[Samba] Freebsd + Samba + Ldap + Acls -> No locking file
Hello.. File server freebsd 6.2-STABLE + samba-3.0.25a + ldap + acls Problem: I've a situation where file locking does not seem to be functioning as expected, in that more than one user can open and write to a file without any notifications being displayed about the file already being opened by another user. I have two Windows XP clients accessing the same shared file, user1 has the file open. User2 then opens the same file, receiving no warnings about the file being open by another user. File is modified by user1 and saved and remains open. File then modified by user2 and saved. File closed and opened by user1 who sees only modifications made by user2. user1 (WinXP) open test2.ods smbstatus: Locked files: Pid UidDenyMode Access R/WOplock SharePath Name Time -- 1475810004 DENY_WRITE 0x2019f RDWR EXCLUSIVE+BATCH /work/samba/bazafirm test2.ods Wed Aug 1 17:50:15 1475810004 DENY_NONE 0x11RDONLY NONE /work/samba/bazafirm . Wed Aug 1 17:49:47 user2 (WinXP) open file: smbstatus: Locked files: Pid UidDenyMode Access R/WOplock SharePath Name Time -- 1478710002 DENY_WRITE 0x2019f RDWR EXCLUSIVE+BATCH /work/samba/bazafirm test2.ods Wed Aug 1 17:55:38 1478710002 DENY_NONE 0x11RDONLY NONE /work/samba/bazafirm . Wed Aug 1 17:55:12 But when I use option "force user = root" tha file lock works OK!!! smb.conf [global] dos charset = cp852 unix charset = iso8859-2 display charset = iso8859-2 workgroup = COSTAM.LOCAL netbios name = DRAGON server string = COSTAM LDAP PDC [on FreeBSD :: Samba server %v] interfaces = 192.168.50.254/24 bind interfaces only = Yes security = USER encrypt passwords = Yes update encrypted = No client schannel = Auto server schannel = Auto allow trusted domains = Yes map to guest = Never null passwords = Yes obey pam restrictions = No password server = * smb passwd file = /usr/local/etc/samba/smbpasswd private dir = /usr/local/etc/samba passdb backend = ldapsam:ldap://127.0.0.1/ algorithmic rid base = 1000 guest account = nobody enable privileges = Yes pam password change = No passwd chat = *new*password* %n\n *new*password* %n\n *changed* passwd chat debug = No passwd chat timeout = 2 check password script = password level = 0 username level = 0 unix password sync = No restrict anonymous = 0 lanman auth = Yes ntlm auth = Yes client NTLMv2 auth = No client lanman auth = Yes client plaintext auth = Yes use kerberos keytab = No log level = 2 syslog = 0 syslog only = No log file = /var/log/samba/log.%m max log size = 10 debug timestamp = Yes debug prefix timestamp = No debug hires timestamp = No debug pid = No debug uid = No enable core files = Yes smb ports = 445 139 large readwrite = Yes max protocol = NT1 min protocol = CORE read bmpx = No read raw = Yes write raw = Yes disable netbios = No reset on zero vc = No acl compatibility = auto defer sharing violations = Yes nt pipe support = Yes nt status support = Yes announce version = 4.9 announce as = NT max mux = 50 max xmit = 16644 name resolve order = wins bcast dns host max ttl = 259200 max wins ttl = 518400 min wins ttl = 21600 time server = Yes unix extensions = Yes use spnego = Yes client signing = auto server signing = No client use spnego = Yes enable asu support = No deadtime = 0 getwd cache = Yes keepalive = 300 lpq cache time = 30 max smbd processes = 0 paranoid server security = Yes max disk size = 0 max open files = 500 open files database hash size = 10007 socket options = SO_KEEPALIVE SO_BROADCAST TCP_NODELAY SO_SNDBUF=16384 SO_RCVBUF=16384 IPTOS_LOWDELAY use mmap = Yes hostname lookups = No name cache timeout = 660 load printers = No printcap cache time = 750 disable spoolss = No show add printer wizard = Yes mangling method = hash2 mangle prefix = 1 max stat cache size = 1024 stat cache = Yes machine password timeout = 604800 add user script = /usr/local/sbin/smbldap-useradd -m "%u" delete user script = /usr/local/sbin/smbldap-userdel "%u" add group script = /usr/local/sbin/smbldap-groupadd -p "%g" delete group script = /usr/local/sbin/smbldap-groupdel "%g" add user to group script = /usr/local/sbin/smbldap-groupmod -m "%u" "%g" delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u" "%g" set primary group script = /usr/local/sbin/smbldap-usermod -g "%g" "%u" add machine script = /usr/local/sbin/smbldap
