[Samba] very basic question launching application locally from a linux server to a linux workstation.
Can I click on an icon in a Samba share on a server from a linux workstation and launch the program or shell locally, instead of the at the server? I know this works in Windows, but I can't seem to find a simple way of doing this in Ubuntu. -- Thanks! Rick Giorgio -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Unable to join to Windows 2003 PDC using samba 3.5.8 from alinux machine!!
Hi all,
I was on a bit extended weekend .. so got delayed in responding ...
To answer some of the questions:
Is the ADS domain in NT4 compatibility mode or windows 2003 native
mode?I think that NT4 machines can still join ADS domains even if the
ADS domains are in 2000/2003 mode.
I am not sure about this.
How can I find this out?
I still will have to do some googling on this front.
Also check
testparm -v | grep resolve
think it is better to have hosts and wins first.
I have now set the value of name resolve order to:
# /usr/local/samba/bin/testparm -sv | grep -i resolve
Load smb config files from /usr/local/samba/lib/smb.conf
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
Processing section [homes]
Processing section [printers]
Processing section [Linux]
Loaded services file OK.
Server role: ROLE_DOMAIN_MEMBER
name resolve order = wins host lmhost bcast
#
I set it to WINS first because, my ADS server is a WINS server.
But, the above modificatiosn did not work.
Is the ADS server your DNS server? Is the samba server using the ADS
server as the DNS server? DNS should include resource records to help
locate an ADS DC. I don't think you can have lmhosts entry for an ADS
server.
My ADS server is a WINS server, not a DNS server.
What does your krb5.conf look like? I suspect it's having trouble
finding a kdc.
My krb5.conf is as follows:
# cat /etc/krb5.conf
[libdefaults]
default_realm = ABCDOM.PQR.COM
default_tkt_enctypes = rc4-hmac
default_tgs_enctypes = rc4-hmac
[realms]
ABCDOM.PQR.COM = {
kdc = 10.25.66.71 :88
admin_server = 10.25.66.71
default_domain = abcdom.pqr.com
}
[domain_realm]
.abcdom.pqr.com = ABCDOM.PQR.COM
#
Regards,
Rick
On Sat, Apr 2, 2011 at 3:22 AM, Andrew Masterson
andrew.master...@nuvistaenergy.com wrote:
-Original Message-
From: samba-boun...@lists.samba.org
[mailto:samba-boun...@lists.samba.org]
On Behalf Of Rick Gates
Sent: Friday, April 01, 2011 10:00 AM
To: samba@lists.samba.org
Subject: [Samba] Unable to join to Windows 2003 PDC using samba 3.5.8
from
alinux machine!!
Hi all,
I am using samba 3.5.8 on a linux machine.
I am not able to join the domain of a windows 2003 server in ADS mode.
I am getting the following error message:
# /usr/local/samba/bin/net ads join -U Administrator%password -I
10.25.66.71
Failed to join domain: failed to find DC for domain ABCDOM.PQR.COM
#
I am not sure what the issue here.
It works absolutely fine when I try to join the domain in rpc mode.
# /usr/local/samba/bin/net rpc join -U Administrator%password
Joined domain ABCDOM.
#
The smb.conf used is:
# /usr/local/samba/bin/testparm
Load smb config files from /usr/local/samba/lib/smb.conf
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit
(16384)
Processing section [homes]
Processing section [printers]
Processing section [Linux]
Loaded services file OK.
Server role: ROLE_DOMAIN_MEMBER
Press enter to see a dump of your service definitions
[global]
workgroup = ABCDOM
realm = ABCDOM.PQR.COM
server string = Samba Server - Research
security = ADS
password server = 10.25.66.71
log level = 10
log file = /var/log/samba/%m.log
max log size = 50
add user script = /usr/sbin/useradd %u
delete user script = /usr/sbin/userdel %u
add group script = /usr/sbin/groupadd %g
delete group script = /usr/sbin/groupdel %g
add user to group script = /usr/sbin/usermod -a -G %g %u
delete user from group script = /usr/sbin/deluser %u %g
add machine script = /usr/sbin/adduser -n -g machines -c
Machine -d
/dev/null -s /bin/false %u
domain master = No
dns proxy = No
wins server = 10.25.66.71
idmap uid = 200-12
idmap gid = 200-12
admin users = root
cups options = raw
[homes]
comment = Home Directories
read only = No
browseable = No
[printers]
comment = All Printers
path = /usr/spool/samba
printable = Yes
browseable = No
[Linux]
comment = Share on this linux machine
path = /tmp/linux
read only = No
#
NOTE: 10.25.66.71 is the IP of my 2003 windows server.
My lmhosts file is:
# cat lmhosts.
10.25.66.71 ABC3
10.25.66.71 ABCDOM#1b
10.25.66.71 ABCDOM#1c
#
It would be great, if any one can tell me if there is anything wrong
here
and probably help me sort out this issue.
Thanks in advance!!
What does your krb5.conf look like? I suspect it's having trouble
finding a kdc.
-=Andrew
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Unable to join to Windows 2003 PDC using samba 3.5.8 from alinux machine!!
Hi Takahashi and all those in the list,
Sometimes AD specific configuration is needed to krb5.conf.
What kind of AD specific configuration are you talking about.
Can you kindly elaborate?
It may be helpful for me.
Have you set DNS server to 10.25.66.71 and ABCDOM.PQR.COM to the
search or domain directive in your /etc/resolv.conf?
Can you resolve correct SRV record of the domain on your Samba server?
10.25.66.71 is not my DNS server.
In fact 10.25.66.71 is my WINS server.
I have therefore included it in smb.conf:
# /usr/local/samba/bin/testparm -sv | grep -i wins
Load smb config files from /usr/local/samba/lib/smb.conf
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
Processing section [homes]
Processing section [printers]
Processing section [Linux]
Loaded services file OK.
Server role: ROLE_DOMAIN_MEMBER
name resolve order = wins host lmhost bcast
max wins ttl = 518400
min wins ttl = 21600
wins proxy = No
*wins server = 10.25.66.71*
wins support = No
wins hook =
#
However, I cannot resolve ABCDOM.PQR.COM.
It should be taken care by WINS, right?
(However, I tried defining ABCDOM.PQR.COM in /etc/hosts file.
and also tried setting /etc/nsswitch.conf file with the entry of:
hosts: files dns
But, nslookup would always first try DNS and return.
Had resolved similar issues with above steps successful on unix machine ...
but I am now working on a RHEL machine and I have not yet found a successful
way to do this)
Any suggestions are welcome.
Regard,
Rick
On Tue, Apr 5, 2011 at 11:59 PM, Rick Gates rick123.ga...@gmail.com wrote:
Hi all,
I was on a bit extended weekend .. so got delayed in responding ...
To answer some of the questions:
Is the ADS domain in NT4 compatibility mode or windows 2003 native
mode?I think that NT4 machines can still join ADS domains even if the
ADS domains are in 2000/2003 mode.
I am not sure about this.
How can I find this out?
I still will have to do some googling on this front.
Also check
testparm -v | grep resolve
think it is better to have hosts and wins first.
I have now set the value of name resolve order to:
# /usr/local/samba/bin/testparm -sv | grep -i resolve
Load smb config files from /usr/local/samba/lib/smb.conf
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384)
Processing section [homes]
Processing section [printers]
Processing section [Linux]
Loaded services file OK.
Server role: ROLE_DOMAIN_MEMBER
name resolve order = wins host lmhost bcast
#
I set it to WINS first because, my ADS server is a WINS server.
But, the above modificatiosn did not work.
Is the ADS server your DNS server? Is the samba server using the ADS
server as the DNS server? DNS should include resource records to help
locate an ADS DC. I don't think you can have lmhosts entry for an ADS
server.
My ADS server is a WINS server, not a DNS server.
What does your krb5.conf look like? I suspect it's having trouble
finding a kdc.
My krb5.conf is as follows:
# cat /etc/krb5.conf
[libdefaults]
default_realm = ABCDOM.PQR.COM
default_tkt_enctypes = rc4-hmac
default_tgs_enctypes = rc4-hmac
[realms]
ABCDOM.PQR.COM = {
kdc = 10.25.66.71 :88
admin_server = 10.25.66.71
default_domain = abcdom.pqr.com
}
[domain_realm]
.abcdom.pqr.com = ABCDOM.PQR.COM
#
Regards,
Rick
On Sat, Apr 2, 2011 at 3:22 AM, Andrew Masterson
andrew.master...@nuvistaenergy.com wrote:
-Original Message-
From: samba-boun...@lists.samba.org
[mailto:samba-boun...@lists.samba.org]
On Behalf Of Rick Gates
Sent: Friday, April 01, 2011 10:00 AM
To: samba@lists.samba.org
Subject: [Samba] Unable to join to Windows 2003 PDC using samba 3.5.8
from
alinux machine!!
Hi all,
I am using samba 3.5.8 on a linux machine.
I am not able to join the domain of a windows 2003 server in ADS mode.
I am getting the following error message:
# /usr/local/samba/bin/net ads join -U Administrator%password -I
10.25.66.71
Failed to join domain: failed to find DC for domain ABCDOM.PQR.COM
#
I am not sure what the issue here.
It works absolutely fine when I try to join the domain in rpc mode.
# /usr/local/samba/bin/net rpc join -U Administrator%password
Joined domain ABCDOM.
#
The smb.conf used is:
# /usr/local/samba/bin/testparm
Load smb config files from /usr/local/samba/lib/smb.conf
rlimit_max: increasing rlimit_max (1024) to minimum Windows limit
(16384)
Processing section [homes]
Processing section [printers]
Processing section [Linux]
Loaded services file OK.
Server role: ROLE_DOMAIN_MEMBER
Press enter to see a dump of your service definitions
[global]
workgroup = ABCDOM
realm = ABCDOM.PQR.COM
server string = Samba Server - Research
security = ADS
password server = 10.25.66.71
log level = 10
log file = /var/log
Re: [Samba] Unable to connect to Samba share from Windows XP
Hi, Right now, I've managed to connect to the share with no problem, although I can't write in the share; after all, I've moved forward a little bit. Try read only = no for that share (in smb.conf). I am quite sure that this would do the trick here. My question now is: is there a difference between the read only and writable tags in the smb.conf? I mean, from my logic, read only = no should have the same effects as writable = yes. Maybe I'm wrong... As far as the documentation of parameters say; there is no difference. (http://samba.org/samba/docs/man/manpages-3/smb.conf.5.html#READONLY) You can also try using help pages accessible through SWAT, for clearing doubts pertaining to smb.conf parameters. Hope it was helpful, Rick On Mon, Apr 4, 2011 at 1:37 PM, Jaime Aguado tech.mustole...@gmail.comwrote: Hi, Sorry for the delay, I've been off for the weekend... That's right, I wasn't able to access a share which was defined particularly for the USB devices plugged in the USB port provided within the box. Right now, I've managed to connect to the share with no problem, although I can't write in the share; after all, I've moved forward a little bit. My question now is: is there a difference between the read only and writable tags in the smb.conf? I mean, from my logic, read only = no should have the same effects as writable = yes. Maybe I'm wrong... I'm not sure whether I'm allowed to post the config file; I'll check it out anyway... Many thanks for your help! Regards, Jaime 2011/4/1 Rick Gates rick123.ga...@gmail.com Hi, May be you can try taking the network traces when this behavior is seen. Looking at the network traces might reveal some thing. Just to clear, you are not able to access one particular share which are for the USB devices, correct? Sharing the configuration details of your samba server can be helpful. Regards, Rick On Fri, Apr 1, 2011 at 2:53 PM, Jaime Aguado tech.mustole...@gmail.com wrote: Hi everyone, I'm integrating a Samba server in an Embedded Linux box, in order to share the contents of the storage devices plugged in the USB port. For this, I have created a share in the folder where the USB devices are always mounted, giving free and exclusive access to the guest user. The strange thing is that, when using a Linux machine (to be precise, with Ubuntu), I can connect with no problem using any user or password by a simple mount command. But when using Windows XP, even though I can see the server with the NetBIOS name I have configured, there is no way I can connect to the share. In fact, many times the connection attempt kills the smbd daemon, although not the nmbd. Anybody knows what can be happening? I've been trying to solve this for a few days now without any success at all... Many thanks in advance :) Jaime -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Unable to join to Windows 2003 PDC using samba 3.5.8 from a linux machine!!
Hi all, I am using samba 3.5.8 on a linux machine. I am not able to join the domain of a windows 2003 server in ADS mode. I am getting the following error message: # /usr/local/samba/bin/net ads join -U Administrator%password -I 10.25.66.71 Failed to join domain: failed to find DC for domain ABCDOM.PQR.COM # I am not sure what the issue here. It works absolutely fine when I try to join the domain in rpc mode. # /usr/local/samba/bin/net rpc join -U Administrator%password Joined domain ABCDOM. # The smb.conf used is: # /usr/local/samba/bin/testparm Load smb config files from /usr/local/samba/lib/smb.conf rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384) Processing section [homes] Processing section [printers] Processing section [Linux] Loaded services file OK. Server role: ROLE_DOMAIN_MEMBER Press enter to see a dump of your service definitions [global] workgroup = ABCDOM realm = ABCDOM.PQR.COM server string = Samba Server - Research security = ADS password server = 10.25.66.71 log level = 10 log file = /var/log/samba/%m.log max log size = 50 add user script = /usr/sbin/useradd %u delete user script = /usr/sbin/userdel %u add group script = /usr/sbin/groupadd %g delete group script = /usr/sbin/groupdel %g add user to group script = /usr/sbin/usermod -a -G %g %u delete user from group script = /usr/sbin/deluser %u %g add machine script = /usr/sbin/adduser -n -g machines -c Machine -d /dev/null -s /bin/false %u domain master = No dns proxy = No wins server = 10.25.66.71 idmap uid = 200-12 idmap gid = 200-12 admin users = root cups options = raw [homes] comment = Home Directories read only = No browseable = No [printers] comment = All Printers path = /usr/spool/samba printable = Yes browseable = No [Linux] comment = Share on this linux machine path = /tmp/linux read only = No # NOTE: 10.25.66.71 is the IP of my 2003 windows server. My lmhosts file is: # cat lmhosts. 10.25.66.71 ABC3 10.25.66.71 ABCDOM#1b 10.25.66.71 ABCDOM#1c # It would be great, if any one can tell me if there is anything wrong here and probably help me sort out this issue. Thanks in advance!! Thanks, Rick -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Unable to join to Windows 2003 PDC using samba 3.5.8 from a linux machine!!
Hi Gaiseric, To answer some of the questions in the last mail: Is the ADS domain in NT4 compatibility mode or windows 2003 native mode? will need to check that out. Will check out how can I do so (googling should help here) and post the outcome. Did you try adding the kerberos realm info for ABCDOM.PQR.COM into the samba clients krb5? Yeah. I did try to configure kerberos. In fact, kinit Administrator succeeds. Correct me if I am mistaken, but I believe that indicates that kerberos configuration has no issues. (Missed including krb5.conf in my original post. Will do that soon (probably in my next post)) Will check the remaining points and post the outcome. Thanks, Rick On Fri, Apr 1, 2011 at 10:00 PM, Gaiseric Vandal gaiseric.van...@gmail.comwrote: So your samba server thinks it is joining an NT4 domain. Is the ADS domain in NT4 compatibility mode or windows 2003 native mode?I think that NT4 machines can still join ADS domains even if the ADS domains are in 2000/2003 mode. Did you try adding the kerberos realm info for ABCDOM.PQR.COM into the samba clients krb5? Also check testparm -v | grep resolve By default name resolve order = lmhosts wins host bcast I think it is better to have hosts and wins first. Is the ADS server your DNS server? Is the samba server using the ADS server as the DNS server? DNS should include resource records to help locate an ADS DC. I don't think you can have lmhosts entry for an ADS server. On 04/01/2011 11:59 AM, Rick Gates wrote: Hi all, I am using samba 3.5.8 on a linux machine. I am not able to join the domain of a windows 2003 server in ADS mode. I am getting the following error message: # /usr/local/samba/bin/net ads join -U Administrator%password -I 10.25.66.71 Failed to join domain: failed to find DC for domain ABCDOM.PQR.COM # I am not sure what the issue here. It works absolutely fine when I try to join the domain in rpc mode. # /usr/local/samba/bin/net rpc join -U Administrator%password Joined domain ABCDOM. # The smb.conf used is: # /usr/local/samba/bin/testparm Load smb config files from /usr/local/samba/lib/smb.conf rlimit_max: increasing rlimit_max (1024) to minimum Windows limit (16384) Processing section [homes] Processing section [printers] Processing section [Linux] Loaded services file OK. Server role: ROLE_DOMAIN_MEMBER Press enter to see a dump of your service definitions [global] workgroup = ABCDOM realm = ABCDOM.PQR.COM server string = Samba Server - Research security = ADS password server = 10.25.66.71 log level = 10 log file = /var/log/samba/%m.log max log size = 50 add user script = /usr/sbin/useradd %u delete user script = /usr/sbin/userdel %u add group script = /usr/sbin/groupadd %g delete group script = /usr/sbin/groupdel %g add user to group script = /usr/sbin/usermod -a -G %g %u delete user from group script = /usr/sbin/deluser %u %g add machine script = /usr/sbin/adduser -n -g machines -c Machine -d /dev/null -s /bin/false %u domain master = No dns proxy = No wins server = 10.25.66.71 idmap uid = 200-12 idmap gid = 200-12 admin users = root cups options = raw [homes] comment = Home Directories read only = No browseable = No [printers] comment = All Printers path = /usr/spool/samba printable = Yes browseable = No [Linux] comment = Share on this linux machine path = /tmp/linux read only = No # NOTE: 10.25.66.71 is the IP of my 2003 windows server. My lmhosts file is: # cat lmhosts. 10.25.66.71 ABC3 10.25.66.71 ABCDOM#1b 10.25.66.71 ABCDOM#1c # It would be great, if any one can tell me if there is anything wrong here and probably help me sort out this issue. Thanks in advance!! Thanks, Rick -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Unable to connect to Samba share from Windows XP
Hi, May be you can try taking the network traces when this behavior is seen. Looking at the network traces might reveal some thing. Just to clear, you are not able to access one particular share which are for the USB devices, correct? Sharing the configuration details of your samba server can be helpful. Regards, Rick On Fri, Apr 1, 2011 at 2:53 PM, Jaime Aguado tech.mustole...@gmail.comwrote: Hi everyone, I'm integrating a Samba server in an Embedded Linux box, in order to share the contents of the storage devices plugged in the USB port. For this, I have created a share in the folder where the USB devices are always mounted, giving free and exclusive access to the guest user. The strange thing is that, when using a Linux machine (to be precise, with Ubuntu), I can connect with no problem using any user or password by a simple mount command. But when using Windows XP, even though I can see the server with the NetBIOS name I have configured, there is no way I can connect to the share. In fact, many times the connection attempt kills the smbd daemon, although not the nmbd. Anybody knows what can be happening? I've been trying to solve this for a few days now without any success at all... Many thanks in advance :) Jaime -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba files_struct: bool modified and bool update_write_time_on_close
Hi All, I have been going through the samba 3.5.3 code for quite some time now. I have been examining the various elements in the structure files_struct, which samba uses. I find the following two elements of particular interest here: bool modified; bool update_write_time_on_close; I see that modified is set to true whenever something is written into the file. (in the function: write_file() of fileio.c) I further see that right after modified is set to true (in the function: write_file() of fileio.c), trigger_write_time_update() is called where update_write_time_on_close is set to true. Isnt it that whenever a files is written into, i.e. modified is set to true, its update time must b updated upon calling a close? I mean, isnt that update_write_time_on_close will always have the have value as modified? (if yes, then why use two variables when 1 can do the work) My intent is just to learn and understand the samba code ... it would be great if any of you knowledgeable beings can respond to this question of mine. :) Thanks, -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] tdbbackup with bouncing/shutting down samba possible?
