u >passwd chat = *Enter*password* %n\n *Re-enter*password* %n\n *changed* >username map = /etc/samba/smbusers >unix password sync = Yes >lanman auth = No >syslog = 0 >smb ports = 139 >time server = Yes >socket options = TCP_NODELAY SO_KEEPALIVE >load printers = No >printcap name = /dev/null >add user script = /usr/local/sbin/wzbuseradd -q -I -y -c %u >delete user script = /usr/local/sbin/wzbuserdel -q -d %u >add group script = /usr/local/sbin/wzbgroupadd -q -y '%g' >delete group script = /usr/local/sbin/wzbgroupdel -q '%g' >add user to group script = /usr/local/sbin/wzbgroupmemberadd -q '%g' %u >delete user from group script = /usr/local/sbin/wzbgroupmemberdel-q '%g' %u >set primary group script = /usr/local/sbin/wzbgroupprim -q %u '%g' >add machine script = /usr/local/sbin/wzbuseradd -q -y -x %m >logon script = login.cmd >logon path = >logon home = \\selene\wzb >domain logons = Yes >os level = 65 >preferred master = Yes >domain master = Yes >dns proxy = No >wins support = Yes >kernel oplocks = No >ldap admin dn = cn=root,dc=wzb,dc=eu >ldap group suffix = ou=groups >ldap machine suffix = ou=machines >ldap suffix = ou=accounts,dc=wzb,dc=eu >ldap ssl = no >ldap user suffix = ou=users >host msdfs = No >vscan-fsav:config-file = /etc/samba/fsav.conf >ldapsam:trusted = Yes >admin users = @admins >create mask = 0700 >directory mask = 0700 >hosts allow = 193.174.6.0/255.255.254.0 >ea support = Yes >map acl inherit = Yes >cups options = raw >hide unreadable = Yes >map archive = No >mangled names = No >store dos attributes = Yes >dos filemode = Yes > > [printers] >comment = Network Printers >path = /var/spool/cups >create mask = 0600 >hosts allow = 127.0.0.1, 193.174.6.0/23 >hosts deny = 0.0.0.0 >printable = Yes >browseable = No > > [print$] >comment = Printer Drivers >path = /var/lib/samba/drivers >write list = @admins >force group = @admins >create mask = 0664 >directory mask = 0775 >available = No > > [netlogon] >comment = Network Logon Service >path = /wzb/netlogon >valid users = @admins, @users, root >admin users = @admins, root >guest ok = Yes >browseable = No > > [wzb] >comment = WZB File Server >path = /wzb/samba >valid users = @admins, @users, root >admin users = @admins, root >read only = No >inherit permissions = Yes >inherit acls = Yes >inherit owner = Yes >use sendfile = Yes >hide dot files = No >hide special files = Yes >map readonly = permissions >mangled names = Yes >root preexec = /usr/local/sbin/wzbldapsettime %u sambaLogonTime >root postexec = /usr/local/sbin/wzbldapsettime %u sambaLogoffTime > > [admin] >comment = Zugriff auf Alles für die Admins >path = / >valid users = @admins, root >admin users = @admins, root >read only = No >inherit acls = Yes >inherit owner = Yes >hide dot files = No >
Re: [Samba] Cluster: node to node switching
Each computer account have a SID. The ADS server cannot accept a client which have a other SID than the SID of registred client. And also I think that you cannot have both SID (actif) on the network. I have a cluster PDC, one is actif (samba running) and the other is standby (samba is not running) and these servers have the same SID. --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 15/10/2008 11:51:38 : > Bruno La Torre wrote: > > are you sure that the uid and gid of samba is the item on the node? > > The permission mask of the item is set to 777. > "wbinfo -u" did not work after changing the node and I get this error > output in the logfiles: > > ... > [2008/10/15 11:38:57, 1] smbd/sesssetup.c:reply_spnego_kerberos(350) >Failed to verify incoming ticket with error NT_STATUS_LOGON_FAILURE! > > ... > [2008/10/15 11:38:56, 1] winbindd/idmap_ldap.c:idmap_ldap_allocate_id(504) >Failed to allocate new gidNumber. smbldap_modify() failed. > > ... > [2008/10/15 11:38:51, 1] winbindd/winbindd_ads.c:ads_cached_connection(127) >ads_connect for domain TEST failed: Preauthentication failed > [2008/10/15 11:43:51, 0] libsmb/cliconnect.c:cli_session_setup_spnego(858) >Kinit failed: Preauthentication failed > > ... > [2008/10/15 11:38:51, 1] winbindd/winbindd_ads.c:ads_cached_connection(127) >ads_connect for domain TEST failed: Preauthentication failed > [2008/10/15 11:43:51, 0] libsmb/cliconnect.c:cli_session_setup_spnego(858) >Kinit failed: Preauthentication failed > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] tool to track network printer
Hi, If I understand, you want a print account tool for managing your network printer. But thus printer is not connected to a server but on a client. This is what you says? --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 09/10/2008 14:52:43 : > I have a network printer and i need manage every your impressions. But > remember that it is not connected locally. > > You understand? > > There is a way for this? > > > Reggards, > > -- > Iarly Selbir ( Ski0s ) > > > > On Thu, Oct 9, 2008 at 12:41 PM, Ryan Novosielski <[EMAIL PROTECTED]>wrote: > > > -BEGIN PGP SIGNED MESSAGE- > > Hash: SHA1 > > > > I'm going to guess that you'll have to be more specific on this. I really > > don't have any idea what you're talking about (and I suspect it may only be > > tangentially related to Samba). > > > > - -- _ _ _ _ ___ _ _ _ > > |Y#| | | |\/| | \ |\ | | |Ryan Novosielski - Systems Programmer II > > |$&| |__| | | |__/ | \| _| |[EMAIL PROTECTED] - 973/972.0922 (2-0922) > > \__/ Univ. of Med. and Dent.|IST/AST - NJMS Medical Science Bldg - C630 > > > > On Thu, 9 Oct 2008, Iarly Selbir wrote: > > > > Hi guys, > >> > >> Anybody know a tool than track a network printer, without it's connected > >> on > >> server. > >> > >> Reggards, advance. > >> > >> iarly selbir > >> > >> > > -BEGIN PGP SIGNATURE- > > Version: GnuPG v1.4.6 (HP-UX) > > > > iD8DBQFI7fwRmb+gadEcsb4RAhofAJ9pu96jZcH2oVm3gW2w20ZfSAU3fQCfeOhp > > C/Uwjygb4SToxOQu8o0sdtQ= > > =+nbL > > -END PGP SIGNATURE- > > -- > > To unsubscribe from this list go to the following URL and read the > > instructions: https://lists.samba.org/mailman/listinfo/samba > > > > > > -- > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Difference between samba 3.2.x and samba 3.3.x
Hi, The question is on the object of this mail. I have a other question : when is the samba 3.2.4 will be available ? thanks Stéphane Purnelle --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] move or copy a directory (and her files) and ACL
Hi samba users and developper,
If a user copy or move a directory from a place to an other place, the ACL
will be also applied as same as the original place.
why the ACL is copied and not the directory take default ACL from the
newer parent's directory.
I explain :
older place :
/rsrv/vol2/data1/groupes/crdcom/cld
acl :
crdcom rwx
newer place :
/rsrv/vol2/data1/groupes/bufromage/cld
acl :
crdcom rwx
must be bufrm and not crdcom
is normal or not.
Could anyone explain this features.
samba 3.2.2
Redhat Enterprise linux 5 with XFS.
share definition :
[groupes]
comment = GROUPES
path = /rsrv/vol2/data1/groupes
read only = No
inherit permissions = Yes
inherit acls = Yes
hide unreadable = Yes
security mask = 0770
directory security mask = 0770
force security mode = 0770
force directory security mode = 0770
thanks
Stéphane Purnelle
---
Stéphane PURNELLE [EMAIL PROTECTED]
Service Informatique Corman S.A. Tel : 00 32 087/342467
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
RE [Samba] how was my samba compiled?
