Re: [Samba] Re: domain admin issue *solved*
> > > http://groups.google.com/groups?hl=en&lr=&ie=UTF-8&threadm=1bKKG-3JE-47%40gated-at.bofh.it&rnum=1&prev=/groups%3Fq%3Dsamba%2Bdomain%2Badmins%2Bproblem%26ie%3DUTF-8%26hl%3Den%26btnG%3DGoogle%2BSearch > > Bottom line: > > Stop samba, delete group_mapping.tdb *and* secrets.tdb, start samba. > > Make sure you have a backup of secrets.tdb, at least on production servers. > The clients probably have to rejoin the domain after deleting secrets.tdb. > It's also possible that the tdb-files are in different directories if you are trying > out different versions/distributions of samba. XP-clients also cache the ten latest logins > by default to add to the confusion... > Other than that I have never had problems with the "Domain Admins"-stuff working on the client with any samba 3.0.x. This got it. The trick was deleting the secrets.tdb as well. I still don't know why it didn't work the first time, but I it si working now. Thanks for the help. Trey Nolen -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Re: domain admin issue
> Have you tried: > > net getlocalsid > > SID for domain DOMAIN is: > S-1-5-21-3876029557-4061927837-2224609541, ie. the SIDs should match. > > If they don't: > > 1. Stop samba > 2. Delete "group_mapping.tdb" > 3. Start samba > 4. net groupmap modify ntgroup="Domain Admins" unixgroup=domadm etc. > > This should make a fresh group_mapping.tdb with correct SIDs. > Thanks for the reply. Unfortunately (I guess), they do already match: server:~# net groupmap list System Operators (S-1-5-32-549) -> -1 Replicators (S-1-5-32-552) -> -1 Guests (S-1-5-32-546) -> -1 Domain Users (S-1-5-21-3876029557-4061927837-2224609541-513) -> users Power Users (S-1-5-32-547) -> -1 Print Operators (S-1-5-32-550) -> -1 Administrators (S-1-5-32-544) -> domadm Domain Admins (S-1-5-21-3876029557-4061927837-2224609541-512) -> domadm Account Operators (S-1-5-32-548) -> -1 Domain Guests (S-1-5-21-3876029557-4061927837-2224609541-514) -> nogroup Backup Operators (S-1-5-32-551) -> -1 Users (S-1-5-32-545) -> -1 server:~# net getlocalsid SID for domain SERVER is: S-1-5-21-3876029557-4061927837-2224609541 It seems like this *SHOULD* be working. Could this be a bug with this version? I'll be glad to check anything else if there are other suggestions... Trey Nolen -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] domain admin issue
I have a new Debian testing machine running the Debian Samba 3.0.5. Everything seems OK except that I cannot get users to have domain admin rights. I have Windows XP workstations. The workstations join and log onto the domain fine. A "net groupmap list" yields: server:/home/tnolen# net groupmap list System Operators (S-1-5-32-549) -> -1 Replicators (S-1-5-32-552) -> -1 Guests (S-1-5-32-546) -> -1 Domain Users (S-1-5-21-3876029557-4061927837-2224609541-513) -> users Power Users (S-1-5-32-547) -> -1 Print Operators (S-1-5-32-550) -> -1 Administrators (S-1-5-32-544) -> domadm Domain Admins (S-1-5-21-3876029557-4061927837-2224609541-512) -> domadm Account Operators (S-1-5-32-548) -> -1 Domain Guests (S-1-5-21-3876029557-4061927837-2224609541-514) -> nogroup Backup Operators (S-1-5-32-551) -> -1 Users (S-1-5-32-545) -> -1 My user, for example, is in the domadm group: server:/home/tnolen# groups tnolen tnolen : users domadm I have tried several combinations of group mappings but all yield the same result. Basically, the user is just a regular user. When the workstations join the domain, the Domain Admins group DOES get added to the local Administrators group as it should. I've checked Debian's website to see if this is a known bug with their version of Samba, but there is no mention of it. Relevant parts of smb.conf: [global] workgroup = SRB server string = %h server interfaces = 192.168.1.254/24 bind interfaces only = Yes passdb backend = smbpasswd, guest passwd program = /usr/bin/passwd %u passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n . unix password sync = Yes syslog = 0 max log size = 1000 name resolve order = wins lmhosts host bcast socket options = IPTOS_LOWDELAY