If your IP addresses are statically assigned, you could put them in the
hosts file too. The Windows hosts file is in
WINDOWS\system32\drivers\etc
Of course, any time anything changes, you'll have to update your hosts
files. Whether that's better or worse than having a WINS server or
using the IP
ly the group we had to set this up for was small enough to just
do the access individually.
~Eric
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]
> On Behalf Of Eric Diven
> Sent: Tuesday, December 02, 2008 10:28 AM
> To: samba@lists.samba.o
The answer is probably going to depend upon exactly how the files are
offline. The Tobi Oetiker samfs patch will compare the size of the
files to the number of blocks on disk that the file is taking up, and
set the offline bit for any file where the num_blocks * 512 < file_size.
The patch files on
> -Original Message-
> From: Gerald (Jerry) Carter [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, December 02, 2008 12:29 PM
> To: [EMAIL PROTECTED]
> Cc: Eric Diven; samba@lists.samba.org
> Subject: Re: [Samba] Problems joining a domain with a large
> number of DC
> > I hate to drag this one up again, but I'm having issues with that
> > snapshot of 3-0-test (smbd crashing, can't pin it to
> anything). Are
> > the fixes actually in 3.0.33, or do I need to get a more recent
> > version of 3-0-test? I've looked at the release notes and
> I don't see
> >
> You might want to use the latest git checkout of 3-0-test,
> for example available via
>
> http://repo.or.cz/w/Samba.git?a=snapshot;h=af33c8b3521564c;sf=tgz
>
> as there have been fixes for the server affinity cache during join.
>
> Volker
>
I hate to drag this one up again, but I'm having
This works if I assign the permissions to the primary group that the
user belongs to. I seem to remember this working for arbitrary groups
in the past. Can anybody clarify?
Thanks,
~Eric
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]
> On Be
I've got a relatively simple permissions scheme I need to implement, and
I'm having issues with group membership.
I have a share that I need to grant an active directory group full
control to. If I add an AD user to the ACL on the directory that is the
root of the share, the user can access it.
I have two samba servers with pretty much identical setups (same
smb.conf, smbd, winbindd, libnss_winbind.so binaries), joined to the
same domain, one of which works, one doesn't. I'm seeing smbd crashing
when I try to connect to the problem server with the following
information in the logs.
OS i
> > > I'm having issues joining samba to a domain with a large
> number of
> > > domain controllers. The domain is a mixed windows
> > 2003/windows 2008
> > > domain. The samba server is Solaris 10 update 5 running on SPARC.
> > >
> > > I have a custom samba build of samba 3.0.28 on the server
> > It looks like all of this stuff is under source/lib. It's like the
> > autoconf equivalent of CPPFLAGS needs to be set so it picks up the
> > directories that contain the stuff. More research.
>
> You might just run ./autogen on a recent linux box and scp
> the result to Solaris.
>
> Vol
> -bash-3.00$ autoconf
> /usr/local/bin/m4:lib/replace/libreplace.m4:359: cannot open
> `libreplace_cc.m4': No such file or directory
> /usr/local/bin/m4:lib/replace/libreplace.m4:360: cannot open
> `libreplace_macros.m4': No such file or directory
> /usr/local/bin/m4:lib/replace/libreplace.m4:361:
Sorry for the double post, I've been doing some more looking into this,
and it seems like this is a separate problem of more general interest
than my original AD issue.
My understanding is that the repository does not maintain a configure
script in the source directory. Packaged releases of the s
> > I'm having issues joining samba to a domain with a large number of
> > domain controllers. The domain is a mixed windows
> 2003/windows 2008
> > domain. The samba server is Solaris 10 update 5 running on SPARC.
> >
> > I have a custom samba build of samba 3.0.28 on the server
> because w
> > > On Tue, Nov 04, 2008 at 05:59:25PM -0500, Eric Diven wrote:
> > > I'm having issues joining samba to a domain with a large
> number of
> > > domain controllers. The domain is a mixed windows
> > 2003/windows 2008
> > > domain. The sa
> On Tue, Nov 04, 2008 at 05:59:25PM -0500, Eric Diven wrote:
> > I'm having issues joining samba to a domain with a large number of
> > domain controllers. The domain is a mixed windows
> 2003/windows 2008
> > domain. The samba server is Solaris 10 update 5 runnin
I'm having issues joining samba to a domain with a large number of
domain controllers. The domain is a mixed windows 2003/windows 2008
domain. The samba server is Solaris 10 update 5 running on SPARC.
I have a custom samba build of samba 3.0.28 on the server because we
need Tobi Oetiker's samfs
upports NFS v4 ACLs (rare enough, I know),
could you remove WRITE_DACL permission from the owner's ACE?
