Re: [Samba] poor performance - multiuser fileserver database (ms-access)
daniel arjona escribió: I have a file server running with Samba over Debian Sarge 3.1 R1. This File server store MDB and XLS files. Could anybody give me an optimal Hmmm... ¿mdb files? Perhaps the bottleneck is the mdb itself. Jet databases get locked when anyone writes them. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Problem with adding printer drivers in Windows XP
Hi Tom! You need appropriate rights on the windows- and the unix-side. To find out, if you're facing a problem with the unix-rights (which is often the problem), you could try this: 1. Log in directly to the drivers share and create or delete some files in the W32X86 directory. On Windows: start - execute - \\nightwolf\print$ On Linux: smbclient nightwolf\\print$ -U 'administrator%password' If this succeeds ... you should be able to add drivers, too. 2. Find out on the samba server which unix-user-id is used by the smbd: smbstatus Samba version 3.0.20b PID Username Group Machine --- 14293 SAVAGEPHP\administrator SAVAGEPHP\domänen-benutzer martin (192.168.3.74) Service pid machine Connected at --- print$ 14293 martinThu May 11 08:41:56 2006 3. Become this user on the samba server (as root): su SAVAGEPHP\\administrator cd /var/lib/samba/drivers/W32x86 mkdir xxx 4. If you have a unix-rights-problem this does not succeed. Check your directory settings (also have a look at the W32X86/2 and W32X86/3 directory. Hope that helps ~ Martin Tom wrote: I know this question has been asked quite a few times from the archive, but nothing in the previous posts seems to help my setup. I currently have samba 3.0.21c running on Slackware with CUPS as the printing conduit. It's setup as a PDC as can be seen from the smb.conf file below. I cannot, no matter what I've tried, get the server to allow me to add printer drivers to a printer through the printer properties dialog box. I've given myself the SePrintOperatorPrivilege rights but that didn't work. I tried putting the 'printer admin' directive in the smb.conf file and that didn't work; I know it's deprecated but thought I'd try anyway. Any suggestions would be greatly appreciated as I've been on IRC several times trying to figure this out with no success. I've also tried logging in as 'root' and 'administrator' neither of which work; my /etc/samba/smbusers contains a line: 'root = Administrator'. Configuration files are attached. If any other information is needed I will gladly supply it. Thank you. Tom -- Martin Zielinski [EMAIL PROTECTED] Software Development SEH Computertechnik GmbH www.seh.de -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] rpcclient enumdrivers fails with WERR_UNKNOWN_PRINTER_DRIVER
Hello I've just updated to Samba version 3.0.22 (previously v3.0.4a) and get the following problem: rpcclient enumdrivers fails with WERR_UNKNOWN_PRINTER_DRIVER while rpcclient getdriver works just fine! Can this be? $ rpcclient -c enumdrivers GUTENBERG Password: result was WERR_UNKNOWN_PRINTER_DRIVER $ rpcclient -c 'getdriver lg403-lj5000' GUTENBERG Password: [Windows NT x86] Printer Driver Info 3: Version: [3] Driver Name: [HP LaserJet 5000 Series PCL 5e] Architecture: [Windows NT x86] Driver Path: [\\GUTENBERG\print$\W32X86\3\hpbf241g.dll] Datafile: [\\GUTENBERG\print$\W32X86\3\hpbf241i.pmd] Configfile: [\\GUTENBERG\print$\W32X86\3\hpbf241e.dll] Helpfile: [\\GUTENBERG\print$\W32X86\3\hpbf241e.hlp] Dependentfiles: [\\GUTENBERG\print$\W32X86\3\hpdcmon.dll] Dependentfiles: [\\GUTENBERG\print$\W32X86\3\hpbftm32.dll] Dependentfiles: [\\GUTENBERG\print$\W32X86\3\hpbafd32.dll] Monitorname: [] Defaultdatatype: [] The (presumably) same behaviour also shows in Windows: I can install drivers into the print$ share from a windows client and it works. But the list of available drivers on the server remains empty. Any ideas on what causes this behaviour? Thanks a lot, Urs-Jakob -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] No XP machines in browse list with 3.0.22
Upgraded the domain controllers in our 2 sites from 3.0.20 to 3.0.22. The one running Suse Linux is working fine, but the Solaris 8 domain controller doesn't list any XP machines in its browse list (the Firewall is off on the XP machines). Lists Unix machines, 2000 and 2003 machines. This was all working in 3.0.20. Has anything changed? Below the global part of our smb.conf: [global] workgroup = MYDOMAIN server string = %h hosts allow = 192.168.191. 192.168.193. 127. interfaces = 194.168.191.61/255.255.255.0 192.168.193.61/255.255.255.0 log file = /var/log/samba/%m.log log level = 1 syslog = 0 load printers = yes printing = cups printcap name = cups domain master = yes domain logons = yes local master = yes preferred master = yes name resolve order = wins lmhosts host bcast username map = /home/samba/lib/users.map wins support = yes time server = yes os level = 65 encrypt passwords = yes security = user logon script = netlogon.bat logon path = \\%N\profile\%a\%u logon drive = q: Michael -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] No XP machines in browse list with 3.0.22
Ignore this. Stopped Samba, removed browse.dat and wins.dat, started Samba. Seems to have fixed the problem. Michael On Thu, May 11, 2006 at 11:32:47AM +0100, Michael Keightley wrote: Upgraded the domain controllers in our 2 sites from 3.0.20 to 3.0.22. The one running Suse Linux is working fine, but the Solaris 8 domain controller doesn't list any XP machines in its browse list (the Firewall is off on the XP machines). Lists Unix machines, 2000 and 2003 machines. This was all working in 3.0.20. Has anything changed? Below the global part of our smb.conf: [global] workgroup = MYDOMAIN server string = %h hosts allow = 192.168.191. 192.168.193. 127. interfaces = 194.168.191.61/255.255.255.0 192.168.193.61/255.255.255.0 log file = /var/log/samba/%m.log log level = 1 syslog = 0 load printers = yes printing = cups printcap name = cups domain master = yes domain logons = yes local master = yes preferred master = yes name resolve order = wins lmhosts host bcast username map = /home/samba/lib/users.map wins support = yes time server = yes os level = 65 encrypt passwords = yes security = user logon script = netlogon.bat logon path = \\%N\profile\%a\%u logon drive = q: Michael -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- Michael Keightley IT Manager Portrait Quadstone Direct: +44 131 240 3137| Fax: +44 131 220 4492 E-mail: [EMAIL PROTECTED] Website: www.portraitsoftware.com | www.quadstone.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: Joining Domain on Solaris, Get_Pwnam_internals didn't find user
Hi, Well, I figured it out myself. The Samba configuration was basically ok, so was the config of the smbldap-tools and nsswitch. The mistake was, that on Solaris 10 nscd is running by default and performing 5 seconds negative caching for group, passwd, hosts etc.: nscd.conf: negative-time-to-live passwd 5 negative-time-to-live group 5 negative-time-to-live hosts 5 Together with my smb.conf... add machine script = /opt/IDEALX/sbin/smbldap-useradd -t 0 -w %u ...this produced the strange LDAP log without any SEARCH after ADD DN - as well as the error that samba couldn't find the user as samba's first search correctly returned not found and after ADD DN, the second not found came directly from nscd's cache. Any combination of a negative-time-to-live passwd in nscd.conf with a greater-than-that -t parameter in smb.conf works fine for me. I have lowered the nscd TTL to 3s and -t is set to 8s; turning negative caching off will most likely have performance implications so I decided not to but YMMV. Maybe this should be pointed out in the Samba HOWTO/examples and/or IDEALX installation guide as a hint for Solaris users as 5s in nscd and -t 0 are the default settings. cheers, thomas -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Trust relationship and LDAP backend
Hi, I have a domain using LDAP backend, and recently we've managed to establish a trust relation with another domain in our network, which uses a pure NT4 server. After that, some accounts from the trusted domain started being created in our base. The user created doesn't have the same attributes as a valid user (he doesn't have sambaSamAccount, for example). But for auditing purposes, this shouldn't happen. Is this a normal behaviour? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Problem with adding printer drivers in Windows XP
Well, all the below tests succeeded without changing anything but I still cannot upload drivers from WinXP. One thing I did notice though, is that I cannot 'su' to a domain user; ie: 'su SAVAGEPHP\\administrator' fails with the message: Unknown id: SAVAGEPHP\administrator. Any thoughts on that? Thanks. Martin Zielinski wrote: Hi Tom! You need appropriate rights on the windows- and the unix-side. To find out, if you're facing a problem with the unix-rights (which is often the problem), you could try this: 1. Log in directly to the drivers share and create or delete some files in the W32X86 directory. On Windows: start - execute - \\nightwolf\print$ On Linux: smbclient nightwolf\\print$ -U 'administrator%password' If this succeeds ... you should be able to add drivers, too. 2. Find out on the samba server which unix-user-id is used by the smbd: smbstatus Samba version 3.0.20b PID Username Group Machine --- 14293 SAVAGEPHP\administrator SAVAGEPHP\domänen-benutzer martin (192.168.3.74) Service pid machine Connected at --- print$ 14293 martinThu May 11 08:41:56 2006 3. Become this user on the samba server (as root): su SAVAGEPHP\\administrator cd /var/lib/samba/drivers/W32x86 mkdir xxx 4. If you have a unix-rights-problem this does not succeed. Check your directory settings (also have a look at the W32X86/2 and W32X86/3 directory. Hope that helps ~ Martin Tom wrote: I know this question has been asked quite a few times from the archive, but nothing in the previous posts seems to help my setup. I currently have samba 3.0.21c running on Slackware with CUPS as the printing conduit. It's setup as a PDC as can be seen from the smb.conf file below. I cannot, no matter what I've tried, get the server to allow me to add printer drivers to a printer through the printer properties dialog box. I've given myself the SePrintOperatorPrivilege rights but that didn't work. I tried putting the 'printer admin' directive in the smb.conf file and that didn't work; I know it's deprecated but thought I'd try anyway. Any suggestions would be greatly appreciated as I've been on IRC several times trying to figure this out with no success. I've also tried logging in as 'root' and 'administrator' neither of which work; my /etc/samba/smbusers contains a line: 'root = Administrator'. Configuration files are attached. If any other information is needed I will gladly supply it. Thank you. Tom -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Trust relationship and LDAP backend
On Thu, 2006-05-11 at 08:42 -0300, Carlos Eduardo Pedroza Santiviago wrote: Hi, I have a domain using LDAP backend, and recently we've managed to establish a trust relation with another domain in our network, which uses a pure NT4 server. After that, some accounts from the trusted domain started being created in our base. The user created doesn't have the same attributes as a valid user (he doesn't have sambaSamAccount, for example). But for auditing purposes, this shouldn't happen. Is this a normal behaviour? if you don't use winbindd (nss_winbindd) it is. Samba needs a posix user to be able to accept any login on the server. if you run winbindd in trusted domain only mode then it will create posix accounts for you on the fly (allocating them out of the idmap uid range). If you do not provide corresponding posix accounts for trusted users then samba will try to create users in the local account storage by means of the add user account scripts. (But it will not populate them with windows account attributes because they are not local accounts, and all the information is retrieved by the remote trusted server). I recommend you to use winbindd in such environment, it will not only keep your ldap tree clear but it will also act as a connection proxy and will lessen the oad on your DCs as well do some caching. Simo. -- Simo Sorce Samba Team GPL Compliance Officer email: [EMAIL PROTECTED] http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] rpcclient enumdrivers fails with WERR_UNKNOWN_PRINTER_DRIVER
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Urs-Jakob Rueetschi wrote: Hello I've just updated to Samba version 3.0.22 (previously v3.0.4a) and get the following problem: rpcclient enumdrivers fails with WERR_UNKNOWN_PRINTER_DRIVER while rpcclient getdriver works just fine! Can this be? $ rpcclient -c enumdrivers GUTENBERG Password: result was WERR_UNKNOWN_PRINTER_DRIVER EnumDrivers() does take a printer an as argument IIRC. cheers, jerry = Samba--- http://www.samba.org Centeris --- http://www.centeris.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFEY0KnIR7qMdg1EfYRAk/hAJ9yusystu8jzjtY/TtJpu+iMUq0MQCeJq2c cFWqOstQUBJGw0jrxjLysxY= =QNSa -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] File creation permission issue
When users create a file on this share, the files are created with
permission's equal to 764 (rwxrw-r--). I want the permission's to be 760
(rwxrw). How can I accomplish this for this share? Here is my .conf
for the global and this share. My version of SAMBA is 3.0.20b-3 on
openSUSE 10:
Thanks in advance,
Mike
# Global parameters
[global]
workgroup = SCMC
netbios name = SCMCSERVER1
interfaces = eth0, lo
bind interfaces only = Yes
passdb backend = tdbsam
smb ports = 139
add user script = /usr/sbin/useradd -m '%u'
delete user script = /usr/sbin/userdel -r '%u'
add group script = /usr/sbin/groupadd '%g'
delete group script = /usr/sbin/groupdel '%g'
add user to group script = /usr/sbin/usermod -G '%g' '%u'
add machine script = /usr/sbin/useradd -c Machine -d
/var/lib/nobody -s /bin/false %m$
preferred master = Yes
wins support = Yes
include = /etc/samba/dc-common.conf
shutdown script = /var/lib/samba/scripts/shutdown.sh
abort shutdown script = /sbin/shutdown -c
logon script = scripts\logon.bat
logon path = \\%L\profiles\%U
logon drive = X:
logon home = \\%L\%U
domain logons = Yes
preferred master = Yes
domain master = Yes
username map = /etc/samba/smbusers
log level = 1
syslog = 0
log file = /var/log/samba/%m
max log size = 50
smb ports = 139
name resolve order = wins bcast hosts
time server = Yes
printcap name = CUPS
show add printer wizard = No
shutdown script = /var/lib/samba/scripts/shutdown.sh
abort shutdown script = /sbin/shutdown -c
utmp = Yes
map acl inherit = Yes
printing = cups
veto files = /*.eml/*.nws/*.{*}/
veto oplock files = /*.doc/*.xls/*.mdb/
[vol1]
comment = top level map for scmc
path = /shared/vol1
read only = No
admin users = mzozakiewicz
force create mode = 0660
force directory mode = 0770
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] proposed list of parameter to remove in 3.0.23
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Here's a short list of parameters I'd like to remove from smb.conf. hosts equiv read bmpx wins partners ldap server ldap port homedir map nis homedir magic script magic output Comments? jerry -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFEY02DIR7qMdg1EfYRAskEAKCjH9AyU3SxLGGL9olMm50GR5fCKACfVlyB JfaI2rdj6wdebHKbZ3Rzfto= =2sqN -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] probleman on transference win98
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I am using debian with the samba 3.0.14a-Debian and am having problems with the trasnference of archives of the Windows 98. The names of the archives are in capital letters and when it enters in the samba the archive arrives of very small form. In the smb.conf exist this line: default case = lower preserve case = yes short preserve case = yes Some ideias? -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.3 (FreeBSD) iD8DBQFEY0dfyJq2hZEymxcRAtZ5AKCCFDs8GCFGRnAWNPJ2P1+1JkfQ/wCfUtrm g5oekRTZWG6wxaTFq5jav2w= =jxn9 -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba over Debian Sarge 3.1 R1. This File server store MDB and XLS files.