TCP_NODELAY SO_SNDBUF=4096 SO_RCVBUF=4096 add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u add machine script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u logon script = startup.bat logon path = logon home = domain logons = Yes os level = 60 preferred master = Yes domain master = Yes dns proxy = No wins support = Yes panic action = /usr/share/samba/panic-action %d hosts allow = 192.168.1. use client driver = Yes [netlogon] path = /etc/samba/netlogon browseable = No [shared] comment = Shared files path = /home/shared read only = No force create mode = 0777 force directory mode = 0777 Any help would be greatly appreciated. Trey Nolen -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] windows 2000 drive connection issue
template homedir = /home/%D/%U template shell = /bin/false winbind separator = \ winbind cache time = 15 winbind enum users = Yes winbind enum groups = Yes comment = path = alternate permissions = No username = guest account = samba invalid users = valid users = admin users = read list = write list = printer admin = force user = force group = read only = Yes create mask = 0744 force create mode = 00 security mask = 0777 force security mode = 00 directory mask = 0755 force directory mode = 00 directory security mask = 0777 force directory security mode = 00 inherit permissions = No guest only = No guest ok = No only user = No hosts allow = 192.168.0. hosts deny = status = Yes nt acl support = Yes max connections = 0 min print space = 0 strict allocate = No strict sync = No sync always = No write cache size = 0 max print jobs = 1000 printable = No postscript = No printing = cups print command = lpr -r -P'%p' %s lpq command = lpq -P'%p' lprm command = lprm -P'%p' %j lppause command = lpresume command = queuepause command = queueresume command = printer name = use client driver = Yes default devmode = No printer driver = printer driver file = /etc/samba/printers.def printer driver location = default case = lower case sensitive = No preserve case = Yes short preserve case = Yes mangle case = No mangling char = ~ hide dot files = Yes hide unreadable = No delete veto files = No veto files = hide files = veto oplock files = map system = No map hidden = No map archive = Yes mangled names = Yes mangled map = browseable = Yes blocking locks = Yes fake oplocks = No locking = Yes oplocks = Yes level2 oplocks = Yes oplock contention limit = 2 posix locking = Yes strict locking = No share modes = Yes copy = include = exec = preexec close = No postexec = root preexec = root preexec close = No root postexec = available = Yes volume = fstype = NTFS set directory = No wide links = Yes follow symlinks = Yes dont descend = magic script = magic output = delete readonly = No dos filemode = No dos filetimes = No dos filetime resolution = No fake directory create times = No vfs object = vfs options = msdfs root = No [netlogon] path = /etc/samba/netlogon browseable = No [shared] comment = Shared files path = /home/shared force user = samba force group = users read only = No force create mode = 0777 force directory mode = 0777 [homes] comment = Home Directories read only = No create mask = 0770 directory mask = 0770 browseable = No [printers] path = /var/spool/samba create mask = 0700 guest ok = Yes printable = Yes print command = /usr/bin/lpr -P %p -o raw %s -r lpq command = /usr/bin/lpstat -o %p lprm command = /usr/bin/cancel %p-%j browseable = No [cdrom] comment = Samba server's CD-ROM path = /cdrom guest ok = Yes locking = No exec = /bin/mount /cdrom postexec = /bin/umount /cdrom Trey Nolen -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] CUPS or LPRng?
> As a counterexample I had a *hell* of a time getting CUPS > going and the web interface still dies on me whenever I try > to do anything from it. Now that it's configured though it's > been solid and reliable as long as I stick to command line. To be fair, I'm using Debian, so I used the .deb packages. They went in with no hassle. You may have a hard time with it using a lesser distro. :-) Trey Noen -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] CUPS or LPRng?