Hi, We are a small company, which has just started using samba. Recently we have faced a few issues regarding the TDBs getting corrupted. I have read that the only way of getting around this issue, is to regularly take tdbbackups. But, this process needs a downtime of my samba server, which we would not want. Instead, is there a way where I can take the tdbbackup with out shutting down samba server. That is, perhaps a way by which we just effectively shutdown TDBs one by one, taking there backups. If that is possible, then we can schedule this activity at the time when the load on the server is at the lowest point. I tried to google it but could not find anything about this. Any ideas/thoughts on how can we take tdbbackups without shutting down samba? Regards, Rick -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Query on access for shared Samba Folder
Hi Experts, We have a shared a folder via Samba from a Solaris box to a window server, however when a shared folder is shared to allow a few users to read and write files to the folder, files that are created by a user into the folder are not readable by other users. Is this the normal behaviour of samba shared folder ? Any help is appreciated. Regards, Rick -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba 3.4.2 and Active Directory auth
I am trying to setup 2 workstations installed with Fedora 11 and samba 3.4.2. One is x86_64 and the other is i686 and I have the same issue with both. Neither machine will allow domain users from AD (Server 2003 R2) to authenticate. I have successfully send up samba on multiple CentOS 5.4 servers but they are still on 3.0.33 not 3.4.2. At this point, I have joined the workstations and both wbinfo -u and wbinfo -g show the domain users and groups. Also, getent passwd shows the user info including UIDs and GIDs. [global] workgroup = DOM netbios name = wkstn1 realm = DOM.LOCAL security = ads server string = wkstn1 idmap backend = ad ldap idmap suffix = dc=dom,dc=local ldap admin dn = cn=ldap,ou=Users,dc=dom,dc=local idmap uid = 500-1 idmap gid = 500-1 winbind separator = + winbind use default domain = true ;winbind offline logon = true winbind nested groups = true map untrusted to domain = yes log level = 10 /var/log/secure: login: pam_winbind(login:account): [pamh: 0x661170] ENTER: pam_sm_acct_mgmt (flags: 0x) login: pam_winbind(login:account): valid_user: wbcGetpwnam gave WBC_ERR_DOMAIN_NOT_FOUND login: pam_winbind(login:account): [pamh: 0x661170] LEAVE: pam_sm_acct_mgmt returning 3 (PAM_SERVICE_ERR) I do not know what i should be looking for from log.winbindd, but I do see this: [2009/11/09 13:04:19, 5] winbindd/winbindd_idmap.c:246(winbindd_sid2uid_recv) sid2uid returned an error [2009/11/09 13:04:19, 5] winbindd/winbindd_user.c:339(getpwsid_sid2uid_recv) Could not query uid for user DOM\rick # wbinfo -i rick Could not get info for user rick # id rick uid=1(rick) gid=10001(Domain Users) groups=10001(Domain Users) Which is the uid set in Active Directory. Thanks, Rick -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Maxtor NAS share problem
Scott Lovenberg wrote: I have tried telnet and ssh directly, but I haven't scanned for open ports. How do I do that? Rick J. Use NMap with NMapFE (nmap frontend) on Linux, or something like YAPS (yet another port scanner) on Windows. Any crappy port scanner will do, you don't need anything like stealth scanning (I hope!). Which ever one you use, do a service scan, or scan the first 1024 ports. You could try something fancier like a SYN or XMAS scan if it's a BSD based appliance. Also, does it have a USB port or any other interface? Like anything else, it's just about getting your foot in the door, after that, you just need a bit of leverage. ;) The thing is, most of these boxes have to have a way for the upstream vendor to upgrade the firmware, which is usually just an IMG of the compressed OS, so they're usually not completely locked down. Below are the port scan results: Starting nmap 3.93 ( http://www.insecure.org/nmap/ ) at 2008-04-28 18:17 UTC Interesting ports on 192.168.2.17: (The 65532 ports scanned but not shown below are in state: closed) PORT STATE SERVICE 80/tcp open http 139/tcp open netbios-ssn 445/tcp open microsoft-ds 4301/tcp open unknown MAC Address: 00:10:75:00:FD:91 (Maxtor) Nmap finished: 1 IP address (1 host up) scanned in 15.124 seconds The device does have two USB ports in addition to the ethernet port. FWIW, new firmware can be downloaded into the device via the browser interface, so perhaps there is some way to use port 80 to see the filesystem? Best Regards, Rick J. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Maxtor NAS share problem
Scott Lovenberg wrote: Scott Lovenberg wrote: Rick Johnson wrote: Toby Bluhm wrote: Rick Johnson wrote: Adam Williams wrote: what are the settings on the share you're trying to mount? does it have something like valid users = rickj Well, that is hard to determine. If you're asking whether the drive has something like an smb.conf file containing share settings the answer is no. The only access I have to the Maxtor drive is via a browser interface. I have used the menu in that to set all files for full public access, but beyond that I have no finer control. (I have So in public mode, it's probably going to throw all user info away and map everything to a universal id. Have you looked closely at the file perm/ownership from the Windows client? Saved files as joe user then jane user - does it keep the distinction? I'll venture no. There is no Windows client. The Maxtor shows up in My Netowrk Places and is mapped as just another drive from Windows; in my particular case, as the Z drive. If it's possible, have you tried setting up individual users through the nas interface? Yes. The drive has been set up with different users since the beginning. Could also just work with the fact that no perm/owner info will be kept. Collect that info store it to a file. A recursive getfacl to collect setfacl to restore could do the trick. Judging by what I see through the web interface, there must be SOME type of user info stored, but how or where I don't know and can't see. found via www.openmss.org that the underlying filesystem of the drive is Linux - reiser I think - but beyond that I have no data on the filesystem other than what I see when I smbmount the drive.) Perhaps there's a way to break into the Linux the nas is running change stuff to your suiting. I think this is a possibility and I've been looking for more info; unfortunately without success so far. I've heard many times of people with an appliance trying to do something beyond its intended function hitting a brick wall. Your situation is why I never recommend an appliance to anyone other than a pure, non-hacker, non-power type Windows user. A NAS type distro or even a full distro on a junker PC would be a better solution. More work, but better results. You're probably right. But since I've already got the drive I need to figure out a way to use it. Rick J. Have you scanned for open ports? These things usually have SSH or telnet or some other maintenance port open with a known default user/pass. After looking at www.openmss.org a bit, it seems that it keeps users in nvram. Looks like you can update the firmware via the web interface, and that will give you an SSHD to log in to. That might be either the best way to go about this, or the fastest way to brick the appliance. :) (The 65532 ports scanned but not shown below are in state: closed) PORT STATE SERVICE 80/tcp open http 139/tcp open netbios-ssn 445/tcp open microsoft-ds 4301/tcp open unknown MAC Address: 00:10:75:00:FD:91 (Maxtor) Well, it's about as useful to me as a brick right now, so maybe I've got nothing to lose! ;-) Seriously though, I don't know SSHD so what does that mean exactly? All I know is that SSH is a sort of secure telnet, but I've never used it much. Best Regards, Rick J. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Maxtor NAS share problem
Toby Bluhm wrote: Judging by what I see through the web interface, there must be SOME type of user info stored, but how or where I don't know and can't see. I was talking about saving the Linux filesystem info. Do your rsync to the NAS, then do a recursive getfacl, redirecting the output to a file on the NAS. When you do an rsync back from the NAS, correct the owner/perms with setfacl. Trouble is that I CAN'T do my rsync to the NAS drive because it doesn't give me the access privileges I need to write to the NAS. The rsync wants to change owner and the NAS won't let it do that. Better yet, look into dar - http://dar.linux.free.fr - a tar like backup designed for saving to files on disk. It shouldn't care (much) about the filesystem it's stored on. Thanks. I'll check it out! Best Regards, Rick J. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Maxtor NAS share problem
Toby Bluhm wrote: Rick Johnson wrote: Adam Williams wrote: what are the settings on the share you're trying to mount? does it have something like valid users = rickj Well, that is hard to determine. If you're asking whether the drive has something like an smb.conf file containing share settings the answer is no. The only access I have to the Maxtor drive is via a browser interface. I have used the menu in that to set all files for full public access, but beyond that I have no finer control. (I have So in public mode, it's probably going to throw all user info away and map everything to a universal id. Have you looked closely at the file perm/ownership from the Windows client? Saved files as joe user then jane user - does it keep the distinction? I'll venture no. There is no Windows client. The Maxtor shows up in My Netowrk Places and is mapped as just another drive from Windows; in my particular case, as the Z drive. If it's possible, have you tried setting up individual users through the nas interface? Yes. The drive has been set up with different users since the beginning. Could also just work with the fact that no perm/owner info will be kept. Collect that info store it to a file. A recursive getfacl to collect setfacl to restore could do the trick. Judging by what I see through the web interface, there must be SOME type of user info stored, but how or where I don't know and can't see. found via www.openmss.org that the underlying filesystem of the drive is Linux - reiser I think - but beyond that I have no data on the filesystem other than what I see when I smbmount the drive.) Perhaps there's a way to break into the Linux the nas is running change stuff to your suiting. I think this is a possibility and I've been looking for more info; unfortunately without success so far. I've heard many times of people with an appliance trying to do something beyond its intended function hitting a brick wall. Your situation is why I never recommend an appliance to anyone other than a pure, non-hacker, non-power type Windows user. A NAS type distro or even a full distro on a junker PC would be a better solution. More work, but better results. You're probably right. But since I've already got the drive I need to figure out a way to use it. Rick J. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Maxtor NAS share problem
Scott Lovenberg wrote: Rick Johnson wrote: Toby Bluhm wrote: Rick Johnson wrote: Adam Williams wrote: what are the settings on the share you're trying to mount? does it have something like valid users = rickj Well, that is hard to determine. If you're asking whether the drive has something like an smb.conf file containing share settings the answer is no. The only access I have to the Maxtor drive is via a browser interface. I have used the menu in that to set all files for full public access, but beyond that I have no finer control. (I have So in public mode, it's probably going to throw all user info away and map everything to a universal id. Have you looked closely at the file perm/ownership from the Windows client? Saved files as joe user then jane user - does it keep the distinction? I'll venture no. There is no Windows client. The Maxtor shows up in My Netowrk Places and is mapped as just another drive from Windows; in my particular case, as the Z drive. If it's possible, have you tried setting up individual users through the nas interface? Yes. The drive has been set up with different users since the beginning. Could also just work with the fact that no perm/owner info will be kept. Collect that info store it to a file. A recursive getfacl to collect setfacl to restore could do the trick. Judging by what I see through the web interface, there must be SOME type of user info stored, but how or where I don't know and can't see. found via www.openmss.org that the underlying filesystem of the drive is Linux - reiser I think - but beyond that I have no data on the filesystem other than what I see when I smbmount the drive.) Perhaps there's a way to break into the Linux the nas is running change stuff to your suiting. I think this is a possibility and I've been looking for more info; unfortunately without success so far. I've heard many times of people with an appliance trying to do something beyond its intended function hitting a brick wall. Your situation is why I never recommend an appliance to anyone other than a pure, non-hacker, non-power type Windows user. A NAS type distro or even a full distro on a junker PC would be a better solution. More work, but better results. You're probably right. But since I've already got the drive I need to figure out a way to use it. Rick J. Have you scanned for open ports? These things usually have SSH or telnet or some other maintenance port open with a known default user/pass. I have tried telnet and ssh directly, but I haven't scanned for open ports. How do I do that? Rick J. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Maxtor NAS share problem
Actually, it WASN'T root that mounted the share. It was my user account rickj. Re: NFS, to the best of my knowledge the drive doesn't support it. And I TRIED using -o uid=1000,gid=100 (the respective user and group IDs of rickj) with the smbmount command (AND the mount command) but the ownership still shows as it did below in my example. Note: On my system mount doesn't recognize -t cifs and the man page on smbfs says the following. Mount options for smbfs Just like nfs, the smbfs implementation expects a binary argument (a struct smb_mount_data) to the mount system call. This argument is constructed by smbmount(8) and the current version of mount (2.12) does not know anything about smbfs. Best Regards, Rick J. Adam Williams wrote: root is owing the files because the user root mounted the share. if you want to support unix file ownership in your rsync you should use NFS if the unit supports that. to change the group ownership, pass the -o gid=some_group on your mount -t cifs command. you can also use uid= and to use both, -o uid=someone,gid=somegroup Rick Johnson wrote: I have a network accessible (192.168.2.97) Maxtor Shared Storage drive that I want to use to backup the Linux (Slackware) systems on my private LAN. I can smbmount the drive okay on my Linux systems, but when I try and use rsync to do a backup rsync fails with a message about failing to change owner. Digging a little deeper into the problem I find that the directories/files on the share all look something like the following drwxr-xr-x 1 35000 root 0 2008-02-12 15:21 ArchiveOnLinux drwxrwxrwx 1 35003 root 0 2008-04-22 01:01 Public -rwxrw-rw- 1 35000 root 1127239 2008-02-28 11:28 gw_rn_vp_grey.pdf which ISN'T the user (or group) I would have expected it to be mounted as. (I've done a chmod u+s /usr/bin/smbmnt to allow users to mount the share and I expected that the share would have the same owner as the user that mounted it.) I've also found that I can't change ALL permissions ALL the time on the share's directories and files. I can remove group and world privileges from a file (which are remembered after a umount and remount) but I cannot restore them (even as root). Only the owner privileges are consistently changeable. Basically, ALL I want to do is to be able to use the drive as a backup that will maintain the same permissions, user, group, etc., as the original files AND I want the files visible from both my Linux AND Windows systems (because I need to use Nero on a Windows machine to do the backups). Can someone help me figure out how to do this correctly? Thanks, Rick Johnson -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Maxtor NAS share problem
Adam Williams wrote: what are the settings on the share you're trying to mount? does it have something like valid users = rickj Well, that is hard to determine. If you're asking whether the drive has something like an smb.conf file containing share settings the answer is no. The only access I have to the Maxtor drive is via a browser interface. I have used the menu in that to set all files for full public access, but beyond that I have no finer control. (I have found via www.openmss.org that the underlying filesystem of the drive is Linux - reiser I think - but beyond that I have no data on the filesystem other than what I see when I smbmount the drive.) your user ID's in /etc/passwd on your local computer and the NAS appliance may be different which is why the ls -l looks strange. This is probably true because the drive was set up through the browser interface. (I HAVE wondered whether creating a user on my Linux system with the same uid and gid as I see on the mounted share might work.) FWIW, I find that I CAN (as root) chmod the files on the drive after it is mounted (and the privileges are remembered after a umount and remount), but the behavior is strange. Some examples follow: chmod 777 changes -rwxrw-rw to -rwxr--r-- chmod 700 changes -rwxr--r-- to -rwx-- chmod 777 changes -rwx-- to -rwxr--r-- This, unfortunately, leaves me with no way that I know of to change the file permissions back to what they were originally. (I've tried resetting them via the browser interface AND from a Windows system where I have the Maxtor mapped as a drive with no luck.) Is there perhaps some sort of bitmask at work behind the scenes here? Best Regards, Rick J. Rick Johnson wrote: Actually, it WASN'T root that mounted the share. It was my user account rickj. Re: NFS, to the best of my knowledge the drive doesn't support it. And I TRIED using -o uid=1000,gid=100 (the respective user and group IDs of rickj) with the smbmount command (AND the mount command) but the ownership still shows as it did below in my example. Note: On my system mount doesn't recognize -t cifs and the man page on smbfs says the following. Mount options for smbfs Just like nfs, the smbfs implementation expects a binary argument (a struct smb_mount_data) to the mount system call. This argument is constructed by smbmount(8) and the current version of mount (2.12) does not know anything about smbfs. Best Regards, Rick J. Adam Williams wrote: root is owing the files because the user root mounted the share. if you want to support unix file ownership in your rsync you should use NFS if the unit supports that. to change the group ownership, pass the -o gid=some_group on your mount -t cifs command. you can also use uid= and to use both, -o uid=someone,gid=somegroup Rick Johnson wrote: I have a network accessible (192.168.2.97) Maxtor Shared Storage drive that I want to use to backup the Linux (Slackware) systems on my private LAN. I can smbmount the drive okay on my Linux systems, but when I try and use rsync to do a backup rsync fails with a message about failing to change owner. Digging a little deeper into the problem I find that the directories/files on the share all look something like the following drwxr-xr-x 1 35000 root 0 2008-02-12 15:21 ArchiveOnLinux drwxrwxrwx 1 35003 root 0 2008-04-22 01:01 Public -rwxrw-rw- 1 35000 root 1127239 2008-02-28 11:28 gw_rn_vp_grey.pdf which ISN'T the user (or group) I would have expected it to be mounted as. (I've done a chmod u+s /usr/bin/smbmnt to allow users to mount the share and I expected that the share would have the same owner as the user that mounted it.) I've also found that I can't change ALL permissions ALL the time on the share's directories and files. I can remove group and world privileges from a file (which are remembered after a umount and remount) but I cannot restore them (even as root). Only the owner privileges are consistently changeable. Basically, ALL I want to do is to be able to use the drive as a backup that will maintain the same permissions, user, group, etc., as the original files AND I want the files visible from both my Linux AND Windows systems (because I need to use Nero on a Windows machine to do the backups). Can someone help me figure out how to do this correctly? Thanks, Rick Johnson -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Maxtor NAS share problem