You have asked this question several times and received replies every time. 1) The performance of MS Access over the network is poor under any server, windows servers may buy you more time, but not a lot. The performance of MS Access on the network is inversely proportional to a combination of number of clients, latency of the network, size of database, and write pattern of your application. As ANY of these values increase your performance will go into the toilet no matter what server you use. 2) You continue to tweak setting that you should not ( ie write cache size ) and have been told by Jeremy that it is not a good idea, yet those values continue to part of your config. When Jeremy states explicitly that the setting will do no good, I would listen. I really don't want to discourage you from using SAMBA, but you must help yourself and have realistic expectations as to the scalability of your application. Personally I would remove all tuning from the smb.conf and then do testing by adding and removing various combinations of tunings until you find something that is both acceptable in terms of performance and stability. You should also investigate any tuning of the underlying system that may also help I/O throughput on your system as a whole, you might be surprised how much that can help. The best solution would be to abandon your MS Access database and develop ( with your shiny new Debian box ) a LAMP style solution that will provide you with much more scalability and portability, but I realize that is probably not going to happen. Cheers, Eric On 5/9/06, daniel arjona [EMAIL PROTECTED] wrote: I have a file server running with Samba over Debian Sarge 3.1 R1. This File server store MDB and XLS files. Could anybody give me an optimal setup for my samba server (smb.conf). Actually, the performance is very poor. I really apreciate your help as soon as possible. My supervisor wants to change the operating system (Linux) for Windows 2003 Server. I do not want to do that. I love Linux. Thanks, [global] workgroup = REVLON netbios name = FILE_SRV security = user encrypt passwords = yes passwd program = /usr/bin/passwd %u unix password sync = yes socket options = IPTOS_LOWDELAY TCP_NODELAY hosts deny = ALL hosts allow = 172.18.40. 127.0.0.1 debug level = 1 create mask = 0777 directory mask = 0775 read raw = no write cache size = 262144 # oplocks = no veto oplock files = /*.mdb/*.MDB/ myshare] comment = Arjona's Files path = /home/darjona valid users = darjona pc08 pc18 public = no writable = yes printable = no browseable = yes Daniel Arjona Net Admin GENCO Distribution Systems http://www.genco.com/ 8740 Robert Fulton Dr Columbia, MD 21046 Ph: 410-872-0875 X12 Fax: 410-872-0877 [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: proposed list of parameter to remove in 3.0.23
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Gerald (Jerry) Carter wrote: Here's a short list of parameters I'd like to remove from smb.conf. hosts equiv read bmpx wins partners ldap server ldap port homedir map nis homedir magic script magic output Comments? I'd also like to kill the following configure options --with-nisplus-home --with-ldapsam --with-automount --with-dce-dfs cheers, jerry = Samba--- http://www.samba.org Centeris --- http://www.centeris.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFEY0+FIR7qMdg1EfYRAgNpAKCFTcT5d2hCKD3zkz6l49XwaFQp6gCgsYI8 V1CBu1UvJUQHCx5jLpXtPNA= =wDix -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba ldap domain join
I got passed this by permitting anonymous writes to sambadomain
and ou=computers in LDAP ( not ideal, but I really want this to work
already ). Now I'm running into another problem.
It seems that eventhough the machine accounts get created upon successful
authentication, it fails to find that same machine account during the same
or another operation to actually join the domain.
The search string it uses has objectclass=sambaSamAccount. Apparently, the
newly created machine account doesn't have that object class. Also there's
no sambasid entry for the machine account ( not sure if it needs one, but
if sambaSamAccount requires that, I guess it does ? )
In addition to that, the search base it uses to look for the machine
accounts only has the parent suffix, without the ou=computers.
Samba user accounts can be added with smbpasswd and all the sids,
passwords and other attributes are set correctly.
Another issue is that idmap ou doesn't get seem to get populated with any
entries at all, but I also don't know if it should be.
base = [dc=mydomain,dc=com]
[((uid=computer$)(objectclass=sambaSamAccount))]
smb.conf
add user script = /usr/local/samba/bin/smbldap-useradd -n %u
add machine script = /usr/local/samba/bin/smbldap-useradd -n -d
/dev/null -s /bin/false -w %m
ldap admin dn = cn=Directory Manager
ldap group suffix = ou=groups
ldap idmap suffix = ou=idmap
ldap machine suffix = ou=computers
ldap suffix = dc=mydomain,dc=com
ldap ssl = no
ldap user suffix = ou=people
idmap backend = ldapsam:ldap://myldapserver
idmap uid = 1-3
idmap gid = 1-3
smb-ldap.conf
suffix=dc=mydomain,dc=com
usersdn=ou=People,${suffix}
computersdn=ou=computers,${suffix}
groupsdn=ou=Groups,${suffix}
idmapdn=ou=idmap,${suffix}
sambaUnixIdPooldn=sambaDomainName=LDAPAUTH,${suffix}
thank you.
Still can't figure this one out.
I get
Error: Insufficient 'write' privilege to the 'uidNumber' attribute of
entry 'sambadomainname=ldapauth,dc=mydomain,dc=com'.[2006/05/09 10:29:16,
0] rpc_server/srv_samr_nt.c:(2415)
_samr_create_user: Running the command
`/usr/local/samba/bin/smbldap-useradd -n -g machines -c Machine -d
/dev/null -s /bin/false computer$' gave 1
when trying to join the domain from WinXP workstation.
but if I run this manually
/usr/local/samba/bin/smbldap-useradd -w machine$
machine$ computer account gets created exactly where it's expected, under
ou=computers. Why isn't the default action creating machine
accounts with -w switch ? Do I misunderstand something ?
If simply browsing shares all windows auth. works fine via ldap.
thank you all.
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files
On 5/11/06, Jeremy Allison [EMAIL PROTECTED] wrote: On Wed, May 10, 2006 at 12:29:53PM -0400, Claus Lund wrote: Well, then Windows Explorer is braindamaged as well (which is a claim I won't contest ;) )... because it's slow deleting files right through Explorer as well. Yep - I completely agree Explorer is braindamaged. That's probably the worst of the lot :-). Well, it looks like a Samba problem to me (or maybe a compiler/compiler optimization problem?). I'm trying to get Samba compiled using IBM's XLC instead of GCC in the hopes that XLC might produce faster running binaries ... but unfortunately that seems like a somewhat involved task (Samba doesn't compile cleanly out of the box with XLC). If it only happens on AIX, it's not a Samba code logic problem, that's what I mean. I doubt modifying compiler flags will do anything about actions taking seconds to resolve - that's almost certainly a system problem (ie. JFS on AIX). sounds like samba is recreating the directory hash for change notifies -- James Peach | [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files
On Fri, May 12, 2006 at 12:50:37AM +1000, James Peach wrote: On 5/11/06, Jeremy Allison [EMAIL PROTECTED] wrote: On Wed, May 10, 2006 at 12:29:53PM -0400, Claus Lund wrote: Well, then Windows Explorer is braindamaged as well (which is a claim I won't contest ;) )... because it's slow deleting files right through Explorer as well. Yep - I completely agree Explorer is braindamaged. That's probably the worst of the lot :-). Well, it looks like a Samba problem to me (or maybe a compiler/compiler optimization problem?). I'm trying to get Samba compiled using IBM's XLC instead of GCC in the hopes that XLC might produce faster running binaries ... but unfortunately that seems like a somewhat involved task (Samba doesn't compile cleanly out of the box with XLC). If it only happens on AIX, it's not a Samba code logic problem, that's what I mean. I doubt modifying compiler flags will do anything about actions taking seconds to resolve - that's almost certainly a system problem (ie. JFS on AIX). sounds like samba is recreating the directory hash for change notifies It only does that every 30 seconds or so - so I don't think that is the problem (although turning if off might prove me wrong). Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] newbie question reguarding kerberos tickets
I recently joined a samba 3.0.22 server to AD. When I did the kinit, the AD gave me a 24 hour ticket with a 1 week renewal. Setting -r and -l to 365d did not change anything, the ticket still came back the same. However, my question is in reguard to whether this is really even needed? First, I deleted the ticket, and everything seemed to continue to work perfectly. Now, I let the ticket expire for a couple of weeks now, and yet, the samba server is working fine and users still authenticate against AD just fine. Am I missing something, or is the creation of that ticket not even needed? Thank you for your assistance. doug... -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files
sounds like samba is recreating the directory hash for change notifies It only does that every 30 seconds or so - so I don't think that is the problem (although turning if off might prove me wrong). Jeremy. How can I turn that off? I'm willing to do any testing on this issue that you can think off... :-) -Claus -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: proposed list of parameter to remove in 3.0.23
Gerald (Jerry) Carter wrote: Ryan Novosielski wrote: Gerald (Jerry) Carter wrote: Here's a short list of parameters I'd like to remove from smb.conf. hosts equiv read bmpx wins partners ldap server ldap port homedir map nis homedir magic script magic output Comments? I'd also like to kill the following configure options --with-nisplus-home --with-ldapsam --with-automount --with-dce-dfs My assumption here is that this means that these become the default behaviors that cannot be disabled? Actually, I would like to remove the functionality altogether. I'm trying to poke around to find out if any other these are still in use. I guess I must be getting ldapsam confused with some other variety of ldapsam then? That's the only one I know of that I currently use (however, it is because of a plan to MOVE to LDAP, not because we're currently using it). -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | |Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| |[EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.|IST/AST - NJMS Medical Science Bldg - C630 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files
- Original Message - From: Jeremy Allison [EMAIL PROTECTED] To: James Peach [EMAIL PROTECTED] Cc: Jeremy Allison [EMAIL PROTECTED]; Claus Lund [EMAIL PROTECTED]; samba@lists.samba.org; [EMAIL PROTECTED] Sent: Thursday, May 11, 2006 11:30 AM Subject: Re: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files On Fri, May 12, 2006 at 12:50:37AM +1000, James Peach wrote: On 5/11/06, Jeremy Allison [EMAIL PROTECTED] wrote: On Wed, May 10, 2006 at 12:29:53PM -0400, Claus Lund wrote: Well, then Windows Explorer is braindamaged as well (which is a claim I won't contest ;) )... because it's slow deleting files right through Explorer as well. Yep - I completely agree Explorer is braindamaged. That's probably the worst of the lot :-). Well, it looks like a Samba problem to me (or maybe a compiler/compiler optimization problem?). I'm trying to get Samba compiled using IBM's XLC instead of GCC in the hopes that XLC might produce faster running binaries ... but unfortunately that seems like a somewhat involved task (Samba doesn't compile cleanly out of the box with XLC). If it only happens on AIX, it's not a Samba code logic problem, that's what I mean. I doubt modifying compiler flags will do anything about actions taking seconds to resolve - that's almost certainly a system problem (ie. JFS on AIX). sounds like samba is recreating the directory hash for change notifies It only does that every 30 seconds or so - so I don't think that is the problem (although turning if off might prove me wrong). I'm looking into this here. Are you referring to stat cache? I've confirmed that 150k statx's are being done after each delete request. I mocked it up here on JFS2 and JFS. I'm mocking is up now in FC3/4 on ext3 to see if this is normal and just FS throughput issue on AIX. What's interesting is the client requests the initial list of files and you can see the exchange between Samba/client: statx(bigdir/file61702, 0x2FF20618, 128, 010) = 0 statx(bigdir/file61703, 0x2FF20618, 128, 010) = 0 kwrite(26, \0\0 @18FF S M B 2\0\0\0.., 16412) = 16412 _select(27, 0x2FF209E8, 0x, 0x, 0x2FF229E8) = 1 kread(26, \0\0\0 d, 4)= 4 kread(26, FF S M B 2\0\0\0\01807D8.., 100)= 100 statx(bigdir/file61704, 0x2FF20618, 128, 010) = 0 statx(bigdir/file61705, 0x2FF20618, 128, 010) = 0 statx(bigdir/file61706, 0x2FF20618, 128, 010) = 0 But, between deletes: statx(bigdir/file74272, 0x2FF22290, 128, 010) = 0 statx(bigdir/file74273, 0x2FF22290, 128, 010) = 0 getdirent64(21, 0x20184A28, 4096) = 4096 statx(bigdir/file74274, 0x2FF22290, 128, 010) = 0 statx(bigdir/file74275, 0x2FF22290, 128, 010) = 0 statx(bigdir/file74276, 0x2FF22290, 128, 010) = 0 I haven't verified this with ethereal yet, but I don't think the client is asking for an update while the files are still being processed... Cheers, Bill Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] rpcclient problem - no connect to 0.0.0.0