[Samba] Freebsd + Samba + Ldap + Acls -> No locking file
Hello.. File server freebsd 6.2-STABLE + samba-3.0.25a + ldap + acls Problem: I've a situation where file locking does not seem to be functioning as expected, in that more than one user can open and write to a file without any notifications being displayed about the file already being opened by another user. I have two Windows XP clients accessing the same shared file, user1 has the file open. User2 then opens the same file, receiving no warnings about the file being open by another user. File is modified by user1 and saved and remains open. File then modified by user2 and saved. File closed and opened by user1 who sees only modifications made by user2. user1 (WinXP) open test2.ods smbstatus: Locked files: Pid UidDenyMode Access R/WOplock SharePath Name Time -- 1475810004 DENY_WRITE 0x2019f RDWR EXCLUSIVE+BATCH /work/samba/bazafirm test2.ods Wed Aug 1 17:50:15 1475810004 DENY_NONE 0x11RDONLY NONE /work/samba/bazafirm . Wed Aug 1 17:49:47 user2 (WinXP) open file: smbstatus: Locked files: Pid UidDenyMode Access R/WOplock SharePath Name Time -- 1478710002 DENY_WRITE 0x2019f RDWR EXCLUSIVE+BATCH /work/samba/bazafirm test2.ods Wed Aug 1 17:55:38 1478710002 DENY_NONE 0x11RDONLY NONE /work/samba/bazafirm . Wed Aug 1 17:55:12 But when I use option "force user = root" tha file lock works OK!!! smb.conf [global] dos charset = cp852 unix charset = iso8859-2 display charset = iso8859-2 workgroup = COSTAM.LOCAL netbios name = DRAGON server string = COSTAM LDAP PDC [on FreeBSD :: Samba server %v] interfaces = 192.168.50.254/24 bind interfaces only = Yes security = USER encrypt passwords = Yes update encrypted = No client schannel = Auto server schannel = Auto allow trusted domains = Yes map to guest = Never null passwords = Yes obey pam restrictions = No password server = * smb passwd file = /usr/local/etc/samba/smbpasswd private dir = /usr/local/etc/samba passdb backend = ldapsam:ldap://127.0.0.1/ algorithmic rid base = 1000 guest account = nobody enable privileges = Yes pam password change = No passwd chat = *new*password* %n\n *new*password* %n\n *changed* passwd chat debug = No passwd chat timeout = 2 check password script = password level = 0 username level = 0 unix password sync = No restrict anonymous = 0 lanman auth = Yes ntlm auth = Yes client NTLMv2 auth = No client lanman auth = Yes client plaintext auth = Yes use kerberos keytab = No log level = 2 syslog = 0 syslog only = No log file = /var/log/samba/log.%m max log size = 10 debug timestamp = Yes debug prefix timestamp = No debug hires timestamp = No debug pid = No debug uid = No enable core files = Yes smb ports = 445 139 large readwrite = Yes max protocol = NT1 min protocol = CORE read bmpx = No read raw = Yes write raw = Yes disable netbios = No reset on zero vc = No acl compatibility = auto defer sharing violations = Yes nt pipe support = Yes nt status support = Yes announce version = 4.9 announce as = NT max mux = 50 max xmit = 16644 name resolve order = wins bcast dns host max ttl = 259200 max wins ttl = 518400 min wins ttl = 21600 time server = Yes unix extensions = Yes use spnego = Yes client signing = auto server signing = No client use spnego = Yes enable asu support = No deadtime = 0 getwd cache = Yes keepalive = 300 lpq cache time = 30 max smbd processes = 0 paranoid server security = Yes max disk size = 0 max open files = 500 open files database hash size = 10007 socket options = SO_KEEPALIVE SO_BROADCAST TCP_NODELAY SO_SNDBUF=16384 SO_RCVBUF=16384 IPTOS_LOWDELAY use mmap = Yes hostname lookups = No name cache timeout = 660 load printers = No printcap cache time = 750 disable spoolss = No show add printer wizard = Yes mangling method = hash2 mangle prefix = 1 max stat cache size = 1024 stat cache = Yes machine password timeout = 604800 add user script = /usr/local/sbin/smbldap-useradd -m "%u" delete user script = /usr/local/sbin/smbldap-userdel "%u" add group script = /usr/local/sbin/smbldap-groupadd -p "%g" delete group script = /usr/local/sbin/smbldap-groupdel "%g" add user to group script = /usr/local/sbin/smbldap-groupmod -m "%u" "%g" delete user from group script = /usr/local/sbin/smbldap-groupmod -x "%u" "%g" set primary group script = /usr/local/sbin/smbldap-usermod -g "%g" "%u" add machine script = /usr/local/sbin/smbldap-useradd