I've used LPRng for years, but recently we had one client that had printing problems we just couldn't fix. We switched them over to CUPS and I was very impressed. Not only did it fix their issues, but it gives them a nice web-based administration interface where they can delete jobs if one does happen to get stuck. Setup was much easier than I thought it would be and definitely easier than LPRng if you haven't done work with lpd before. We were using HP Laserjet printers which were natively supported by CUPS. We have decided to make CUPS our default printing system for future installs. Trey Nolen > Which is better to use on a large Samba print server only being used a print server for Windows clients? > Is one more stable then the other? Why is quicker? > > Thanks > Jeff > > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] New Debian Packages?
Some people have already answered you on getting the newer versions for Debian, but I'm not sure that is your issue. Have you changed the oplocks settings? I haven't used a version of Samba yet that didn't have some problems with databases and multiple users without having to disable oplocks. Trey Nolen > Hi there, > does anyone know where I can get new samba packages for debian, because > woody is at 2.2.3a-12 and this version has definitev a problem with > Access 97 databases... *arg* And I'm not able to produce new debian > packages myself. > > Any help is appreciated... > > Thanks > Nicki > > -- > Linksystem Muenchen GmbH [EMAIL PROTECTED] > Schloerstrasse 10 http://www.link-m.de > 80634 Muenchen Tel. 089 / 890 518-0 > We make the Net work. Fax 089 / 890 518-77 > > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Windows 2000 + roaming profiles
I'm not sure if this is the same problem as you are seeing, but it might be worth a try. I have some clients that get an error saying that the roaming profile could not be found when they attempt to log on. Usually, it works on the second try -- just like what you are describing. We have found that if the client does not log on immediately when the login screen appears, they usually don't have the problem. A delay of 30 seconds or so before attempting to log in seems to do the trick. I'm not sure why this is caused, but I suspect that not all of the relevant services have been started on the Windows machine with the login screen appears. It might not be a permanent fix, but if you delay your login and it clears up your issue, then we might be closer to knowing what is going on. Trey Nolen > Hi all, > > I have a Samba 2.2.2 controlled domain (server config: Mandrake 8.1 with > ReiserFS 3.6.25) and have a bit of a problem with profiles. > > Basically, there is this one user that has problems when she logs onto > her workstation for the first time each day. The actual filename > differs, but often an error message will be presented during the logon > mentioning that a file could not be downloaded from the server because > "THE NETWORK PATH WAS NOT FOUND". The file referenced is indeed there. > Of course, the person is dumped into a Windows 2000 environment without > anything in the way of personalised settings, meaning they need to log > back out. > > Strangely, the second attempt normally results in success. Of course, > their workstation accumulates a massive number of folders named > username.domainname.xxx where xxx is a number between 000 and 999 but > the problem goes away. > > For the moment, I've told the machine to just use the locally cached > copy. The logs don't show anything other than the errors that seem to be > fairly common in this network for reasons not known to me (No route to > host features often). > > I have very similar configs in other places that have nothing in the way > of logon problems that can't be traced to firewall rules and the error > logs in those other places are totally clean with identical logging levels. > > Any thoughts? > > Chris > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Auto Mounting home directory using samba
I usually make a [homes] share something like this: [homes] comment = Home Directories browseable = no read only = no create mask = 0770 directory mask = 0770 This will create a share for each user. The home directory is automatically the same as the *NIX account home directory. Then, I usually use some thing like "net use u: /home" in my login script. Hope this helps. Trey Nolen > Can anyone tell me how to configure Suse 8 to mount a home directory from > an > NT server? > > I have configured Samba 2.2.7a with winbind support, and can log into the > machine as a NT user, but I need to be able to mount the users home > directory. > > The home dirs are all of the form //server/username$ but there are a large > number! > > I have looked at pam_mount but can`t make it work. > > Any suggestions? > > With thanks from a desperate man! > > Rob Keeling > Network Manager > Queen Elizabeth`s Grammar School > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Tape Drives