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I've had this problem for quite awhile. I'm attempting to go back through the Samba issues that have been driving me crazy during my move to a current release. Here is the issue: - --- # ./nmblookup RWJA-LM querying RWJA-LM on XXX.XXX.XXX.255 XXX.XXX.XXX.XXX RWJA-LM00 - --- Looks good to me, though, really, it should be querying itself as it is the WINS server. shrug not really a big deal though, if it gets the right answer. - --- [EMAIL PROTECTED] [/products/samba/bin] # ./rpcclient -U novosirj //RWJA-LM Password: cli_full_connection: failed to connect to //RWJA-LM20 (0.0.0.0) Cannot connect to server. Error was NT_STATUS_UNSUCCESSFUL - --- Now why would that be? It clearly knows where RWJA is? The only difference that I see here is that the 20 is there on the one and not the other. Don't remember what that means. This is also broken for LOCALHOST, incidentally. However, either of those works if I do something like this: - --- [EMAIL PROTECTED] [/products/samba/bin] # ./rpcclient -U novosirj //RWJA-LM -I XXX.XXX.XXX.XXX Password: rpcclient $ - --- Anything anyone can tell me about this? As far as I know, this is not broken on Linux on the two platforms I run for home use. It's not a big deal, but it seems a little fishy. Config issue or bug? This is on HP-UX 11i w/any recent version of Samba (possibly all of 3.0.x). - -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | |Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| |[EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.|IST/AST - NJMS Medical Science Bldg - C630 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2.2 (MingW32) iD8DBQFEY130mb+gadEcsb4RAgovAKDk+METYTMU/CgER7iYp+K5tPP0YACfQjHv AECJ8311geXAE0WmLHG5W0w= =Efql -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] rpcclient enumdrivers fails with WERR_UNKNOWN_PRINTER_DRIVER
Gerald (Jerry) Carter wrote: Urs-Jakob Rueetschi wrote: Hello I've just updated to Samba version 3.0.22 (previously v3.0.4a) and get the following problem: rpcclient enumdrivers fails with WERR_UNKNOWN_PRINTER_DRIVER while rpcclient getdriver works just fine! Can this be? $ rpcclient -c enumdrivers GUTENBERG Password: result was WERR_UNKNOWN_PRINTER_DRIVER EnumDrivers() does take a printer an as argument IIRC. Not so, according to 'man rpcclient': enumdrivers [level] Execute an EnumPrinterDrivers() call. This lists the various in- stalled printer drivers for all architectures. Refer to the MS Platform SDK documentation for more details of the various flags and calling options. Currently supported info levels are 1, 2, and 3. This is another one that's been broken for me for ages. I think it used to work before I had any/many drivers on the system. Once I got a few installed, however, all bets were off. My personal wild guess is a punctuation issue. I've run into this before, where a driver .INF included punctuation somewhere in the driver spec that got misinterpreted -- in that case I believe it was a parenthesis. Here's what I get running that command: rpcclient $ enumdrivers result was WERR_UNKNOWN_PRINTER_DRIVER What sort of info would be helpful to track this down? Level 10 debug, I suppose? -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | |Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| |[EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.|IST/AST - NJMS Medical Science Bldg - C630 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] poor performance - multiuser fileserver database (ms-access)
Sorry, I deleted a bunch of the original posts with a trigger happy delete finger, so I might've missed something in the discussion. One thing that I've found affects the performance of Windows network browsing -- and it has nothing to do with Samba -- is stale connections to servers and shares that no longer exist. On the workstation, check out the following: * Look in My Network Places and remove any shortcuts that point to servers/shares that no longer exist * Delete any drive mappings to nonexistent shares * Look in the registry at the key HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints. Under this key will be a bunch of keys; some of them will be named in the form of ##server#share. DELETE any of these so-named keys that refer to nonexistent shares/servers. The problem is that certain products, including Microsoft Office, Excel, (and I guess) Access will, whenever you attempt to open a file, try to index all of these cached network locations, even if it's not the folder that it's ultimately trying to open up. When it runs across a cached location that no longer exists, it will hang while waiting for a response from the server. If the server no longer exists, you can end up waiting several seconds to several minutes until Explorer times out in its search for the server. --Jon Johnson Sutinen Consulting, Inc. www.sutinen.com (360) 270-9317 cell On 5/10/2006 4:42 AM, daniel arjona wrote: Samba: 3.014a-Debian OS: Debian 3.1 Release 1 Sarge [global] workgroup = REVLON netbios name = FILE_SRV security = user encrypt passwords = yes passwd program = /usr/bin/passwd %u unix password sync = yes socket options = IPTOS_LOWDELAY TCP_NODELAY hosts deny = ALL hosts allow = 172.18.40. 127.0.0.1 debug level = 1 create mask = 0777 directory mask = 0775 read raw = no write cache size = 262144 # new setups oplocks = yes veto oplock files = /*.mdb/*.MDB/ server string = Samba %v [shares] comment = Data path = /home/shares valid user = darjona pc01 pc02 pc03 pc04 pc05 pc06 pc07 pc08 pc09 pc10 writable = yes printable = no browseable = yes Daniel Arjona Net Admin GENCO Distribution Systems http://www.genco.com/ 8740 Robert Fulton Dr Columbia, MD 21046 Ph: 410-872-0875 X12 Fax: 410-872-0877 [EMAIL PROTECTED] Jeremy Allison [EMAIL PROTECTED] To: daniel arjona [EMAIL PROTECTED] cc: samba@lists.samba.org 05/09/2006 02:43 Subject: Re: [Samba] poor performance - multiuser fileserver database (ms-access) PM Please respond to Jeremy Allison On Tue, May 09, 2006 at 02:40:32PM -0400, daniel arjona wrote: I have a file server running with Samba over Debian Sarge 3.1 R1. This File server store MDB and XLS files. Could anybody give me an optimal setup for my samba server (smb.conf). Actually, the performance is very poor. What version of Samba is this ? Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Re: proposed list of parameter to remove in 3.0.23
Hi, Maybe I'm beeing plain dumb, but isn't the --with-ldapsam that allows us to use parameters like passdb backend = ldapsam:ldap://127.0.0.1 Best Regards, Bruno Guerreiro -Original Message- From: Gerald (Jerry) Carter [mailto:[EMAIL PROTECTED] Sent: quinta-feira, 11 de Maio de 2006 16:39 To: Ryan Novosielski Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: [Samba] Re: proposed list of parameter to remove in 3.0.23 -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Ryan Novosielski wrote: Gerald (Jerry) Carter wrote: Here's a short list of parameters I'd like to remove from smb.conf. hosts equiv read bmpx wins partners ldap server ldap port homedir map nis homedir magic script magic output Comments? I'd also like to kill the following configure options --with-nisplus-home --with-ldapsam --with-automount --with-dce-dfs My assumption here is that this means that these become the default behaviors that cannot be disabled? Actually, I would like to remove the functionality altogether. I'm trying to poke around to find out if any other these are still in use. cheers, jerry = Samba--- http://www.samba.org Centeris --- http://www.centeris.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFEY1p7IR7qMdg1EfYRAl2mAJ9hmJ0DvRIY0uFN8W/KEiYyhpFsZACg6asc 6vls7c/rVrCDWrzqN4agny8= =t07W -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files
On Thu, May 11, 2006 at 11:37:50AM -0400, Claus Lund wrote: sounds like samba is recreating the directory hash for change notifies It only does that every 30 seconds or so - so I don't think that is the problem (although turning if off might prove me wrong). Jeremy. How can I turn that off? I'm willing to do any testing on this issue that you can think off... :-) set change notify timeout = (or other large value) in the [global] section of smb.conf. Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files
On Thu, May 11, 2006 at 11:45:34AM -0400, William Jojo wrote: I'm looking into this here. Are you referring to stat cache? I've confirmed that 150k statx's are being done after each delete request. I mocked it up here on JFS2 and JFS. I'm mocking is up now in FC3/4 on ext3 to see if this is normal and just FS throughput issue on AIX. Good catch Bill - are they running with the large number of files in a directory case canonicalized / case sensitive settings ? The stat cache is disabled in that case. If they're not then that would explain it if the client is using the incorrect case. Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: proposed list of parameter to remove in 3.0.23
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Bruno Guerreiro wrote: Hi, Maybe I'm beeing plain dumb, but isn't the --with-ldapsam that allows us to use parameters like passdb backend = ldapsam:ldap://127.0.0.1 Nope. See my explanation to Ryan. --with-ldapsam is only to support 2.2 smb.conf ldap settings. cheers, jerry = Samba--- http://www.samba.org Centeris --- http://www.centeris.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFEY2LLIR7qMdg1EfYRAk4+AKDxUdkX6E+AeTERF38sGg0SYpQuQwCeIil8 PpBqu7KcLyP7jhGFNlm0UtQ= =F7AI -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] rpcclient enumdrivers fails with WERR_UNKNOWN_PRINTER_DRIVER
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Ryan Novosielski wrote: EnumDrivers() does take a printer an as argument IIRC. Not so, according to 'man rpcclient': My stupid typing again. It'll get me in deep trouble one day Meant to say does not take a printername This is another one that's been broken for me for ages. I think it used to work before I had any/many drivers on the system. Once I got a few installed, however, all bets were off. My personal wild guess is a punctuation issue. I've run into this before, where a driver .INF included punctuation somewhere in the driver spec that got misinterpreted -- in that case I believe it was a parenthesis. Here's what I get running that command: rpcclient $ enumdrivers result was WERR_UNKNOWN_PRINTER_DRIVER? Wha!? Hmmm...ok. I'm convinced. I don't have time right now to look into this. Could you send me an ethereal trace of the failure ? cheers, jerry = Samba--- http://www.samba.org Centeris --- http://www.centeris.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFEY2MLIR7qMdg1EfYRAn7hAKDgxUMGd7JGHosAlDAB2zu8xG2yTQCghTVh f8iaXXs4xGOJESsKaarCvb0= =nZlm -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba ldap domain join
You don't need to give anonymous write access.
You just need to give the ldap admin you set in smb.conf write access to
the tree and properly set the ldap password with smbpasswd -w
Thank you, but this isn't really the issue for me right now. The rest of
the message described the problem I can't figure out.
By the way, I had smbpasswd -w set to Directory Manager's credentials,
all the time, but I was getting
Insufficient 'write' privilege to the 'uidNumber' attribute of
entry 'sambadomainname
and Insufficient add privileges for ou=computers, until I just made both
objects writable by anyone. anyway... this is working right now and I'll
deal with security implications later, but joining the domain still
produces errors that I described below. Maybe it's worth mentioning that
I use Sun ONE directory 5.2, not OpenLDAP ?
It seems that eventhough the machine accounts get created upon successful
authentication, it fails to find that same machine account during the same
or another operation to actually join the domain.
The search string it uses has objectclass=sambaSamAccount. Apparently, the
newly created machine account doesn't have that object class. Also there's
no sambasid entry for the machine account ( not sure if it needs one, but
if sambaSamAccount requires that, I guess it does ? )
In addition to that, the search base it uses to look for the machine
accounts only has the parent suffix, without the ou=computers.
Samba user accounts can be added with smbpasswd and all the sids,
passwords and other attributes are set correctly.