I have a network accessible (192.168.2.97) Maxtor Shared Storage drive that I want to use to backup the Linux (Slackware) systems on my private LAN. I can smbmount the drive okay on my Linux systems, but when I try and use rsync to do a backup rsync fails with a message about failing to change owner. Digging a little deeper into the problem I find that the directories/files on the share all look something like the following drwxr-xr-x 1 35000 root 0 2008-02-12 15:21 ArchiveOnLinux drwxrwxrwx 1 35003 root 0 2008-04-22 01:01 Public -rwxrw-rw- 1 35000 root 1127239 2008-02-28 11:28 gw_rn_vp_grey.pdf which ISN'T the user (or group) I would have expected it to be mounted as. (I've done a chmod u+s /usr/bin/smbmnt to allow users to mount the share and I expected that the share would have the same owner as the user that mounted it.) I've also found that I can't change ALL permissions ALL the time on the share's directories and files. I can remove group and world privileges from a file (which are remembered after a umount and remount) but I cannot restore them (even as root). Only the owner privileges are consistently changeable. Basically, ALL I want to do is to be able to use the drive as a backup that will maintain the same permissions, user, group, etc., as the original files AND I want the files visible from both my Linux AND Windows systems (because I need to use Nero on a Windows machine to do the backups). Can someone help me figure out how to do this correctly? Thanks, Rick Johnson -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] nmbd will not run
I had been using and running samba (ver 3.0.23b) with no problems. I installed a new hard drive on my ultra10 ( I know old). Now nmbd will not run. When I issue svcs it indicates maintenance required but I can't figure what is wrong. Any suggestions/ideas will be entertained. -- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] View Workgroup Computers is Slow to Come Up
What would cause the View Workgroup Computers to be slow in coming up. It will take from 10 seconds to 1 minute. A am using Windows XP hosts with an SCO OpenServer using Samba in a workgroup, and Samba is the preferred master (os 255) with WINS support. I have the Browser service turned off on all Windows clients. Thanks, Rick Cone Secure Payment Systems -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Hosts Disappearing
I have a problem with my long-running Samba workgroup where hosts will stop coming up in View Network Computers. Only the UNIX system with Samba running shows up. If I restart Samba on the UNIX system then the hosts start showing up again in a few minutes. Any thoughts out there? Thanks, Rick -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Winbind fails to refresh Kerberos tickets (3.0.25b - Fedora Core 5) - 2nd Try
This is the second attempt at sending this. Apologies for any duplicates. I've got Winbind up and running to authenticate our users against our AD and to save kerberos tickets. I have used the winbind refresh tickets = yes setting expecting this to renew these kerberos tickets before they expire. This does not appear to work. Gnome will pop up a dialog box saying that the credentials have expired. At winbind log level 10 I can't see anything that suggests the refresh is happening. I'm running a vanilla samba 3.0.25b on 64bit Fedora Core 5. This was locally built into an RPM using the Fedora spec file for 2.0.24 (after removing all patches and adding the extra files that 3.0.25b has) Is there some setting I'm missing or is it something more complex? I'd very much appreciate any help I can get in getting this working. Many Thanks, Rick King Config/Log Files: smb.conf: [global] domain master = no local master = no preferred master = no winbind cache time = 300 template shell = /bin/bash template homedir = /home/%U idmap domains = ALLDOMAINS idmap config ALLDOMAINS:backend = ad idmap config ALLDOMAINS:default = yes idmap config ALLDOMAINS:range= 500 - 3 idmap config ALLDOMAINS:schema_mode = rfc2307 idmap alloc backend = tdb idmap alloc config:range = 30001 - 35000 winbind nss info = rfc2307 template winbind enum users = yes winbind enum groups = yes workgroup = XXX realm = XXX security = ads password server = * winbind refresh tickets = yes use kerberos keytab = yes client lanman auth = no client ntlmv2 auth = yes /etc/pam.d/system-auth: #%PAM-1.0 # This file is auto-generated. # User changes will be destroyed the next time authconfig is run. authrequired pam_env.so authsufficientpam_unix.so nullok try_first_pass authsufficientpam_winbind.so use_first_pass krb5_auth krb5_ccache_type=FILE debug authrequisite pam_succeed_if.so uid = 500 quiet authrequired pam_deny.so account required pam_unix.so account sufficientpam_succeed_if.so uid 500 quiet account [default=bad success=ok user_unknown=ignore] pam_winbind.so account required pam_permit.so passwordrequisite pam_cracklib.so try_first_pass retry=3 passwordsufficientpam_unix.so md5 shadow nullok try_first_pass use_authtok passwordsufficientpam_winbind.so use_authtok passwordrequired pam_deny.so session required pam_limits.so session sufficientpam_winbind.so krb5_auth krb5_ccache_type=FILE debug session required pam_unix.so /var/log/secure: [The ticket expired during the night between these log events] ug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:auth): [pamh: 0x0061b220] ENTER: pam_sm_authenticate (flags: 0x) Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:auth): getting password (0x0191) Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:auth): pam_get_item returned a password Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:auth): Verify user 'rking' Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:auth): PAM config: krb5_ccache_type 'FILE' Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:auth): enabling krb5 login flag Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:auth): enabling request for a FILE krb5 ccache Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:auth): user 'rking' granted access Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:auth): request returned KRB5CCNAME: FILE:/tmp/krb5cc_10001 Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:auth): Returned user was 'rking' Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:auth): [pamh: 0x0061b220] LEAVE: pam_sm_authenticate returning 0 Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:account): user 'rking' OK Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:account): user 'rking' granted access Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:setcred): [pamh: 0x0061b220] ENTER: pam_sm_setcred (flags: 0x0008) Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:setcred): PAM_REINITIALIZE_CRED not implemented Aug 9 16:39:44 pc15 gnome-screensaver-dialog: pam_winbind(gnome-screensaver:setcred): [pamh: 0x0061b220] LEAVE: pam_sm_setcred returning 0 Aug 9 19:21:37 pc15 gnome-screensaver-dialog: pam_unix(gnome-screensaver:auth): authentication failure; logname= uid=10001 euid=10001 tty=:0.0
Re: [Samba] Joining Domain? - Connecting to a Windows Share from Linux
On Mon, 2006-12-18 at 01:05 -0500, Rick Bilonick wrote: I'm using FC4 and can see many Windows shares but cannot connect to any of them. Some of them ask for a username and password some don't and just say I can't connnect. The main share I need access to and have permission to connect to never asks for my username and password (on a Windows box I can access this share). I have used konqueror to see the shares. I don't get anywhere with smbclient -L. In order to connect to Windows shares, do I have to have my Linux box join the domain? I've used Samba a long time ago at a different institution but I haven't gotten very far at this institution. I've tried using lineighborhood, smb4k, etc. but it hasn't helped. smbd and nmbd are running. Why is it so difficult to deal with Windows shares? Rick I sent this several weeks ago but no one responded. There doesn't seem to be anyone interested in just accessing Windows shares on a Windows network from Linux. After asking the IT people here a lot of questions, I finally found out why I was not able to access the share I should have been able to access even though I could browse the Windows network and see a lot of servers. First, they have prevented browsing to the departmental share I should have access to. So even though I could see the server, I could not browse down to the shares (it would also say it could not connect and would never ask for a username and password). For some reason, IT had not set the permissions so that I could mount the share (I had to give them the computer's IP address), and finally, they had to set the permissions for both read and write. Once they did these things, then I only needed one more piece of information - the IP address or the DNS host name that corresponds to the smb share naem. On FC6, the mount command requires either the IP address or the DNS host name - it won't work with the smb name (I only found this accidentally while searching on the web). Also, FC6 does not have an smbmount command. To mount the share I used (all one line): mount -t cifs -o username=,password= //DNS-host-name/x /mnt/whatever Note that smbfs will not work - you have to use cifs. I added this information to /etc/fstab to make it more permanent. So in the end, you don't have to join the domain just to use shares. Rick B. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Joining the Domain - How and Why
Can someone explain what's required to join a linux computer to the windows domain and what the benefits would be? Rick B. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: [Evolution] Global Address List Joining Domain
You do not need to join the domain to access the GAL (at least, I've not needed to at either of the two companies in which I've used Evo Connector). I don't have a solution to your problem but note that it's not necessarily the case that the GAL is available through the same address as the OWA server. In fact, for larger environments they are likely NOT the same server. Unless you're sure you have the GAL server correct you should check with your IT department to verify the server name. I'm not using the OWA server - I've gotten the server name from IT (although I've been given three different names - all of which I can ping). What sort of authentication does the GAL do? Does it need more than my e-mail username and password? Is there any other way to access the GAL (other than through a web page which I can do)? What other things could be going wrong? I can get my mail and mount Windows network shares, etc. Rick B. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Global Address List Joining Domain
I'm running FC6 and Evolution 2.8.2. I can read my e-mail from the Exchange server but I can't access the global address list (GAL). I have the server name but it always reports an error saying either the server name is wrong or its not available (I can ping the server). Does the linux computer have to join the domain in order to get access? I'm behind the firewall and directly connected to the network. How does one authenticate to get access to the GAL? Rick B. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Joining Domain?
I'm using FC4 and can see many Windows shares but cannot connect to any of them. Some of them ask for a username and password some don't and just say I can't connnect. The main share I need access to and have permission to connect to never asks for my username and password (on a Windows box I can access this share). I have used konqueror to see the shares. I don't get anywhere with smbclient -L. In order to connect to Windows shares, do I have to have my Linux box join the domain? I've used Samba a long time ago at a different institution but I haven't gotten very far at this institution. I've tried using lineighborhood, smb4k, etc. but it hasn't helped. smbd and nmbd are running. Why is it so difficult to deal with Windows shares? Rick -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] get errors when doing a tar backup of a windows server with linux smbclient
I resolved the problem by updating to 3.0.23d. To do this using gentoo, I just made a portage overlay and copied the 3.0.23a ebuild to 3.0.23d and ran a digest on it. After emerging it, my errors are gone. On Monday 11 December 2006 11:39, Rick Warner wrote: Anyone? On Thursday 07 December 2006 17:09, Rick Warner wrote: Hello all, We have a script that does a nightly backup of a windows server to a linux fileserver. The linux system uses smbclient to make a tarball of the share. I get this error when running smbclient: Domain=[OURSERVER] OS=[Windows 5.0] Server=[Windows 2000 LAN Manager] tar: dumped 56781 files and directories Total bytes written: 9800680960 write_data: write failure. Error = Connection reset by peer write_socket: Error writing 39 bytes to socket 7: ERRNO = Connection reset by peer Error writing 39 bytes to client. -1 (Connection reset by peer) As far as I can tell, the tarball it creates is OK. Doing a file list on the backup with tar lists all the files (at least as far as I can tell) and no errors. Here is the script we use to do the backup: #!/bin/bash # Username and Password for Windows share. export USER=ourusername export PASSWD=ourpassword # Service name of Windows share and sub-directory for backup exclusion. SERVICE='//ourserver/apps' SUBDIR='System Volume Information' # Backup location, basename, and date string. BACK='/home/server-backups/ourserver'; BASE='ourserver'; DATE=`date +%Y-wk%U_%b-%d_%a`; # Misc. variables MSG1=Tarring up $SERVICE Directory: $SUBDIR to: $BACK; if [ -f $BACK/$BASE$DATE.tar.bz2 ]; then echo File exists, command halted: $BACK/$BASE$DATE.tar.bz2 else smbclient $SERVICE -N -TqcX $BACK/$BASE$DATE.tar $SUBDIR example/1.lck example/2.lck example/3.lck example/4.lck example/5.lck example/6.lck example/7.lck example/8.lck bzip2 $BACK/$BASE$DATE.tar fi We are using samba 3.0.22-r3 from a gentoo install. Tar is 1.15.1-r1. How can I eliminate this error message? -- Richard Warner Lead Systems Integrator Microway, Inc (508)732-5517 -- Richard Warner Lead Systems Integrator Microway, Inc (508)732-5517 -- Richard Warner Lead Systems Integrator Microway, Inc (508)732-5517 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] get errors when doing a tar backup of a windows server with linux smbclient
Anyone? On Thursday 07 December 2006 17:09, Rick Warner wrote: Hello all, We have a script that does a nightly backup of a windows server to a linux fileserver. The linux system uses smbclient to make a tarball of the share. I get this error when running smbclient: Domain=[OURSERVER] OS=[Windows 5.0] Server=[Windows 2000 LAN Manager] tar: dumped 56781 files and directories Total bytes written: 9800680960 write_data: write failure. Error = Connection reset by peer write_socket: Error writing 39 bytes to socket 7: ERRNO = Connection reset by peer Error writing 39 bytes to client. -1 (Connection reset by peer) As far as I can tell, the tarball it creates is OK. Doing a file list on the backup with tar lists all the files (at least as far as I can tell) and no errors. Here is the script we use to do the backup: #!/bin/bash # Username and Password for Windows share. export USER=ourusername export PASSWD=ourpassword # Service name of Windows share and sub-directory for backup exclusion. SERVICE='//ourserver/apps' SUBDIR='System Volume Information' # Backup location, basename, and date string. BACK='/home/server-backups/ourserver'; BASE='ourserver'; DATE=`date +%Y-wk%U_%b-%d_%a`; # Misc. variables MSG1=Tarring up $SERVICE Directory: $SUBDIR to: $BACK; if [ -f $BACK/$BASE$DATE.tar.bz2 ]; then echo File exists, command halted: $BACK/$BASE$DATE.tar.bz2 else smbclient $SERVICE -N -TqcX $BACK/$BASE$DATE.tar $SUBDIR example/1.lck example/2.lck example/3.lck example/4.lck example/5.lck example/6.lck example/7.lck example/8.lck bzip2 $BACK/$BASE$DATE.tar fi We are using samba 3.0.22-r3 from a gentoo install. Tar is 1.15.1-r1. How can I eliminate this error message? -- Richard Warner Lead Systems Integrator Microway, Inc (508)732-5517 -- Richard Warner Lead Systems Integrator Microway, Inc (508)732-5517 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] get errors when doing a tar backup of a windows server with linux smbclient
Hello all, We have a script that does a nightly backup of a windows server to a linux fileserver. The linux system uses smbclient to make a tarball of the share. I get this error when running smbclient: Domain=[OURSERVER] OS=[Windows 5.0] Server=[Windows 2000 LAN Manager] tar: dumped 56781 files and directories Total bytes written: 9800680960 write_data: write failure. Error = Connection reset by peer write_socket: Error writing 39 bytes to socket 7: ERRNO = Connection reset by peer Error writing 39 bytes to client. -1 (Connection reset by peer) As far as I can tell, the tarball it creates is OK. Doing a file list on the backup with tar lists all the files (at least as far as I can tell) and no errors. Here is the script we use to do the backup: #!/bin/bash # Username and Password for Windows share. export USER=ourusername export PASSWD=ourpassword # Service name of Windows share and sub-directory for backup exclusion. SERVICE='//ourserver/apps' SUBDIR='System Volume Information' # Backup location, basename, and date string. BACK='/home/server-backups/ourserver'; BASE='ourserver'; DATE=`date +%Y-wk%U_%b-%d_%a`; # Misc. variables MSG1=Tarring up $SERVICE Directory: $SUBDIR to: $BACK; if [ -f $BACK/$BASE$DATE.tar.bz2 ]; then echo File exists, command halted: $BACK/$BASE$DATE.tar.bz2 else smbclient $SERVICE -N -TqcX $BACK/$BASE$DATE.tar $SUBDIR example/1.lck example/2.lck example/3.lck example/4.lck example/5.lck example/6.lck example/7.lck example/8.lck bzip2 $BACK/$BASE$DATE.tar fi We are using samba 3.0.22-r3 from a gentoo install. Tar is 1.15.1-r1. How can I eliminate this error message? -- Richard Warner Lead Systems Integrator Microway, Inc (508)732-5517 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Nmblookup