We do this, but we don't share the tape drive...we share the drives on the other machines on the network. The box with the tape drive mounts the shares on the other machines to a temporary mount point, backs it up, and then unmounts it. Something like this command will mount it: mount -t smbfs -o username=root,password=blahblah //computer1/c /wkstn-1 Then, just use your regular tape drive tools to backup the /wkstn-1 directory. Although you could probably share a tape drive, I'm not sure that you could do it in such a way that it would be usable by any Windows software, so I think it is easier to do it this way. Trey Nolen - Original Message - From: Nate Grissom To: [EMAIL PROTECTED] Sent: Wednesday, January 01, 2003 10:03 AM Subject: [Samba] Tape Drives Is it possible to share a tape drive using Samba. I have a tape drive that is attached to a Solaris box, that I would like to use to backup my entire environment; Solaris and Windows. If this is possible, how should I configure the smb.conf file. Thanks Nate Grissom [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Samba & Vision FS
> Which software Visionfs or Samba do you recommend for Unix to windows > printing. (i.e Printing from Unix based programs to a printer with parallel > connection to a PC on the same LAN.) Where can i get some information on > how to setup Visionfs. > Although I've used Visionfs, I have not needed it to print from the Unix machine to a printer connected to a Windows machine. Whenever I have used Vision, it has always been to print on a printer either connected to the Unix machine or a printer running lpd. I've used samba for what you are doing a couple of times and it works OK, although I have had several different issues with samba printing (most having nothing to do with the config you are talking about). Anyway, long story short, I'm probably not the best person to give you a comparison of that particular setup. Anyone else??? Trey Nolen > > > > > ----- Original Message - > From: "Trey Nolen" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Tuesday, December 31, 2002 1:25 PM > Subject: Re: [Samba] Samba & Vision FS > > > > I've used Visionfs and Samba. What is your question? > > > > Trey Nolen > > > > > > > > - Original Message - > > From: Avichal > > To: [EMAIL PROTECTED] > > Sent: Monday, December 30, 2002 6:48 PM > > Subject: [Samba] Samba & Vision FS > > > > > > Hi > > > > Has anyone used Visionfs to do the task like printing to Windows printer > > from Unix compared to Samba. > > > > Any help would be appreciated !! > > > > Thanks > > > > > > Avichal > > > > -- > > To unsubscribe from this list go to the following URL and read the > > instructions: http://lists.samba.org/mailman/listinfo/samba > > > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba & Vision FS
I've used Visionfs and Samba. What is your question? Trey Nolen - Original Message - From: Avichal To: [EMAIL PROTECTED] Sent: Monday, December 30, 2002 6:48 PM Subject: [Samba] Samba & Vision FS Hi Has anyone used Visionfs to do the task like printing to Windows printer from Unix compared to Samba. Any help would be appreciated !! Thanks Avichal -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] private user accounts
You are connected to some shares with one username and password (presumably the one you logged into windows with) and then you are trying to connect to the private share with another username/password. You can't do that. You can log into windows with one username and connect to shares with another, but all the shares must be connected with the same user. If you have login scripts that automatically map drives, you will probably have to log into windows with the privateuser/password. Trey Nolen - Original Message - From: "ligeo george" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, December 19, 2002 12:04 AM Subject: [Samba] private user accounts > hello guys.. I have put up a share for a particular > user. The user can access the directory from linux > boxes using 'smbclient //IP/share -U privateuser . But > cant do it from a windows machine. When I provide the > privateuser,password, i get the error 'The credentials > supplied conflict with an existing set of > credentials.' Why is this? > > Thanks for the help. > > > > __ > Do you Yahoo!? > Yahoo! Mail Plus - Powerful. Affordable. Sign up now. > http://mailplus.yahoo.com > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] How important are oplocks?