Another issue is that idmap ou doesn't get seem to get populated with any
entries at all, but I also don't know if it should be.
base = [dc=mydomain,dc=com]
[((uid=computer$)(objectclass=sambaSamAccount))]
smb.conf
add user script = /usr/local/samba/bin/smbldap-useradd -n %u
add machine script = /usr/local/samba/bin/smbldap-useradd -n -d
/dev/null -s /bin/false -w %m
ldap admin dn = cn=Directory Manager
ldap group suffix = ou=groups
ldap idmap suffix = ou=idmap
ldap machine suffix = ou=computers
ldap suffix = dc=mydomain,dc=com
ldap ssl = no
ldap user suffix = ou=people
idmap backend = ldapsam:ldap://myldapserver
idmap uid = 1-3
idmap gid = 1-3
smb-ldap.conf
suffix=dc=mydomain,dc=com
usersdn=ou=People,${suffix}
computersdn=ou=computers,${suffix}
groupsdn=ou=Groups,${suffix}
idmapdn=ou=idmap,${suffix}
sambaUnixIdPooldn=sambaDomainName=LDAPAUTH,${suffix}
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: proposed list of parameter to remove in 3.0.23
Gerald (Jerry) Carter wrote: Ryan Novosielski wrote: I guess I must be getting ldapsam confused with some other variety of ldapsam then? That's the only one I know of that I currently use (however, it is because of a plan to MOVE to LDAP, not because we're currently using it). --with-ldapsam is only the 2.2 backwards compatible option and is used to implement the ldap server and ldap port parameters. It has no direct effect on 'passdb backend = ldapsam' In smb.conf you will still be able to configure 'passdb backend = ldapsam_compat:ldap://localhost' if you need to the older 2.2 compatible schema (although I would like to remove that option at some point as well. Thanks for the clarification. In that case, I personally don't see any reason it needs to stay (and am pulling it from my next build testing). -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | |Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| |[EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.|IST/AST - NJMS Medical Science Bldg - C630 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] rpcclient problem - no connect to 0.0.0.0
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Doh, I guess I answered my own question by looking at the other gentleman's e-mail. No // when using rpcclient. I don't know why I assumed there was one required, I see the man pages are correct. Sorry for the pointless post. ;) _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | |Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| |[EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.|IST/AST - NJMS Medical Science Bldg - C630 Ryan Novosielski wrote: I've had this problem for quite awhile. I'm attempting to go back through the Samba issues that have been driving me crazy during my move to a current release. Here is the issue: --- # ./nmblookup RWJA-LM querying RWJA-LM on XXX.XXX.XXX.255 XXX.XXX.XXX.XXX RWJA-LM00 --- Looks good to me, though, really, it should be querying itself as it is the WINS server. shrug not really a big deal though, if it gets the right answer. --- [EMAIL PROTECTED] [/products/samba/bin] # ./rpcclient -U novosirj //RWJA-LM Password: cli_full_connection: failed to connect to //RWJA-LM20 (0.0.0.0) Cannot connect to server. Error was NT_STATUS_UNSUCCESSFUL --- Now why would that be? It clearly knows where RWJA is? The only difference that I see here is that the 20 is there on the one and not the other. Don't remember what that means. This is also broken for LOCALHOST, incidentally. However, either of those works if I do something like this: --- [EMAIL PROTECTED] [/products/samba/bin] # ./rpcclient -U novosirj //RWJA-LM -I XXX.XXX.XXX.XXX Password: rpcclient $ --- Anything anyone can tell me about this? As far as I know, this is not broken on Linux on the two platforms I run for home use. It's not a big deal, but it seems a little fishy. Config issue or bug? This is on HP-UX 11i w/any recent version of Samba (possibly all of 3.0.x). -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2.2 (MingW32) iD8DBQFEY2Xvmb+gadEcsb4RAl68AJ9XkjvKQ23ZDTv3A3C/zT8O3GtC7ACgnAr4 hM5WRSazbmG/+QhxVyRMkTs= =j+DS -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files
sounds like samba is recreating the directory hash for change notifies It only does that every 30 seconds or so - so I don't think that is the problem (although turning if off might prove me wrong). Jeremy. How can I turn that off? I'm willing to do any testing on this issue that you can think off... :-) set change notify timeout = (or other large value) in the [global] section of smb.conf. Nope, that doesn't make any difference. -Claus -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files
On Thu, May 11, 2006 at 12:33:59PM -0400, Claus Lund wrote: sounds like samba is recreating the directory hash for change notifies It only does that every 30 seconds or so - so I don't think that is the problem (although turning if off might prove me wrong). Jeremy. How can I turn that off? I'm willing to do any testing on this issue that you can think off... :-) set change notify timeout = (or other large value) in the [global] section of smb.conf. Nope, that doesn't make any difference. Ok, so it isn't the change notify effect James suspected You are using the canonicalized case settings and case sensitive settings needed for large directories aren't you ? Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files
Ok, so it isn't the change notify effect James suspected You are using the canonicalized case settings and case sensitive settings needed for large directories aren't you ? I tried changing the settings per this HOWTO: http://mirrors.uol.com.br/pub/samba/HOWTO/Samba-LargeDirectory-HOWTO Using: case sensitive = True default case = lower preserve case = no short preserve case = no on my big share and it did not make any difference. -Claus -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files
On Thu, May 11, 2006 at 12:55:04PM -0400, Claus Lund wrote: Ok, so it isn't the change notify effect James suspected You are using the canonicalized case settings and case sensitive settings needed for large directories aren't you ? I tried changing the settings per this HOWTO: http://mirrors.uol.com.br/pub/samba/HOWTO/Samba-LargeDirectory-HOWTO Using: case sensitive = True default case = lower preserve case = no short preserve case = no on my big share and it did not make any difference. Did you canonicalize all the filenames in there to lower case after making these changes ? Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] rpcclient enumdrivers fails with WERR_UNKNOWN_PRINTER_DRIVER
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Gerald (Jerry) Carter wrote: Ryan Novosielski wrote: EnumDrivers() does take a printer an as argument IIRC. Not so, according to 'man rpcclient': My stupid typing again. It'll get me in deep trouble one day Meant to say does not take a printername This is another one that's been broken for me for ages. I think it used to work before I had any/many drivers on the system. Once I got a few installed, however, all bets were off. My personal wild guess is a punctuation issue. I've run into this before, where a driver .INF included punctuation somewhere in the driver spec that got misinterpreted -- in that case I believe it was a parenthesis. Here's what I get running that command: rpcclient $ enumdrivers result was WERR_UNKNOWN_PRINTER_DRIVER? Wha!? Hmmm...ok. I'm convinced. I don't have time right now to look into this. Could you send me an ethereal trace of the failure ? Not personally familiar with doing traces -- I'm assuming I would use tcpdump to capture the output and then run a trace on the output with ethereal, or can it be used to do the entire thing? Will it still work if rpcclient and smbd are running on the same host? I'd be happy to find out how it's done and get on that, just want to make sure I'm on the right track. This is stuff I should already have learned anyway. ;) - -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | |Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| |[EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.|IST/AST - NJMS Medical Science Bldg - C630 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2.2 (MingW32) iD8DBQFEY2ktmb+gadEcsb4RAp9GAKC9QUudlQO5AzfCxaO1VVlYnur6LACeJTqI PfAYAGyJE9Smj7I2KJwQ2FI= =ViQG -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files
Ok, so it isn't the change notify effect James suspected You are using the canonicalized case settings and case sensitive settings needed for large directories aren't you ? I tried changing the settings per this HOWTO: http://mirrors.uol.com.br/pub/samba/HOWTO/Samba-LargeDirectory-HOWTO Using: case sensitive = True default case = lower preserve case = no short preserve case = no on my big share and it did not make any difference. Did you canonicalize all the filenames in there to lower case after making these changes ? Yes, all the filenames are lower case. -Claus -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] rpcclient enumdrivers fails with WERR_UNKNOWN_PRINTER_DRIVER
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Ryan Novosielski wrote: Not personally familiar with doing traces -- I'm assuming I would use tcpdump to capture the output and then run a trace on the output with ethereal, or can it be used to do the entire thing? Will it still work if rpcclient and smbd are running on the same host? I'd be happy to find out how it's done and get on that, just want to make sure I'm on the right track. This is stuff I should already have learned anyway. ;) Ryan, The following command is sufficient for me (assuming ethernet) $ tcpdump -n -w /tmp/dump.pcap -s 1514 port 139 or port 445 Just email me the dump.pcap file. Thanks, cheers, jerry = Samba--- http://www.samba.org Centeris --- http://www.centeris.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD4DBQFEY28SIR7qMdg1EfYRAiyFAJdWEZb0EXIvUPnKKNm1qWWFroj5AJ92Z9BO XOp+DdcZJO3UJfJiTNUNWA== =g/Y2 -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Problem with adding printer drivers in Windows XP
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Tom wrote: Well, all the below tests succeeded without changing anything but I still cannot upload drivers from WinXP. One thing I did notice though, is that I cannot 'su' to a domain user; ie: 'su SAVAGEPHP\\administrator' fails with the message: Unknown id: SAVAGEPHP\administrator. Any thoughts on that? That's probably not supposed to work, unless you're using winbindd or something like that. I personally am not. The person you'd have to su to would be the account that the account maps to. That said, I can't see where you've actually said what the failure mode is, what errors you see, how you know it doesn't work... etc. It's going to be impossible for anyone to help if you don't let us know what's actually taking place. - -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | |Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| |[EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.|IST/AST - NJMS Medical Science Bldg - C630 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2.2 (MingW32) iD8DBQFEY2+Ymb+gadEcsb4RAiWKAJ4gQznMdy4uFZ53DsaCWyJNdENF+ACfanFW BNVmJAri55G2Wa7RkgztX7s= =VQm/ -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in adirectory with a large number of files
- Original Message - From: Claus Lund [EMAIL PROTECTED] To: Jeremy Allison [EMAIL PROTECTED] Cc: samba@lists.samba.org; [EMAIL PROTECTED] Sent: Thursday, May 11, 2006 1:03 PM Subject: RE: [Samba] Performance issue on AIX when deleting files in adirectory with a large number of files Ok, so it isn't the change notify effect James suspected You are using the canonicalized case settings and case sensitive settings needed for large directories aren't you ? I tried changing the settings per this HOWTO: http://mirrors.uol.com.br/pub/samba/HOWTO/Samba-LargeDirectory-HOWTO Using: case sensitive = True default case = lower preserve case = no short preserve case = no on my big share and it did not make any difference. Did you canonicalize all the filenames in there to lower case after making these changes ? Yes, all the filenames are lower case. Confirmed on FC3/ext3 and AIX/JFS2/JFS. statx's still being done between deletes. I'm using same settings as Claus and all files are in the form file%d (0 through 14). Now for me the initial display of files is ~30 seconds. AIX delete shows a slow meter with 20,15,... seconds remaining. FC3 delete show a fast meter, but then the window hangs for 30 more seconds. top shows the smbd using 50%+ of cpu. (mind you FC3 is in vmware 5 on my T43) Jeremy, do you want me to test FC4 as well? Cheers, Bill -Claus -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in adirectory with a large number of files
On Thu, May 11, 2006 at 01:26:58PM -0400, William Jojo wrote: Confirmed on FC3/ext3 and AIX/JFS2/JFS. statx's still being done between deletes. I'm using same settings as Claus and all files are in the form file%d (0 through 14). Now for me the initial display of files is ~30 seconds. AIX delete shows a slow meter with 20,15,... seconds remaining. FC3 delete show a fast meter, but then the window hangs for 30 more seconds. top shows the smbd using 50%+ of cpu. (mind you FC3 is in vmware 5 on my T43) Jeremy, do you want me to test FC4 as well? Can you tell me exactly how the files are being deleted (ie. are you just selecting everything in an explorer window and hitting delete ?). I can try and reproduce this and see where the stat's are being done inside the code paths. If it's not easy to reproduce send me a ethereal dump of client traffic when doing the deletes. Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in adirectory with a large number of files
- Original Message - From: Jeremy Allison [EMAIL PROTECTED] To: William Jojo [EMAIL PROTECTED] Cc: Claus Lund [EMAIL PROTECTED]; Jeremy Allison [EMAIL PROTECTED]; samba@lists.samba.org; [EMAIL PROTECTED] Sent: Thursday, May 11, 2006 1:37 PM Subject: Re: [Samba] Performance issue on AIX when deleting files in adirectory with a large number of files On Thu, May 11, 2006 at 01:26:58PM -0400, William Jojo wrote: Confirmed on FC3/ext3 and AIX/JFS2/JFS. statx's still being done between deletes. I'm using same settings as Claus and all files are in the form file%d (0 through 14). Now for me the initial display of files is ~30 seconds. AIX delete shows a slow meter with 20,15,... seconds remaining. FC3 delete show a fast meter, but then the window hangs for 30 more seconds. top shows the smbd using 50%+ of cpu. (mind you FC3 is in vmware 5 on my T43) Jeremy, do you want me to test FC4 as well? Can you tell me exactly how the files are being deleted (ie. are you just selecting everything in an explorer window and hitting delete ?). I can try and reproduce this and see where the stat's are being done inside the code paths. Certainly. :-) After the initial window refresh of all the files, select any 15 or so consecutive objects (location seems to make no difference for me), smack the delete key and confirm. Can I get you anything else? Cheers, Bill If it's not easy to reproduce send me a ethereal dump of client traffic when doing the deletes. Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files
Confirmed on FC3/ext3 and AIX/JFS2/JFS. statx's still being done between deletes. I'm using same settings as Claus and all files are in the form file%d (0 through 14). Now for me the initial display of files is ~30 seconds. AIX delete shows a slow meter with 20,15,... seconds remaining. FC3 delete show a fast meter, but then the window hangs for 30 more seconds. top shows the smbd using 50%+ of cpu. (mind you FC3 is in vmware 5 on my T43) Jeremy, do you want me to test FC4 as well? Cheers, Bill It sounds like you're getting better performance than me? I am currently testing on a directory with 30,000 12KB files (xfile%d 0-2). The server has a single p5+ 1.9GHz CPU. When I pull up the directory in Windows Explorer then that takes maybe a couple of seconds. I then highlight all the files and hit delete. It then goes back and forth between the server and client for almost three minutes (client CPU utilization hitting 100% a good chunk of that time) before it finally pops up with the little warning box asking me if I'm sure I want to delete 30,000 files. When it starts deleting then CPU utilization on the server goes to 100% (and CPU utilization on the client goes down near 0%). Some quick measurements say that it's deleting about 100 files per minute. When I tested it on an Ubuntu Dapper test box (Apache 3.0.22, ext2, default settings) then it deleted all of the 30K files in a couple of minutes. Here's the output from testparm on my AIX test box: [global] workgroup = UXGROUP server string = Tax178 security = SERVER map to guest = Bad User password server = 10.0.89.201 log file = /var/samba/log.%m max log size = 150 change notify timeout = socket address = 10.0.89.178 create mask = 0600 directory mask = 0700 hosts allow = 127.0.0.1, 10.0.89., 10.0.88. hosts deny = 0.0.0.0/0 [smbtest2] comment = Test space 2 path = /datavg/smbtest2 read only = No create mask = 0644 directory mask = 0755 guest ok = Yes case sensitive = Yes preserve case = No short preserve case = No -Claus -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] ADS on Solaris
Hi all, I see that the premade binaries for Samba on Solaris, even recent versions, have ADS support not compiled in. I see more ad domains than nt4 domains these days, so I am going to compile it myself with ads on. I want to ask the experienced if there are any gotchas with ads Samba on Solaris, or something about Solaris that makes ads Samba support difficult. Thanks Jason -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] 3.0.23pre1 does not compile on HP-UX 11i
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Continuing on: Linking bin/winbindd /usr/ccs/bin/ld: Unsatisfied symbols: seteuid (first referenced in nsswitch/winbindd_pam.o) (code) make: *** [bin/winbindd] Error 1 Problem here appears to be that 'seteuid' is not available on HP-UX, at least not on HP-UX 11i earlier than v2 May 2005: http://devrsrc1.external.hp.com/STKT/impacts/i171.html?jumpid=reg_R1002_USEN Here are notes on what to use instead, however I'm pretty sure that that was already known as it is no doubt needed elsewhere in the package: http://devrsrc1.external.hp.com/STKS/impacts/i133.html?jumpid=reg_R1002_USEN There are also conditionals in configure.in (that never seem to show up in the configure output, interestingly enough). This was not broken in 3.0.22, however, none of the winbindd* files attempted to use seteuid in 3.0.22. _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | |Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| |[EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.|IST/AST - NJMS Medical Science Bldg - C630 Gerald (Jerry) Carter wrote: Ryan Novosielski wrote: As for the compile problem, these are the only difference between the 3.0.23pre1 and 3.0.22 sysacls.c files. Hopefully someone more knowledgeable than me can be of assistance here. Thanks very much for any insights. Just delete line 1321. Our fault. Thanks for reporting it. cheers, jerry = Samba--- http://www.samba.org Centeris --- http://www.centeris.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2.2 (MingW32) iD8DBQFEY36Gmb+gadEcsb4RAuSRAKDOQnN+fQlSJgW9ICO/7lJ/CTjIpwCfTEC9 1pWglN74zAaZEJWgdQdoGdw= =xsn7 -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] File creation permission issue
please try to add (in addition to force...) create mode and directory
mode with the same posix attributes
works?