Hello, I am looking for some security advice regarding 'nmblookup'. I am a Mac user (G4, not Intel) running OS 10.3.9, Firefox browser. When I look up processor use, nmblookup is always running, using between 1.5% and 6% of the processing power. My question is whether this indicates some sort of spyware is operating on my system, or simply a normal background daemon working normal processes? Thanks in advance. Rick Glanvill -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Unknown domain
I am running RHEL 2.1 and samba 2.2.12. When I try to map a network drive on my XP workstation, I browse for folder. I see my domain. I expand my domain and when i see my server, I click it but there are no shares beneath. If I map the drive by entering the servername and share as \\servername\share and click Browse, it should take me to the domain entry but instead it shows the domain as Unknown. Me thinks this is an AD or netbios issue. smb.conf [global] # workgroup = NT-Domain-Name or Workgroup-Name workgroup = techsupport # server string is the equivalent of the NT Description field server string = Samba Server on %h hosts allow = 192. ... security - server password server = pdc01 I can map drives using \\ipaddress\share and ipaddress\username + password. What is missing that it won't show up as part of a domain? Thanks in advance. Rick -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Domain Login
I've just encountered a very similar problem. Using Samaba 2.2.8 as a PDC, everything has been fine for ages, a few clients, all Windows XP. But I just had to do a repair-install of Windows on one machine (it got corrupted for unknown reasons). After doing this, it won't logon to the domain, I get exactly the same error as below. However, the trust a/c does exist. I've removed the account from the server, and re-added it in different ways. When I use the join-domain screen on the PC it says Welcome to the domain, and the trust a/c has been written in /etc/passwd and smbpasswd. But it refuses to accept any logins. I'm lost! The only difference I can see about the PC re-install is that I used the Windows XP CD with SP2 built-in. Previously, and I think with all the other machines, they were installed with XP original, then SP2 applied after. Is there something new in XP SP2 that Samba 2.2 doesn't understand? Rick Jones Phares wrote: --- Im having a problem with my machines Im running Samba 2.2.12... I have created the machine accounts and also added the machines to the domain without problems... however, when I try logging into the machines, I get an error saying that the server is either down, or the trust account is missing... the login works fine for windows 2000 machines... the ones that are giving the error are the windows XP machines ... any ideas? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Domain Login
I'm actually running SME Server (e-smith) v6, which integrates all the services with a central management system. Just dropping samba 3 in is not entirely trivial. I could probably work it out, but at some point I'll upgrade SME to v7 anyway which has later versions of everything, so I don't want to spend time frigging with the current system. This machine has been running flawlessly for over 3 years, and it's just strange that suddenly it doesn't want to talk to one particular XP client. For now I've set up a matching local login on the PC and copied the profile over, and this is working well enough. I might try doing another XP repair to the PC if it becomes a real problem. It would just be nice to know why :) -- Thanks Rick --On 23 August 2006 14:10 +0200 Henrik Zagerholm [EMAIL PROTECTED] wrote: ¦ Do you have any reason to stick with samba 2.x? ¦ It is very old so it is really really recommendable to upgrade to 3.0.23 ¦ ¦ Cheers, ¦ Henrik ¦ ¦ 23 aug 2006 kl. 12:13 skrev Rick Jones: ¦ ¦ I've just encountered a very similar problem. ¦ ¦ Using Samaba 2.2.8 as a PDC, everything has been fine for ages, a ¦ few clients, all Windows XP. But I just had to do a repair-install ¦ of Windows on one machine (it got corrupted for unknown reasons). ¦ After doing this, it won't logon to the domain, I get exactly the ¦ same error as below. ¦ ¦ However, the trust a/c does exist. I've removed the account from ¦ the server, and re-added it in different ways. When I use the join- ¦ domain screen on the PC it says Welcome to the domain, and the ¦ trust a/c has been written in /etc/passwd and smbpasswd. But it ¦ refuses to accept any logins. I'm lost! ¦ ¦ The only difference I can see about the PC re-install is that I ¦ used the Windows XP CD with SP2 built-in. Previously, and I think ¦ with all the other machines, they were installed with XP original, ¦ then SP2 applied after. ¦ ¦ Is there something new in XP SP2 that Samba 2.2 doesn't understand? ¦ ¦ Rick Jones ¦ ¦ Phares wrote: ¦ --- ¦ Im having a problem with my machines Im running Samba 2.2.12... ¦ I have ¦ created the machine accounts and also added the machines to the ¦ domain without ¦ problems... however, when I try logging into the machines, I get an ¦ error ¦ saying that the server is either down, or the trust account is ¦ missing... the ¦ login works fine for windows 2000 machines... the ones that are ¦ giving the ¦ error are the windows XP machines ... any ideas? ¦ ¦ -- ¦ To unsubscribe from this list go to the following URL and read the ¦ instructions: https://lists.samba.org/mailman/listinfo/samba ¦ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Time outs and data corruption on WAN using VPN
Hi We are using Samba on Debian Sarge (version 3.0.14a-Debian) and have it configured for simple file share access. All services work without issues on the Local network. However we have a number of remote workers who connect in via VPN (Via IPCOP and Linsys IPSEC), these workers are all using Windows XP The problem looks as though it may be related to oplocks or network timeouts / resets. Here are the symptoms Files are written but contain either corrupt data or no data at all. Somtimes the file is written and then deleted again (I suspect often no data has been transferred ) Windows client post errors such as The netowrk path is too deep The network name no longer exists We are consistently getting log messages like these Exhibit A. /var/log/sambs/log.d9rm152j d9rm152j (192.168.2.5) connect to service work initially as user keith (uid=10 04, gid=100) (pid 13006) [2006/07/17 09:01:46, 0] lib/util_sock.c:read_socket_data(384) read_socket_data: recv failure for 4. Error = Connection reset by peer [2006/07/17 09:01:46, 1] smbd/service.c:close_cnum(830) Exhibit B. /var/log/sambs/log.d9rm152j d9rm152j (192.168.2.5) connect to service work initially as user keith (uid=1004, gid=100) (pid 12116) [2006/07/17 08:43:06, 0] lib/util_sock.c:read_socket_with_timeout(321) read_socket_with_timeout: timeout read. read error = Connection reset by peer. [2006/07/17 08:43:06, 0] smbd/oplock.c:oplock_break(841) oplock_break: receive_smb error (Connection reset by peer) oplock_break failed for file Admin/test/DSC01506.JPG (dev = 1641, inode = 7356435, file_id = 135). [2006/07/17 08:43:06, 0] smbd/oplock.c:oplock_break(931) oplock_break: client failure in break - shutting down this smbd. [2006/07/17 08:43:06, 1] smbd/service.c:close_cnum(830) Exhibits End --- smb.conf is as follows [global] log file = /var/log/samba/log.%m passwd chat = *Enter\snew\sUNIX\spassword:* %n\n *Retype\snew\sUNIX\spassword:* %n\n . socket options = TCP_NODELAY obey pam restrictions = yes encrypt passwords = true passdb backend = tdbsam guest passwd program = /usr/bin/passwd %u dns proxy = no netbios name = Emperor netbios aliases = emperor server string = %h server (Samba %v) invalid users = root path = /work default = global workgroup = MSHOME os level = 20 comment = Shared working directory create mode = 775 syslog = 0 panic action = /usr/share/samba/panic-action %d max log size = 1000 directory mode = 775 use sendfile = no [homes] create mask = 0700 comment = Home Directories browseable = no directory mask = 0700 writeable = yes path = [printers] comment = All Printers browseable = no path = /tmp printable = yes public = no writable = no create mode = 0700 [print$] comment = Printer Drivers path = /var/lib/samba/printers browseable = yes read only = yes guest ok = no [work] writeable = yes Any help or documentation pointers would be really appreciated -- Thanks and Regards Rick Timmis Adaptive Linux Solutions Please ignore the stupid email address, this is in effort to avoid being avalanched by spam on my main accounts. If you want to get hold of me directly please put URGENT CONTACT in your subject line -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba trusted domain (AD) not recognized?
I have Samba running on FreeBSD which is a member of the HHP domain. The HHP domain trusts the UFAD domain. However, users in the UFAD are now unable to connect to shares on the FreeBSD box (HERMES). HHP users continue to work just fine. This behavior may have started when I upgraded from 3.0.14a to 3.0.22, but I am not 100% sure - the users in the UFAD domain are not very active. Any suggestions on how to resolve or better diagnose the problem are welcome... 'wbinfo --sequence' returns: UFAD : DISCONNECTED HERMES : 1 BUILTIN : 1 HHP : 43859 'wbinfo -m' returns: UFAD From smb.conf: [global] workgroup = HHP netbios name = HERMES server string = Hermes security = DOMAIN encrypt passwords = Yes password server = HHPPDC restrict anonymous = No log level = 0 log file = /var/log/samba/log.%m max log size = 50 os level = 0 preferred master = No local master = No domain master = No winbind use default domain = yes --- -Rick Ford -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Limit on number of Windows shares that can be mounted?
Did you ever get this resolved, I am experiencing a similar problem. My Linux machine (Gentoo) is reporting this message when mounting the fourth smbfs system. Does not matter which order I mount in, whatever is the fourth mount refuses to work. [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Deleting a file
Hi. Can anyone look at this log.smbd except and tell me why I can't delete a file on a Windows client. The file I'm deleting is /u/fil/2020.gif. All the file/directory attributes should and do allow a delete in either smbclient or by the UNIX user. Here is the except: [2005/11/30 10:14:32, 10] smbd/nttrans.c:(427) map_share_mode: DELETE_ACCESS requested. open_mode = 0x8000 [2005/11/30 10:14:32, 10] smbd/nttrans.c:(480) map_share_mode: Mapped desired access 0x1, share access 0x7, file attributes 0x0 to open_mode 0x8040 [2005/11/30 10:14:32, 5] smbd/filename.c:(108) unix_convert called on file u/fil/2010.gif [2005/11/30 10:14:32, 10] smbd/statcache.c:(243) stat_cache_lookup: lookup succeeded for name [U/FIL/2010.GIF] - [u/fil/2010.gif] [2005/11/30 10:14:32, 10] smbd/reply.c:(1499) can_delete: u/fil/2010.gif, dirtype = 0 [2005/11/30 10:14:32, 8] smbd/dosmode.c:(283) dos_mode: u/fil/2010.gif [2005/11/30 10:14:32, 8] smbd/dosmode.c:(151) dos_mode_from_sbuf returning [2005/11/30 10:14:32, 8] smbd/dosmode.c:(315) dos_mode returning [2005/11/30 10:14:32, 3] smbd/error.c:(105) error string = Package not installed [2005/11/30 10:14:32, 3] smbd/error.c:(129) error packet at smbd/nttrans.c(800) cmd=162 (SMBntcreateX) NT_STATUS_ACCESS_DENIED [2005/11/30 10:14:32, 5] lib/util.c:(464) Thanks, Rick -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Deleting a file in Windows
I can't delete a file in Windows even though Samba is logged in as a UNIX user with that file's directory group, and all the permissions are okay for this directory. Strangely, if I change the group to group on the file's directory I can then delete the file? Thanks, Rick -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba guest account
Hi all, Does the Samba guest account have some special restrictions placed upon it beyond the permissions and authority of the user itself (perhaps some compile-time options...)? Thanks! Rick -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Guest account problem ... please help
I have an internal Samba installation where I have security=share, and have everything going to a guest account, in which I've made as user called samba. When connected to a samba share on my UNIX system, I can can copy and move files using my XP client, but I can't delete files? I was expecting Samba to follow the permissions of the user, which should be able to delete these files because they are in a related group. I've enclosed my smb.conf. The internal (guest) user I 'm using is called samba, and it's default group is dl4ub. The files and the directory their in have dl4ub as their group. Please help. smb.conf: [global] netbios name = spserv1 server string = Samba os level = 255 local master = yes preferred master = yes security = share username map = /etc/samba/users.map wins support = yes workgroup = SPS1 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 SO_KEEPALIVE log level = 1 guest account = samba max xmit = 65535 read size = 65536 interfaces = net0 bind interfaces only = yes [NETLOGON] comment = Network Logon Service path = /etc/samba/netlogon guest ok = yes guest only = yes hosts allow = 192.1.1. [unix] comment = unix force user = check force group = dl4ub create mode = force create mode = 0660 directory mode = force directory mode = 0770 path = / read only = no guest ok = yes guest only = yes hosts allow = 192.1.1. mangled names = no [RDM-Ingenico] comment = RDM-Ingenico force user = check force group = dl4ub create mode = force create mode = 0660 directory mode = force directory mode = 0770 path = /u/ftprdm read only = no guest ok = yes guest only = yes hosts allow = 192.1.1. mangled names = yes [g] comment = g force user = check force group = dl4ub create mode = force create mode = 0660 directory mode = force directory mode = 0770 path = /u/g read only = no guest ok = yes guest only = yes hosts allow = 192.1.1. mangled names = no [web] comment = web force user = web force group = dl4ub create mode = force create mode = 0664 directory mode = force directory mode = 0775 path = /u/apache/htdocs read only = no guest ok = yes guest only = yes hosts allow = 192.1.1. mangled names = no Thanks, Rick -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Guest account and deleting filed
I have an internal Samba installation where I have security=share, and have everything going to a guest account, which I've made a regular user and password. I can can copy and move files, but I can't delete any files. I was expecting Samba to follow the permissions of the user, which should be able to delete these files. I've enclosed my smb.conf. The internal (guest) user is called samba, and it's default group is dl4ub smb.conf: [global] netbios name = spserv1 server string = Samba os level = 255 local master = yes preferred master = yes security = share username map = /etc/samba/users.map wins support = yes workgroup = SPS1 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 SO_KEEPALIVE log level = 1 guest account = samba max xmit = 65535 read size = 65536 interfaces = net0 bind interfaces only = yes [NETLOGON] comment = Network Logon Service path = /etc/samba/netlogon guest ok = yes guest only = yes hosts allow = 192.1.1. [unix] comment = unix force user = check force group = dl4ub create mode = force create mode = 0660 directory mode = force directory mode = 0770 path = / read only = no guest ok = yes guest only = yes hosts allow = 192.1.1. mangled names = no [RDM-Ingenico] comment = RDM-Ingenico force user = check force group = dl4ub create mode = force create mode = 0660 directory mode = force directory mode = 0770 path = /u/ftprdm read only = no guest ok = yes guest only = yes hosts allow = 192.1.1. mangled names = yes [g] comment = g force user = check force group = dl4ub create mode = force create mode = 0660 directory mode = force directory mode = 0770 path = /u/g read only = no guest ok = yes guest only = yes hosts allow = 192.1.1. mangled names = no [web] comment = web force user = web force group = dl4ub create mode = force create mode = 0664 directory mode = force directory mode = 0775 path = /u/apache/htdocs read only = no guest ok = yes guest only = yes hosts allow = 192.1.1. mangled names = no Thanks, Rick -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] get quota command
I found the answer to my own question in a round about sort of way..
My NFS server is Solaris w/UFS - thus no group quota support. It
seems when samba queries for user quotas and group quotas, it gets
unhappy when no group quota is returned, so the quotas are thrown
out and the windows boxes see the entire volume's free, used and
capacity. To fix this I set the two options in my conf file:
vfs objects = default_quota:quotasettings
quotasettings: gid = 65534
Rick Brown wrote:
I've discovered that if I make a share from a local filesystem,
the PC's mounting the share see their quota (hard limit, not
soft which is another matter) as their capacity and their
appropriate free space... this is good.
I found in the source that the hard limit is used instead of the
soft limit if the user is over quota.
When I share ouf the NFS mounted volume, the PC's see the entire
volume size and free space. Not so good. Okay fine, so I
wrote a little cheesy script to run run quota and report back and
defined it as get quota command = myscript in smb.conf.
This works great... mostly.I wasn't seeing the values I
expected to see, so I started dumping the arguments samba was
passing to my scipt. I expected 3 fields: Path, type of query, and
user/group ID.something like:
. 1 32849 (user quota)
. 3 1178(group quota)
instead, I'm seeing samba pass:
. 2 32849 (default user quota)
. 4 1178(default group quota)
Why is samba asking for the default user and group quotas instead of
the actual user and group quotas? From the documentation I would
have expected that if field 2 was a 2 or 4, then the uid/gid would be
-1. How can I make samba request the actual user and group's quota
instead of the defaults?
And since I didn't easily find any examples of a get quota command
I'll share my super-cheesy script which totally ignores the values
passed to it by samba. It's not pretty, but it works.