> If Samba is corrupting the data files, then why wouldn't this be turned OFF by > default? I would think data corruption would be a major, MAJOR problem, and > reduce the usability of Samba. Is this really true? Yep, it's true. There has been a lot of discussion on it. Check over the archives. I agree that oplocks should be turned off by default, but it causes a big performance hit. People that are just trying Samba or don't know much about it would probably just drop it instead of trying to get better performance. I guess the developers figure it is more important to have a lot of people using it than to protect data. Unfortunately, this problem has been around a long time, so I guess it is just not fixable. In Samba's defense, I have used programs that advised you to turn off oplocks even if using an NT(or 2000) server. It just seems to affect Samba more than NT. Trey Nolen -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba and automount
> You have 2 options as I see it: > 1. EASY: don't map the share! That would work (has worked for some) but this software REQUIRES a mapped drive. :-( > 2. HARDER: Compile samba --with-msdfs, drive-map the *root* of the msdfs > tree, and make the cd-rom share a 'hidden share' folder under the root. > The name of the msdfs symlink will appear as the share name to your > users. That way, even though the drive is mapped to the root, > pre/post-exec will still work when someone actually clicks on the folder > under the root. > > Read up on msdfs use in samba. It's not easy at first, but once you > learn it, you'll wonder how you ever got along without it. Thanks. I'll give that a try. I'm actually using the Debian distribution of Samba. Does anyone know if it is already compiled with the msdfs option? Or is there a good way to tell? Trey Nolen > > Good Luck, > Christopher > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba and automount
Yes, I've used those, and unfortunately, they don't work well either. The post-exec doesn't execute while the drive is mapped. I was trying automount as an alternative. Automount actually seems to work better, but not well. Trey Nolen > > read up on the root pre-exec and post-exec commands. When someone access > a share that points to a cd-rom drive, pre-exec can mount it (actually > it can run anything you want), and when they leave the share, it can > un-mount it. In other words, you can have it mounted only while someone > is actively accessing it. > > Good Luck, > Christopher > > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba and automount
> > > I'm running Samba with automount to automatically mount CDs in a > > server. These CDs need to be changed periodically, so I wanted to use > > automount so that they could be changed by the users fairly easily. > > We use logon scripts to map the CDs to drive letters when users > > logon. Unfortunately, it seems that having a drive mapped is treated > > like the drive is being used, so as long as there is someone logged > > into the system, automount will not unmount the drive. The only way > > we can change the CDs is to have everyone log out, wait for the > > timeout (or unmount it manually), change the CDs and have everyone > > log back in. Does anyone have a better way (one that will work)? > > Don't use the automounter. Instead write a small shell (or perl) skript > that mounts and unmounts the cds (and kills everything that would > prevent you from unmounting). When it works, make it suid root. The problem with that is that it is Samba that keeps me from unmounting. See, while the drives are mapped, Samba is keeping the mounts busy. I can't write a script that goes around killing Samba. That would be bad. Trey Nolen -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba and automount
You mention putting it in the global section. Could deadtime be specified on each share, thereby only being specified for the drives that need it? Or will that not work for some reason? Trey Nolen >> > The only way I've found around this is to add > > deadtime = 1 > > to the [global] section of smb.conf. This drops connections after a > minute. Then there's the automount timeout to add to this. The downside is > that all connections to the server are broken, so users see red crosses > against all their timed-out mapped drives when browsing. There's probably > a performance hit in having to re-establish connections as well, so I put > our automounted drives on a separate server. > > Tim Allen > > > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] samba and automount