greez
[EMAIL PROTECTED] wrote:
When users create a file on this share, the files are created with
permission's equal to 764 (rwxrw-r--). I want the permission's to be 760
(rwxrw). How can I accomplish this for this share? Here is my .conf
for the global and this share. My version of SAMBA is 3.0.20b-3 on
openSUSE 10:
Thanks in advance,
Mike
# Global parameters
[global]
workgroup = SCMC
netbios name = SCMCSERVER1
interfaces = eth0, lo
bind interfaces only = Yes
passdb backend = tdbsam
smb ports = 139
add user script = /usr/sbin/useradd -m '%u'
delete user script = /usr/sbin/userdel -r '%u'
add group script = /usr/sbin/groupadd '%g'
delete group script = /usr/sbin/groupdel '%g'
add user to group script = /usr/sbin/usermod -G '%g' '%u'
add machine script = /usr/sbin/useradd -c Machine -d
/var/lib/nobody -s /bin/false %m$
preferred master = Yes
wins support = Yes
include = /etc/samba/dc-common.conf
shutdown script = /var/lib/samba/scripts/shutdown.sh
abort shutdown script = /sbin/shutdown -c
logon script = scripts\logon.bat
logon path = \\%L\profiles\%U
logon drive = X:
logon home = \\%L\%U
domain logons = Yes
preferred master = Yes
domain master = Yes
username map = /etc/samba/smbusers
log level = 1
syslog = 0
log file = /var/log/samba/%m
max log size = 50
smb ports = 139
name resolve order = wins bcast hosts
time server = Yes
printcap name = CUPS
show add printer wizard = No
shutdown script = /var/lib/samba/scripts/shutdown.sh
abort shutdown script = /sbin/shutdown -c
utmp = Yes
map acl inherit = Yes
printing = cups
veto files = /*.eml/*.nws/*.{*}/
veto oplock files = /*.doc/*.xls/*.mdb/
[vol1]
comment = top level map for scmc
path = /shared/vol1
read only = No
admin users = mzozakiewicz
force create mode = 0660
force directory mode = 0770
--
Michael Gasch
Max Planck Institute for Evolutionary Anthropology
Department of Human Evolution (IT Staff)
Deutscher Platz 6
D-04103 Leipzig
Germany
Phone: 49 (0)341 - 3550 137
49 (0)341 - 3550 374
Fax: 49 (0)341 - 3550 399
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] rpcclient enumdrivers fails with WERR_UNKNOWN_PRINTER_DRIVER
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Gerald (Jerry) Carter wrote: Ryan Novosielski wrote: Not personally familiar with doing traces -- I'm assuming I would use tcpdump to capture the output and then run a trace on the output with ethereal, or can it be used to do the entire thing? Will it still work if rpcclient and smbd are running on the same host? I'd be happy to find out how it's done and get on that, just want to make sure I'm on the right track. This is stuff I should already have learned anyway. ;) Ryan, The following command is sufficient for me (assuming ethernet) $ tcpdump -n -w /tmp/dump.pcap -s 1514 port 139 or port 445 Just email me the dump.pcap file. Thanks, Jerry, Turns out the problem was partially my own. The error was caused by my using //HOSTNAME rather than just HOSTNAME with rpcclient. When I omit the slashes like I'm supposed to, there is no error message. That said, it still doesn't work. I have a lot of printers with drivers assigned that work fine but enumdrivers returns nothing. Here is an excerpt from enumprinters, that illustrates the driver mapping: flags:[0x80] name:[\\rwja-lm\ljpoff2] description:[\\rwja-lm\ljpoff2,hp LaserJet 3380 PCL 6,ACS Piscataway - S-B11 - HP LaserJet 4] comment:[ACS Piscataway - S-B11 - HP LaserJet 4] The dump.pcap file is attached to this message. I tried this on 3.0.22 this morning and it seems to work OK (I run 3.0.11), however, like I said, IIRC this breaks only after I have all of my production drivers in place (which I don't have time to add to the development host that is running 3.0.22 just yet). HTH anyway, - -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | |Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| |[EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.|IST/AST - NJMS Medical Science Bldg - C630 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2.2 (MingW32) iD8DBQFEY4HKmb+gadEcsb4RAmZqAKCbg9NwJJ6bJ2oN5nA43m98neqRTgCgjqzW J5YrQs6RTta2UlHwz0nsO1E= =AblK -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ADS on Solaris
On Thu, May 11, 2006 at 10:54:00AM -0700, Harris, Jason (DIS) wrote: Jason == Harris, Jason \(DIS\) Harris writes: Jason Hi all, I see that the premade binaries for Samba on Jason Solaris, even recent versions, have ADS support not Jason compiled in. I see more ad domains than nt4 domains these Jason days, so I am going to compile it myself with ads on. I Jason want to ask the experienced if there are any gotchas with Jason ads Samba on Solaris, or something about Solaris that makes Jason ads Samba support difficult. Thanks ADS support is non-trivial. There are so many additional packages and libraries needed. You would have to provide distributions of kerberos, SSL, ldap, iconv, sasl, readline, etc. I had to play games with the linker and specify the RUN_PATH to the libraries as being the samba lib directory. Here's what ldd on smbd looks like -- pay attention to /opt/corp/local/samba/lib/... You could try statically linking but I'm not sure that would work. I don't think you want to go there. libthread.so.1 =/usr/lib/64/libthread.so.1 libldap.so.2 = /opt/corp/local/samba/lib/libldap.so.2 liblber.so.2 = /opt/corp/local/samba/lib/liblber.so.2 libgssapi_krb5.so.2 = /opt/corp/local/samba/lib/libgssapi_krb5.so.2 libkrb5.so.3 = /opt/corp/local/samba/lib/libkrb5.so.3 libk5crypto.so.3 = /opt/corp/local/samba/lib/libk5crypto.so.3 libkrb5support.so.0 = /opt/corp/local/samba/lib/libkrb5support.so.0 libcom_err.so.3 = /opt/corp/local/samba/lib/libcom_err.so.3 libresolv.so.2 =/usr/lib/64/libresolv.so.2 libsocket.so.1 =/usr/lib/64/libsocket.so.1 libnsl.so.1 = /usr/lib/64/libnsl.so.1 libsendfile.so.1 = /usr/lib/64/libsendfile.so.1 libsec.so.1 = /usr/lib/64/libsec.so.1 libgen.so.1 = /usr/lib/64/libgen.so.1 libdl.so.1 =/usr/lib/64/libdl.so.1 libiconv.so.2 = /opt/corp/local/samba/lib/libiconv.so.2 libc.so.1 = /usr/lib/64/libc.so.1 libsasl2.so.2 = /opt/corp/local/samba/lib/libsasl2.so.2 libdb-4.3.so = /opt/corp/local/samba/lib/libdb-4.3.so libkrb4.so.2 = /opt/corp/local/samba/lib/libkrb4.so.2 libdes425.so.3 =/opt/corp/local/samba/lib/libdes425.so.3 libssl.so.0.9.8 = /opt/corp/local/samba/lib/libssl.so.0.9.8 libcrypto.so.0.9.8 =/opt/corp/local/samba/lib/libcrypto.so.0.9.8 libmp.so.2 =/usr/lib/64/libmp.so.2 librt.so.1 =/usr/lib/64/librt.so.1 libaio.so.1 = /usr/lib/64/libaio.so.1 /usr/platform/SUNW,Sun-Blade-1500/lib/sparcv9/libc_psr.so.1 -- Eric M. Boehm /\ ASCII Ribbon Campaign [EMAIL PROTECTED] \ / No HTML or RTF in mail X No proprietary word-processing Respect Open Standards / \ files in mail -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] 3.0.23pre1 does not compile on HP-UX 11i
On Thu, May 11, 2006 at 02:12:22PM -0400, Ryan Novosielski wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Continuing on:
Linking bin/winbindd
/usr/ccs/bin/ld: Unsatisfied symbols:
seteuid (first referenced in nsswitch/winbindd_pam.o) (code)
make: *** [bin/winbindd] Error 1
Problem here appears to be that 'seteuid' is not available on HP-UX, at
least not on HP-UX 11i earlier than v2 May 2005:
http://devrsrc1.external.hp.com/STKT/impacts/i171.html?jumpid=reg_R1002_USEN
Here are notes on what to use instead, however I'm pretty sure that that
was already known as it is no doubt needed elsewhere in the package:
http://devrsrc1.external.hp.com/STKS/impacts/i133.html?jumpid=reg_R1002_USEN
There are also conditionals in configure.in (that never seem to show up
in the configure output, interestingly enough). This was not broken in
3.0.22, however, none of the winbindd* files attempted to use seteuid in
3.0.22.
Ok, try this patch. Gunther please review as it affects winbindd code.
I think it's ok...
Jeremy.