After uploading samba source and uncompress the tar files. got o samba-3.x.x\source and call ./configure --help You will got all parameter for compiling samba. --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 03/09/2008 17:00:56 : > Morning, > > I'm using the samba that came with my Fedora Core 5. I'm starting to get > core dumps in the smbd process and think I need to recompile the latest > samba code specifically for my samba box. Is there a way to get a list > of compiler flags from the daemons so I can compile the same way? The > biggest thing I am concerned about is LDAP (OpenLDAP). I think everything > else is vanilla. > > Mike > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE [Samba] samba start randomly a second nmbd process
I can find into nmbd.log : [2008/09/03 10:50:32, 1] lib/util_tdb.c:tdb_log(682) tdb(unnamed): tdb_open_ex: /var/lib/samba/unexpected.tdb (26626,162113) is already open in this process [2008/09/03 10:50:32, 1] lib/util_tdb.c:tdb_log(682) tdb(unnamed): tdb_open_ex: /var/lib/samba/unexpected.tdb (26626,162113) is already open in this process [2008/09/03 10:50:32, 1] lib/util_tdb.c:tdb_log(682) tdb(unnamed): tdb_open_ex: /var/lib/samba/unexpected.tdb (26626,162113) is already open in this process [2008/09/03 10:50:33, 1] lib/util_tdb.c:tdb_log(682) tdb(unnamed): tdb_open_ex: /var/lib/samba/unexpected.tdb (26626,162113) is already open in this process [2008/09/03 10:50:33, 1] lib/util_tdb.c:tdb_log(682) tdb(unnamed): tdb_open_ex: /var/lib/samba/unexpected.tdb (26626,162113) is already open in this process [2008/09/03 10:50:33, 1] lib/util_tdb.c:tdb_log(682) tdb(unnamed): tdb_open_ex: /var/lib/samba/unexpected.tdb (26626,162113) is already open in this process [2008/09/03 10:50:33, 1] lib/util_tdb.c:tdb_log(682) tdb(unnamed): tdb_open_ex: /var/lib/samba/unexpected.tdb (26626,162113) is already open in this process [2008/09/03 10:50:33, 1] lib/util_tdb.c:tdb_log(682) tdb(unnamed): tdb_open_ex: /var/lib/samba/unexpected.tdb (26626,162113) is already open in this process [2008/09/03 10:50:33, 1] lib/util_tdb.c:tdb_log(682) tdb(unnamed): tdb_open_ex: /var/lib/samba/unexpected.tdb (26626,162113) is already open in this process --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 03/09/2008 10:43:44 : > Hi all, > > My samba server is executed under a software which control if samba is > life. > The software use some scripts which made the control and verify if process > exist. > > If the process not exist or have a problem, the software restart the > application ( in this case : samba) > > sometimes I see that samva is restarted by the software. > yes terday I added a message for see what start the recovery of samba and > I find that nmbd is present two times. > > My test into the script is : > > health_smbd=`ps -ewwf | grep "smbd" | grep -v grep | wc -l` >health_nmbd=`ps -ewwf | grep "nmbd" | grep -v grep | wc -l` > > # For success > [[ $health_smbd -ge 1 && $health_nmbd -eq 1 ]] > > I must have on or more smbd and I must have one nmbd process. > But : > > normal: > Lifekeeper: Samba: quickCheck RESOURCE Samba health status : 148 / 1 > Lifekeeper: Samba: quickCheck RESOURCE Samba health status : 147 / 1 > Lifekeeper: Samba: quickCheck RESOURCE Samba health status : 146 / 1 > Lifekeeper: Samba: quickCheck RESOURCE Samba health status : 148 / 1 > > abnormal : > Lifekeeper: Samba: quickCheck RESOURCE Samba health status : 108 / 2 > > As you can see here : > # WINS et cache > wins server = wins-srv > # wins support = yes > # wins proxy = yes > name cache timeout = 660 > > the wins server is not active, is a smbd4wins on an ither server which > made the wins server. > > Anyone can help me to find the source of the problem ? > > Samba 3.2.2 on a Redhat Enterprise Linux 5.1 > > Thanks > > Stéphane Purnelle > > --- > Stéphane PURNELLE [EMAIL PROTECTED] > Service Informatique Corman S.A. Tel : 00 32 087/342467 > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] samba start randomly a second nmbd process
Hi all, My samba server is executed under a software which control if samba is life. The software use some scripts which made the control and verify if process exist. If the process not exist or have a problem, the software restart the application ( in this case : samba) sometimes I see that samva is restarted by the software. yes terday I added a message for see what start the recovery of samba and I find that nmbd is present two times. My test into the script is : health_smbd=`ps -ewwf | grep "smbd" | grep -v grep | wc -l` health_nmbd=`ps -ewwf | grep "nmbd" | grep -v grep | wc -l` # For success [[ $health_smbd -ge 1 && $health_nmbd -eq 1 ]] I must have on or more smbd and I must have one nmbd process. But : normal: Lifekeeper: Samba: quickCheck RESOURCE Samba health status : 148 / 1 Lifekeeper: Samba: quickCheck RESOURCE Samba health status : 147 / 1 Lifekeeper: Samba: quickCheck RESOURCE Samba health status : 146 / 1 Lifekeeper: Samba: quickCheck RESOURCE Samba health status : 148 / 1 abnormal : Lifekeeper: Samba: quickCheck RESOURCE Samba health status : 108 / 2 As you can see here : # WINS et cache wins server = wins-srv # wins support = yes # wins proxy = yes name cache timeout = 660 the wins server is not active, is a smbd4wins on an ither server which made the wins server. Anyone can help me to find the source of the problem ? Samba 3.2.2 on a Redhat Enterprise Linux 5.1 Thanks Stéphane Purnelle --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: RE [Samba] panic actions on samba 3.2.2 (also)
Jeremy,
On the RedHat Network, I found a bug fixe :
RHBA-2008:0611 - Bug Fix Advisory
Détails
Paquetages
Systèmes affectés
Synopsis
nss_ldap bug fix update
Publié :
28/07/08
Mis à jour :
28/07/08
Sujet
An updated nss_ldap package that fixes a bug is now available.
Description
The nss_ldap package contains the nss_ldap and pam_ldap modules. The
nss_ldap module allows applications to use a directory server as a primary
source for information about users and groups.
By default, the nss_ldap module keeps connections to a server open between
uses. In order to avoid problems that would occur if two client processes
attempted to issue queries over the same connection to a server, the
module
installs a fork handler to allow it to close the client-side of any open
connection for a newly-created child process. This method frequently
caused a SIGPIPE signal to be received by the child process, which in many
cases, caused the child process to exit.
This issue may have caused commands, such as "su" to fail, broken pipe
errors, cron jobs not running, scripts not running as expected, and remote
session hangs.
Users of nss_ldap are advised to upgrade to this updated package, which
resolves this issue.
is this bug fixe can correct my problem ?
thanks
Stéphane Purnelle
---
Stéphane PURNELLE [EMAIL PROTECTED]
Service Informatique Corman S.A. Tel : 00 32 087/342467
[EMAIL PROTECTED] a écrit sur
30/08/2008 19:49:42 :
> Thanks Jeremy.
>
> but how I use valgrind if the panic action reproduct ?
>
> If think that's it's particular purpose because it's maybe due to
failover
> ldap configuration.
>
> 127.0.01 is the ldap master
> xx.xxx.x.xx is a ldap slave.
>
> both smb.conf and ldap.conf contain theses address.
>
> if ldap slave is not available (network load or slave server restart)
then
> it cause nss_ldap problem.
> Starting nscd can be workaround ?
>
> thanks in advance
>
> Stéphane Purnelle
>
> ---
> Stéphane PURNELLE [EMAIL PROTECTED]
> Service Informatique Corman S.A. Tel : 00 32 087/342467
>
> Jeremy Allison <[EMAIL PROTECTED]> a écrit sur 29/08/2008 23:32:55 :
>
> > On Fri, Aug 29, 2008 at 04:57:32PM +0200, Stéphane PURNELLE wrote:
> > > I think that's it's a bug in nss_ldap !
> > >
> > > in ldap.conf I put local ldap server (127.0.0.1) and an adress for a
> slave
> > > ldap server (xx.xxx.x.x).
> > > Each time I have a panic action, I have
> > >
> > > Aug 29 15:11:24 coradm01-node1 smbd: nss_ldap: reconnected to LDAP
> server
> > > ldap://xx.xxx.x.xx
> > > or
> > > Aug 29 16:33:22 coradm01-node1 smbd: nss_ldap: reconnected to LDAP
> server
> > > ldap://127.0.0.1/ after 1 attempt
> > >
> > > Coud anyone confirm that
> >
> > Yes, looking at your backtraces it looks deep inside nss_ldap. Of
> > course that's not 100% - you should probably run under valgrind
> > to be sure.
> >
> > Jeremy.
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/listinfo/samba
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Re: RE [Samba] panic actions on samba 3.2.2 (also)
Thanks Jeremy.
but how I use valgrind if the panic action reproduct ?
If think that's it's particular purpose because it's maybe due to failover
ldap configuration.
127.0.01 is the ldap master
xx.xxx.x.xx is a ldap slave.
both smb.conf and ldap.conf contain theses address.
if ldap slave is not available (network load or slave server restart) then
it cause nss_ldap problem.
Starting nscd can be workaround ?
thanks in advance
Stéphane Purnelle
---
Stéphane PURNELLE [EMAIL PROTECTED]
Service Informatique Corman S.A. Tel : 00 32 087/342467
Jeremy Allison <[EMAIL PROTECTED]> a écrit sur 29/08/2008 23:32:55 :
> On Fri, Aug 29, 2008 at 04:57:32PM +0200, Stéphane PURNELLE wrote:
> > I think that's it's a bug in nss_ldap !
> >
> > in ldap.conf I put local ldap server (127.0.0.1) and an adress for a
slave
> > ldap server (xx.xxx.x.x).
> > Each time I have a panic action, I have
> >
> > Aug 29 15:11:24 coradm01-node1 smbd: nss_ldap: reconnected to LDAP
server
> > ldap://xx.xxx.x.xx
> > or
> > Aug 29 16:33:22 coradm01-node1 smbd: nss_ldap: reconnected to LDAP
server
> > ldap://127.0.0.1/ after 1 attempt
> >
> > Coud anyone confirm that
>
> Yes, looking at your backtraces it looks deep inside nss_ldap. Of
> course that's not 100% - you should probably run under valgrind
> to be sure.
>
> Jeremy.
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
RE [Samba] panic actions on samba 3.2.2 (also)
I think that's it's a bug in nss_ldap !
in ldap.conf I put local ldap server (127.0.0.1) and an adress for a slave
ldap server (xx.xxx.x.x).
Each time I have a panic action, I have
Aug 29 15:11:24 coradm01-node1 smbd: nss_ldap: reconnected to LDAP server
ldap://xx.xxx.x.xx
or
Aug 29 16:33:22 coradm01-node1 smbd: nss_ldap: reconnected to LDAP server
ldap://127.0.0.1/ after 1 attempt
Coud anyone confirm that
nscd is not started
Thanks
Stéphane Purnelle
---
Stéphane PURNELLE [EMAIL PROTECTED]
Service Informatique Corman S.A. Tel : 00 32 087/342467
[EMAIL PROTECTED] a écrit sur
29/08/2008 16:18:26 :
> Hi,
>
> My server sent me some panic actions.
>
> From: http://www.samba.org/samba/docs/Samba3-HOWTO.pdf [2008/08/29
> 15:11:23, 0] lib/fault.c:fault_report(44)
> ===
> [2008/08/29 15:11:23, 0] lib/util.c:smb_panic(1663) PANIC (pid 24872):
> internal error [2008/08/29 15:11:24, 0] lib/util.c:log_stack_trace(1767)
> BACKTRACE: 41 stack frames: #0
/usr/local/sbin/smbd(log_stack_trace+0x1a)
> [0x557d72e0] #1 /usr/local/sbin/smbd(smb_panic+0x5b)
[0x557d73f0]
> #2 /usr/local/sbin/smbd [0x557c3d6a] #3 /lib64/libpthread.so.0
> [0x2c3f9e70] #4 /lib64/libc.so.6(gsignal+0x35) [0x2df56055] #5
> /lib64/libc.so.6(abort+0x110) [0x2df57af0] #6
> /lib64/libc.so.6(__assert_fail+0xf6) [0x2df4f756] #7
> /lib64/libnss_ldap.so.2 [0x2aaab31b758f] #8 /lib64/libnss_ldap.so.2
> [0x2aaab3196215] #9 /lib64/libnss_ldap.so.2 [0x2aaab31973c0] #10
> /lib64/libnss_ldap.so.2 [0x2aaab3198396] #11 /lib64/libnss_ldap.so.2
> [0x2aaab318c493] #12 /lib64/libnss_ldap.so.2 [0x2aaab318ba19] #13
> /lib64/libn!