#!/bin/ksh
PATH=/usr/bin:/usr/sbin:/bin
IAM=`id -un`
# find the user's home file system.
DIR=`ypmatch $IAM passwd | awk -F: '{print $6}' | cut -f 2 -d /`
#check and see if they're over quota, as it will affect output
OVER=`quota -F rpc -v $IAM | grep $DIR | wc -w`
#OVER=`quota -f rpc -v $IAM | grep $DIR | egrep -i expired|days
#if [ $? -ne 0]; then
# over quota
if [ $OVER -gt 7 ]; then
RET=`quota -v $IAM | grep ${DIR} | awk -F '{print 2 $2
$3 $4 $7 $8 $9}'`
else
# not over quota
RET=`quota -v $IAM | grep ${DIR} | awk -F '{print 2 $2
$3 $4 $5 $6 $7}'`
fi
# linux quota puts a * after the used blocks if the user is over quota
STRIPPED=`echo $RET | sed 's/*/ /g'`
echo $STRIPPED
--
[ Rick Brown ][ (404) 894-6175 ]
[ Office of Information Technology ][[EMAIL PROTECTED] ]
[ Georgia Institute of Technology ][ 258 4th street. Atlanta, GA ]
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] get quota command
I'm running samba 3.0.13 on a debian box, sharing out NFS filesystems from a solaris box. I know, bad idea.. file locking, etc... non-issues at the moment. I've discovered that if I make a share from a local filesystem, the PC's mounting the share see their quota (hard limit, not soft which is another matter) as their capacity and their appropriate free space... this is good. When I share ouf the NFS mounted volume, the PC's see the entire volume size and free space. Not so good. Okay fine, so I wrote a little cheesy script to run run quota and report back and defined it as get quota command = myscript in smb.conf. This works great... mostly.I wasn't seeing the values I expected to see, so I started dumping the arguments samba was passing to my scipt. I expected 3 fields: Path, type of query, and user/group ID.something like: . 1 32849 (user quota) . 3 1178 (group quota) instead, I'm seeing samba pass: . 2 32849 (default user quota) . 4 1178 (default group quota) Why is samba asking for the default user and group quotas instead of the actual user and group quotas? From the documentation I would have expected that if field 2 was a 2 or 4, then the uid/gid would be -1. How can I make samba request the actual user and group's quota instead of the defaults? -- [ Rick Brown ][ (404) 894-6175 ] [ Office of Information Technology ][[EMAIL PROTECTED] ] [ Georgia Institute of Technology ][ 258 4th street. Atlanta, GA ] - End forwarded message - -- [ Rick Brown ][ (404) 894-6175 ] [ Office of Information Technology ][[EMAIL PROTECTED] ] [ Georgia Institute of Technology ][ 258 4th street. Atlanta, GA ] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] get quota command
I'm running samba 3.0.13 on a debian box, sharing out NFS filesystems from a solaris box. I know, bad idea.. file locking, etc... non-issues at the moment. I've discovered that if I make a share from a local filesystem, the PC's mounting the share see their quota (hard limit, not soft which is another matter) as their capacity and their appropriate free space... this is good. When I share ouf the NFS mounted volume, the PC's see the entire volume size and free space. Not so good. Okay fine, so I wrote a little cheesy script to run run quota and report back and defined it as get quota command = myscript in smb.conf. This works great... mostly.I wasn't seeing the values I expected to see, so I started dumping the arguments samba was passing to my scipt. I expected 3 fields: Path, type of query, and user/group ID.something like: . 1 32849 (user quota) . 3 1178 (group quota) instead, I'm seeing samba pass: . 2 32849 (default user quota) . 4 1178 (default group quota) Why is samba asking for the default user and group quotas instead of the actual user and group quotas? From the documentation I would have expected that if field 2 was a 2 or 4, then the uid/gid would be -1. How can I make samba request the actual user and group's quota instead of the defaults? -- [ Rick Brown ][ (404) 894-6175 ] [ Office of Information Technology ][[EMAIL PROTECTED] ] [ Georgia Institute of Technology ][ 258 4th street. Atlanta, GA ] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Avoiding the desktop.ini notepad popup on startup, and other hidden files.
Andrew, Upon searching the internet on how to remove the desktop.ini - Notepad window upon start up, I came across your reply to Samuel Partida about using: hidefiles = /desktop.ini/ntuser.ini/NTUSER.*/ However, I am a neophyte home user, using Windows XP Professional. I have no idea why this notepad screen started popping up upon start up. It just started. It is irritating as all get out. I don't think I am using NT on my home system, as your insert would imply. Can I use this line to solve my problem at home? And, the big question is, Where do I insert this line? Many, many thanks in advance if you can help me! Rick Baker Herndon -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] net ads commands and princs in krb5.keytab
I don't think this is possible, but it should be! I want to use net ads commands for administrators on the command line without including the domain admin accounts password. Currently, I'm doing so via command lines such as: net ads password [EMAIL PROTECTED] \ -U [EMAIL PROTECTED] users_new_password /net ads search sAMAccountName=username \ -U [EMAIL PROTECTED] I can't stand having to include admin passwords on the command line, and worse yet in the php scripts that call 'em. What I'd prefer is to be able to use a krb5 princ in /etc/krb5.keytab such as one would with kinit or kadmin with -p and -k arguments. Is this currently possible (but undocumented), or planned for future development? [ Rick Brown ][ (404) 894-6175 ] [ Office of Information Technology ][[EMAIL PROTECTED] ] [ Georgia Institute of Technology ][ 258 4th street. Atlanta, GA ] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3.0.8 Available for Download
On Mon, 8 Nov 2004, Gerald (Jerry) Carter wrote: Common bugs fixed in 3.0.8 include: ~ o Fixes for kerberos interoperability with Windows 200x ~domains when using DES keys. Yay! Compiled, installed, rejoined ADS and we once again work. Good job Jerry n' crew! Note to others: a rejoin of ADS realm was required.. [ Rick Brown ][ (404) 894-6175 ] [ Office of Information Technology ][[EMAIL PROTECTED] ] [ Georgia Institute of Technology ][ 258 4th street. Atlanta, GA ] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] change password AS_ROOT=FALSE
Using Samba 3.07 i wanna the passwd program to be run as the user. Is this possible ? Here's my smb.conf the general section of my smb.conf. log level = 100 passwd program = passwd %u passwd chat = *old*password*%o\n *new*password*%n\n *new*password*%n\n * passwd chat debug = true unix password sync = yes Doing it this way forces samba to change it as root, and this is giving me another problem. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] MAX PRINT JOBS bugg
My smb.conf file contains in the general section. max print jobs = 50 And i disabled the print queue using this command : disable PrintQueueName Therefore i would expect SAMBA to reject print jobs after the 50th. But in real life it does not, it continues to spool indefinitely. If i run a batch file from a client workstation to print continuously. It means the request to print is made much faster than manually. It will stop when 7 jobs are spooled in the print queue ??!?!?!? Running smbd -i -F -S - - debuglevel=3 returns the following error message on the linux console when 7 jobs are spooled in the print queue: print_job_start: Queue p13113 number of jobs (51) larger than max printjobs per queue (50) error string = no space left on device error packet at smbd/reply.c(3041) cmd=192 (SMBsplopen) NT_STATUS_DISK_FULL but there's only 7 jobs in the queue. Release 3.0.7 does not fix this It seems to be an issue in the way Samba calculate the number of jobs that are in the print queue ? The reason why i am testing this is because one of my customer prints A LOT ( over 2 thousands jobs per day ) and his users gets exactly this problem when lots of people are trying to print at the same time. Default value of max print jobs is 1000 setting this to 0 ( to permit number less of print jobs ) does not fix the issue. HELP ! -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] MAX PRINT JOBS bugg
I was able to bypass the max print jobs = 50 parameter by putting the lines 2057 to 2061 in comments of the source/printing.c file. In this manner there's no comparison made on the number of job in the print queue and this parameter. However by now the server stops queueing jobs after the 500th. It does accept them without an error but does not print them. rick talbot [EMAIL PROTECTED] Envoyé par : [EMAIL PROTECTED] 2004-09-16 07:56 A cc Objet [Samba] MAX PRINT JOBS bugg My smb.conf file contains in the general section. max print jobs = 50 And i disabled the print queue using this command : disable PrintQueueName Therefore i would expect SAMBA to reject print jobs after the 50th. But in real life it does not, it continues to spool indefinitely. If i run a batch file from a client workstation to print continuously. It means the request to print is made much faster than manually. It will stop when 7 jobs are spooled in the print queue ??!?!?!? Running smbd -i -F -S - - debuglevel=3 returns the following error message on the linux console when 7 jobs are spooled in the print queue: print_job_start: Queue p13113 number of jobs (51) larger than max printjobs per queue (50) error string = no space left on device error packet at smbd/reply.c(3041) cmd=192 (SMBsplopen) NT_STATUS_DISK_FULL but there's only 7 jobs in the queue. Release 3.0.7 does not fix this It seems to be an issue in the way Samba calculate the number of jobs that are in the print queue ? The reason why i am testing this is because one of my customer prints A LOT ( over 2 thousands jobs per day ) and his users gets exactly this problem when lots of people are trying to print at the same time. Default value of max print jobs is 1000 setting this to 0 ( to permit number less of print jobs ) does not fix the issue. HELP ! -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3.0.6 Problems w/AD and Kerberos
On Fri, 10 Sep 2004, Gerald (Jerry) Carter wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Christian Merrill wrote: | Tom we have had multiple reports of this and I imagine | your ticket is probably one of many in my queue right | now. We are working on it internally as well but so far | have not made any real progress narrowing down the | problem. It *appears* that this is actually unrelated to our | kerberos update. As I mentioned previously this looks | like the problems we have been seeing in win2k3 environments | -- almost as if something helped spread this issue to win2k | as well. Tom, I'm not completely willing to cross this out as a redhat specific issue. I've sen at least one specific report with debian (krb 1.3.4 and samba 3.0.6 both compiled locally). However, krb5 is tricky to debug remotely like this :-\ Can anyone shed any more light on any more platforms? Other than debian and redhat? I can testify for solaris 9 on sparc with krb 1.2.5(patched) with samba 3.0.2, 3.0.4, and 3.0.6. [ Rick Brown ][ (404) 894-6175 ] [ Office of Information Technology ][[EMAIL PROTECTED] ] [ Georgia Institute of Technology ][ 258 4th street. Atlanta, GA ] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3.0.6 Problems w/AD and Kerberos
On Sun, 5 Sep 2004, Christian Merrill wrote: Gerald (Jerry) Carter wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Christian Merrill wrote: | Running into a lot of people upgrading to the 3.0.6 | package that all of a sudden begin to experience | the Failed to verify incoming ticket! errors | etc., that are generally associated with a kerberos | package incompatibility. | | However many of these people are running later | versions of kerberos *and* reverting to a previous | version of Samba appears to fix the issue. Is there | something new setting wise that has taken place, is | something really wrong with this new package, or | is this all just a strange coincidence? I've not been able to reproduce this or track it down. Is there a consensus whether this is an specific issue with using MIT or Heimdal ? Or with Windows 2000 or 2003 DCs ? Any details would be helpful. I've created bug report at https://bugzilla.samba.org/show_bug.cgi?id=1739 Well from my end (Redhat) the behavior is indicative of a known issue with the MIT kerberos 1.2.x packages that we currently support and Win2k3 DC's...however Win2k DC's have been operating fine as far as I know. What I am seeing are customers who were previously running upgrade to the 3.0.6 samba package and then start to encounter these errors. If they downgrade the samba package the problem goes away. I've also noticed a few other posts from users on other distros such as Debian encountering very similar behavior. On the surface it really looks like a kerberos problem, but people are reporting that it seems to be directly linked to the samba package. My current test environment is on 2k3 so I'm still in the process of setting up a 2k AD environment to do testing on...at this point just relaying feedback that I am getting from others. I've seen this problem on a new machine/samba install.. Our DC recently changed from 2k to 2k3, and I believe that might be part of the cause of the problem. I have 2 samba machines (running 3.0.2) that I joined into the realm when our DC was 2k, they still work great. Last week I brought a new machine online (running 3.0.4) joined the realm with no problems, but then proceeded to get the following error: ads_verify_ticket: enc type [3] failed to decrypt with error Decrypt integrity check failed when authenticating.. I've since downgraded to 3.0.2 with no success, and tried upgrading to 3.0.6 with no success. Oh yea, these are solaris 9 boxes with kerberos 1.2.5 (fully patched). Unfortunately I can't upgrade kerberos to 1.3.4 without a bunch of red tape... so that's not an option. IMO, MIT krb is not the problem, as the two existing machines still work fine. I think it might have something to do with the way AD in 2k3 is storing the cifs and host keys. [ Rick Brown ][ (404) 894-6175 ] [ Office of Information Technology ][[EMAIL PROTECTED] ] [ Georgia Institute of Technology ][ 258 4th street. Atlanta, GA ] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] samba ldap
hello you, I am using samba 2.2.9 as a pdc on suse with openldap2-2.1.22 I was able to get the password to change by chaning the passwd program to passwd program =3D /var/lib/samba/sbin/smbldap-passwd.pl But now when the users change their passwords it gives them an error that= =20 the old password is incorrect but still changes it. Any thoughts will help greetz kai -- Zughafen| Musik Events Zum G=FCterbahnhof 20 | 99085 Erfurt Fon 0361.43040.10 | Fax 0361.43040.11 -- Next Dates: -- 12.08 Lovers HiFi - Erfurt, Presseklub 21.08 The Rowdy Club Band - Halle 26.08 JB Session No. 15 - Erfurt, Presseklub 27.08 Wir sind Helden - Clueso Band - Mainz, Zitadelle 28.08 Wir sind Helden - Clueso Band - Bergen/R=FCgen 28.09 Fourabend mit Clueso Band - Berlin, Deutschlandhalle 30.09 JB Session No. 16 - Erfurt, Presseklub -- --=20 To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba=20 -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] ACL Windows GUI to set permissions?
I am implementing Samba 3.05 (Suse Pro 8.2 Reiser File System) member server as a file server on a Windows NT4 network with one NT server (PDC). I am currently using WINS for name resolution on the network. Shortly after adding the Samba member server, I will upgrade NT 4.0 server to Windows 2000 (need samba server to alleviate some nasty disk space constraints). The Samba member server is going into an NT4 domain, but will probably be upgraded to active directory shortly (when I get around to it.) Samba appears to be working properly. I am using winbind based identity resolution, and just about everything seems to be doing well. Access/permissions to various shares appears to be working properly. I would like to configure network share security via Windows, as I am much more familiar with it. I realize I need to set file permissions locally on linux as well as the share, and that there is not an exact correspondence. One of the reference documents gave me the impression I could manage share security from a windows machine, and I presumed they were recommending it. I have already set 'nt acl support = yes' in smb.conf file. In Win2K, when I try to access the security properties on a Samba share I have full rights to, all users are shown as not having any permissions. If I attempt to change ACL information, the check boxes get checkmarks, but when I close and re-open, all checkmarks are gone. When I click the advanced button, permissions are shown accurately. When I attempt to access security permissions on a directory (Samba share) I have full rights on from a Windows NT server I get a The system cannot find the file specified error message box. Is this the way it should work? Should I use LDAP rather than winbind? Is the Reiser file system causing my problems? Is there an easy utility to copy directories and files from the NT server to the Samba server? Also, root and admin don't seem to have rights at all, even though they are mapped in the /etc/samba/smbusers file. Config file listed below. # Samba config file created using SWAT # from 127.0.0.1 (127.0.0.1) # Date: 2004/08/11 11:50:07 # Global parameters [global] workgroup = SP-CLE security = DOMAIN map to guest = Bad User username map = /etc/samba/smbusers client plaintext auth = No log level = 1 syslog = 0 log file = /var/log/samba/log.%m smb ports = 139 445 name resolve order = lmhosts wins bcast hosts wins server = 172.16.0.250 ldap ssl = no idmap uid = 1-2 idmap gid = 1-2 template primary group = template shell = /bin/bash winbind separator = + map acl inherit = Yes [homes] comment = Home Directories valid users = %S read only = No browseable = No [test] path = /usr/s/test valid users = SP-CLE+BABE read only = No Newbie written all over this one, eh? Thanks for any help, suggestions, places to look, constructive criticism. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Do you want to reload the file...
Hi, I got a problem with windows applications always asking me to reload the file my linux file server just read. I'm developing web sites and my setup is Windows 2000 (for page authoring) and Samba on Redhat 9. All my files are on the Redhat machine. The HTTP server is also on Redhat. When I open a file on the Redhat machine from Windows, and then I browse/read the file, the editor on Windows (notepad/dreamweaver) will ask me to reload the file. So my question is there a way to stop these notifications whenever a file is read ? The file is not being changed or written to, by the way. Thanks in advance! Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ./configure --prefix=/usr/local
On Mon, 8 Mar 2004, Crosland, Jerel wrote: Is there any compelling reason to put all of the samba stuff under /usr/local/samba, instead of just letting it go into /usr/local? revision control.. makes it easier to install the new version, test, and back-out if necessary. For that matter, you could run multiple versions at the same time for testing (using different ports of course). [ Rick Brown ][ (404) 894-6175 ] [ Office of Information Technology ][[EMAIL PROTECTED] ] [ Georgia Institute of Technology ][ 258 4th street. Atlanta, GA ] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Re: test
Ciao, ho cambiato indirizzo email. Quello nuovo vi verrà comunicato - se non ho già provveduto - prima possibile. Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] XP Issues
That did it! Thanks a ton! Rick Turn off the WebClient service on your XP Pro boxes. This should be in the HOWTO troubleshooting documentation soon. --J(K) -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] a.org] On Behalf Of D. Rick Anderson Sent: Monday, February 02, 2004 6:19 PM To: [EMAIL PROTECTED] Subject: [Samba] XP Issues We have a samba server acting as a PDC for approx 100 Windows 2000 workstations, and it has been doing so very well for the last year. We just purchased some XP Pro machines, and using the registry edit that's listed in the docs, we were able to get them on to the domain. The issue is that the very first time they try to view any drives mapped to the Samba server, it hangs for a good 30-40 seconds. After that they can browse around all they like. If you let the machine sit for a while (I'm assuming something times out), then you have to wait again before being able to browse. Does anybody know a fix for this? Thanks, Rick -- D. Rick Anderson IT Manager ACS Management (702)-939-8300 ext. 5008 [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- D. Rick Anderson IT Manager ACS Management (702)-939-8300 ext. 5008 [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] XP Issues
We have a samba server acting as a PDC for approx 100 Windows 2000 workstations, and it has been doing so very well for the last year. We just purchased some XP Pro machines, and using the registry edit that's listed in the docs, we were able to get them on to the domain. The issue is that the very first time they try to view any drives mapped to the Samba server, it hangs for a good 30-40 seconds. After that they can browse around all they like. If you let the machine sit for a while (I'm assuming something times out), then you have to wait again before being able to browse. Does anybody know a fix for this? Thanks, Rick -- D. Rick Anderson IT Manager ACS Management (702)-939-8300 ext. 5008 [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Equivalent of net send command
On Fri, 16 Jan 2004, Joshua Beall wrote: I recall there being a command under linux, that I believe was a part of the Samba suite, that allowed you to send messages to other machines, like one would do using net send on an XP box, for instance. I have been trying to figure out what that command was, but I cannot find it in the docs. I must not be looking in the right place! Can anyone straighten me out? smbclient -M targetmachine [ Rick Brown ][ (404) 894-6175 ] [ Office of Information Technology ][[EMAIL PROTECTED] ] [ Georgia Institute of Technology ][ 258 4th street. Atlanta, GA ] -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] nmbd reacts to its own broadcasts?