Index: nsswitch/winbindd_cred_cache.c
===
--- nsswitch/winbindd_cred_cache.c (revision 15527)
+++ nsswitch/winbindd_cred_cache.c (working copy)
@@ -105,7 +105,7 @@
if ((entry-renew_until time(NULL)) (entry-pass != NULL)) {
- seteuid(entry-uid);
+ set_effective_uid(entry-uid);
ret = kerberos_kinit_password_ext(entry-principal_name,
entry-pass,
@@ -116,7 +116,7 @@
False, /* no PAC required
anymore */
True,
WINBINDD_PAM_AUTH_KRB5_RENEW_TIME);
- seteuid(0);
+ gain_root_privilege();
if (ret) {
DEBUG(3,(could not re-kinit: %s\n,
error_message(ret)));
@@ -132,13 +132,13 @@
goto done;
}
- seteuid(entry-uid);
+ set_effective_uid(entry-uid);
ret = smb_krb5_renew_ticket(entry-ccname,
entry-principal_name,
entry-service,
new_start);
- seteuid(0);
+ gain_root_privilege();
if (ret) {
DEBUG(3,(could not renew tickets: %s\n, error_message(ret)));
Index: nsswitch/winbindd_pam.c
===
--- nsswitch/winbindd_pam.c (revision 15527)
+++ nsswitch/winbindd_pam.c (working copy)
@@ -478,7 +478,7 @@
if (!internal_ccache) {
- seteuid(uid);
+ set_effective_uid(uid);
DEBUG(10,(winbindd_raw_kerberos_login: uid is %d\n, uid));
}
@@ -533,7 +533,7 @@
}
if (!internal_ccache) {
- seteuid(0);
+ gain_root_privilege();
}
/ NON-ROOT **/
@@ -631,7 +631,7 @@
SAFE_FREE(client_princ_out);
if (!internal_ccache) {
- seteuid(0);
+ gain_root_privilege();
}
return result;
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ADS on Solaris
ADS support is non-trivial. There are so many additional packages and libraries needed. You would have to provide distributions of kerberos, SSL, ldap, iconv, sasl, readline, etc. There was a lengthy article in SysAdmin Magazine sometime within the past 18 months. December, 04 maybe? It was in a Solaris supplement distributed with the regular magazine, and had a step-by-step procedure. http://www.samag.com/ -- Tim Evans, TKEvans.com, Inc.|5 Chestnut Court [EMAIL PROTECTED] |Owings Mills, MD 21117 http://www.tkevans.com/ |443-394-3864 http://www.come-here.com/News/ | -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Problem with adding printer drivers in Windows XP
Well, I'm trying to add drivers to the server through the Properties dialog box for my printer. Right click on the printer, left click Properties, Advanced tab, New Driver button type of thing. Except that the New Driver button is greyed out. I've checked and my user has the SePrintOperatorPrivilege rights assigned to him but it still does not work. I can write files and create directories in the \\nightwolf\print$\W32X86 folder with both my user and the administrator user. I can't make sense of the logs really, there's too much garbage in them to make heads or tails of anything myself. I'd be happy to send along a copy of the log files if someone could take a look; just let me know what log level and which log files to send. I appreciate your help. Tom Ryan Novosielski wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Tom wrote: Well, all the below tests succeeded without changing anything but I still cannot upload drivers from WinXP. One thing I did notice though, is that I cannot 'su' to a domain user; ie: 'su SAVAGEPHP\\administrator' fails with the message: Unknown id: SAVAGEPHP\administrator. Any thoughts on that? That's probably not supposed to work, unless you're using winbindd or something like that. I personally am not. The person you'd have to su to would be the account that the account maps to. That said, I can't see where you've actually said what the failure mode is, what errors you see, how you know it doesn't work... etc. It's going to be impossible for anyone to help if you don't let us know what's actually taking place. - -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | |Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| |[EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.|IST/AST - NJMS Medical Science Bldg - C630 -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2.2 (MingW32) iD8DBQFEY2+Ymb+gadEcsb4RAiWKAJ4gQznMdy4uFZ53DsaCWyJNdENF+ACfanFW BNVmJAri55G2Wa7RkgztX7s= =VQm/ -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Problem with adding printer drivers in Windows XP
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Tom wrote: Well, I'm trying to add drivers to the server through the Properties dialog box for my printer. Right click on the printer, left click Properties, Advanced tab, New Driver button type of thing. Except that the New Driver button is greyed out. I've checked and my user has the SePrintOperatorPrivilege rights assigned to him but it still does not work. * jerry gazes into his crystal ball and then steps up to the mic Do you have 'use client driver = yes' ? If so, disable it (the default setting). cheers, jerry -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFEY6G0IR7qMdg1EfYRAuxvAJ4rc7/SPUUyoGJOMuoxtS7QeU5ECgCgo61i xIqRXVnrdIGzlcElPUlfFdM= =9Yg8 -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] XP needs to rejoin after ldap problem
Hi Everybody, Here in my company we have migrated from nt4 to Debian Sarge with Samba 3.0.14a + OpenLdap 2.2.23 + db4. Well, it's working fine except for one problem. When I have to get back to a backup copy on my ldap slaves on my BDCs some, or sometimes all, Windows XP machines need to be rejoined to the domain. I manage a workaround stopping Samba every time I need to reset the ldap slave. But it happens to the ldap slave to fail at night and at morning when we solve the problem, even stopping Samba, the XP need to be rejoined. Is this a common issue? Or is there anything we can do to solve the problem? This was problem number 1. Another issue is when some of my BDCs have problems, because of ldap failures, the clients over that WAN connection, without their local BDC, aren't connecting on my PDC over the WAN. What can be done to solve this other problem? Any help would be great. My best regards, -- Gustavo Lima -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: newbie question reguarding kerberos tickets
Hi, the period for which the ticket is valid can be set in Windows Server. Best regards, Blaž. Doug Tucker wrote: I recently joined a samba 3.0.22 server to AD. When I did the kinit, the AD gave me a 24 hour ticket with a 1 week renewal. Setting -r and -l to 365d did not change anything, the ticket still came back the same. However, my question is in reguard to whether this is really even needed? First, I deleted the ticket, and everything seemed to continue to work perfectly. Now, I let the ticket expire for a couple of weeks now, and yet, the samba server is working fine and users still authenticate against AD just fine. Am I missing something, or is the creation of that ticket not even needed? Thank you for your assistance. doug... -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba over Debian Sarge 3.1 R1. This File server store MDBand XLS files.
Daniel, I am running Debian-sarge as well. I have one samba server that serves as my PDC and one samba server that is a domain member server. Now, I'm a newbie, still learning, and I probably wouldn't know if the performance on our servers is good or not. So, please take this for what it is worth (probably not much). I have only 7-10 XP clients that access these servers, and folks are not complaining about the performance. It's been awhile since I setup my PDC, but I remember scouring the Samba Command Option Quick Reference for recommendations, and here are the performance settings that I am using: ; ** ; Performance Settings ; ** socket options = TCP_NODELAY IPTOS_LOWDELAY SO_RCVBUF=8192 SO_SNDBUF=8192 oplocks = yes strict locking = no hide dot files = yes wide links = yes follow symlinks = yes read raw = yes write raw = yes hope this helps. regards, scott -- Original Message -- From: daniel arjona [EMAIL PROTECTED] Date: Tue, 9 May 2006 14:33:54 -0400 I have a file server running with Samba over Debian Sarge 3.1 R1. This File server store MDB and XLS files. Could anybody give me an optimal setup for my samba server (smb.conf). Actually, the performance is very poor. I really apreciate your help as soon as possible. My supervisor wants to change the operating system (Linux) for Windows 2003 Server. I do not want to do that. I love Linux. Thanks, [global] workgroup = REVLON netbios name = FILE_SRV security = user encrypt passwords = yes passwd program = /usr/bin/passwd %u unix password sync = yes socket options = IPTOS_LOWDELAY TCP_NODELAY hosts deny = ALL hosts allow = 172.18.40. 127.0.0.1 debug level = 1 create mask = 0777 directory mask = 0775 read raw = no write cache size = 262144 # oplocks = no veto oplock files = /*.mdb/*.MDB/ myshare] comment = Arjona's Files path = /home/darjona valid users = darjona pc08 pc18 public = no writable = yes printable = no browseable = yes Daniel Arjona Net Admin GENCO Distribution Systems http://www.genco.com/ 8740 Robert Fulton Dr Columbia, MD 21046 Ph: 410-872-0875 X12 Fax: 410-872-0877 [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba Sent via the WebMail system at preventionpartners.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: newbie question reguarding kerberos tickets
Thanks. But again, is the ticket even needed? I deleted the darn thing, rebooted to make sure it wasn't cached in memory somewhere, and everything seems to be working perfectly. If it is indeed needed, and I need to extend the period, is there any directions on how to do that on the windows side? On Thu, 2006-05-11 at 23:07 +0200, Blaž Primc wrote: Hi, the period for which the ticket is valid can be set in Windows Server. Best regards, Blaž. Doug Tucker wrote: I recently joined a samba 3.0.22 server to AD. When I did the kinit, the AD gave me a 24 hour ticket with a 1 week renewal. Setting -r and -l to 365d did not change anything, the ticket still came back the same. However, my question is in reguard to whether this is really even needed? First, I deleted the ticket, and everything seemed to continue to work perfectly. Now, I let the ticket expire for a couple of weeks now, and yet, the samba server is working fine and users still authenticate against AD just fine. Am I missing something, or is the creation of that ticket not even needed? Thank you for your assistance. doug... -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: newbie question reguarding kerberos tickets
Samba stores the machine password and obtains tickets from the KDC when needed. Simo. On Thu, 2006-05-11 at 16:53 -0500, Doug Tucker wrote: Thanks. But again, is the ticket even needed? I deleted the darn thing, rebooted to make sure it wasn't cached in memory somewhere, and everything seems to be working perfectly. If it is indeed needed, and I need to extend the period, is there any directions on how to do that on the windows side? On Thu, 2006-05-11 at 23:07 +0200, Blaž Primc wrote: Hi, the period for which the ticket is valid can be set in Windows Server. Best regards, Blaž. Doug Tucker wrote: I recently joined a samba 3.0.22 server to AD. When I did the kinit, the AD gave me a 24 hour ticket with a 1 week renewal. Setting -r and -l to 365d did not change anything, the ticket still came back the same. However, my question is in reguard to whether this is really even needed? First, I deleted the ticket, and everything seemed to continue to work perfectly. Now, I let the ticket expire for a couple of weeks now, and yet, the samba server is working fine and users still authenticate against AD just fine. Am I missing something, or is the creation of that ticket not even needed? Thank you for your assistance. doug... -- Simo Sorce Samba Team GPL Compliance Officer email: [EMAIL PROTECTED] http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: proposed list of parameter to remove in 3.0.23
On Thu, 2006-05-11 at 09:04 -0700, Gerald (Jerry) Carter wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Ryan Novosielski wrote: I guess I must be getting ldapsam confused with some other variety of ldapsam then? That's the only one I know of that I currently use (however, it is because of a plan to MOVE to LDAP, not because we're currently using it). - --with-ldapsam is only the 2.2 backwards compatible option and is used to implement the ldap server and ldap port parameters. It has no direct effect on 'passdb backend = ldapsam' In smb.conf you will still be able to configure 'passdb backend = ldapsam_compat:ldap://localhost' if you need to the older 2.2 compatible schema (although I would like to remove that option at some point as well. When we were looking to publish the original 3.0, I lobbied to keep --with-ldapsam as meaning 'do much as what Samba 2.2 did', because we had a lot of documentation that told users to do this. I also wanted it to be easier to upgrade. I'm far from certain it remains a good idea. 2.2 is long past, and it just confuses users now. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in adirectory with a large number of files
On Thu, May 11, 2006 at 01:42:59PM -0400, William Jojo wrote: Certainly. :-) After the initial window refresh of all the files, select any 15 or so consecutive objects (location seems to make no difference for me), smack the delete key and confirm. Ok, I see what happens. Client opens each file in turn, sets delete on close, then closes - we send a changenotify - client sets another change notify up on the directory - repeat until all the files are deleted, then the client (explorer) re-scans the directory using findfirst/findnext with a * wildcard. It's the last action that's causing a stat on each remaining file in the directory. I don't see anything out of the ordinary here Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] 3.0.23pre1 does not compile on HP-UX 11i
On Thu, May 11, 2006 at 11:54:37AM -0700, Jeremy Allison wrote: On Thu, May 11, 2006 at 02:12:22PM -0400, Ryan Novosielski wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Continuing on: Linking bin/winbindd /usr/ccs/bin/ld: Unsatisfied symbols: seteuid (first referenced in nsswitch/winbindd_pam.o) (code) make: *** [bin/winbindd] Error 1 Problem here appears to be that 'seteuid' is not available on HP-UX, at least not on HP-UX 11i earlier than v2 May 2005: http://devrsrc1.external.hp.com/STKT/impacts/i171.html?jumpid=reg_R1002_USEN Here are notes on what to use instead, however I'm pretty sure that that was already known as it is no doubt needed elsewhere in the package: http://devrsrc1.external.hp.com/STKS/impacts/i133.html?jumpid=reg_R1002_USEN There are also conditionals in configure.in (that never seem to show up in the configure output, interestingly enough). This was not broken in 3.0.22, however, none of the winbindd* files attempted to use seteuid in 3.0.22. Ok, try this patch. Gunther please review as it affects winbindd code. I think it's ok... Yes, looks ok to me too (after a brief test). Please apply, Jeremy. Thanks! Guenther -- Günther DeschnerGPG-ID: 8EE11688 Novell / SUSE LINUX [EMAIL PROTECTED] Samba Team [EMAIL PROTECTED] pgpLuSATWFqqn.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] winbind ldap usage...
hi all For anybody using Winbind with an ldap backend, just wondering how much CPU usage you see on systems.I have a dual PIII-1Ghz with 1GB of ram with ldap entities for ~1400 users and when winbind needs to source ldap to find an object it takes quite a bit of time. Once these results are cached locally, the participating clients are quick and fast, but waiting on this ldap server makes some operations sluggish... Anyway to speed the searches up on ldap? Thanks, Matt -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in adirectory with a large number of files
On Thu, 11 May 2006, Jeremy Allison wrote: On Thu, May 11, 2006 at 01:42:59PM -0400, William Jojo wrote: Certainly. :-) After the initial window refresh of all the files, select any 15 or so consecutive objects (location seems to make no difference for me), smack the delete key and confirm. Ok, I see what happens. Client opens each file in turn, sets delete on close, then closes - we send a changenotify - client sets another change notify up on the directory - repeat until all the files are deleted, then the client (explorer) re-scans the directory using findfirst/findnext with a * wildcard. It's the last action that's causing a stat on each remaining file in the directory. I don't see anything out of the ordinary here Hm, right. I'm seeing stats on each delete on AIX (like a 10-15 second pause between each) and on the re-scan. The deletes on FC3 were snappy followed by a long pause which was the rescan. taps chin I wonder why all the stats are happening on AIX between deletes and not on FC3. grabs shovel Bill Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: proposed list of parameter to remove in 3.0.23
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Andrew Bartlett wrote: When we were looking to publish the original 3.0, I lobbied to keep --with-ldapsam as meaning 'do much as what Samba 2.2 did', because we had a lot of documentation that told users to do this. I also wanted it to be easier to upgrade. I'm far from certain it remains a good idea. 2.2 is long past, and it just confuses users now. I think it was the right choice then. But as the comments have shown, most people don't understand what the option does any more. cheers, jerry = Samba--- http://www.samba.org Centeris --- http://www.centeris.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFEY7+GIR7qMdg1EfYRAufaAJ4wYmkR4h+JjSLIRs/4sp5GisD1hwCgl/5Z 8SN+GoUpPOx7gxkeoit9i2o= =g138 -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in adirectory with a large number of files
On Thu, May 11, 2006 at 06:50:01PM -0400, William Jojo wrote: Hm, right. I'm seeing stats on each delete on AIX (like a 10-15 second pause between each) and on the re-scan. The deletes on FC3 were snappy followed by a long pause which was the rescan. taps chin I wonder why all the stats are happening on AIX between deletes and not on FC3. grabs shovel Do you see the change notify replies happening followed by the change notify setups ? I bet I know what it is Because AIX doesn't have kernel change notify when the change notify setup comes (which happens after every delete) it causes a directory rescan at that point - after *each* delete ! Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] winbind ldap usage...