> ss_ldap.so.2(_nss_ldap_search_s+0x184) [0x2aaab318c244] #14
> /lib64/libnss_ldap.so.2(_nss_ldap_getbyname+0x5b) [0x2aaab318cd0b] #15
> /lib64/libnss_ldap.so.2(_nss_ldap_getpwuid_r+0x49) [0x2aaab318d319] #16
> /lib64/libc.so.6(getpwuid_r+0xa5) [0x2dfba885] #17
> /lib64/libc.so.6(getpwuid+0x6f) [0x2dfba1ef] #18
> /usr/local/sbin/smbd(sys_getpwuid+0x9) [0x557c6e17] #19
> /usr/local/sbin/smbd [0x557861a3] #20 /usr/local/sbin/smbd
> [0x557863c4] #21 /usr/local/sbin/smbd(pdb_uid_to_rid+0x28)
> [0x5578764f] #22 /usr/local/sbin/smbd(uid_to_sid+0x1bf)
> [0x5578bcd8] #23 /usr/local/sbin/smbd [0x5564faa5] #24
> /usr/local/sbin/smbd [0x55652483] #25
> /usr/local/sbin/smbd(posix_get_nt_acl+0x3dc) [0x556533a2] #26
> /usr/local/sbin/smbd(posix_fget_nt_acl+0xd6) [0x556534b0] #27
> /usr/local/sbin/smbd [0x55668c78] #28
> /usr/local/sbin/smbd(is_visible_file+0x33d) [0x555f9a1d] #29
> /usr/local/sbin/smbd [0x555f9f52] #30
> /usr/local/sbin/smbd(dptr_ReadDirName+0x40) [!
> 0x555f9fb8] #31 /usr/local/sbin/smbd [0x5562ea46] #32 !
> /usr/loc
> al/sbin/smbd [0x556320c7] #33 /usr/local/sbin/smbd [0x55632561]
> #34 /usr/local/sbin/smbd(reply_trans2+0x69e) [0x55639bc8] #35
> /usr/local/sbin/smbd [0x55656f72] #36 /usr/local/sbin/smbd
> [0x55658893] #37 /usr/local/sbin/smbd(smbd_process+0xcae)
> [0x55659601] #38 /usr/local/sbin/smbd(main+0x1eb2) [0x559d0427]
> #39 /lib64/libc.so.6(__libc_start_main+0xf4) [0x2df438a4] #40
> /usr/local/sbin/smbd [0x555e5889] [2008/08/29 15:11:24, 0]
> lib/util.c:smb_panic(1668) smb_panic(): calling panic action
> [/srv/bin/panic.sh mve portmver]
>
> My script contain a sleep 9000 and I make a bt of the process and I have
:
>
>
> (gdb) bt
> #0 0x2dfbb0e5 in waitpid () from /lib64/libc.so.6
> #1 0x2df61e83 in do_system () from /lib64/libc.so.6
> #2 0x557d745c in smb_panic () from /usr/local/sbin/smbd
> #3 0x557c3d6a in sig_fault () from /usr/local/sbin/smbd
> #4
> #5 0x2df56055 in raise () from /lib64/libc.so.6
> #6 0x2df57af0 in abort () from /lib64/libc.so.6
> #7 0x2df4f756 in __assert_fail () from /lib64/libc.so.6
> #8 0x2aaab31b758f in _nss_ldap_mergeconfigfromdns ()
>from /lib64/libnss_ldap.so.2
> #9 0x2aaab3196215 in _nss_ldap_mergeconfigfromdns ()
>from /lib64/libnss_ldap.so.2
> #10 0x2aaab31973c0 in _nss_ldap_mergeconfigfromdns ()
>from /lib64/libnss_ldap.so.2
> #11 0x2aaab3198396 in _nss_ldap_mergeconfigfromdns ()
>from /lib64/libnss_ldap.so.2
> #12 0x2aaab318c493 in _nss_ldap_read () from /lib64/libnss_ldap.so.2
> #13 0x2aaab318ba19 in _nss_ldap_next_entry () from
> /lib64/libnss_ldap.so.2
> #14 0x2aaab318c244 in _nss_ldap_search_s () from
> /lib64/libnss_ldap.so.2
> #15 0x2aaab318cd0b in _nss_ldap_getbyname () from
> /lib64/libnss_ldap.so.2
> #1
[Samba] panic actions on samba 3.2.2 (also)
Hi,
My server sent me some panic actions.
From: http://www.samba.org/samba/docs/Samba3-HOWTO.pdf [2008/08/29
15:11:23, 0] lib/fault.c:fault_report(44)
===
[2008/08/29 15:11:23, 0] lib/util.c:smb_panic(1663) PANIC (pid 24872):
internal error [2008/08/29 15:11:24, 0] lib/util.c:log_stack_trace(1767)
BACKTRACE: 41 stack frames: #0 /usr/local/sbin/smbd(log_stack_trace+0x1a)
[0x557d72e0] #1 /usr/local/sbin/smbd(smb_panic+0x5b) [0x557d73f0]
#2 /usr/local/sbin/smbd [0x557c3d6a] #3 /lib64/libpthread.so.0
[0x2c3f9e70] #4 /lib64/libc.so.6(gsignal+0x35) [0x2df56055] #5
/lib64/libc.so.6(abort+0x110) [0x2df57af0] #6
/lib64/libc.so.6(__assert_fail+0xf6) [0x2df4f756] #7
/lib64/libnss_ldap.so.2 [0x2aaab31b758f] #8 /lib64/libnss_ldap.so.2
[0x2aaab3196215] #9 /lib64/libnss_ldap.so.2 [0x2aaab31973c0] #10
/lib64/libnss_ldap.so.2 [0x2aaab3198396] #11 /lib64/libnss_ldap.so.2
[0x2aaab318c493] #12 /lib64/libnss_ldap.so.2 [0x2aaab318ba19] #13
/lib64/libn!
ss_ldap.so.2(_nss_ldap_search_s+0x184) [0x2aaab318c244] #14
/lib64/libnss_ldap.so.2(_nss_ldap_getbyname+0x5b) [0x2aaab318cd0b] #15
/lib64/libnss_ldap.so.2(_nss_ldap_getpwuid_r+0x49) [0x2aaab318d319] #16
/lib64/libc.so.6(getpwuid_r+0xa5) [0x2dfba885] #17
/lib64/libc.so.6(getpwuid+0x6f) [0x2dfba1ef] #18
/usr/local/sbin/smbd(sys_getpwuid+0x9) [0x557c6e17] #19
/usr/local/sbin/smbd [0x557861a3] #20 /usr/local/sbin/smbd
[0x557863c4] #21 /usr/local/sbin/smbd(pdb_uid_to_rid+0x28)
[0x5578764f] #22 /usr/local/sbin/smbd(uid_to_sid+0x1bf)
[0x5578bcd8] #23 /usr/local/sbin/smbd [0x5564faa5] #24
/usr/local/sbin/smbd [0x55652483] #25
/usr/local/sbin/smbd(posix_get_nt_acl+0x3dc) [0x556533a2] #26
/usr/local/sbin/smbd(posix_fget_nt_acl+0xd6) [0x556534b0] #27
/usr/local/sbin/smbd [0x55668c78] #28
/usr/local/sbin/smbd(is_visible_file+0x33d) [0x555f9a1d] #29
/usr/local/sbin/smbd [0x555f9f52] #30
/usr/local/sbin/smbd(dptr_ReadDirName+0x40) [!
0x555f9fb8] #31 /usr/local/sbin/smbd [0x5562ea46] #32 !
/usr/loc
al/sbin/smbd [0x556320c7] #33 /usr/local/sbin/smbd [0x55632561]
#34 /usr/local/sbin/smbd(reply_trans2+0x69e) [0x55639bc8] #35
/usr/local/sbin/smbd [0x55656f72] #36 /usr/local/sbin/smbd
[0x55658893] #37 /usr/local/sbin/smbd(smbd_process+0xcae)
[0x55659601] #38 /usr/local/sbin/smbd(main+0x1eb2) [0x559d0427]
#39 /lib64/libc.so.6(__libc_start_main+0xf4) [0x2df438a4] #40
/usr/local/sbin/smbd [0x555e5889] [2008/08/29 15:11:24, 0]
lib/util.c:smb_panic(1668) smb_panic(): calling panic action
[/srv/bin/panic.sh mve portmver]
My script contain a sleep 9000 and I make a bt of the process and I have :
(gdb) bt
#0 0x2dfbb0e5 in waitpid () from /lib64/libc.so.6
#1 0x2df61e83 in do_system () from /lib64/libc.so.6
#2 0x557d745c in smb_panic () from /usr/local/sbin/smbd
#3 0x557c3d6a in sig_fault () from /usr/local/sbin/smbd
#4
#5 0x2df56055 in raise () from /lib64/libc.so.6
#6 0x2df57af0 in abort () from /lib64/libc.so.6
#7 0x2df4f756 in __assert_fail () from /lib64/libc.so.6
#8 0x2aaab31b758f in _nss_ldap_mergeconfigfromdns ()
from /lib64/libnss_ldap.so.2
#9 0x2aaab3196215 in _nss_ldap_mergeconfigfromdns ()
from /lib64/libnss_ldap.so.2
#10 0x2aaab31973c0 in _nss_ldap_mergeconfigfromdns ()
from /lib64/libnss_ldap.so.2
#11 0x2aaab3198396 in _nss_ldap_mergeconfigfromdns ()
from /lib64/libnss_ldap.so.2
#12 0x2aaab318c493 in _nss_ldap_read () from /lib64/libnss_ldap.so.2
#13 0x2aaab318ba19 in _nss_ldap_next_entry () from
/lib64/libnss_ldap.so.2
#14 0x2aaab318c244 in _nss_ldap_search_s () from
/lib64/libnss_ldap.so.2
#15 0x2aaab318cd0b in _nss_ldap_getbyname () from
/lib64/libnss_ldap.so.2
#16 0x2aaab318d319 in _nss_ldap_getpwuid_r () from
/lib64/libnss_ldap.so.2
#17 0x2dfba885 in getpwuid_r@@GLIBC_2.2.5 () from /lib64/libc.so.6
#18 0x2dfba1ef in getpwuid () from /lib64/libc.so.6
nss_ldap version : nss_ldap-253-5.el5
What's happen ?