Hi, Is it normal for nmbd to react to its own broadcasts? This is what seems to be happening to me. I'm just installed SAMBA 2.2.8a on a Gentoo box on my home network; a 3-node network using NetBIOS over TCP/IP--all B-nodes. Looking at the logs I saw lines such as the following each time I started SAMBA. [2004/01/07 16:47:07, 0] nmbd/nmbd_responserecordsdb.c:find_response_record(235) find_response_record: response packet id 32385 received with no matching record. [2004/01/07 16:47:07, 0] nmbd/nmbd_responserecordsdb.c:find_response_record(235) find_response_record: response packet id 32386 received with no matching record. Sniffing the network I found that each packet id referred to a series of 4 NBNS Registration queries--BUT NO REGISTRATION RESPONSES! The time of the log entry was the time of the last of the series of packets. But the 2nd and 3rd packets arrived only 0.0005 s apart. Although all 5 names I was registering had similar series of packets and timings, I would only receive log messages for 2 of them. I suspected that nmbd was reacting to a packet it originated itself. So I set up iptables to drop all incoming trafic from my own ip address. When I started SAMBA, I reveived hits on my new IP filter, the SAMBA log messages stopped, and the delays between the registration packets for each name became 2, 1, and 1 s. Problem solved! But is this normal behavior? Should I be receiving my own UDP broacasts? Is nmbd's reacting to them a bug? Is there a better way to avoid these errors? Is this an artifact of my network (somewhat ancient: 350MHz Pentium II server, one 10Mbps hub, but less than 10 m span)? Sincerely, Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Netbios ?
netstat -an | grep 139 [ Rick Brown ][ (404) 894-6175 ] [ Office of Information Technology ][[EMAIL PROTECTED] ] [ Georgia Institute of Technology ][ 258 4th street. Atlanta, GA ] On Wed, 17 Dec 2003, COUNTERMAN, DANIEL (CONTRACTOR) wrote: I am trying a netstat | grep netbios and receive nothing back. I tried netstat | grep 139 and nothing as well. I have the correct netbios ports in /etc/services. Does anyone know to make this show up with a netstat or have those services running? I believe this may be my problem with the mapping of samba shares to the client. Any help would be appreciated, Dan -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] cross-subnet domain join issue
Have you tried using 'remote announce' ? add: remote announce = 192.168.1.255/DOMAIN_NAME to the global section of your smb.conf file using your remote network and domain of course. If that doesn't work, then try enabling Wins support on your Samba server, and setting it as the primary wins resolution server on your workstations. (you may want to do this anyway) HTH Rick Sean Kellogg wrote: So, I already sent this message once before (yesterday), but I can't seem to find it on the archives (and have received no responses), so I'm wondering if it got bounced. If it didn't and I'm just being ignore, then I'll just stay put over here in the corner... if it did, please take a read and see if you can help. -Sean -- I am one hurdle away from finishing my test PDC with ldap and password sync. Its been a hair raising effort... and if I can solve this one issue, we'll be ready to kick our Windows PDC out the window. When I attempt to initially join the domain ( LOGOS ) from a win2K client residing on a different subnet, I get the following: The following error occured validating the name LOGOS The condition may be caused by a DNS lookup problem. For information about troubleshooting common DNS lookup problems, please see the following Microsoft Website: http://go.microsoft.com/fwlink/?LinkID=5171 The specified domain either does not exist or could not be contacted This is the same error I would get on clients residing on the same subnet that didn't have NetBIOS over TCP/IP enabled. Once enabled, I was able to join without incident. However this does not appear to be the issue with clients residing on other subnets, as they are properly configured. Adding to complications, I am certain that the server running the domain (also named LOGOS) can be seen from other subnets by doing lookups on //LOGOS/. Documentation on the subject seems to indicate that this shouldn't be an issue... the tough part is supposed to be browsing, but I can't start tackling that issue until I'm join to the domain in the first place. Thanks for any assistance, Sean -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] domain master
Greg, Two things: 1) Make sure that you've added root to samba: #smbpasswd -a root Then use root and the samba passwd (which can be different than your actual root password I might add) 2) Make sure that there is a machine account for that workstation: #useradd workstation$ (the dollar sign is important) #smbpasswd -a -m workstation (this time you leave it off) If you dig around there's a way to automate this part, but I don't have it off the top of my head. Then set the Windows 2000 box's machine name to workstation (or whatever you decide) and reboot BEFORE you atempt to join the domain. It main seem like it changes the machines name right then and there, but it doesn't. You have to reboot first. HTH Rick Greg FItzgerald wrote: I am trying to setup samba is a master domain controller. I have setup my smb.conf according to the docs and tutorials found on google. Anytime i try to add my win2k computer to the domain it asks for a user/pass. So i tried to use my administrator user/pass that exists both on the unix box and the win2k box. Passwords are the same. When i try this i get the following error. The used user is a computer account. Use your global or local user account Anyone have ideas? Please cc [EMAIL PROTECTED] in replies. Thanks in advance! --Greg -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] strange problem
We're having problems getting a certain piece of software to connect from a windows 2000 server to our Samba server running samba 2.2.8 on RH 9.0 The windows server can map the share, and can copy files and folders to it and delete them, but when we try to connect to the share with this software is barfs with: --SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters--Getting value without opening a key first I've found the area in the windows registry where that resides, but I think it's attempting to modify the registry on the samba server. The software is a Dialer and we're trying to get it to dump it's VOX files onto the 700G share on the samba server. The software has it's own utility where you enter the share, and the username and password to connect with. There is no other way, such as mapping a drive, to get it to put the vox files there. TIA Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Strange Problem
I'm having a strange problem with Samba 2.2.8 on RH 9.0. When I delete a folder on the server from a workstation, it gives me an error saying that it can't be found and the folder remains in Explorer, but if I look on the server (via SSH) the folder is gone. If I hit F5 on the machine that I'm using to delete the file, the folder disappears and all seems normal. The log file on the server shows this error: Aug 4 15:10:07 ACS-SMB01 smbd[19564]: set_delete_on_close_internal: failed to change delete on close flag for file Common/FOLDER_NAME What is causing this? I googled both portions of the error, and got only results showing code for one, and an unanswered question as the only result for another. TIA Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Strange Problem
Thanks for the reply. I'm running Win2k SP4 on all of our workstations. Rick At 16:11 4-8-03 -0700, you wrote: I'm having a strange problem with Samba 2.2.8 on RH 9.0. When I delete a folder on the server from a workstation, it gives me an error saying that it can't be found and the folder remains in Explorer, but if I look on the server (via SSH) the folder is gone. If I hit F5 on the machine that I'm using to delete the file, the folder disappears and all seems normal. [snip] Could this perhaps be a win95 client ? I remember setting a 0 or so in the registry that made explorer autorefresh, wich it didn't by default Greetz, Cor Lem -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Win2K sp4 can't print
Check to see if they can still print. Win2K does that to me too, but they can still print. I had to add: use client driver = yes To the printers defenition to get the Access Denied error to go away. HTH Rick Bob Crandell wrote: Hi, I just installed 2 Win2K sp4 workstations on an otherwise working Samba 2.2.8a network and 2 of the 3 printers are showing Access denied. What's up with that? The other computers that are working just fine are Win98, XP and Win2K NOT sp4. Here is part of the global section: printing = bsd load printers = yes disable spoolss = yes printcap name = /etc/printcap printer admin = admin, administrator, @ntadmin Here is one of the printers: [Printer] comment = Our Printer path = /var/spool/lpd/hp4000n queuepause command = /usr/sbin/lpc -P%p stop queueresume command = /usr/sbin/lpc -P%p start print command = /usr/bin/lpr -Php4000n -r %s use client driver = yes printer name = hp4000n browsable = yes printable = yes guest ok = yes writable = no public = yes force user = lp create mask = 0700 write list = admin, administrator, @ntadmin All the printers are identical except for the name and the path. They work for everybody except the Win2K sp4. Any ideas? Thanks -- Bob Crandell Assured Computing When you need to be sure. [EMAIL PROTECTED] www.assuredcomp.com Voice - 541-689-9159 FAX - 541-463-1627 Eugene, Oregon -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] LMB question
Can somebody explain to me how the whole Local Master Browser thing works? I'm running samba across 3 subnets, and all the docs tell you to set up a Local Master Browser on each subnet. I couldn't find any documentation on how to actually do that so I used the remote announce option in smb.conf, and it's working great, but now there are two machines (one for each subnet outside of the servers subnet) that keep claiming to be the Local Master Browser (per the log files on the samba server). If I turn off remote annouce, then those machines can't see the domain, and nobody can logon. This hurts my brain. I don't care how it works out, but either I need to set up Local Master Browsers, or I need to leave remote announce on and force those machines to stop trying to become the Local Master Browser. TIA Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] linux newbie with printer problems
Can you still print to it though? Try adding this line: use client driver = yes To your printer definition. Rick I can see the linux usb printer from my windows box, but under the icon it says access denied unable to connect. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba over ip
Yup. We've got a single Samba server serving to PCs on 3 IP subnets. We use the remote announce option in the smb.conf file. Rick wrote: Can use samba over ip(through router)? -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] User Script
I have a strange problem with one user on our network. We have a 'clump' of users that logon with the same username and password. The profile is 'locked' down, and for all intents and purposes it works fine, with the exception of one persons PC. When you logon with this computer for the first time it doesn't run the script off the samba server. The script maps drives that are needed for certain apps to run. If you Start/Shut Down/Log off user and then log back on, it runs the script. If you reboot it doesn't run the script. What I have her doing now is she boots up, logs on to the domain, then immediatly logs off, then logs back on and the script runs. There are approx 15 other people using that username, but she's the only one with this problem. Has anybody else seen this? Here's what I'm using: Server: RH 9.0 Samba 2.2.8a-1 configured as a PDC Workstations: Windows 2000 SP3 All of the workstations are clean installs as of the beginning of this week. TIA Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] restarting
Is there a way to have samba re-read its configuration files without restarting it and bumping everyone? As it is now, if somebody is transfering a file and I issue: #service smb restart it drops the file transfer. How do I get around that? TIA Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] samba newbie having trouble configuring samba on RH7.3...
Chances are you don't have the file permissions correct on the Linux side. Make sure that either the user has read rights, or that the user belongs to the group owning the file and that the group has read rights. Samba honors Linux file permissions. HTH Rick OK. I have another question on getting samba properly configured. I'm at a point where I can see the samba server in My Network Places on my W2K domain. I've created a share to house the files on both the w2k side and the linux server. I've also created the root and my user accounts in AD. Yet when I attempt to access either of these shares from the servers I get access denied errors. What am I missing here? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of marvc Sent: Sunday, June 08, 2003 12:51 AM To: 'Tori Williamson'; 'Sameer Zeidat'; [EMAIL PROTECTED] Subject: RE: [Samba] samba newbie having trouble configuring samba on RH7.3... Thanks for the help and advice on using the rpm's. The install was a successful one and I'm on my way. Glad this lists exists and that there are generally nice people on it who don't mind helping the newbies. -Original Message- From: Tori Williamson [mailto:[EMAIL PROTECTED] Sent: Sunday, June 08, 2003 12:10 AM To: marvc; 'Sameer Zeidat'; [EMAIL PROTECTED] Subject: Re: [Samba] samba newbie having trouble configuring samba on RH7.3... No worries... installing RPMs is SUPER simple. You'll be happier going this route: Stop samba and delete the dir (I believe /usr/local/samba). Then install the RPM's in this order thusly: # rpm -ivh samba-common-2.2.7-1.i386.rpm # rpm -ivh samba-server-2.2.7-1.i386.rpm # rpm -ivh samba-swat-2.2.7-1.i386.rpm You shouldn't need the samba-client, since you won't be conecting that server to any other samba server. After install, run /etc/init.d/smb start. the smb.conf file is located in /etc/samba. NOTE: once you edit the smb.conf file, you need to restart samba: /etc/init.d/smb restart. email me if you have any problems. :-) Tori - Original Message - From: marvc [EMAIL PROTECTED] To: 'Tori Williamson' [EMAIL PROTECTED]; 'Sameer Zeidat' [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Saturday, June 07, 2003 5:35 PM Subject: RE: [Samba] samba newbie having trouble configuring samba on RH7.3... I'll try the samba rpm's. I have just one question before I begin, and I apologize in advance if this sounds a little dumb. Once I download each of the rpm's do I have to configure each of them or just one of them? I could never get this question answered that's why I switched to using tar files. If anyone here can answer this or point me to something that'll help me understand this I'll be greatly appreciated. tia -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tori Williamson Sent: Saturday, June 07, 2003 8:12 PM To: Sameer Zeidat; [EMAIL PROTECTED] Subject: Re: [Samba] samba newbie having trouble configuring samba on RH7.3... Marv, My vote is with Sameer... read his prior letter and download the 4 rpms and install them. It will TRULY make your life easier. Being that you're using Samba at home, you're not going to gain anything over source vs. RPM. If this was a production deployment, I'd probably say different. But you'll have much easier control over the RPMS. I had forgotten that you compiled from source. All yu need to do is dump the /usr/local/samba dir (after stopping samba of course). Then install the RPMS and start samba: /etc/init.d/smb start tori - Original Message - From: Sameer Zeidat [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Saturday, June 07, 2003 4:08 PM Subject: RE: [Samba] samba newbie having trouble configuring samba on RH7.3... Hi .. Ok .. swat isn't there because you compiled samba and installed it using the default location '/usr/local/samba-2.2.8a' .. so even if you create 'swat' manually my guess is that you'll run into other problems because of this location. For example, the binaries will be under '/usr/local/samba-2.2.8a/bin' which is not in the default path. Anyway, I'm trying to tell you that your best bet is to use RPMs instead of that. Good luck Thanks swat wasn't located in xinetd so I ended up creating it and adding disable=no line. I don't know if this was necessary but I wasn't able to find it. __ Do you Yahoo!? Yahoo! Calendar - Free online calendar with sync to Outlook(TM). http://calendar.yahoo.com -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http
Re: [Samba] Logon Script
Create a share [netlogon] that your users only have read access to. The logon script = parameter will then be relative to the path designated in that share. For instance, if [netlogon] points to /usr/local/samba/netlogon and you have login script = %U.bat then /usr/local/samba/netlogon/fred.bat will be launched when the user fred authenticates. HTH Rick I created script files for users and the machines to execute when the machines connected or the users logged on to the server. I wasn't sure where the files were suppose to go, so I put logon script = path%U.bat and logon script = path%I.bat. Would that syntax work and how do I test it? Do the files need to be executable? -- Note: When you reply to this message, please include the mailing list address and my email address in To: and/or Cc: with any proper combination * Signed, SoloCDM -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] stability
I'm having problems when I restart the smb server with it not coming back up. As near as I can tell it's actually NMBD that's having the issue. I'm running RedHat 9.0 on a Compaq ML-370 with Dual 1.2GHz P3s and I just upgraded Samba to 2.2.8a-1 after having this same problem with 2.2.7a When I issue: #service smb restart It says that it shut down and restarted ok, but then nobody can logon to the domain, so I issue it again and it tells me that it couldn't kill nmbd, but then it starts it OK, and I can get everyone on. There's also been a few times where it just stopped accepting logons, after accepting them for most of the day, so I restart it, and it tells me then that it couldn't kill nmbd either. testparm doesn't find anything wrong with my config. Does anybody know of a way to stabalize this? Thanks, Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] stability
killproc doesn't even exist on this machine, yet it was how the script was 'attempting' to stop nmbd. I'm sure that the version (2.2.7a) installed with RedHat must have been using just kill. I changed it to killall, but I'm going to wait until all of the users logoff and go home before I start dorkin' around with it. Thanks! Rick Are you sure that all of the nmbd processes are actually stopping the first time you issue the command. I had to change the killproc command to killall on one system so that nmbd would actually be completely stopped. Dan -- Original Message -- From: D. Rick Anderson [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED] Date: Fri, 6 Jun 2003 10:58:33 -0700 (PDT) I'm having problems when I restart the smb server with it not coming back up. As near as I can tell it's actually NMBD that's having the issue. I'm running RedHat 9.0 on a Compaq ML-370 with Dual 1.2GHz P3s and I just upgraded Samba to 2.2.8a-1 after having this same problem with 2.2.7a When I issue: #service smb restart It says that it shut down and restarted ok, but then nobody can logon to the domain, so I issue it again and it tells me that it couldn't kill nmbd, but then it starts it OK, and I can get everyone on. There's also been a few times where it just stopped accepting logons, after accepting them for most of the day, so I restart it, and it tells me then that it couldn't kill nmbd either. testparm doesn't find anything wrong with my config. Does anybody know of a way to stabalize this? Thanks, Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] PDC and routing
I know this must have been answered 3 million times, but I can't find it. I need to have some windows 2000 machines on a different network connect to our Samba PDC. The few documents that I've read said that a Wins server will resolve the issue, but they don't explain any more than that. I have wins support = Yes in the smb.conf, and I have the IP of the samba server in the Wins of the Win2K box, but it still doesn't find the domain. Is there something else that I need to configure? TIA Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC and routing