~Eric
-Original Message-
From: Jan Patrick Lübbert [mailto:[EMAIL PROTECTED]
Sent: Monday, June 16, 2008 10:49 AM
To: Eric Diven
Subject: Re: [Samba] Restrict permission changes
I have a unix group that owns some files on a share, and I'd like to set
up a group mapping so that an Active directory group (with an exising
mapping in winbind from earlier use) gets access to these files via a
mapping.
I've been fooling around with net groupmap add, and haven't been able to
get
I'm using 3.0.23d on Solaris 10 successfully. I was using 3.0.24 and
3.0.25[x] but was having ACL related problems with them. I never had
the problem you're having though. Of course Solaris 10 != Solaris 8,
but it's something to try. Good luck.
~Eric
-Original Message-
From: [EMAIL PR
A couple of obvious questions:
I'm going to assume you've restarted winbindd and smbd, but I thought
I'd mention it because I've done similarly dumb things.
How many users/groups are you enumerating into winbind? It seems like
unless you're on a huge domain, you're not going to have 2. wb
fig
changes, nothing.
~Eric
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
Of Eric Diven
Sent: Monday, November 05, 2007 12:55 PM
To: samba@lists.samba.org
Subject: RE: [Samba] ACL changes on Samba NT 4.0 Member Server
Not neccessarily, console login is controlled
Not neccessarily, console login is controlled by PAM, not winbind. If
you haven't set up PAM (and you shouldn't need to for just setting up a
file share), you won't be able to log in at the console (or by ssh,
etc).
I'm still fighting this on my side as well, for what it's worth. If I
figure i
Sorry, brain-fart, you'll probably be interested in knowing what version
does work. The latest version of Samba that I've tested as working with
the password issue is 3.0.24. I'm having trouble getting ACL support to
work with it, but I have got ADS and winbind working seamlessly.
~Eric
-O
I'm pretty sure it's Solaris specific, I didn't have problems on my
CentOS box I've been using as a reference machine. See this bug in
bugzilla: https://bugzilla.samba.org/show_bug.cgi?id=4863
~Eric
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
Of Gaiseri
I'm seeing behavior that I was hoping somebody could explain. I have a
share set up that will be a repository for company-wide data. There are
three classes of people who can access it, readers, read/writers, and
admins. Readers and read/writers are self explanatory, admins have
read/write acces
At the suggestion of Stas, I'm starting a new thread on this one. This
pretty much covers where I'm at right now:
Doug, thanks, here's a complete listing of the config file, and some
logging, hopefully this will be illuminating to somebody.
> Neither of these lines set the log level.
Yes, I've
Doug, thanks, here's a complete listing of the config file, and some
logging, hopefully this will be illuminating to somebody.
> Neither of these lines set the log level.
Yes, I've been setting it in the init script. When I do ps -ef | grep
smbd, I see that logging is enabled. I straightened ou
Whoops, meant to go to the list, sorry.
~Eric
-Original Message-
From: Eric Diven
Sent: Tuesday, October 30, 2007 11:29 AM
To: '[EMAIL PROTECTED]'
Subject: RE: [Samba] Can't see or change ACLs on Windows
On Tue, Oct 30, 2007 at 10:59:41AM -0400, Eric Diven wrote:
>
ing a kernel/fs that support ACLs, which
I've tested on both sides using regular unix tools.
~Eric
-Original Message-
From: Stas [mailto:[EMAIL PROTECTED]
Sent: Tuesday, October 30, 2007 7:03 AM
To: Eric Diven
Cc: samba@lists.samba.org
Subject: Re: [Samba] Can't see or change AC
-Original Message-
From: Stas [mailto:[EMAIL PROTECTED]
Sent: Monday, October 29, 2007 1:37 PM
To: Eric Diven
Subject: Re: [Samba] Can't see or change ACLs on Windows
well , lets's try again ..
create test directory " /samba/testdir
run # chmod 777 -R /samba/testdir
-Original Message-
From: Stas [mailto:[EMAIL PROTECTED]
Sent: Friday, October 26, 2007 6:56 PM
To: Eric Diven
Cc: samba@lists.samba.org
Subject: Re: [Samba] Can't see or change ACLs on Windows
any errors in samba's log?
what error exactly you get at windows box when you
riters:rwx
default:group:W2K3TEST+admins:rwx
default:mask:rwx
default:other:---
bash-3.00#
~Eric
-Original Message-
From: Stas [mailto:[EMAIL PROTECTED]
Sent: Friday, October 19, 2007 6:22 PM
To: Eric Diven
Cc: samba@lists.samba.org
Subject: Re: [Samba] Can't see or change ACLs on Windows
strange
;m logged in as.