Thanks
Stéphane Purnelle
---
Stéphane PURNELLE [EMAIL PROTECTED]
Service Informatique Corman S.A. Tel : 00 32 087/342467
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] panic action on samba 3.2.0 (suite)
Hi, I have already some panic action. I added a /bin/sleep 9000 to my script. I have a bt : #0 0x2dfbb0e5 in waitpid () from /lib64/libc.so.6 #1 0x2df61e83 in do_system () from /lib64/libc.so.6 #2 0x557d6d0c in smb_panic () from /usr/local/sbin/smbd #3 0x557c365a in sig_fault () from /usr/local/sbin/smbd #4 #5 0x557d0781 in sid_compare () from /usr/local/sbin/smbd #6 0x557d0d34 in add_sid_to_array_unique () from /usr/local/sbin/smbd #7 0x5581a20c in create_token_from_username () from /usr/local/sbin/smbd #8 0x5581a39f in user_in_group_sid () from /usr/local/sbin/smbd #9 0x5564e888 in uid_entry_in_group () from /usr/local/sbin/smbd #10 0x5564f251 in ensure_canon_entry_valid () from /usr/local/sbin/smbd #11 0x55650ee9 in unpack_canon_ace () from /usr/local/sbin/smbd #12 0x556548af in set_nt_acl () from /usr/local/sbin/smbd #13 0x556689b7 in vfswrap_set_nt_acl () from /usr/local/sbin/smbd #14 0x5561091d in call_nt_transact_set_security_desc () from /usr/local/sbin/smbd #15 0x55612105 in handle_nttrans () from /usr/local/sbin/smbd #16 0x55614352 in reply_nttrans () from /usr/local/sbin/smbd #17 0x55656d12 in switch_message () from /usr/local/sbin/smbd #18 0x5565861a in process_smb () from /usr/local/sbin/smbd #19 0x55659381 in smbd_process () from /usr/local/sbin/smbd #20 0x559cfc77 in main () from /usr/local/sbin/smbd The extract of samba error log [2008/08/26 16:15:33, 0] lib/util.c:smb_panic(1671) smb_panic(): calling panic action [/srv/bin/panic.sh administrateur m485] [2008/08/26 16:22:56, 1] smbd/service.c:make_connection_snum(1190) m485 (10.217.6.55) connect to service profiles initially as user Administrateur (uid=1002, gid=200) (pid 14863) [2008/08/26 16:23:06, 1] smbd/service.c:close_cnum(1401) m485 (10.217.6.55) closed connection to service profiles [2008/08/26 17:16:14, 1] smbd/service.c:make_connection_snum(1190) m485 (10.217.6.55) connect to service groupes initially as user Administrateur (uid=0, gid=200) (pid 25433) [2008/08/26 17:16:25, 1] smbd/service.c:close_cnum(1401) m485 (10.217.6.55) closed connection to service groupes [2008/08/26 17:16:27, 1] smbd/service.c:make_connection_snum(1190) m485 (10.217.6.55) connect to service groupes initially as user Administrateur (uid=0, gid=200) (pid 25444) [2008/08/26 17:17:28, 0] lib/fault.c:fault_report(40) =! == [2008/08/26 17:17:28, 0] lib/fault.c:fault_report(41) INTERNAL ERROR: Signal 11 in pid 25444 (3.2.0) Please read the Trouble-Shooting section of the Samba3-HOWTO [2008/08/26 17:17:28, 0] lib/fault.c:fault_report(43) From: http://www.samba.org/samba/docs/Samba3-HOWTO.pdf [2008/08/26 17:17:28, 0] lib/fault.c:fault_report(44) === [2008/08/26 17:17:28, 0] lib/util.c:smb_panic(1666) PANIC (pid 25444): internal error [2008/08/26 17:17:28, 0] lib/util.c:log_stack_trace(1770) BACKTRACE: 22 stack frames: #0 /usr/local/sbin/smbd(log_stack_trace+0x1a) [0x557d6b90] #1 /usr/local/sbin/smbd(smb_panic+0x5b) [0x557d6ca0] #2 /usr/local/sbin/smbd [0x557c365a] #3 /lib64/libpthread.so.0 [0x2c3f9e70] #4 /usr/local/sbin/smbd(sid_compare+0x22)[0x557d0781] #5 /usr/local/sbin/smbd(add_sid_to_array_unique+0x39) [0x557d0d34] #6 /usr/local/sbin/smbd(create_token_from_username+0xbac)[0x5581a20c] #7 /usr! /local/sbin/smbd(user_in_group_sid+0xe4) [0x5581a39f] #8 /! usr/local/sbin/smbd [0x5564e888] #9 /usr/local/sbin/smbd [0x5564f251] #10 /usr/local/sbin/smbd [0x55650ee9] #11 /usr/local/sbin/smbd(set_nt_acl+0xaf3)[0x556548af] #12 /usr/local/sbin/smbd [0x556689b7] #13 /usr/local/sbin/smbd [0x5561091d] #14 /usr/local/sbin/smbd [0x55612105] #15 /usr/local/sbin/smbd(reply_nttrans+0x792) [0x55614352] #16 /usr/local/sbin/smbd [0x55656d12] #17 /usr/local/sbin/smbd [0x5565861a] #18 /usr/local/sbin/smbd(smbd_process+0xca7) [0x55659381] #19 /usr/local/sbin/smbd(main+0x1eb2) [0x559cfc77] #20 /lib64/libc.so.6(__libc_start_main+0xf4) [0x2df438a4] #21 /usr/local/sbin/smbd [0x555e57d9] [2008/08/26 17:17:28, 0] lib/util.c:smb_panic(1671) smb_panic(): calling panic action [/srv/bin/panic.sh administrateur m485] If can help thanks Stéphane Purnelle --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE [Samba] Samba Admin user
Normally, you must have a admin users like 'Administrators' or 'Administrateur' If you look at samba-howto-collection (http://ftp.easynet.be/samba/docs/man/Samba-HOXTO-Collection/rights.html#id2602896) You have the explanation for setting up a true admin account (with the correct SID) --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 12/08/2008 11:01:37 : > Hi List, > samba PDC 3.0.28a with openldap > > I have an question, it is posible to setup an domain user they have access to > all windows shares in my domain ? and when i create in future new shares they > become auto, access. Is it possible too ? > > thx > > -- > > > MFG > > Sven > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] move_driver_to_download_area: Unable to rename samba3.2
Hi, Using rpcclient, it works I copied file into W32X86 and after I executed the rpcclient addriver, and also the rpcclient setdriver. But, when I open the printer dialog box on my w2k workstation. The client says that the printer don't have drivers. Strange, because the driver is listed in the avanced tab on the printer dialog. hmm, I'am lost too Volker Stéphane --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 31/07/2008 11:46:28 : > Some information : > > I tryed with test server. > > And it work. > > The configuration is a little different because is a 32bit kernel and the > mount point is on a standard hda disk. > oplocks = yes > but mdfs parameter is off (3.2 default value) > > > > If can help you. > > > > > --- > Stéphane PURNELLE [EMAIL PROTECTED] > Service Informatique Corman S.A. Tel : 00 32 087/342467 > > Volker Lendecke <[EMAIL PROTECTED]> a écrit sur 30/07/2008 > 17:26:43 : > > > On Wed, Jul 30, 2008 at 05:19:26PM +0200, Stéphane PURNELLE wrote: > > > OS : redhat enterprise linux 5.1 > > > Samba compiled from source > > > Spécial software : Lifekeeper (steeleye) > > > > As a quick workaround, you might try to comment out lines > > 133-140 from source/smbd/oplock_linux.c until we find out > > why on RHEL 5.1 "kernel oplocks = no" does not work. You > > might want to file a bug for that. > > > > Volker > > [rattachement "attfrdk5.dat" supprimé par Stéphane > PURNELLE/COR/SOPARIND] > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] move_driver_to_download_area: Unable to rename samba3.2
Some information : I tryed with test server. And it work. The configuration is a little different because is a 32bit kernel and the mount point is on a standard hda disk. oplocks = yes but mdfs parameter is off (3.2 default value) If can help you. --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 Volker Lendecke <[EMAIL PROTECTED]> a écrit sur 30/07/2008 17:26:43 : > On Wed, Jul 30, 2008 at 05:19:26PM +0200, Stéphane PURNELLE wrote: > > OS : redhat enterprise linux 5.1 > > Samba compiled from source > > Spécial software : Lifekeeper (steeleye) > > As a quick workaround, you might try to comment out lines > 133-140 from source/smbd/oplock_linux.c until we find out > why on RHEL 5.1 "kernel oplocks = no" does not work. You > might want to file a bug for that. > > Volker > [rattachement "attfrdk5.dat" supprimé par Stéphane PURNELLE/COR/SOPARIND] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] panic action on samba 3.2
selinux is disabled : # This file controls the state of SELinux on the system. # SELINUX= can take one of these three values: # enforcing - SELinux security policy is enforced. # permissive - SELinux prints warnings instead of enforcing. # disabled - SELinux is fully disabled. SELINUX=disabled # SELINUXTYPE= type of policy in use. Possible values are: # targeted - Only targeted network daemons are protected. # strict - Full SELinux protection. SELINUXTYPE=targeted # SETLOCALDEFS= Check local definition changes SETLOCALDEFS=0 What means : [2008/07/30 16:57:36, 0] lib/util_sec.c:set_effective_uid(204) setresuid > failed with EAGAIN. uid(1179) might be ove! > r its NPROC limit [2008/07/30 16:57:36, 0] lib/util_sec.c:asse! > rt_uid(1 > 00) Failed to set uid privileges to (-1,1179) now set to (0,0) --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 Volker Lendecke <[EMAIL PROTECTED]> a écrit sur 30/07/2008 22:07:05 : > On Wed, Jul 30, 2008 at 05:29:05PM +0200, Stéphane PURNELLE wrote: > > 00) Failed to set uid privileges to (-1,1179) now set to (0,0) > > [2008/07/30 16:57:36, 0] lib/util.c:smb_panic(1666) PANIC (pid 27143): > > failed to set uid [2008/07/30 16:57:36, 0] > > Wild guess -- do you have SELinux enabled? If yes, can you > try to disable it for a test if your corporate security > policy allows it? > > Volker > [rattachement "att7nk4k.dat" supprimé par Stéphane PURNELLE/COR/SOPARIND] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] move_driver_to_download_area: Unable to rename samba3.2