I think you may want to use the remote announce directive. Errol At 08:25 AM 6/3/2003 -0700, you wrote: I know this must have been answered 3 million times, but I can't find it. I need to have some windows 2000 machines on a different network connect to our Samba PDC. The few documents that I've read said that a Wins server will resolve the issue, but they don't explain any more than that. I have wins support = Yes in the smb.conf, and I have the IP of the samba server in the Wins of the Win2K box, but it still doesn't find the domain. Is there something else that I need to configure? TIA Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC and routing
OK ... that got me closer than I've been. When I try to join the domain now, it pops up and asks for a username and password, as it should, but when I enter root/password and hit enter, it hangs for a few seconds, then errors out with: The following error occurred attempting to join the domain domain; The network path was not found. I found some documentation about this being some strange XP problem, but this is 2000, and when I tried the fix they suggested it didn't work. At least I'm a step closer. Any ideas? Thanks again, Rick I think you may want to use the remote announce directive. Errol At 08:25 AM 6/3/2003 -0700, you wrote: I know this must have been answered 3 million times, but I can't find it. I need to have some windows 2000 machines on a different network connect to our Samba PDC. The few documents that I've read said that a Wins server will resolve the issue, but they don't explain any more than that. I have wins support = Yes in the smb.conf, and I have the IP of the samba server in the Wins of the Win2K box, but it still doesn't find the domain. Is there something else that I need to configure? TIA Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC and routing
No .. there's no firewall. The samba server is at 192.168.51.3, and the workstation I'm working with is at 192.168.50.120. Everything seems to be routing across the networks just fine. I can FTP to the server and browse web pages there on the machine. I have 192.168.51.3 set as the primary Wins server on the 2000 box and I checked again to verify that wins support = Yes was set. All of the 2000 boxes that are on the local network work just fine. I also checked that the TCP/IP NetBIOS helper was running on the client, and as is par with most of my problems, everything looks just fine. ARRRGGH =) Rick Is there a firewall or some kind of filtering action happening between the two networks? If so, try opening up the communications wide between the two networks. Secondly, make sure your windows systems are configured to use your samba server as their primary wins server. Errol At 08:54 AM 6/3/2003 -0700, you wrote: OK ... that got me closer than I've been. When I try to join the domain now, it pops up and asks for a username and password, as it should, but when I enter root/password and hit enter, it hangs for a few seconds, then errors out with: The following error occurred attempting to join the domain domain; The network path was not found. I found some documentation about this being some strange XP problem, but this is 2000, and when I tried the fix they suggested it didn't work. At least I'm a step closer. Any ideas? Thanks again, Rick I think you may want to use the remote announce directive. Errol At 08:25 AM 6/3/2003 -0700, you wrote: I know this must have been answered 3 million times, but I can't find it. I need to have some windows 2000 machines on a different network connect to our Samba PDC. The few documents that I've read said that a Wins server will resolve the issue, but they don't explain any more than that. I have wins support = Yes in the smb.conf, and I have the IP of the samba server in the Wins of the Win2K box, but it still doesn't find the domain. Is there something else that I need to configure? TIA Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] PDC and routing
GOT IT! It was the UNDERSCORE in the netbios name (SAMBA_SERVER). Once I took that out everything else fell right into place. Thanks a million for all your help! Rick AH HAH! The workstation CAN'T see the Samba server when I try to browse it using \\SAMBA_SERVER ! hm. The /etc/samba/lmhosts file has this: 127.0.0.1 localhost 192.168.51.3SAMBA_SERVER and I have wins support = Yes in the /etc/samba/smb.conf and 192.168.51.3 as the Primary Wins server on the workstation as well as the Primary and Secondary DNS servers for our Internet service. Is there something else I need to set up for this? Man .. this has gone from one problem, to a completely different one! ;-) Thanks again for your help, Rick My suggestion would be to make sure your workstation can resolve the UNC of the samba server. You have our choice of two naming methods for Windows 2000. You have Wins, or DNS. DNS is used primarily in Active Directory environments. Since you are not using AD, then your Wins setup must be flawless. Errol At 09:25 AM 6/3/2003 -0700, you wrote: No .. there's no firewall. The samba server is at 192.168.51.3, and the workstation I'm working with is at 192.168.50.120. Everything seems to be routing across the networks just fine. I can FTP to the server and browse web pages there on the machine. I have 192.168.51.3 set as the primary Wins server on the 2000 box and I checked again to verify that wins support = Yes was set. All of the 2000 boxes that are on the local network work just fine. I also checked that the TCP/IP NetBIOS helper was running on the client, and as is par with most of my problems, everything looks just fine. ARRRGGH =) Rick Is there a firewall or some kind of filtering action happening between the two networks? If so, try opening up the communications wide between the two networks. Secondly, make sure your windows systems are configured to use your samba server as their primary wins server. Errol At 08:54 AM 6/3/2003 -0700, you wrote: OK ... that got me closer than I've been. When I try to join the domain now, it pops up and asks for a username and password, as it should, but when I enter root/password and hit enter, it hangs for a few seconds, then errors out with: The following error occurred attempting to join the domain domain; The network path was not found. I found some documentation about this being some strange XP problem, but this is 2000, and when I tried the fix they suggested it didn't work. At least I'm a step closer. Any ideas? Thanks again, Rick I think you may want to use the remote announce directive. Errol At 08:25 AM 6/3/2003 -0700, you wrote: I know this must have been answered 3 million times, but I can't find it. I need to have some windows 2000 machines on a different network connect to our Samba PDC. The few documents that I've read said that a Wins server will resolve the issue, but they don't explain any more than that. I have wins support = Yes in the smb.conf, and I have the IP of the samba server in the Wins of the Win2K box, but it still doesn't find the domain. Is there something else that I need to configure? TIA Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Archive attribute
I think this (below) is what you're looking for (from the smb.conf documentation). However, I don't think it will accomplish (I haven't tried it though) your goal. Sounds like you're trying to do incremental/differential backups. Since there are no archive bits for your windows backup server to look at, it doesn't know what's changed. You need software that keeps a database of what's been backed up when and can make decisions based on modified dates. There are several linux based backup packages that can do that, as well as some enterprise level backup software with linux agents/clients that do it also. Most are pretty expensive. The one I decided to to use is Novanet from Novastor, mostly due to price and it worked. I have to say it's not the fastest backup software I've used, but it gets the job done. Rick S. From smb.conf documentation: == map archive (S) This controls whether the DOS archive attribute should be mapped to the UNIX owner execute bit. The DOS archive bit is set when a file has been modified since its last backup. One motivation for this option it to keep Samba/your PC from making any file it touches from becoming executable under UNIX. This can be quite annoying for shared source code, documents, etc... Note that this requires the create mask parameter to be set such that owner execute bit is not masked out (i.e. it must include 100). See the parameter create mask for details. Default: map archive = yes === -Original Message- From: Brandon Lederer [mailto:[EMAIL PROTECTED] Sent: Tuesday, June 03, 2003 1:16 PM To: [EMAIL PROTECTED] Subject: [Samba] Archive attribute Our tape backup software (run through windows) backs up items based on whether the archive attribute is set or not. If it is set, then it needs to be backed up. Then it removes the attribute. When a user modifies a file, the attribute is again set. This is how it normally works. Samba will not allow the Archive Attribute to be unchecked. Is there anyway to allow this functionality. Samba 2.2.8a also is the option available in Samba3? **CONFIDENTIALITY STATEMENT** This e-mail (including attachments) is covered by the Electronic Communications Privacy Act, 18 U.S.C. 2510-2521, is confidential and may be legally privileged. It is intended for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this email is not the intended recipient, or agent responsible for delivering or copying of this communication, you are hereby notified that any retention, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this communication in error, please reply to the sender that you have received the message in error, then delete it. Thank you -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba * This e-mail may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Unauthorized reviewing, copying, printing, disclosing, or otherwise using information in this e-mail is prohibited. We reserve the right to monitor e-mail sent through our network. * -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Archive attribute
I had to go with new software that was linux aware and could do it based on modified date. I found Novastor's Novanet for Linux and Danz Restrospect Backup (windows interface only) to work, but mostly played with and ended up purchasing Novanet mainly because we wanted a native linux solution. Retrospect will backup samba shares, but it's a windows only program. I'll be interested if you can make it work using the archive mapping (or other) option. Rick S. -Original Message- From: Brandon Lederer [mailto:[EMAIL PROTECTED] Sent: Tuesday, June 03, 2003 1:50 PM To: [EMAIL PROTECTED] Subject: RE: [Samba] Archive attribute Incremental backups is exactly what I am going after. I am not sure whether I will be able to accomplish this or not. -Original Message- From: Rick Segeberg [mailto:[EMAIL PROTECTED] Sent: Tuesday, June 03, 2003 2:31 PM To: [EMAIL PROTECTED] Subject: RE: [Samba] Archive attribute I think this (below) is what you're looking for (from the smb.conf documentation). However, I don't think it will accomplish (I haven't tried it though) your goal. Sounds like you're trying to do incremental/differential backups. Since there are no archive bits for your windows backup server to look at, it doesn't know what's changed. You need software that keeps a database of what's been backed up when and can make decisions based on modified dates. There are several linux based backup packages that can do that, as well as some enterprise level backup software with linux agents/clients that do it also. Most are pretty expensive. The one I decided to to use is Novanet from Novastor, mostly due to price and it worked. I have to say it's not the fastest backup software I've used, but it gets the job done. Rick S. From smb.conf documentation: == map archive (S) This controls whether the DOS archive attribute should be mapped to the UNIX owner execute bit. The DOS archive bit is set when a file has been modified since its last backup. One motivation for this option it to keep Samba/your PC from making any file it touches from becoming executable under UNIX. This can be quite annoying for shared source code, documents, etc... Note that this requires the create mask parameter to be set such that owner execute bit is not masked out (i.e. it must include 100). See the parameter create mask for details. Default: map archive = yes === -Original Message- From: Brandon Lederer [mailto:[EMAIL PROTECTED] Sent: Tuesday, June 03, 2003 1:16 PM To: [EMAIL PROTECTED] Subject: [Samba] Archive attribute Our tape backup software (run through windows) backs up items based on whether the archive attribute is set or not. If it is set, then it needs to be backed up. Then it removes the attribute. When a user modifies a file, the attribute is again set. This is how it normally works. Samba will not allow the Archive Attribute to be unchecked. Is there anyway to allow this functionality. Samba 2.2.8a also is the option available in Samba3? **CONFIDENTIALITY STATEMENT** This e-mail (including attachments) is covered by the Electronic Communications Privacy Act, 18 U.S.C. 2510-2521, is confidential and may be legally privileged. It is intended for the use of the individual or entity to which it is addressed and may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this email is not the intended recipient, or agent responsible for delivering or copying of this communication, you are hereby notified that any retention, dissemination, distribution, or copying of this communication is strictly prohibited. If you have received this communication in error, please reply to the sender that you have received the message in error, then delete it. Thank you -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba * This e-mail may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Unauthorized reviewing, copying, printing, disclosing, or otherwise using information in this e-mail is prohibited. We reserve the right to monitor e-mail sent through our network. * -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba * This e-mail may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Unauthorized reviewing, copying, printing, disclosing
[Samba] a few questions
Hi there. I'm new to the list and I have a few questions about Samba. I've built a few Win9x/Samba networks, but I've been asked to build a Win2000/Samba network and I have a few issues. First off, is there some way with Win2000 and Samba to get a workstation independant login? Right now I have to create the user on the 2000 box for them to be able to login. Second, what is the best configuration tool to use for Samba? I'm running RH9.0 and the GUI is nice, but VERY limited. I've been messing with SWAT, but it doesn't seem to be able to do the things that I want (such as choose a share, and then simply choose who has rights to it). What is being used out there? Third, is there a way to run login scripts with 2000? With 9X I could create login scripts that would map the drives needed for that user. Can I do something like that with 2000 and Samba? Our users move around a lot and there's no way I could follow them all over and map the drives they need on that particular workstation every time they move. This network is coming off of Novell, and the administrator that I'm working with understands that this isn't going to be EXACTLY the same, but he stills wants some of the same functionality. TIA Rick -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] HowTo: Samba 3 w/ ads and acl working
Just wanted to thank those who have helped me (knowingly (such as Andrew Bartlett) and others unknowingly) get Samba set up to work with MS Active Directory and with ACL support working. As is typical in lists like these, there are way more requests than thanks. Being in the IT industry, I know personally the never-ending deluge of help requests and the seemingly very short list of thank you's. So.. Kudos to the Samba team!!! I know there are a lot of others trying to get similar things working, so I've posted my notes for those who are interested. It's a compilation of several month's worth of work. This is my attempt to give back. It's pretty rough (so no flames please) and I need to do a lot of clean up. I've gotten requests (off-list) for help, so I'm sure there's someone else out there that might benefit even if it's a little rough. Here's the link: http://www.netmechanix.net/linux/index.html Thanks again. Rick Segeberg Provo Site Manager, IT Department The Waterford Institute [EMAIL PROTECTED] * This email may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Any review, copying, printing, disclosure or other use is prohibited. We reserve the right to monitor email sent through our network. * -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
FW: [Samba] backupexec
If you can see the server, but not shares, you most likely have not published any directories. What version of the BE agent are you using? I've noticed 4.6 works well (the install actually works well and will walk you through the setup to publish the directories to be backed up). It's often easier to just publish root (but exclude /proc /tmp). Also, I've found out that in the hosts file, you have to have the ip address of the server itself and of the backup server above the localhost entry. I know this sounds dumb, but it works. Here's my config (agent.cfg) in case it helps you: name MYSERVER export / as root tell backupserver.mydomain.org tell_interval 30 exclude_dir /dev exclude_dir /proc exclude_dir /tmp Rick Segeberg Waterford Institute Network Admin - Site Manager [EMAIL PROTECTED] -Original Message- From: Benjamin Stewart [mailto:[EMAIL PROTECTED] Sent: Thu 3/20/2003 5:04 PM To: [EMAIL PROTECTED] Cc: Subject: [Samba] backupexec Greetings, Trying to backup a samba server using backup exec (on win2000 server). I can see the server, but I cant browse its shares. Anybody done this/ have suggestions.? I noticed there were some posts on this a little while ago but they have expired.If they contain the answer can somebody just forward to me. Thanks for help. Ben -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba * This email may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Any review, copying, printing, disclosure or other use is prohibited. We reserve the right to monitor email sent through our network. * -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Multiple Groups, Different Permissions problem
Looks like you're going to need to enable ACL support in both Samba and your linux kernel (if it's not already there). This will most likely require a kernel patch and rebuild as well as recompiling samba (unless you happened to compile with that option the 1st time). You can then use linux and/or windows tools to set the acl's. Here's some places to start looking: - the samba documentation - acl.bestbits.at - www.netmechanix.net/linux/samba/sambahowto1.html Rick Segeberg Waterford Institute Network Administrator-Site Manager [EMAIL PROTECTED] -Original Message- From: Kevin Bramblett [mailto:[EMAIL PROTECTED] Sent: Tue 3/18/2003 10:19 AM To: [EMAIL PROTECTED] Cc: Subject: [Samba] Multiple Groups, Different Permissions problem Hello everyone, I need to setup some directories (in RHL 7.2 running Samba 2.2.3a w/ W2K PDC) to allow multiple groups, each of which has different permissions. If this can be done on the Linux side, this would be preferred, but if it has to be done in Samba, any help in understanding how to make this happen is appreciated. I know Windows NT/W2K allows multiple groups and I would think Linux would as well, but I cannot find in my documentation anything about this subject. Thanks, Kevin Bramblett Network Administrator No trees were killed in the sending of this message. However a large number of electrons were terribly inconvenienced. -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba * This email may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Any review, copying, printing, disclosure or other use is prohibited. We reserve the right to monitor email sent through our network. * -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: FW: [Samba] backupexec