I'm running Samba with automount to automatically mount CDs in a server. These CDs need to be changed periodically, so I wanted to use automount so that they could be changed by the users fairly easily. We use logon scripts to map the CDs to drive letters when users logon. Unfortunately, it seems that having a drive mapped is treated like the drive is being used, so as long as there is someone logged into the system, automount will not unmount the drive. The only way we can change the CDs is to have everyone log out, wait for the timeout (or unmount it manually), change the CDs and have everyone log back in. Does anyone have a better way (one that will work)? Trey Nolen -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Security issue
> you want ACLs on the server > you need a filesystem such as XFS that can support ACLs and > a samba compiled --with-acl-support Does anyone know if the Debian packages are compiled with ACL support? Is there a place where the compile options for the packages can be found? Trey Nolen -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] OpLock+flat DB corruption (Was: How Samba let us down)
> > OpLocks were indeed causing corruption; we only turned > > them off, made no other changes, and have no more > > corruption, as I reported yesterday. Wouldn't that be > > a priority 1, "drop everything" bug? Other experience > > was confirmed by doing a Google, by 2 Samba authors, > > and by the results of our one simple change. > the oplock problem with access databases is well known... > I don't think samba alone can fix it. > (somebody prove me wrong :) Just curiousIf it is not a problem with "samba alone," what is causing it? Is it a problem with the kernel, the filesystem? Where does the other work (besides Samba) need to be done? Trey Nolen -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: [slugnet] Password Expiry
I've had the same problem, and haven't found anything online about it. Samba doesn't seem to lock you out when the password expires, but I would rather the notice not even come up. Trey Nolen - Original Message - From: "Gary Tay Teng Teck" <[EMAIL PROTECTED]> To: "Elliot" <[EMAIL PROTECTED]> Cc: "Samba Mailing List" <[EMAIL PROTECTED]>; "lugs" <[EMAIL PROTECTED]> Sent: Wednesday, October 02, 2002 11:13 AM Subject: [Samba] Re: [slugnet] Password Expiry > Hi Elliot, > > I couldn't find anything related to smbpasswd expiry. > > Since u have "unix password sync = true", just a wild guess, if u could > turn off password ageing in unix passwd file (man passwd for more detail) > and see if problem persists. > > Rgds > Gary > > Elliot wrote: > > > Hi guys... I setup samba 2.2.5 as a PDC ... I have w2k clients. It seems > > that now I am prompted to change my password because it is going to > > expire > > > > Could you guys tell me how and where to disable password expiry? > > > > cheers` > > > > - > > To unsubscribe, e-mail: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Debian server
> > After putting it into a network with another Samba server I find that > the Win98 client machines can't connect to it but they can connect to > the other server. The other server is set to OS level 65 and the new > one is somewhere below that. You say there is another server. Are you trying to do domain logins on both servers? There can be only one domain controller and when you put a new server on the network, there will be an election to see which one is the controller. The one with the highest OS level wins, so if your other server has a higher OS level, this new server will not do domain logins. Of course, if you are not trying to do logins on both servers, then this is useless. If this is the case, send up some more information on how you are doing authentication on the two servers. Trey Nolen -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] WIndows 98 asking for a password
You have security=user. If you don't want passwords, set security=share. Trey Nolen - Original Message - From: "Neil Aggarwal" <[EMAIL PROTECTED]> To: "Samba mailing list" <[EMAIL PROTECTED]> Sent: Wednesday, June 12, 2002 3:08 PM Subject: [Samba] WIndows 98 asking for a password > Hello: > > I have a brother HL-1440 laser printer set-up and working fine on my > RedHat 7.3 Linux box. The printer queue is named brotherLaser. > > I added a samba share for the printer with these options > in my smb.conf file: > [brotherLaser] > path = /var/spool/lpd/brotherLaser > writable = yes > comment = Brother Laser Printer > printable = yes > public = yes > > I then went to a windows 98 machine and tried to set-up a > network printer with the path \\192.168.1.1\brotherLaser > > I installed the driver from the cdrom that came with the printer > and everything seemed to work just fine. > > But, when I look at the printer, it says that it is offline. > When I try to connect to it, it asks me for a password. > No matter what I enter, it says the password is not correct. > > I have