Just a information : The running kernel is (output of uname ) : 2.6.18-53.el5.xfs #2 SMP Wed Jan 16 16:07:41 CET 2008 x86_64 x86_64 x86_64 GNU/Linux Surprise : is a 64bits system ;-) Best regards , Stéphane --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 Jeremy Allison <[EMAIL PROTECTED]> a écrit sur 30/07/2008 17:50:40 : > On Wed, Jul 30, 2008 at 05:45:46PM +0200, Stéphane PURNELLE wrote: > > Is kernel oplock use locking for fcntl ? > > Because is kernel change log from RH, I have : > > [fs] fix locking for fcntl (Ed Pollard ) [430596] > > > > My samba is on production, I'am not sure than I will recompile my samba > > now. > > No, it doesn't use fcntl locks. It's a different mechanism. > It uses fcntl though : > > fcntl(fd, F_SETLEASE, leasetype); > > Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] move_driver_to_download_area: Unable to rename samba3.2
Is kernel oplock use locking for fcntl ? Because is kernel change log from RH, I have : [fs] fix locking for fcntl (Ed Pollard ) [430596] My samba is on production, I'am not sure than I will recompile my samba now. Stéphane --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 Volker Lendecke <[EMAIL PROTECTED]> a écrit sur 30/07/2008 17:26:43 : > On Wed, Jul 30, 2008 at 05:19:26PM +0200, Stéphane PURNELLE wrote: > > OS : redhat enterprise linux 5.1 > > Samba compiled from source > > Spécial software : Lifekeeper (steeleye) > > As a quick workaround, you might try to comment out lines > 133-140 from source/smbd/oplock_linux.c until we find out > why on RHEL 5.1 "kernel oplocks = no" does not work. You > might want to file a bug for that. > > Volker > [rattachement "attd3gco.dat" supprimé par Stéphane PURNELLE/COR/SOPARIND] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] panic action on samba 3.2
Hi, during I make a some du command (du -sh), samba has been disturb and sent a panic action : Last line of smbd.log : [2008/07/30 15:36:09, 0] lib/util_str.c:safe_strcpy_fn(709) ERROR: string overflow by 1 (16 - 15) in safe_strcpy [10.217.7.3/255.255.252.0] [2008/07/30 16:04:43, 0] lib/util_str.c:safe_strcpy_fn(709) ERROR: string overflow by 1 (16 - 15) in safe_strcpy [10.217.7.3/255.255.252.0] [2008/07/30 16:13:56, 0] lib/util_sock.c:get_peer_addr_internal(1596) getpeername failed. Error was Transport endpoint is not connected [2008/07/30 16:34:59, 0] lib/util_str.c:safe_strcpy_fn(709) ERROR: string overflow by 1 (16 - 15) in safe_strcpy [10.217.7.3/255.255.252.0] [2008/07/30 16:34:59, 0] lib/util_sock.c:get_peer_addr_internal(1596) getpeername failed. Error was Transport endpoint is not connected Last line of smbd.log of smbd which start the panic action : [2008/07/30 16:30:13, 1] smbd/service.c:make_connection_snum(1190) crdfsim (10.217.4.93) connect to service fsi initially as user fsi (uid=1179, gid=221) (pid 27143) [2008/07/30 16:39:08, 0] lib/util_str.c:safe_strcpy_fn(709) ERROR: string overflow by 1 (16 - 15) in safe_strcpy [10.217.7.3/255.255.252.0] [2008/07/30 16:39:30, 1] smbd/service.c:make_connection_snum(1190) crdfsim (10.217.4.93) connect to service groupes initially as user fsi (uid=1179, gid=221) (pid 27143) [2008/07/30 16:46:58, 1] smbd/service.c:make_connection_snum(1190) crdfsim (10.217.4.93) connect to service groupes initially as user fsi (uid=1179, gid=221) (pid 27143) [2008/07/30 16:47:22, 1] smbd/service.c:close_cnum(1401) crdfsim (10.217.4.93) closed connection to service groupes [2008/07/30 16:47:25, 1] smbd/service.c:make_connection_snum(1190) crdfsim (10.217.4.93) connect to service groupes initially as user fsi (uid=1179, gid=221) (pid 27143) [2008/07/30 16:47:36, 1] smbd/service.c:close_cnum(1401) ! crdfsim (10.217.4.93) closed connection to service groupes [2008/07/30 16:51:54, 1] smbd/service.c:make_connection_snum(1190) crdfsim (10.217.4.93) connect to service groupes initially as user fsi (uid=1179, gid=221) (pid 27143) [2008/07/30 16:52:05, 0] smbd/nttrans.c:call_nt_transact_ioctl(2009) call_nt_transact_ioctl(0x9009c): Currently not implemented. [2008/07/30 16:52:17, 1] smbd/service.c:close_cnum(1401) crdfsim (10.217.4.93) closed connection to service groupes [2008/07/30 16:57:28, 1] smbd/service.c:close_cnum(1401) crdfsim (10.217.4.93) closed connection to service groupes [2008/07/30 16:57:29, 1] smbd/service.c:make_connection_snum(1190) crdfsim (10.217.4.93) connect to service profiles initially as user fsi (uid=1179, gid=221) (pid 27143) [2008/07/30 16:57:36, 1] smbd/service.c:close_cnum(1401) crdfsim (10.217.4.93) closed connection to service fsi [2008/07/30 16:57:36, 0] lib/util_sec.c:set_effective_uid(204) setresuid failed with EAGAIN. uid(1179) might be ove! r its NPROC limit [2008/07/30 16:57:36, 0] lib/util_sec.c:asse! rt_uid(1 00) Failed to set uid privileges to (-1,1179) now set to (0,0) [2008/07/30 16:57:36, 0] lib/util.c:smb_panic(1666) PANIC (pid 27143): failed to set uid [2008/07/30 16:57:36, 0] lib/util.c:log_stack_trace(1770) BACKTRACE: 13 stack frames: #0 /usr/local/sbin/smbd(log_stack_trace+0x1a) [0x557d6b90] #1 /usr/local/sbin/smbd(smb_panic+0x5b) [0x557d6ca0] #2 /usr/local/sbin/smbd [0x557dc4d4] #3 /usr/local/sbin/smbd(set_effective_uid+0x74) [0x557dc817] #4 /usr/local/sbin/smbd [0x55646fd8] #5 /usr/local/sbin/smbd(set_sec_ctx+0xd8) [0x55647245] #6 /usr/local/sbin/smbd(change_to_user+0x5f0) [0x5563a3d2] #7 /usr/local/sbin/smbd [0x55656b81] #8 /usr/local/sbin/smbd [0x5565861a] #9 /usr/local/sbin/smbd(smbd_process+0xca7) [0x55659381] #10 /usr/local/sbin/smbd(main+0x1eb2) [0x559cfc77] #11 /lib64/libc.so.6(__libc_start_main+0xf4) [0x2df428a4] #12 /usr/local/sbin/smbd [0x555e57d9] [2008/07/30 16:57:36, 0] lib/util.c:smb_panic(1671) smb_pani! c(): calling panic action [/srv/bin/panic.sh fsi crdfsim] It's maybe normal. thanks Stéphane --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] move_driver_to_download_area: Unable to rename samba3.2
OS : redhat enterprise linux 5.1 Samba compiled from source Spécial software : Lifekeeper (steeleye) Configure parameter : ./configure --with-ldap --with-acl-support --prefix=/usr/local --exec-prefix=/usr/local --bindir=/usr/local/bin --sbindir=/usr/local/sbin --libexecdir=/usr/local/libexec --datadir=/usr/local/share --sharedstatedir=/usr/local/com --localstatedir=/usr/local/var --libdir=/usr/local/lib --includedir=/usr/local/include --infodir=/usr/share/info --with-configdir=/srv/etc/samba --sysconfdir=/srv/etc/samba --mandir=/usr/local/man --with-privatedir=/srv/private --enable-cups I just applied manually some patch from mail-list : >From Jeremy - resolving the case : v3.2.0 and MS-DOS: Directories must be upper-case?? >From Jeremy - resolving the case : Creating Zone Identifier files and not able to read/write/delete them. I don't use vfs objects = streams_xattr, but normally it must don't make problem. If could thelp Thanks, Stéphane --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 Volker Lendecke <[EMAIL PROTECTED]> a écrit sur 30/07/2008 17:06:28 : > On Wed, Jul 30, 2008 at 04:40:23PM +0200, Stéphane PURNELLE wrote: > > All data share (inclusive print$ share) is on a nbd mount. > > > > $# mount > > /dev/md1 on /rsrv type xfs (rw) > > > > I use a software (lifekeeper) which use network block device for replicate > > all data to a othe server. > > Ok, I'm lost now. For me using "kernel oplocks = no" stops > smbd from requesting oplocks from the kernel. If this does > not help for you, then there is something severely broken > with your build. Are you sure you have plain Samba sources > without patches? And, what is your exact platform? > > Sorry, > > Volker > [rattachement "att7u729.dat" supprimé par Stéphane PURNELLE/COR/SOPARIND] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] move_driver_to_download_area: Unable to rename samba3.2
All data share (inclusive print$ share) is on a nbd mount. $# mount /dev/md1 on /rsrv type xfs (rw) I use a software (lifekeeper) which use network block device for replicate all data to a othe server. Stéphane --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 Volker Lendecke <[EMAIL PROTECTED]> a écrit sur 30/07/2008 16:36:41 : > On Wed, Jul 30, 2008 at 04:24:40PM +0200, Stéphane PURNELLE wrote: > > The strace file > > Hmmm. I need to check if we broke "kernel oplocks = no". In > the logfile there are still attempts to acquire Linux kernel > oplocks. > > BTW, is the print$ share on a local file system, or possibly > on an NFS imported file system? > > Volker > [rattachement "atthn9j4.dat" supprimé par Stéphane PURNELLE/COR/SOPARIND] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] move_driver_to_download_area: Unable to rename samba3.2
Hi, I try to install a new driver on my print$ share using APW and I have this message : move_driver_to_download_area: Unable to rename [W32X86/HPDCMON.DLL] to [W32X86/3/HPDCMON.DLL] I have exacltly the same configuration (smb.conf, acl et right) than my older server. Could anyone answer to me and help me ? Stéphane --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] smbcontrol xxxx reload-config doesn't work and other details samba 3.2