Typically with BE, you install an agent on any machines you want to back up. I'm sure the windows version will see other windows machines, but you probably won't get very good backup performance from them without the agent (it helps compress data over the wire for faster backups - at least that's the way it works with netware, even though it's technically possible to not use the agent even with netware). You probably go to Veritas site and look up Unix agent and any related KB's. Even if you can see your pdc without the agent, I guarantee that the agent will make things work better and faster. Also, with the windows version of BE, you'll be able to do daily backups (meaning files that have changed today), rather than a full backup every time (due to Linux having no archive bit). Research it at Veritas site - you'll be glad you did. Rick. -Original Message- From: Benjamin Stewart -NEW [mailto:[EMAIL PROTECTED] Sent: Thu 3/20/2003 6:21 PM To: Rick Segeberg Cc: Subject: Re: FW: [Samba] backupexec I didnt know that I had to install an agent. I figured that backup exec would see it just like every other machine on the network. I can see all the other windows 2000 PC's without having to install an agent. The server I am trying to backup is acting as a PDC though, does this make a difference. Ben Rick Segeberg wrote: If you can see the server, but not shares, you most likely have not published any directories. What version of the BE agent are you using? I've noticed 4.6 works well (the install actually works well and will walk you through the setup to publish the directories to be backed up). It's often easier to just publish root (but exclude /proc /tmp). Also, I've found out that in the hosts file, you have to have the ip address of the server itself and of the backup server above the localhost entry. I know this sounds dumb, but it works. Here's my config (agent.cfg) in case it helps you: name MYSERVER export / as root tell backupserver.mydomain.org tell_interval 30 exclude_dir /dev exclude_dir /proc exclude_dir /tmp Rick Segeberg Waterford Institute Network Admin - Site Manager [EMAIL PROTECTED] -Original Message- From: Benjamin Stewart [mailto:[EMAIL PROTECTED] Sent: Thu 3/20/2003 5:04 PM To: [EMAIL PROTECTED] Cc: Subject: [Samba] backupexec Greetings, Trying to backup a samba server using backup exec (on win2000 server). I can see the server, but I cant browse its shares. Anybody done this/ have suggestions.? I noticed there were some posts on this a little while ago but they have expired.If they contain the answer can somebody just forward to me. Thanks for help. Ben -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba * This email may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Any review, copying, printing, disclosure or other use is prohibited. We reserve the right to monitor email sent through our network. * * This email may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Any review, copying, printing, disclosure or other use is prohibited. We reserve the right to monitor email sent through our network. * -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] RE: follow-up: samba backup software
Follow up to my question for those also looking for backup solutions: Thanks for the input, it was helpful and gave me some leads. For What it's worth: I've been testing Novastor's Novanet 8.5. Pretty impressive. It has a nice GUI interface or a command line menu system, backups performed well, recognized my library without any extra effort on my part. Pricing isn't too bad either, especially compared to many of the other options. Granted I haven't donea really large backup yet, but the initial impression is good. Rick Segeberg Provo Site Manager, IT Department The Waterford Institute [EMAIL PROTECTED] -Original Message- From: Rick Segeberg Sent: Thursday, March 06, 2003 3:24 PM To: [EMAIL PROTECTED] Subject: [Samba] samba backup software I'm curious to what people are using for backing up their samba servers. Here's are some specs to consider: - 1TB (yes, that's terabyte) of data - multiple servers backup to one tape drive connected to a server (preferably a linux system) - using an autoloader (in this case, an HP 1/9 LTO system) - need to be able to backup daily changes and/or changes since last full backup snip * This email may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Any review, copying, printing, disclosure or other use is prohibited. We reserve the right to monitor email sent through our network. * -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] RE: follow-up: samba backup software
Yes, they have a 30 day downloadable demo. Here's the link: http://www.network-backup.com/datasheets/nnet8linux.html The installation was a piece of cake. Rick Segeberg Provo Site Manager, IT Department The Waterford Institute [EMAIL PROTECTED] -Original Message- From: Jack Malone [mailto:[EMAIL PROTECTED] Sent: Friday, March 07, 2003 12:42 PM To: Rick Segeberg Subject: Re: [Samba] RE: follow-up: samba backup software For What it's worth: I've been testing Novastor's Novanet 8.5. Pretty impressive. It has a nice GUI interface or a command line menu system, backups performed well, recognized my library without any extra effort on my part. Pricing isn't too bad either, especially compared to many of the other options. Hello Rick, just wondering does the Novastor novanet have a demo version to download an checkout to see if it works for you. I'm looking for something to do backup from the linux server myself. Right now Im using a windows version of backup exec from a workstation to backup to tape an also to a second harddrive in another workstation. Trying to convince my boss that the best place to backup to server from is the server to a tape drive in the server. thanks jack * This email may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Any review, copying, printing, disclosure or other use is prohibited. We reserve the right to monitor email sent through our network. * -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] samba backup software
I'm curious to what people are using for backing up their samba servers. Here's are some specs to consider: - 1TB (yes, that's terabyte) of data - multiple servers backup to one tape drive connected to a server (preferably a linux system) - using an autoloader (in this case, an HP 1/9 LTO system) - need to be able to backup daily changes and/or changes since last full backup Currently I'm using Backup Exec from NetWare. The *nix client has no support to do anything but a full. The archive bit obviously won't work, and backing up based on date doesn't seem to work either (it still does a full). I'm interested in finding a native linux solution since I don't see a lot of point in having to use a Windows server with a *nix client when I'm trying to get away from Windows. If you have suggestions or are using something you are happy with, please respond. Currently, I'm evaluating Novastor's Novanet 8.5. I know there are others that I can eval, I'm just interested in finding out what others are using and happy with. Thanks. Rick Segeberg Provo Site Manager, IT Department The Waterford Institute [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] * This email may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Any review, copying, printing, disclosure or other use is prohibited. We reserve the right to monitor email sent through our network. * -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] managing acl's via windows in samba 3.0 alpha 21
I've been trying to get the acl functionality (from windows) to work now for several days and have not found a solution. I've spent many hours Googling the web, and searching the samba list archives. If someone else has this working (in the 3.0 alpha code), I would appreciate seeing your config files, if you wouldn't mind. Goal: to be able to add user/group permissions to files and/or directories using windows. Environment: Red Hat 8.0 (kernel version 2.4.19 w/ acl support built in) File system: ext3 mounted default,acl from fstab Samba 3.0 alpha 21 (compiled: --with-ads --with-acl-support --with-winbind --with-smbmount) Windows 2000 ADS (native) I've successfully joined the ads domain and can access files etc. with no problems from my windows workstation logged into the domain. I've got acl's working on the linux side (meaning I can successfully add multiple user and group permissions to a file or directory using setfacl. However, when I try to add a user to a file or directory from windows, I get the following error: Unable to save permission changes on file name. Access denied. log.winbindd shows: [2003/02/19 16:50:53, 1] nsswitch/winbindd_sid.c:winbindd_sid_to_uid(140) Could not get uid for sid .. Also, users that I've added from the linux side (using setfacl) do not show up on the list when I view the file's security properties. I'm at a loss and can't seem to find anything to point me in the right direction. ** smb.conf [global] workgroup = MYDMN netbios name = LINTEST realm = MYDOMAIN.ORG ads server = 10.1.30.39 server string = %L running Samba %v security = ADS password server = postoffice passwd program = /usr/bin/passwd %u encrypt passwords = yes unix password sync = Yes log file = /var/log/samba/log.%m preferred master = No local master = No #added 1/31/03 socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 domain master = No dns proxy = no ldap ssl = no # Winbind stuff winbind separator = + winbind uid = 1-2 winbind gid = 1-2 winbind enum users = yes winbind enum groups = yes winbind use default domain = No template homedir = /home/%U template shell = /bin/bash #Extras time server = yes [homes] guest ok = no read only = no [users] path=/users guest ok = no read only = no ###ACL stuff # admin users = rick # security mask = 0777 nt acl support = yes # inherit acls = yes # force user = root ** The items in the [users] section that are rem'd out, are things I've tried, but didn't seem to make a difference. BTW: I've tried making the file owned by root and by the user trying to make the change. Thanks for any help you can offer. Rick Segeberg Provo Site Manager, IT Department The Waterford Institute [EMAIL PROTECTED] * This email may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Any review, copying, printing, disclosure or other use is prohibited. We reserve the right to monitor email sent through our network. * -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] How to know what users i have added withsmbpasswdprogram?
If you are not using a domain and have added the users directly with the smbpasswd utility, you can just cat the smbpasswd file. Typically, it's found in /usr/local/samba/private directory. If it's long, you might want to use more (or less). Rick Segeberg Provo Site Manager, IT Department The Waterford Institute [EMAIL PROTECTED] -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, February 12, 2003 8:28 AM To: [EMAIL PROTECTED] Subject: Re: [Samba] How to know what users i have added with smbpasswdprogram? hi, smbpasswd doesnt support listing users i think. you have to use the net command instead. net user this will give you a list of users in you domain christoph On Mit, Feb 12, 2003 at 03:22:58 +0100, Jorge Videgain Marquez wrote: How could i get a list of the users already aded to samba with smbpasswd? -- Regards guanche -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba * This email may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Any review, copying, printing, disclosure or other use is prohibited. We reserve the right to monitor email sent through our network. * -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] MAC OS 9 on Samba 3.0 vs. Samba 2.2.7
I am experimenting with MAC OS 9 using samba as a file server. I am using Thursby's DAVE to connect. For those who don't know, DAVE is a client utility that allows an OS 8 or 9 system to connect to windows file shares. The MAC can connect to both servers with no problems. However, when copying a file to the samba 3 server, I get the following error: The item file name could not be written, because an error of type -50 occurred. Writing out to the Samba 2.2.7 server had no problems and was very fast (ie. blows my NetWare server away). The two servers are set up very similarly in that they are running Red Hat 8.0 (with patches) and using the ext3 file system. The smb.conf file is the same also (very simple, just for testing). I'm not doing any fancy authentication, etc., just using the smbpasswd file. I'm using the same login name and password on both. The home directories on both have the same permissions and owners. Also, a windows machine can copy files to either system with no problems. Any suggestions would be appreciated. Here's the smb.conf files * Samba 2.2.7 smb.conf * # Samba Config file # created by rick [global] workgroup = IT netbios name = RICKTUX encrypt passwords = yes [homes] guest ok = no read only = no ** * Samba 3.0 alpha 21 smb.conf * [global] workgroup = IT netbios name = LINTEST2 encrypt passwords = yes [homes] guest ok = no read only = no *** Rick Segeberg Provo Site Manager, IT Department The Waterford Institute [EMAIL PROTECTED] * This email may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Any review, copying, printing, disclosure or other use is prohibited. We reserve the right to monitor email sent through our network. * -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Samba 3 ADS current capabilities [adr]
Andrew, Thanks for your response. This reply is actually not a request for additional help. After much searching throught the lists and Google along with a lot of experimentation, I think I've got it (mostly) figure out. This post is just an effort to help others who might be struggling with the same issues as I was. I'm sure it's far from perfect and if anyone has suggestions on improving something, I'd like to hear them. Server Information: Redhad 8.0 w/ kernel 2.4.28-18.8.0 Samba 3.0 alpha 21 Just to be sure, I've started at the beginning and double checked everything to make sure it matches the documentation I have. Also, I apologize for the wordiness, but hopefully this will help someone else. Here's what I've done so far: I successfully joined the domain (actually this shows me re-joining): # /usr/local/samba/bin/net ads join [2003/01/30 15:30:04, 0] libads/ldap.c:ads_join_realm(1325) Host account for lintest already exists - deleting old account Joined 'LINTEST' to realm 'MYDOMAIN.ORG' Then to make sure I could actually authenticate up to the w2k ads server: # ../bin/smbclient //postoffice/c\$ -k added interface ip=10.1.46.5 bcast=10.1.47.255 nmask=255.255.240.0 Doing spnego session setup (blob length=113) Doing kerberos session setup OS=[Windows 5.0] Server=[Windows 2000 LAN Manager] smb: \ At the prompt, I was able to traverse all directories, etc. In following the winbind documentation, I tried joining the domain again after configuring my smb.conf file (figuring this wouldn't work since it's quite a bit different than the 1st join command): # bin/net rpc join -s PDC -U john.doe [2003/01/30 16:06:41, 0] param/params.c:OpenConfFile(532) params.c:OpenConfFile() - Unable to open configuration file PDC: No such file or directory [2003/01/30 16:06:42, 1] utils/net.c:net_find_server(224) no server to connect to Unable to find a suitable server [2003/01/30 16:06:43, 1] utils/net.c:net_find_server(224) no server to connect to Unable to find a suitable server Figuring I've already joined the domain, I proceeded in following the documentation. I started up winbindd (which shows as running after issuing ps ax), then tried: # bin/wbinfo -u MYDMN+Administrator MYDMN+Guest MYDMN+krbtgt MYDMN+john.doe MYDMN+jane.smith MYDMN+george snip Which finally worked. Then I tried: #wbinfo -g (this worked also) Then I tried: #wbinfo -t got this: [root@lintest samba]# bin/wbinfo -t checking the trust secret via RPC calls failed error code was NT_STATUS_ACCESS_DENIED (0xc022) Could not check secret Logs show: [2003/01/31 08:34:05, 1] rpc_client/cli_netlogon.c:cli_nt_setup_creds(300) cli_nt_setup_creds: auth2 challenge failed NT_STATUS_ACCESS_DENIED [2003/01/31 08:34:05, 0] nsswitch/winbindd_cm.c:cm_get_netlogon_cli(936) error connecting to domain password server: NT_STATUS_ACCESS_DENIED Windows event viewer shows this: The session setup from the computer LINTEST failed to authenticate. The name of the account referenced in the security database is LINTEST$. The following error occurred: Access is denied. I finally found a fix for this. My nsswitch.conf file had the shadow line incorrect. It was: == ## nsswitch.conf ## created by Rick passwd: files winbind shadow: files winbind group: files winbind == It is now: == ## nsswitch.conf ## created by Rick passwd: files winbind shadow: files group: files winbind = Amazing how such a small oversight can effect things. Now this works: [root@lintest samba]# bin/wbinfo -t checking the trust secret via RPC calls succeeded Since this fix, my log now show: [2003/01/31 09:23:52, 1] nsswitch/winbindd_util.c:add_trusted_domain(140) Added domain MYDMN [2003/01/31 09:24:02, 1] nsswitch/winbindd_util.c:init_domain_list(220) Retrying startup domain sid fetch for MYDMN [2003/01/31 09:24:12, 1] nsswitch/winbindd_util.c:init_domain_list(220) Retrying startup domain sid fetch for MYDMN [2003/01/31 09:24:22, 1] nsswitch/winbindd_util.c:init_domain_list(220) Retrying startup domain sid fetch for MYDMN [2003/01/31 09:24:34, 1] nsswitch/winbindd_util.c:init_domain_list(220) Retrying startup domain sid fetch for MYDMN [2003/01/31 09:24:44, 1] nsswitch/winbindd_util.c:init_domain_list(220) Retrying startup domain sid fetch for MYDMN [2003/01/31 09:24:54, 1] nsswitch/winbindd_util.c:init_domain_list(220) Retrying startup domain sid fetch for MYDMN [2003/01/31 09:25:06, 1] nsswitch/winbindd_util.c:init_domain_list(220) Retrying startup domain sid fetch for MYDMN [2003/01/31 09:25:16, 1] nsswitch/winbindd_util.c:init_domain_list(220) Retrying startup domain sid fetch for MYDMN snip As you can see, this continues about every 10 seconds. I changed my smb.conf file back (I had been experimenting with the difference in the security
[Samba] Samba 3 ADS current capabilities
I have been working to get a Samba 3 (alpha 21) on Red Hat 8.0 to work with our current Windows 2000 ADS. This is pure ADS (ie. no compatibility mode). Our desire is to have various samba servers join the domain and use the domain to authenticate users to the samba servers. It's my understanding that winbind is necessary. I've followed lots of HOWTO's and various articles as well as search the list archives and have not gotten it to work and have not found quite what I am looking for (although much has still been very helpful). I was able to successfully have the samba server join the domain (it shows up in ADS), and I can authenticate to the w2k box from the samba box just fine. But, I cannot authenticate back to samba box from a windows workstation (which is logged into the domain) unless I also have the login name and password in the smbpasswd file. Also, when I try any of the wbinfo tests, they fail. I understand it's still in alpha and just to make sure I'm not trying something that's not available/working yet, I need to know if this is possible. So the question is: Can a workstation in the ADS domain be authenticated to a samba 3 server via W2K ADS (with no compatibility mode)? If so - can you point me in the right direction for more info on how to make it work? I'd be glad to include my config files, logs, etc so some one can eyeball them and let me know what I'm missing. But, before doing that, I want to make sure I'm not just chasing something that's not available yet.. Thanks for your help. Rick * This email may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Any review, copying, printing, disclosure or other use is prohibited. We reserve the right to monitor email sent through our network. * -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Samba limitations
My company is seriously considering moving our existing NetWare 4.11 file servers to Samba Linux servers (Red Hat 8). Our current servers hold (on average) 400GB of data each (some much more) on various volumes (our largest volume at this time is 400GB). Most of this space is used by multimedia files which are 1GB up to 4GB (yes, for a single file). We have about 200 users who have access to various directories across all of the servers, although we hope to consolidate that by making a separate server(s) for each major department. 1) What kind of limitation (if any) does Samba have in being a file server? By that I mean are there limitations on file sizes, volume sizes, number of files, number of users connected, performance issues, etc. 2) Has anyone found a good way to add space to an existing volume (something easy to do in NetWare) via RAID, stripping or whatever? In other words, I will need to add space in the future by adding a hard drive and spanning an existing volume across that new hard drive. I know I can do it via mount points, but that gets messy, and only adds space to the directory structure in which you mount the new drive, rather than to the entire volume. We will be using RAID 5 (hardware based), but even after adding a drive to the array, you somehow have to expand the volume across the new space. 3) What are the gotchas on file system rights? We do not have a PDC at this time, but when Samba 3.0 is final, would like to use our existing Windows 2000 AD domain (which is not actually used as a domain right now, but only for Exchange/Outlook functionality) to help manage those rights. I would appreciate your feedback. Samba is my file server at home, but that doesn't even compare to what we're looking at here. Any advice, what not to do, etc. is welcome. - Rick. * This email may contain privileged or confidential material intended for the named recipient only. If you are not the named recipient, delete this message and all attachments. Any review, copying, printing, disclosure or other use is prohibited. We reserve the right to monitor email sent through our network. * -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