samba set to allow for null passwords and the printer > is public, so anyone on the network should be able to > print to it without a password, correct? > > Here is my global tag: > [global] > smb passwd file = /etc/samba/smbpasswd > passwd program = /usr/bin/passwd %u > pam password change = yes > printing = lprng > dns proxy = no > null passwords = yes > socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 > printcap name = /etc/printcap > obey pam restrictions = yes > debug level = 10 > passwd chat = *New*password* %n\n *Retype*new*password* %n\n > *passwd:*all*authentication*tokens*updated*successfully* > security = user > unix password sync = Yes > server string = Samba Server > workgroup = MYGROUP > log file = /var/log/samba/%m.log > load printers = yes > > Any ideas? > > Thanks, > Neil. > > -- > Neil Aggarwal > JAMM Consulting, Inc.(972) 612-6056, http://www.JAMMConsulting.com > Custom Internet DevelopmentWebsites, Ecommerce, Java, databases > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: http://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] samba performance issue -- more info
Regarding this issue, we turned op locks back on and it has helped a LOT. Unfortunately, practically everything on this server is a database. In the past, we have had problems with database corruption when using op locks. Does anyone have any recommendations as to how to get good performance without corruption?? Trey Nolen On Tue, 2002-06-11 at 10:15, Oliver Thinnes wrote: > I' m also testing version 2.2.4 with ACL and winbind support on EXT3 with > filesystem ACLs. > > On a DELL dual PIII Xeon 900 MHz with 2 GB RAM RAID 5 it took about 4,5 > minutes to copy the folder "I386" (3.300 files, 77 MB) of the NT 4.0 > installation cdrom with ACLs enabled from the local drive to the > fileserver. Without ACL it took 90 seconds. > > On a "simple" PC with a U160 SCSI drive with samba 2.2.0 it takes > > Also the configuration option "hide unreadable" is responsible for the > performance. > > Therefore I disabled ACL (not compiled in), set "create mask", "directory > mask" to "777" , use default ACLs and let the filesystem set the access > rights appropreate. > > I get the same result on mandrake 8.2 with XFS an samba 2.2.3.a with ACL > enabled. > > -Original Message- > From: Martyn Ranyard [SMTP:[EMAIL PROTECTED]] > Sent: Tuesday, June 11, 2002 4:50 PM > To: Trey Nolen > Cc: [EMAIL PROTECTED] > Subject: Re: [Samba] samba performance issue > > Very strange, > >Feel not alone, however - I too have some performance concerns : > >A Samba 2.0.8 Slackware 7 Machine was working fine for nigh on a year, > and then it started to degrade, to the point where an app that used network > database which used to come up almost instantaneously started taking 5 > seconds. Annoying, as the customer had got used to the speed. Also on a > 100Mb Switch, with only 6 client machines. > >As a last effort we upgraded to 2.2.4 and it felt much faster, however, > I did some testing before and after the upgrade : > >Before the upgrade, a file transfer from a client (50MB random data) was > taking 50 Seconds and not utilising all the bandwidth. >Before the upgrade, a file transfer to a client (50MB random data) was > taking 100 Seconds and not utilising all the bandwidth. >After the upgrade, a file transfer from a client (50MB random data) was > taking 25 Seconds and not utilising all the bandwidth. >After the upgrade, a file transfer to a client (50MB random data) was > taking 50 Seconds and not utilising all the bandwidth. >Before and after the upgrade, and ftp transfer of the same file took 20 > seconds either way. > >This really got me stumped, but as the speed was near normal again, I > have left the site, but would like to know if this double time transfers is > usual or if there is anything we can do to find out why. > > Martyn > > At 09:34 AM 6/11/02 -0500, Trey Nolen wrote: > >Now, the problem...I'm getting very poor performance. The machine we > >replaced was a Pentium I 200 with 64MB of RAM, and it was faster than this > >thing. All of my client machines are Win98 SE. The biggest problem is > >when the executable itself is on the server. If it is, the program loads > >VERY slowly. I have loaded Netstat to look at the network throughput. When > >I am loading an EXE from the server, my throughput is very low. I made a > >300 MB test file to copy back and forth across the network. On each > >machine, I'm getting about 35Mbit. I can copy the same file to two > machines > >at the same time and get 35Mbit on both. I have not tested three at a time > >because this was enough to show me that the network was not the > bottleneck. > >This network is 100Mbit on a switch. When copying the files, the client > >machine's