rameter ldap ssl = no doing parameter ldap passwd sync = yes doing parameter ldapsam:trusted = yes doing parameter max log size = 1000 doing parameter log level = 1 winbind:0 vfs:2 [2008/07/28 00:17:35, 0] lib/util_str.c:safe_strcpy_fn(709) ERROR: string overflow by 1 (16 - 15) in safe_strcpy [10.217.7.3/255.255.252.0] I don't see "doing parameter msdfs root = Yes" Strange. Other strange problem. Since samba 3.2.0 is running, somme XP workstation have a different reaction when user start explorer. The explorer refresh the content on a share each 15 seconds. I don't understand what happening. the log with debug 5 output : [2008/07/28 12:17:35, 3] smbd/trans2.c:call_trans2findfirst(1918) call_trans2findfirst: dirtype = 16, maxentries = 1366, close_after_first=0, cl ose_if_end = 1 requires_resume_key = 1 level = 0x104, max_data_bytes = 16384 [2008/07/28 12:17:35, 5] smbd/filename.c:unix_convert(149) unix_convert called on file "*" [2008/07/28 12:17:35, 5] smbd/filename.c:unix_convert(296) unix_convert begin: name = *, dirpath = , start = * [2008/07/28 12:17:35, 5] smbd/msdfs.c:is_msdfs_link_internal(413) is_msdfs_link_read_target: * does not exist. [2008/07/28 12:17:35, 3] smbd/msdfs.c:dfs_redirect(686) dfs_redirect: Not redirecting \Admin01\groupes\*. [2008/07/28 12:17:35, 3] smbd/msdfs.c:dfs_redirect(697) dfs_redirect: Path \Admin01\groupes\* converted to non-dfs path * [2008/07/28 12:17:35, 5] smbd/filename.c:unix_convert(149) unix_convert called on file "*" [2008/07/28 12:17:35, 5] smbd/filename.c:unix_convert(296) unix_convert begin: name = *, dirpath = , start = * [2008/07/28 12:17:35, 5] smbd/trans2.c:call_trans2findfirst(2002) dir=./, mask = * [2008/07/28 12:17:35, 5] smbd/dir.c:dptr_create(402) dptr_create dir=./ [2008/07/28 12:17:35, 3] smbd/dir.c:dptr_create(520) creating new dirptr 256 for path ./, expect_close = 1 [2008/07/28 12:17:35, 4] smbd/trans2.c:call_trans2findfirst(2069) dptr_num is 256, wcard = *, attr = 22 [2008/07/28 12:17:35, 5] smbd/trans2.c:get_lanman2_dir_entry(1440) get_lanman2_dir_entry: found ./. fname=. [2008/07/28 12:17:35, 3] locking/locking.c:fetch_share_mode_unlocked(856) fill_share_mode_lock failed [2008/07/28 12:17:35, 5] smbd/trans2.c:get_lanman2_dir_entry(1440) get_lanman2_dir_entry: found ./.. fname=.. [2008/07/28 12:17:35, 5] smbd/msdfs.c:is_msdfs_link_internal(419) is_msdfs_link_read_target: .//.rhosts is not a link. [2008/07/28 12:17:35, 3] locking/locking.c:fetch_share_mode_unlocked(856) fill_share_mode_lock failed [2008/07/28 12:17:35, 5] smbd/trans2.c:get_lanman2_dir_entry(1440) get_lanman2_dir_entry: found ./.rhosts fname=.rhosts [2008/07/28 12:17:35, 5] smbd/msdfs.c:is_msdfs_link_internal(419) is_msdfs_link_read_target: .//ARCHIVES is not a link. And for each folder : [2008/07/28 12:17:35, 5] smbd/msdfs.c:is_msdfs_link_internal(419) is_msdfs_link_read_target: .//CORGPS is not a link. [2008/07/28 12:17:35, 3] locking/locking.c:fetch_share_mode_unlocked(856) fill_share_mode_lock failed What's happening ? Systeme information : RedHat Enterprise Linux 5 data on a md-raid (nbd) XFS FileSystem thanks Stéphane Purnelle --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Problem with moving PDC to new server
the domain SID must be the same. is the domain SID are identic between the old and new server. net getlocalsid domain --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 16/07/2008 16:06:26 : > I tried a similar trick with the added step of changing from a tdbsam > backend to ldap and found the same windows profile issue. Strangely if > the user was a local or domain admin things were ok. I found the only > work around at the time was backup the users profile before deleting it > and letting windows create a new one and transferring anything important > back from the old profile. > > In my case the retiring server was CentOS 4.5 and the new one CentOS 5.2 > > Cheers > > Kevin > > Aaron Johnson wrote: > > All, > > I am in the process of moving a PDC to a new server, the config, *.tdb > > files, linux user account files (/etc/passwd,shadow,group) and /home > > have all been moved successfully, shares and authentication is working > > great. > > > > Issue: > > When I login and the system loads my roaming profile all my "recent > > Programs" list are gone, I cannot add more programs to this list in the > > start menu (no error just won't show) and it appears other windows > > settings are not getting properly loaded either (i.e. I have a gray > > start bar instead of my normal green/blue bar) > > > > Background on the move: > > Old Server: > > Ubuntu 6.06(i386) running Samba 3.0.22 > > > > New Server: > > Centos 5.2(i386) running Samba 3.0.28 > > > > Clients: > > All Windows XP Pro previously part of the Domain > > > > Any one have any advice for solving this issue? > > > > Aaron > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE RE [Samba] libtalloc on samba-3.2.0
Hi, I confim that it's the missing symlink who cause problems. copy symlink from samba source/bin to install lib resolve problem Stéphane --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 02/07/2008 11:26:54 : > Hi, > > It seems that the symlink is not correcly applyed. > > /usr/local/lib/libtalloc.so.1 not exist > /usr/local/lib/libtalloc.so exist. > > a+ > > Stéphane > > --- > Stéphane PURNELLE [EMAIL PROTECTED] > Service Informatique Corman S.A. Tel : 00 32 087/342467 > > [EMAIL PROTECTED] a écrit sur > 02/07/2008 11:01:07 : > > > Hi, > > > > I already read some messages with libtalloc problem and I have the same > > > problem. > > Redhat enterprise linux 5 samba compiled from source. > > > > Démarrage des services SMB :/usr/local/sbin/smbd: error while loading > > shared libraries: libtalloc.so.1: cannot open shared object file: No > such > > file or directory > >[FAILED] > > Démarrage des services NMB :/usr/local/sbin/nmbd: error while loading > > shared libraries: libtalloc.so.1: cannot open shared object file: No > such > > file or directory > >[FAILED] > > > > [EMAIL PROTECTED] source]# ldd /usr/local/sbin/smbd > > linux-gate.so.1 => (0x0011) > > libldap-2.3.so.0 => /usr/local/lib/libldap-2.3.so.0 (0x002ed000) > > liblber-2.3.so.0 => /usr/local/lib/liblber-2.3.so.0 (0x00111000) > > libgssapi_krb5.so.2 => /usr/lib/libgssapi_krb5.so.2 (0x00265000) > > libkrb5.so.3 => /usr/lib/libkrb5.so.3 (0x00edc000) > > libk5crypto.so.3 => /usr/lib/libk5crypto.so.3 (0x0011c000) > > libcom_err.so.2 => /lib/libcom_err.so.2 (0x00142000) > > libcups.so.2 => /usr/local/lib/libcups.so.2 (0x00145000) > > libssl.so.0.9.7 => /usr/local/lib/libssl.so.0.9.7 (0x001e4000) > > libcrypto.so.0.9.7 => /usr/local/lib/libcrypto.so.0.9.7 > > (0x008cd000) > > libz.so.1 => /usr/lib/libz.so.1 (0x00178000) > > libpthread.so.0 => /lib/libpthread.so.0 (0x0018b000) > > libm.so.6 => /lib/libm.so.6 (0x00ab3000) > > libcrypt.so.1 => /lib/libcrypt.so.1 (0x001a2000) > > libacl.so.1 => /lib/libacl.so.1 (0x001d) > > libattr.so.1 => /lib/libattr.so.1 (0x001d7000) > > libcap.so.1 => /lib/libcap.so.1 (0x001dc000) > > libresolv.so.2 => /lib/libresolv.so.2 (0x00215000) > > libnsl.so.1 => /lib/libnsl.so.1 (0x00228000) > > libdl.so.2 => /lib/libdl.so.2 (0x001e) > > libpopt.so.0 => /usr/lib/libpopt.so.0 (0x0023f000) > > libtalloc.so.1 => not found > > libtdb.so.1 => not found > > libwbclient.so.0 => not found > > libc.so.6 => /lib/libc.so.6 (0x00ada000) > > libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0x00247000) > > libkrb5support.so.0 => /usr/lib/libkrb5support.so.0 (0x00293000) > > libkeyutils.so.1 => /lib/libkeyutils.so.1 (0x00fbc000) > > /lib/ld-linux.so.2 (0x00da4000) > > libselinux.so.1 => /lib/libselinux.so.1 (0x0029c000) > > libsepol.so.1 => /lib/libsepol.so.1 (0x009d2000) > > > > Could you help me or explain what package must be added. > > > > thanks > > > > Stéphane > > > > --- > > Stéphane PURNELLE [EMAIL PROTECTED] > > Service Informatique Corman S.A. Tel : 00 32 087/342467 > > -- > > To unsubscribe from this list go to the following URL and read the > > instructions: https://lists.samba.org/mailman/listinfo/samba > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE [Samba] libtalloc on samba-3.2.0
Hi, It seems that the symlink is not correcly applyed. /usr/local/lib/libtalloc.so.1 not exist /usr/local/lib/libtalloc.so exist. a+ Stéphane --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 02/07/2008 11:01:07 : > Hi, > > I already read some messages with libtalloc problem and I have the same > problem. > Redhat enterprise linux 5 samba compiled from source. > > Démarrage des services SMB :/usr/local/sbin/smbd: error while loading > shared libraries: libtalloc.so.1: cannot open shared object file: No such > file or directory >[FAILED] > Démarrage des services NMB :/usr/local/sbin/nmbd: error while loading > shared libraries: libtalloc.so.1: cannot open shared object file: No such > file or directory >[FAILED] > > [EMAIL PROTECTED] source]# ldd /usr/local/sbin/smbd > linux-gate.so.1 => (0x0011) > libldap-2.3.so.0 => /usr/local/lib/libldap-2.3.so.0 (0x002ed000) > liblber-2.3.so.0 => /usr/local/lib/liblber-2.3.so.0 (0x00111000) > libgssapi_krb5.so.2 => /usr/lib/libgssapi_krb5.so.2 (0x00265000) > libkrb5.so.3 => /usr/lib/libkrb5.so.3 (0x00edc000) > libk5crypto.so.3 => /usr/lib/libk5crypto.so.3 (0x0011c000) > libcom_err.so.2 => /lib/libcom_err.so.2 (0x00142000) > libcups.so.2 => /usr/local/lib/libcups.so.2 (0x00145000) > libssl.so.0.9.7 => /usr/local/lib/libssl.so.0.9.7 (0x001e4000) > libcrypto.so.0.9.7 => /usr/local/lib/libcrypto.so.0.9.7 > (0x008cd000) > libz.so.1 => /usr/lib/libz.so.1 (0x00178000) > libpthread.so.0 => /lib/libpthread.so.0 (0x0018b000) > libm.so.6 => /lib/libm.so.6 (0x00ab3000) > libcrypt.so.1 => /lib/libcrypt.so.1 (0x001a2000) > libacl.so.1 => /lib/libacl.so.1 (0x001d) > libattr.so.1 => /lib/libattr.so.1 (0x001d7000) > libcap.so.1 => /lib/libcap.so.1 (0x001dc000) > libresolv.so.2 => /lib/libresolv.so.2 (0x00215000) > libnsl.so.1 => /lib/libnsl.so.1 (0x00228000) > libdl.so.2 => /lib/libdl.so.2 (0x001e) > libpopt.so.0 => /usr/lib/libpopt.so.0 (0x0023f000) > libtalloc.so.1 => not found > libtdb.so.1 => not found > libwbclient.so.0 => not found > libc.so.6 => /lib/libc.so.6 (0x00ada000) > libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0x00247000) > libkrb5support.so.0 => /usr/lib/libkrb5support.so.0 (0x00293000) > libkeyutils.so.1 => /lib/libkeyutils.so.1 (0x00fbc000) > /lib/ld-linux.so.2 (0x00da4000) > libselinux.so.1 => /lib/libselinux.so.1 (0x0029c000) > libsepol.so.1 => /lib/libsepol.so.1 (0x009d2000) > > Could you help me or explain what package must be added. > > thanks > > Stéphane > > --- > Stéphane PURNELLE [EMAIL PROTECTED] > Service Informatique Corman S.A. Tel : 00 32 087/342467 > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] libtalloc on samba-3.2.0