On Thu, May 11, 2006 at 05:35:38PM -0500, Matt Sellers wrote: hi all For anybody using Winbind with an ldap backend, just wondering how much CPU usage you see on systems.I have a dual PIII-1Ghz with 1GB of ram with ldap entities for ~1400 users and when winbind needs to source ldap to find an object it takes quite a bit of time. Once these results are cached locally, the participating clients are quick and fast, but waiting on this ldap server makes some operations sluggish... Anyway to speed the searches up on ldap? I guess you already took care to set the correct indexes on your LDAP server? Guenther -- Günther DeschnerGPG-ID: 8EE11688 Novell / SUSE LINUX [EMAIL PROTECTED] Samba Team [EMAIL PROTECTED] pgpI6deaZGN9B.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in adirectory with a large number of files
On Thu, May 11, 2006 at 03:54:17PM -0700, Jeremy Allison wrote: Do you see the change notify replies happening followed by the change notify setups ? I bet I know what it is Because AIX doesn't have kernel change notify when the change notify setup comes (which happens after every delete) it causes a directory rescan at that point - after *each* delete ! I think I can code around this. The key is to ensure that setting change notify timeout to zero turns off change notify except for renames and deletes. Also make it a per-share parameter so it can be set to zero for large directories... Give me a day or so on this. Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: proposed list of parameter to remove in 3.0.23
On Thu, 2006-05-11 at 15:49 -0700, Gerald (Jerry) Carter wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Andrew Bartlett wrote: When we were looking to publish the original 3.0, I lobbied to keep --with-ldapsam as meaning 'do much as what Samba 2.2 did', because we had a lot of documentation that told users to do this. I also wanted it to be easier to upgrade. I'm far from certain it remains a good idea. 2.2 is long past, and it just confuses users now. I think it was the right choice then. But as the comments have shown, most people don't understand what the option does any more. I wonder if it works correctly today after all the changes been made to the passdb layer. Simo -- Simo Sorce Samba Team GPL Compliance Officer email: [EMAIL PROTECTED] http://samba.org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: proposed list of parameter to remove in 3.0.23
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 simo wrote: On Thu, 2006-05-11 at 15:49 -0700, Gerald (Jerry) Carter wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Andrew Bartlett wrote: When we were looking to publish the original 3.0, I lobbied to keep --with-ldapsam as meaning 'do much as what Samba 2.2 did', because we had a lot of documentation that told users to do this. I also wanted it to be easier to upgrade. I'm far from certain it remains a good idea. 2.2 is long past, and it just confuses users now. I think it was the right choice then. But as the comments have shown, most people don't understand what the option does any more. I wonder if it works correctly today after all the changes been made to the passdb layer. - --with-ldapsam only enable the 'ldap server' and 'ldap port' options in smb.conf. The ldapsam_compat implementation internally is completely different. I think I'm convinced now that the configure option should go. cheers, jerry = Samba--- http://www.samba.org Centeris --- http://www.centeris.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFEY8u2IR7qMdg1EfYRAvOwAKCU1Jl5BU7erzotxNpb74tjVOpF+ACfdVjS Fz+j0zVRh5LCYrQNOiA/t+U= =Wofm -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Write access doesn't grant delete access?!
I think that's the 'sticky' attribute (that is normally used for /tmp) Yep that is the one, but you need to check the sticky attribute on the containing directory... (or as accessing user try to delete the file directly in Linux). Yep, checked that - there are no sticky attributes anywhere in the whole filesystem (the Samba share is on its own partition) and the only 'special' attribute I have used when creating the directory structure is the SGID bit (if that's what chmod g+s is called) which means any new files created are owned by the same group as the folder they're created in (but even that attribute isn't used in the folder I'm having trouble with.) Apart from that though, there are no other unexpected attributes. I'm wondering whether there's a discrepancy in the Samba code that causes the delete operation to check permissions in a slightly different way to the write/modify code. As far as I can tell, all the filesystem permissions seem fine. Cheers, Adam. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in adirectory with a large number of files
- Original Message - From: Jeremy Allison [EMAIL PROTECTED] To: Jeremy Allison [EMAIL PROTECTED] Cc: William Jojo [EMAIL PROTECTED]; samba@lists.samba.org; [EMAIL PROTECTED] Sent: Thursday, May 11, 2006 7:06 PM Subject: Re: [Samba] Performance issue on AIX when deleting files in adirectory with a large number of files On Thu, May 11, 2006 at 03:54:17PM -0700, Jeremy Allison wrote: Do you see the change notify replies happening followed by the change notify setups ? I bet I know what it is Because AIX doesn't have kernel change notify when the change notify setup comes (which happens after every delete) it causes a directory rescan at that point - after *each* delete ! Yep...you're right no F_NOTIFY defined in fcntl.h (that I can find). I think I can code around this. The key is to ensure that setting change notify timeout to zero turns off change notify except for renames and deletes. Also make it a per-share parameter so it can be set to zero for large directories... Give me a day or so on this. Now, IBM claims they can do directory change notification in AIX Fast Connect. I wonder... Cheers, Bill Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in adirectory with a large number of files
On Thu, May 11, 2006 at 08:39:13PM -0400, William Jojo wrote: Yep...you're right no F_NOTIFY defined in fcntl.h (that I can find). Yes it's a linux only interface. It needs replacing in Samba with inotify (already done for Samba4 - needs back-porting). Now, IBM claims they can do directory change notification in AIX Fast Connect. I wonder... Well we can do directory change notification, we just potentially have to scan the directory to do it without kernel support ! Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files
On 5/12/06, Jeremy Allison [EMAIL PROTECTED] wrote: On Fri, May 12, 2006 at 12:50:37AM +1000, James Peach wrote: On 5/11/06, Jeremy Allison [EMAIL PROTECTED] wrote: On Wed, May 10, 2006 at 12:29:53PM -0400, Claus Lund wrote: Well, then Windows Explorer is braindamaged as well (which is a claim I won't contest ;) )... because it's slow deleting files right through Explorer as well. Yep - I completely agree Explorer is braindamaged. That's probably the worst of the lot :-). Well, it looks like a Samba problem to me (or maybe a compiler/compiler optimization problem?). I'm trying to get Samba compiled using IBM's XLC instead of GCC in the hopes that XLC might produce faster running binaries ... but unfortunately that seems like a somewhat involved task (Samba doesn't compile cleanly out of the box with XLC). If it only happens on AIX, it's not a Samba code logic problem, that's what I mean. I doubt modifying compiler flags will do anything about actions taking seconds to resolve - that's almost certainly a system problem (ie. JFS on AIX). sounds like samba is recreating the directory hash for change notifies It only does that every 30 seconds or so - so I don't think that is the problem (although turning if off might prove me wrong). IIRC, after each delete, the change notify fires and the client then reapplies it causing the hash to be recreated. -- James Peach | [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Performance issue on AIX when deleting files in a directory with a large number of files
On Fri, May 12, 2006 at 11:43:39AM +1000, James Peach wrote: IIRC, after each delete, the change notify fires and the client then reapplies it causing the hash to be recreated. Yeah, that's what I just realized and mentioned to Bill. I'm working on fixing this... Jeremy. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: newbie question reguarding kerberos tickets
When using domain logons, after resuming from a hibernate that exceeded the lifetime of the Kerberos ticket, the client doesn't immediately renew the ticket. It will auto renew, but I've not determined the amount of time it takes. Is there a way to force the client to renew the ticket? Short of rebooting, that is. Things don't work very well until it's renewed. Trying to go green. Samba client and/or XP/2000 client? Regards, Doug simo wrote: Samba stores the machine password and obtains tickets from the KDC when needed. Simo. On Thu, 2006-05-11 at 16:53 -0500, Doug Tucker wrote: Thanks. But again, is the ticket even needed? I deleted the darn thing, rebooted to make sure it wasn't cached in memory somewhere, and everything seems to be working perfectly. If it is indeed needed, and I need to extend the period, is there any directions on how to do that on the windows side? On Thu, 2006-05-11 at 23:07 +0200, Blaž Primc wrote: Hi, the period for which the ticket is valid can be set in Windows Server. Best regards, Blaž. Doug Tucker wrote: I recently joined a samba 3.0.22 server to AD. When I did the kinit, the AD gave me a 24 hour ticket with a 1 week renewal. Setting -r and -l to 365d did not change anything, the ticket still came back the same. However, my question is in reguard to whether this is really even needed? First, I deleted the ticket, and everything seemed to continue to work perfectly. Now, I let the ticket expire for a couple of weeks now, and yet, the samba server is working fine and users still authenticate against AD just fine. Am I missing something, or is the creation of that ticket not even needed? Thank you for your assistance. doug... -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] 3.0.23pre1 does not compile on HP-UX 11i
Guenther Deschner wrote: On Thu, May 11, 2006 at 11:54:37AM -0700, Jeremy Allison wrote: On Thu, May 11, 2006 at 02:12:22PM -0400, Ryan Novosielski wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Continuing on: Linking bin/winbindd /usr/ccs/bin/ld: Unsatisfied symbols: seteuid (first referenced in nsswitch/winbindd_pam.o) (code) make: *** [bin/winbindd] Error 1 Problem here appears to be that 'seteuid' is not available on HP-UX, at least not on HP-UX 11i earlier than v2 May 2005: http://devrsrc1.external.hp.com/STKT/impacts/i171.html?jumpid=reg_R1002_USEN Here are notes on what to use instead, however I'm pretty sure that that was already known as it is no doubt needed elsewhere in the package: http://devrsrc1.external.hp.com/STKS/impacts/i133.html?jumpid=reg_R1002_USEN There are also conditionals in configure.in (that never seem to show up in the configure output, interestingly enough). This was not broken in 3.0.22, however, none of the winbindd* files attempted to use seteuid in 3.0.22. Ok, try this patch. Gunther please review as it affects winbindd code. I think it's ok... Yes, looks ok to me too (after a brief test). Please apply, Jeremy. Best part of all? It works! :) My fix was changing the seteuid's to setreuids, which also appeared to work but I know that's probably not portable. Thanks for the quick fix. Got another bug in 'make install', looks like: --- Installing bin/script.sl as ///opt/samba-3.0.23pre1/lib/auth/script.sl /opt/imake/bin/install -c bin/libsmbclient.sl //opt/samba-3.0.23pre1/lib : bin/libsmbclient.a //opt/samba-3.0.23pre1/lib /opt/imake/bin/install -c /opt/src/samba-3.0.23pre1/source/include/libsmbclient.h //opt/samba-3.0.23pre1/include /opt/imake/bin/install -c bin/libmsrpc.sl //opt/samba-3.0.23pre1/lib : bin/libmsrpc.a //opt/samba-3.0.23pre1/lib /opt/imake/bin/install -c /opt/src/samba-3.0.23pre1/source/include/libmsrpc.h //opt/samba-3.0.23pre1/include Installing module pam_smbpass as ///opt/samba-3.0.23pre1/lib/security/pam_smbpass.sl install: pam_smbpass.sl was not found anywhere! *** Error exit code 2 Stop. --- First of all, there's something crazy going on with slashes (sometimes 3, sometimes 2, sometimes 1). Don't know what's causing that. Second of all, there's a problem with the Makefile on line 1483. There is an INSTALLCMD variable defined at line 43, but the installpammodules stanza doesn't use it. It instead uses install -m... -- for me, install by itself is /usr/sbin/install, which is not GNU. When I change install to $(INSTALLCMD), everything works fine. Not sure why every other line appears to use -$(INSTALLCMD) -- using the hyphen on this line does not work. This is the last hurdle, though... after that, I can build and install. Any comments on this one? -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | | Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| | [EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.| IST/AST - NJMS Medical Science Bldg - C630 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Problem with adding printer drivers in Windows XP