processor always shows 100%. When loading programs from the > >server the machines also show 100%. BUT, I get the same performance from > a > >550 Mhz PIII machine, a 1000Mhz Athlon machine, and an 1800+ Athlon XP. > >Also, like I said, the Novell server makes the clients much faster. I have > >eliminated all the protocol traffic that I can -- all machines are on > >TCP/IP only. I can put the EXEs on the client machines and just read the > >data from the server for improved performace, but it is still not as good > >as it should be (or as good as the old server). > > > >Now for the questiondoes anyone know of anything I can do to improve > >performance? Or do I need to go back and install Novell on the new machine > >(I really don't want to)? > > > > > >Thanks in advance. > > > >Trey Nolen > > > > > > -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] samba performance issue
Hi, I recently installed a new samba server to replace an older Novell machine. Now, we are having performance issues. I have installed many samba servers, and have not run into this problem before. Some background info: The server is an Athlon 1800+ w/ 512MB DDR RAM. We are using software raid on 80GB IDE ATA 100 drives with the VIA 82C3XX chipset. When mirroring the drives, we usually get 30+MB/sec. Filesystem is ext3. Kernel is 2.4.18. Distro is Debian 3.0 and samba is 2.2.3a-6 for Debian. smb.conf: [global] printing = bsd printcap name = /etc/printcap load printers = yes use client driver = yes guest account = nobody add user script = /usr/sbin/useradd -d /dev/null -g 100 -s /bin/false -M %u domain admin group = @users security = user workgroup = HHS domain logons = yes logon script = startup.bat server string = %h server (Samba %v) syslog only = no syslog = 0; socket options = IPTOS_LOWDELAY TCP_NODELAY SO_SNDBUF=4096 SO_RCVBUF=4096 encrypt passwords = yes wins support = no os level = 99 domain master = yes local master = yes preferred master = yes name resolve order = lmhosts host wins bcast dns proxy = no preserve case = yes short preserve case = yes unix password sync = true passwd program = /usr/bin/passwd %u passwd chat = *Enter\snew\sUNIX\spassword:* %n\n max log size = 1000 [netlogon] path = /etc/samba/netlogon browseable = no read only = yes [sys] comment = Shared files path = /home/shared writeable = yes op locks = no browseable = yes force directory mode = 0777 force create mode = 0777 public = yes guest ok = no [homes] comment = Home Directories browseable = no read only = no create mask = 0770 directory mask = 0770 [printers] guest ok = yes printable = yes print command = /usr/bin/lpr -U%U@%M -P%p -r %s lpq command = /usr/bin/lpq -U%U@%M -P%p lprm command = /usr/bin/lprm -U%U@%M -P%p %j queuepause command = /usr/sbin/lpc -U%U@%M -P%p stop queueresume command = /usr/sbin/lpc -U%U@%M -P%p start path = /tmp [cdrom1] comment = Samba server's CD-ROM writable = no locking = no path = /cdrom1 public = yes preexec = /bin/mount /cdrom1 postexec = /bin/umount /cdrom1 [cdrom2] comment = Samba server's CD-ROM writable = no locking = no path = /cdrom2 public = yes preexec = /bin/mount /cdrom2 postexec = /bin/umount /cdrom2 Now, the problem...I'm getting very poor performance. The machine we replaced was a Pentium I 200 with 64MB of RAM, and it was faster than this thing. All of my client machines are Win98 SE. The biggest problem is when the executable itself is on the server. If it is, the program loads VERY slowly. I have loaded Netstat to look at the network throughput. When I am loading an EXE from the server, my throughput is very low. I made a 300 MB test file to copy back and forth across the network. On each machine, I'm getting about 35Mbit. I can copy the same file to two machines at the same time and get 35Mbit on both. I have not tested three at a time because this was enough to show me that the network was not the bottleneck. This network is 100Mbit on a switch. When copying the files, the client machine's processor always shows 100%. When loading programs from the server the machines also show 100%. BUT, I get the same performance from a 550 Mhz PIII machine, a 1000Mhz Athlon machine, and an 1800+ Athlon XP. Also, like I said, the Novell server makes the clients much faster. I have eliminated all the protocol traffic that I can -- all machines are on TCP/IP only. I can put the EXEs on the client machines and just read the data from the server for improved performace, but it is still not as good as it should be (or as good as the old server). Now for the questiondoes anyone know of anything I can do to improve performance? Or do I need to go back and install Novell on the new machine (I really don't want to)? Thanks in advance. Trey Nolen -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