Hi, I already read some messages with libtalloc problem and I have the same problem. Redhat enterprise linux 5 samba compiled from source. Démarrage des services SMB :/usr/local/sbin/smbd: error while loading shared libraries: libtalloc.so.1: cannot open shared object file: No such file or directory [FAILED] Démarrage des services NMB :/usr/local/sbin/nmbd: error while loading shared libraries: libtalloc.so.1: cannot open shared object file: No such file or directory [FAILED] [EMAIL PROTECTED] source]# ldd /usr/local/sbin/smbd linux-gate.so.1 => (0x0011) libldap-2.3.so.0 => /usr/local/lib/libldap-2.3.so.0 (0x002ed000) liblber-2.3.so.0 => /usr/local/lib/liblber-2.3.so.0 (0x00111000) libgssapi_krb5.so.2 => /usr/lib/libgssapi_krb5.so.2 (0x00265000) libkrb5.so.3 => /usr/lib/libkrb5.so.3 (0x00edc000) libk5crypto.so.3 => /usr/lib/libk5crypto.so.3 (0x0011c000) libcom_err.so.2 => /lib/libcom_err.so.2 (0x00142000) libcups.so.2 => /usr/local/lib/libcups.so.2 (0x00145000) libssl.so.0.9.7 => /usr/local/lib/libssl.so.0.9.7 (0x001e4000) libcrypto.so.0.9.7 => /usr/local/lib/libcrypto.so.0.9.7 (0x008cd000) libz.so.1 => /usr/lib/libz.so.1 (0x00178000) libpthread.so.0 => /lib/libpthread.so.0 (0x0018b000) libm.so.6 => /lib/libm.so.6 (0x00ab3000) libcrypt.so.1 => /lib/libcrypt.so.1 (0x001a2000) libacl.so.1 => /lib/libacl.so.1 (0x001d) libattr.so.1 => /lib/libattr.so.1 (0x001d7000) libcap.so.1 => /lib/libcap.so.1 (0x001dc000) libresolv.so.2 => /lib/libresolv.so.2 (0x00215000) libnsl.so.1 => /lib/libnsl.so.1 (0x00228000) libdl.so.2 => /lib/libdl.so.2 (0x001e) libpopt.so.0 => /usr/lib/libpopt.so.0 (0x0023f000) libtalloc.so.1 => not found libtdb.so.1 => not found libwbclient.so.0 => not found libc.so.6 => /lib/libc.so.6 (0x00ada000) libsasl2.so.2 => /usr/lib/libsasl2.so.2 (0x00247000) libkrb5support.so.0 => /usr/lib/libkrb5support.so.0 (0x00293000) libkeyutils.so.1 => /lib/libkeyutils.so.1 (0x00fbc000) /lib/ld-linux.so.2 (0x00da4000) libselinux.so.1 => /lib/libselinux.so.1 (0x0029c000) libsepol.so.1 => /lib/libsepol.so.1 (0x009d2000) Could you help me or explain what package must be added. thanks Stéphane --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] About Microsoft/Novell accord
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Dear samba team, I created a folder on my website (french linux website) about this huge movement of Novell. And for make my articles, I want to have the official position of samba team about this accord. thanks Stéphane Purnelle - -- Stéphane Purnelle <[EMAIL PROTECTED]> Site Web : http://www.linuxplusvalue.be -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.3 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFTN091Ved1UGtmSQRAheZAJ9vjBKVVA4oyV5zJDs3DPuOJ409IQCfRNj4 vVAapw26m4Tv55/9QpDWgKY= =MOwS -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Synchronize samba across servers
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Nick Wales a écrit : > I've got a particularly inelegant setup to manage whereby we have > one server attached to a fibre SATA enclosure, and another one on > standby that has to be manually plugged in should the first go down. > > I'm trying to work out what the best way to synchronize the samba > setup is, presumably mainly user accounts, across the two is so I > don't have to do everything twice. > > Thanks in advance > > Nick > > > --To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba > For the user accounts, I think that use ldap backend is the better solution. With ldap backend, you can use ldap replication between yours servers. - -- Stéphane Purnelle <[EMAIL PROTECTED]> Site Web : http://www.linuxplusvalue.be -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2.2 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFEj+mI8tswkE3d0ecRArE2AJ9JXYDUA/VLADZnRlKLIammC11BQQCdEeAy aYB3z2joKgNaclWFrymWhm0= =9Le7 -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Not able to join domain
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, Chris Boyd a écrit : > I'm trying to set up Samba 3.0.20-4-SUSE on a opensuse 10 machine. > I'm working with XP Pro on the client machine. I can't get the XP > mahcine (RDS7) to join the domain (UCD). It asks for a user when > trying to join and then says it cannot find it. The samba log is: > > auth/auth.c:check_ntlm_password(317) check_ntlm_password: > Authentication for user [root] -> [root] FAILED with error > NT_STATUS_NO_SUCH_USER > > The root account is showing up in smbpasswd (that's assuming it > needs to be there). > > Now the XP machine can see the domain (UCD) as well as WORKGROUP > (which it currently is master of). > > > Domain=[UCD] OS=[Unix] Server=[Samba 3.0.20-4-SUSE] > > Server Comment ---- UCD01 > Samba 3.0.20-4-SUSE > > WorkgroupMaster ---- UCD > UCD01 WORKGROUPRDS7 > > This is after having to manually create the machine account (as > there seems to be some problem with suse doing it "on-the-fly". > I've also noticed that testparm returns the samba machine as a BDC > instead of a PDC. > > Load smb config files from /etc/samba/smb.conf Processing section > "[protel]" Processing section "[homes]" Processing section > "[profiles]" Processing section "[users]" Processing section > "[groups]" Processing section "[printers]" Processing section > "[print$]" Processing section "[netlogon]" Server's Role (logon > server) NOT ADVISED with domain-level security Loaded services file > OK. Server role: ROLE_DOMAIN_BDC Press enter to see a dump of your > service definitions > > Also here's the smb.conf: > > [global] printcap name = cups cups options = raw map to guest = Bad > User # include = /etc/samba/dhcp.conf logon path = > \\%L\profiles\.msprofile logon home = \\%L\%U\.9xprofile logon > drive = P: security = domain restrict anonymous = no domain master > = Yes preferred master = Yes # idmap uid = 15000-2 # > idmap gid = 15000-2 log level = 2 netbios name = UCD01 max > protocol = NT ldap ssl = No server signing = Auto workgroup = UCD > add machine script = /usr/sbin/useradd -c Machine -d /var/nodirs > -s /bin/false '%u' passdb backend = tdbsam domain logons =Yes local > master = Yes os level = 65 > > [protel] comment = Protel Data Folder path = /protel read only = no > [homes] comment = Home Directories valid users = %S browseable = > No read only = No inherit acls = Yes > > [profiles] comment = Network Profiles Service path = %H # > path = /var/lib/samba/profiles read only = No store dos attributes > = Yes create mask = 0600 directory mask = 0700 > > [users] comment = All users path = /home read only = No inherit > acls = Yes veto files = /aquota.user/groups/shares/ > > [groups] comment = All groups path = /home/groups read only = No > inherit acls = Yes > > [printers] comment = All Printers path = /var/tmp printable = Yes > create mask = 0600 browseable = No > > [print$] comment = Printer Drivers path = /var/lib/samba/drivers > write list = @ntadmin root force group = ntadmin create mask = 0664 > directory mask = 0775 > > [netlogon] comment = Network Logon Service path = > /var/lib/samba/netlogon write list = root admin users = root guest > ok = Yes browseable = No > > > Anyway...if it's not obvious am a samba newb Oh and TIA > > - > This email message is intended only for the addressee(s) and > contains information that may be confidential and/or copyrighted. > If you are not the intended recipient please notify the sender by > reply email and immediately delete this email. Use, disclosure or > reproduction of this email by anyone other than the intended > recipient(s) is strictly prohibited. USIT has scanned this email > for viruses and dangerous content and believes it to be clean. > However, virus scanning is ultimately the responsibility of the > recipient. > - > In security = domain, Samba not act as a PDC, only a BDC. - -- Stéphane Purnelle <[EMAIL PROTECTED]> Site Web : http://www.linuxplusvalue.be -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFENRKr8tswkE3d0ecRApChAJ0ZTrR9c4WnawyapmGcZk+0nt82EwCeKGsI y6HGuMMRMh5lUzj9N8zJFQs= =l2mf -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba-LDAP not quite working - help!