~Eric
-Original Message-
From: Stas [mailto:[EMAIL PROTECTED]
Sent: Friday, October 19, 2007 12:13 AM
To: Eric Diven
Cc: samba@lists.samba.org
Subject: Re: [Samba] Can't see or change ACLs on Windows
make sure that user logged in to windows box is an owner of file
On Thu, Oct 18, 2007 at 09:11:59AM -0400, Eric Diven wrote:
> Here you go:
>
> bash-3.00# /usr/local/samba/sbin/smbd -b | grep ACL
>HAVE_SYS_ACL_H
>HAVE_SOLARIS_ACLS
>HAVE__ACL
>HAVE__FACL
>
> It looks plausible to me, but I'm assuming you know
pt is starting. If I've done something stupid again, it isn't
that ;-)
~Eric
-Original Message-
From: Volker Lendecke [mailto:[EMAIL PROTECTED]
Sent: Thursday, October 18, 2007 2:10 AM
To: Eric Diven
Cc: samba@lists.samba.org
Subject: Re: [Samba] Can't see or change ACLs on Win
ee
them with getfacl.
~Eric
-Original Message-
From: Stas [mailto:[EMAIL PROTECTED]
Sent: Wednesday, October 17, 2007 5:05 PM
To: Eric Diven
Cc: samba@lists.samba.org
Subject: Re: [Samba] Can't see or change ACLs on Windows
do you have " nt acl support = yes" in smb.conf ?
i
I've tested this on CentOS 4.3 and am seeing the same issue. It seems
like it's probably a configuration problem, but I'll be damned if I can
figure it out.
~Eric
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
Of Eric Diven
Sent: Wednes
I have samba server joined to a domain that I'm trying to use ads
security and acls on. I can set acls on the Unix file system, and
access from a windows client seems to honor them. I can't view the acls
under the security tab, all I see are the standard Unix permissions
instead. If I try to add
On Samba 3.0.24, on Solaris 10, I can set ACLs from the command line
using setfacl and view them using getfacl. When I look at the security
for the mounted share on Windows, I only see the owner, group and world
permissions. I can modify those permissions, at least for world. What
I can't do is
r the help on this one. I apologize for taking up your time
with that.
~Eric
-Original Message-
From: Stas [mailto:[EMAIL PROTECTED]
Sent: Tuesday, October 09, 2007 4:08 PM
To: Eric Diven
Cc: samba@lists.samba.org
Subject: Re: [Samba] Can't chown a file to an ADS username
well
mailto:[EMAIL PROTECTED]
Sent: Tuesday, October 09, 2007 2:31 PM
To: Eric Diven
Cc: samba@lists.samba.org
Subject: Re: [Samba] Can't chown a file to an ADS username
well , at least we know that getent calls winbind ...
"close(4)" - the last line in strace output ?
try # ldd /lib/l
's my understanding of how it should work.
~Eric
-Original Message-
From: Greg Byshenk [mailto:[EMAIL PROTECTED]
Sent: Tuesday, October 09, 2007 12:32 PM
To: samba@lists.samba.org
Cc: Eric Diven
Subject: Re: [Samba] Can't chown a file to an ADS username
On Tue, Oct 09, 2007 at 09:33:4
T_WRITE,
MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0xcac000
close(4)
Clearly, it's looking for libnss_winbind.so.2 in a bunch of places where
it isn't, and then finding it in /lib. What is happening with old_mmap
is beyond my knowledge, however. Does this help you any?
~Eric
ssage-
From: Stas [mailto:[EMAIL PROTECTED]
Sent: Monday, October 08, 2007 5:04 PM
To: Eric Diven
Cc: samba@lists.samba.org
Subject: Re: [Samba] Can't chown a file to an ADS username
the winbindd.log you posted contains winbind startup messages?
if not try to restart winbind and check wi
ailto:[EMAIL PROTECTED] On Behalf
Of Eric Diven
Sent: Monday, October 08, 2007 4:15 PM
To: samba@lists.samba.org
Subject: RE: [Samba] Can't chown a file to an ADS username
I'm not actually getting much from it. I'm assuming that all of
winbinds logging goes to [logpath]/winbindd.log.
t I'm a little
suspicious that nothing shows up on getent passwd.
~Eric
-Original Message-
From: Stas [mailto:[EMAIL PROTECTED]
Sent: Monday, October 08, 2007 12:50 PM
To: Eric Diven
Cc: samba@lists.samba.org
Subject: Re: [Samba] Can't chown a file to an ADS username
winbind&
Samba version is 3.0.24, running on CentOS 4.3, sorry about that.
~Eric
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
Of Eric Diven
Sent: Monday, October 08, 2007 12:35 PM
To: samba@lists.samba.org
Subject: [Samba] Can't chown a file to an ADS use
I've got a samba install on Linux with winbind installed, etc. I've
configured it the same as I have under Solaris, but for some reason, I
can't chown a file to an AD username. I have joined the box to the
domain, I can wbinfo -u/-g and get lists of users and groups on the
domain. When I run get
I'm having trouble getting Samba working on Solaris 10 with a large
active directory (35000 users, 5000 groups). I've set this up
successfully in the past with winbind enum users = yes and winbind enum
users = yes in the smb.conf file. Owing to the large number of users in
this application, I nee
50 matches
Mail list logo