onf we defined the default release of debian this case
>> stable (
>> Sarge 3.1r0).
>> The Show-Upgrade "true" is used for showing us the packages which
>> are going
>> to be installed, I like to see what I'm installing.
>> The sources.list if you used a CD/DVD for installing you can leave
>> this
>> line in the sources.list. This can save you bandwidth. My server is
>> on a
>> remote location and I don't use the cd anymore. I added the clamav
>> as stable because I want a new clamav for virus scanning
>> more info : http://www.clamav.net/binary.html
>> The testing and unstable sources are also unmarked, that if you
>> really need
>> a newer version of a program then you can try to create it from debian
>> source.
>>
>> You can get the source install programs and search by using the
>> following
>> commands:
>> apt-get install package= get & install package apt-get
>> remove package = remove package
>> apt-get remove --purge package = remove and purge all files
>> of package
>> dpkg --purge package= purge all files of package
>>
>> apt-cache search package= search for package or part of
>> package name apt-cache show package = get info over
>> package
>> dpkg-reconfigure -plow package = reconfigure with priority low
>> ( most
>> options )
>>
>> for this first cd /usr/src.
>> apt-get source package= get source files of packaged
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>> 2.2 Files from /etc/apt
>> 2.2.1 /etc/apt/apt.conf
>>
>> APT::Default-Release "stable";
>> APT::Get::Show-Upgraded "true";
>> // 16 MB Limit
>> APT::Cache-limit 16777216;
>> // if you have /tmp with no mounted with noexec, you need this.
>> #DPkg::Pre-Install-Pkgs {"mount -o remount,exec /tmp";};
>> #DPkg::Post-Invoke {"mount -o remount /tmp";};
>>
>>
>>
>> 2.2.2 /etc/apt/preferences
>>
>> Package: *
>> Pin: release a=stable
>> Pin-Priority: 990
>>
>> Package: *
>> Pin: release a=testing
>> Pin-Priority: 500
>>
>> Package: *
>> Pin: release a=unstable
>> Pin-Priority: 50
>>
>> Package: *
>> Pin: release a=sarge,l=debian-volatile
>> Pin-Priority: 990
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>> 2.2.3 /etc/apt/sources.list
>>
>> # See sources.list(5) for more information, especialy
>> # Remember that you can only use http, ftp or file URIs
>> # CDROMs are managed through the apt-cdrom tool.
>> #-
>> # We definect the PIN which sets the prioratie of packages selects
>> # see also the apt-howto
>> # http://www.debian.org/doc/manuals/apt-howto/index.en.html
>> # and a nice howto for apt-pinning for beginners.
>> # http://jaqque.sbih.org/kplug/apt-pinning.html
>> #-
>> #-
>> # Stable PIN 990PRODUCTION TREE
>> deb ftp://ftp.nl.debian.org/debian stable main contrib non-free
>> deb-src ftp://ftp.nl.debian.org/debian stable main contrib non-free
>> deb http://http.us.debian.org/debian stable main contrib non-free
>> # Stable Security updates deb http://security.debian.org/
>> stable/updates main contrib non-free
>> deb-src http://security.debian.org/ stable/updates main contrib
>> non-free
>> #--
>> ## Debian VOLATILE , used for clamav PINNED 990
>> deb http://ftp.nl.debian.org/debian-volatile sarge/volatile main
>> #-
>> #-
>> # WARNING USE BELOW AT OWN RISK
>> # Testing ( PIN 500 )
>> #deb ftp://ftp.nl.debian.org/debian testing main contrib non-free
>> #deb-src ftp://ftp.nl.debian.org/debian testing main contrib non-free
>> #deb http://http.us.debian.org/debian testing main contrib non-free
>> # Testing Security updates #deb http://security.debian.org/
>> testing/updates main contrib non-free
>> #deb-src http://security.debian.org/ testing/updates main contrib
>> non-free
>> #-
>> #-
>> # WARNING USE BELOW AT OWN RISK
>> # Unstable ( PIN 050 )
>> #deb ftp://ftp.nl.debian.org/debian unstable main contrib non-free
>> #deb-src http://ftp.nl.debian.org/debian unstable main contrib
>> non-free
>> #deb http://http.us.debian.org/debian unstable main contrib non-free
>> # unstable Security updates #deb http://security.debian.org/
>> unstable/updates main contrib non-free
>> #deb-src http://security.debian.org/ unstable/updates main contrib
>> non-free
>> #-
>> #-
>> BACKPORTS to STABLE ( Debian Sarge 3.1r0 )
>> ## Laatest Samba from samba.org #deb
>> http://us4.samba.org/samba/ftp/Binary_Packages/Debian sarge samba
>> #deb-src http://us2.samba.org/samba/ftp/Binary_Packages/Debian
>> sarge samba
>>
>> #--
>> ## MPEG/AVI addons +W32CODECS With MPlayer
>> #deb ftp://ftp.nerim.net/debian-marillat/ sarge main
>> #--
>> ## www.dotdeb.org, updated php4/php5 mysql-41 mysql-50 qmail clamav
>> etc etc.
>> ## check the site for the packages list. if you want only 1 package (
>> preferred )
>> ## change the line to #deb http://packages.dotdeb.org stable php5 for
>> example
>> #deb http://packages.dotdeb.org stable all
>> #deb-src http://packages.dotdeb.org stable all
>> #--
>> ## BootSplash ( does not work on every kernel ) www.bootsplash.de
>> ## http://www.planamente.ch/emidio/pages/linux_howto_bootsplash.php
>> deb http://debian.bootsplash.de unstable main
>> deb-src http://debian.bootsplash.de unstable main
>>
>>
>>
>>
>
>
>
- --
Stéphane Purnelle <[EMAIL PROTECTED]>
Site Web : http://www.linuxplusvalue.be
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFEKDlX8tswkE3d0ecRAukhAJ93OqfKJk5VaRZNY14d2zONjSeL+QCeJ/6k
RUpByMjbKbCB8pCthXbTkaY=
=yaJ6
-END PGP SIGNATURE-
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] SAMBA not reading ACL group permissions
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Robert Mortimer a écrit : > I have added ACL support to the file system on my FC3 server > In windows the security dialogue shows correct permissions > When I open a file in word it opens read only even though as part of the ACL > extended group membership I have write permissions (Unix main group is read > only) > Using the security dialogue permissions can be re-set > This is my setup for a typical share > > [Data] > recycle:touch = Yes > vfs objects = recycle > comment = Data > printable = no > writable = yes > nt acl support = Yes > force group = TS_main > # acl map full control = True (produced error on testparm) > # acl check permissions = True (produced error on testparm) > # acl group control = True (produced error on testparm) Theses parameter was added with samba 3.0.20. > veto files = /.Junk/ > path = /home/samba/data/ > recycle:excludedir = /tmp|/temp|/cache > recycle:exclude = *.tmp|*.temp|*.o|*.obj|~$*|*.~?? > recycle:keeptree = Yes > recycle:maxsize = 209715200 > recycle:repository = ./.Junk > recycle:versions = No > > smbstatus -V returns Version 3.0.10-1.fc3 > Setup is LDAP samba IDEALIX tools. Standard Fedora RPM is used > > Regards Robert > Can you verify that the samba 3.0.10 from Fedora Core3 is compiled with acl support ? - -- Stéphane Purnelle <[EMAIL PROTECTED]> Site Web : http://www.linuxplusvalue.be -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFEGdcj8tswkE3d0ecRAnpPAJ9QpxuwBzV49uDZhUvPnrTVNXE1qACfYzjd XK37YtZRo0NLJgLfdMXrkVI= =fGMc -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Backup & Restore Samba Configuration
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Lake-Wind a écrit : > The motherboard in our Samba server fried. I have re-installed > our operating system (SUSE 10) and was wondering what is the > best way to restore our Samba server? Can it be as simple as > copying the smb.config and smbpasswd files back into the > /etc/samba directory? That's what I am hoping. If I just copy > the smb.config and the smbpasswd files back to the samba > directory will the machine trusts, users and passwords just > work? If not, what is the proper procedure for restoring. > > Thank you for your help! > > Mike add secrets.tdb and /etc/passwd for restoration. - -- Stéphane Purnelle <[EMAIL PROTECTED]> Site Web : http://www.linuxplusvalue.be -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.1 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFEExGH8tswkE3d0ecRAu3aAJ9uIxi7ASCpKKyQowBxP1EmWHg/WQCaAmza C6+awUwReRmK2OtBh5eibAE= =lczT -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