Gerald (Jerry) Carter wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Tom wrote: Well, I'm trying to add drivers to the server through the Properties dialog box for my printer. Right click on the printer, left click Properties, Advanced tab, New Driver button type of thing. Except that the New Driver button is greyed out. I've checked and my user has the SePrintOperatorPrivilege rights assigned to him but it still does not work. * jerry gazes into his crystal ball and then steps up to the mic Do you have 'use client driver = yes' ? If so, disable it (the default setting). This is a rhetorical question, because I do not know the answer -- does this user need to be a member of Domain Admins? Tom, try net groupmap list and see what group is mapped to Domain Admins -- is the user you're connecting as a member of that group? If not, does making sure that they are make a difference? I'd also ask you to check to make sure privileges are turned on, but if they weren't, attempting to add PrintOperatorPrivilege would have failed with NT_STATUS_NO_SUCH_PRIVILEGE or equivalent. BTW, do you have a [print$] defined, with the proper tree created beneath it? The directories all have to be there first. Check your logs for red flags, if there are any. Generally things break farther down the line, though, so I'm pretty sure it's Samba permissions. -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | | Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| | [EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.| IST/AST - NJMS Medical Science Bldg - C630 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] passdb and samba v3.0.23pre1
Gerald (Jerry) Carter wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA1 [EMAIL PROTECTED] wrote: Hi, With samba v3.0.23pre1, I get the following error when I try to connect on a share : [2006/05/05 15:35:36, 0] passdb/pdb_tdb.c:tdbsam_open(816) tdbsam_open: Failed to open/create TDB passwd [/opt/samba/etc/passdb.tdb ldapsam:ldap://localhost] [2006/05/05 15:35:36, 0] passdb/pdb_tdb.c:tdbsam_getsampwnam(1030) tdbsam_getsampwnam: failed to open /opt/samba/etc/passdb.tdb ldapsam:ldap://localhost! This worked with samba v3.0.22 The setting in smb.conf is : passdb backend = tdbsam:/opt/samba/etc/passdb.tdb ldapsam:ldap://localhost Support for chaining passdb backends has been removed. I posted about a month or so ago this before making the change. Is there any other way to duplicate this functionality? I have a feeling this one is going to hurt as far as removing the ability to migrate a population of users over to a new passdb backend. Seems it would all have to be done in one fell swoop with the new behavior. -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | | Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| | [EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.| IST/AST - NJMS Medical Science Bldg - C630 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Status column in Windows Clients
John Traylor wrote: I have noticed when connecting to a samba printer share from a Windows client, the status column in the Printers window always shows Access Denied yet the network printer works fine. Why is this and how could one make it show Connected? This depends upon how you are using printer drivers. If you have drivers on the server, everything should just work. If I'm not mistaken, you may need use client driver if you are not using server-side drivers. Check Google, though, this one has been dealt with many times. -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | | Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| | [EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.| IST/AST - NJMS Medical Science Bldg - C630 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] passdb and samba v3.0.23pre1
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Ryan Novosielski wrote: Is there any other way to duplicate this functionality? I have a feeling this one is going to hurt as far as removing the ability to migrate a population of users over to a new passdb backend. Seems it would all have to be done in one fell swoop with the new behavior. Someone outside of Samba was working on a pdb_multi. But IMO it is best to migrate all at once. cheers, jerry = Samba--- http://www.samba.org Centeris --- http://www.centeris.com What man is a man who does not make the world better? --Balian -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFEZBKBIR7qMdg1EfYRApD7AKDIzpZLkme835ntkZsaHKGpbOcBsgCgqgwr 3shFCigxAX5DsLSHwjK4auI= =xF4h -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] printer admin deprecated: please explain
Franz Pfoertsch wrote: I am Running a printserver using SLES9 SP3 with Samba 3.0.20b and cups 1.1.20 Since the update to Samba 3.0.20 every start of a client program tells me WARNING: The printer admin option is deprecated Ok, I understood I should use net rpc rights grant User or Group SePrintOperatorPrivilege -U .. But I haven't any adminuser to grant this rights. In my environment I put the machine into the AD by kinit UserWithPermissionsToJoinIntoTheDomain@DOMAIN net ads join - joined and all permission granted by the printer admin option. Is there any other way to get SePrintOperator without a other strong user? regards Franz How can you not have an admin user -- who do you have defined under printer admin? Or were you not using this definition at all and that is a spurious error message? If you ARE using printer admin = someone, then you'd just grant the rights to that same user. -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | | Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| | [EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.| IST/AST - NJMS Medical Science Bldg - C630 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba errors - No buffer space available
Allen, Bill wrote: I am new to Samba, having just taken over management of a HPUX system in a mainly Windows environment. The system is running Samba 3.0.7. I am getting the following errors, repeatedly, in my log.smbd. What does it mean? Is this actually a problem or normal chatter for Samba? If it is a problem, what should I do to correct it? [2006/05/03 07:41:38, 0] lib/util_sock.c:set_socket_options(202) Failed to set socket option SO_KEEPALIVE (Error Invalid argument) [2006/05/03 07:41:38, 0] lib/util_sock.c:set_socket_options(202) Failed to set socket option TCP_NODELAY (Error Invalid argument) [2006/05/03 07:41:38, 0] lib/util_sock.c:get_peer_addr(1000) getpeername failed. Error was Invalid argument [2006/05/03 07:41:39, 0] smbd/server.c:open_sockets_smbd(382) open_sockets_smbd: accept: No buffer space available Thanks for any help or advice, Bill When you find out, let me know. :) It's been that way for ages on my system. The two socket option messages are related to header related problems, if I'm not mistaken, but it's really not a big deal. Do you have either of those defined in smb.conf? As far as the buffer thing... this concerned me for along time. I can't remember whether this got any better or worse, but there's a lot wrong with 3.0.7 on HP-UX. I would not run anything earlier than 3.0.14 on an HP-UX system. -- _ _ _ _ ___ _ _ _ |Y#| | | |\/| | \ |\ | | | Ryan Novosielski - User Support Spec. III |$| |__| | | |__/ | \| _| | [EMAIL PROTECTED] - 973/972.0922 (2-0922) \__/ Univ. of Med. and Dent.| IST/AST - NJMS Medical Science Bldg - C630 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
svn commit: samba r15531 - in branches/SAMBA_3_0/source: .
Author: metze Date: 2006-05-11 09:04:24 + (Thu, 11 May 2006) New Revision: 15531 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=15531 Log: fix linking of smbmnt and smbumount with socket wrapper metze Modified: branches/SAMBA_3_0/source/Makefile.in Changeset: Modified: branches/SAMBA_3_0/source/Makefile.in === --- branches/SAMBA_3_0/source/Makefile.in 2006-05-11 02:57:41 UTC (rev 15530) +++ branches/SAMBA_3_0/source/Makefile.in 2006-05-11 09:04:24 UTC (rev 15531) @@ -591,9 +591,9 @@ MOUNT_OBJ = client/smbmount.o \ $(PARAM_OBJ) $(LIBSMB_OBJ) $(KRBCLIENT_OBJ) $(LIB_NONSMBD_OBJ) $(SECRETS_OBJ) -MNT_OBJ = client/smbmnt.o lib/replace.o $(VERSION_OBJ) $(SNPRINTF_OBJ) +MNT_OBJ = client/smbmnt.o lib/replace.o $(VERSION_OBJ) $(SNPRINTF_OBJ) @SOCKWRAP@ -UMOUNT_OBJ = client/smbumount.o +UMOUNT_OBJ = client/smbumount.o @SOCKWRAP@ CIFS_MOUNT_OBJ = client/mount.cifs.o
svn commit: samba r15532 - in branches/SAMBA_4_0/source: libcli/smb2 smb_server/smb2 torture/smb2
Author: metze
Date: 2006-05-11 10:47:37 + (Thu, 11 May 2006)
New Revision: 15532
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=15532
Log:
add a BOOL body_dynamic_present, because the body_dynamic_size can be 0
also if the dynamic flag should be set
metze
Modified:
branches/SAMBA_4_0/source/libcli/smb2/close.c
branches/SAMBA_4_0/source/libcli/smb2/create.c
branches/SAMBA_4_0/source/libcli/smb2/find.c
branches/SAMBA_4_0/source/libcli/smb2/flush.c
branches/SAMBA_4_0/source/libcli/smb2/getinfo.c
branches/SAMBA_4_0/source/libcli/smb2/ioctl.c
branches/SAMBA_4_0/source/libcli/smb2/keepalive.c
branches/SAMBA_4_0/source/libcli/smb2/logoff.c
branches/SAMBA_4_0/source/libcli/smb2/negprot.c
branches/SAMBA_4_0/source/libcli/smb2/read.c
branches/SAMBA_4_0/source/libcli/smb2/request.c
branches/SAMBA_4_0/source/libcli/smb2/session.c
branches/SAMBA_4_0/source/libcli/smb2/setinfo.c
branches/SAMBA_4_0/source/libcli/smb2/tcon.c
branches/SAMBA_4_0/source/libcli/smb2/tdis.c
branches/SAMBA_4_0/source/libcli/smb2/write.c
branches/SAMBA_4_0/source/smb_server/smb2/keepalive.c
branches/SAMBA_4_0/source/smb_server/smb2/negprot.c
branches/SAMBA_4_0/source/smb_server/smb2/receive.c
branches/SAMBA_4_0/source/smb_server/smb2/sesssetup.c
branches/SAMBA_4_0/source/smb_server/smb2/tcon.c
branches/SAMBA_4_0/source/torture/smb2/scan.c
Changeset:
Modified: branches/SAMBA_4_0/source/libcli/smb2/close.c
===
--- branches/SAMBA_4_0/source/libcli/smb2/close.c 2006-05-11 09:04:24 UTC
(rev 15531)
+++ branches/SAMBA_4_0/source/libcli/smb2/close.c 2006-05-11 10:47:37 UTC
(rev 15532)
@@ -32,7 +32,7 @@
{
struct smb2_request *req;
- req = smb2_request_init_tree(tree, SMB2_OP_CLOSE, 0x18, 0);
+ req = smb2_request_init_tree(tree, SMB2_OP_CLOSE, 0x18, False, 0);
if (req == NULL) return NULL;
SSVAL(req-out.body, 0x02, io-in.flags);
Modified: branches/SAMBA_4_0/source/libcli/smb2/create.c
===
--- branches/SAMBA_4_0/source/libcli/smb2/create.c 2006-05-11 09:04:24 UTC
(rev 15531)
+++ branches/SAMBA_4_0/source/libcli/smb2/create.c 2006-05-11 10:47:37 UTC
(rev 15532)
@@ -67,7 +67,7 @@
NTSTATUS status;
DATA_BLOB blob = data_blob(NULL, 0);
- req = smb2_request_init_tree(tree, SMB2_OP_CREATE, 0x38, 1);
+ req = smb2_request_init_tree(tree, SMB2_OP_CREATE, 0x38, True, 0);
if (req == NULL) return NULL;
SSVAL(req-out.body, 0x02, io-in.oplock_flags);
Modified: branches/SAMBA_4_0/source/libcli/smb2/find.c
===
--- branches/SAMBA_4_0/source/libcli/smb2/find.c2006-05-11 09:04:24 UTC
(rev 15531)
+++ branches/SAMBA_4_0/source/libcli/smb2/find.c2006-05-11 10:47:37 UTC
(rev 15532)
@@ -33,7 +33,7 @@
struct smb2_request *req;
NTSTATUS status;
- req = smb2_request_init_tree(tree, SMB2_OP_FIND, 0x20, 1);
+ req = smb2_request_init_tree(tree, SMB2_OP_FIND, 0x20, True, 0);
if (req == NULL) return NULL;
SCVAL(req-out.body, 0x02, io-in.level);
Modified: branches/SAMBA_4_0/source/libcli/smb2/flush.c
===
--- branches/SAMBA_4_0/source/libcli/smb2/flush.c 2006-05-11 09:04:24 UTC
(rev 15531)
+++ branches/SAMBA_4_0/source/libcli/smb2/flush.c 2006-05-11 10:47:37 UTC
(rev 15532)
@@ -31,7 +31,7 @@
{
struct smb2_request *req;
- req = smb2_request_init_tree(tree, SMB2_OP_FLUSH, 0x18, 0);
+ req = smb2_request_init_tree(tree, SMB2_OP_FLUSH, 0x18, False, 0);
if (req == NULL) return NULL;
SSVAL(req-out.body, 0x02, 0); /* pad? */
Modified: branches/SAMBA_4_0/source/libcli/smb2/getinfo.c
===
--- branches/SAMBA_4_0/source/libcli/smb2/getinfo.c 2006-05-11 09:04:24 UTC
(rev 15531)
+++ branches/SAMBA_4_0/source/libcli/smb2/getinfo.c 2006-05-11 10:47:37 UTC
(rev 15532)
@@ -32,7 +32,7 @@
{
struct smb2_request *req;
- req = smb2_request_init_tree(tree, SMB2_OP_GETINFO, 0x28, 0);
+ req = smb2_request_init_tree(tree, SMB2_OP_GETINFO, 0x28, False, 0);
if (req == NULL) return NULL;
/* this seems to be a bug, they use 0x29 but only send 0x28 bytes */
Modified: branches/SAMBA_4_0/source/libcli/smb2/ioctl.c
===
--- branches/SAMBA_4_0/source/libcli/smb2/ioctl.c 2006-05-11 09:04:24 UTC
(rev 15531)
+++ branches/SAMBA_4_0/source/libcli/smb2/ioctl.c 2006-05-11 10:47:37 UTC
(rev 15532)
@@ -32,7 +32,7 @@
NTSTATUS status;
struct smb2_request *req;
- req = smb2_request_init_tree(tree, SMB2_OP_IOCTL, 0x38,
+ req =
svn commit: samba r15533 - in branches/SAMBA_4_0/source/smb_server/smb2: .
Author: metze Date: 2006-05-11 11:01:47 + (Thu, 11 May 2006) New Revision: 15533 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=15533 Log: with this vista does a fine SMB2 TreeConnect against samba4 metze Modified: branches/SAMBA_4_0/source/smb_server/smb2/tcon.c Changeset: Modified: branches/SAMBA_4_0/source/smb_server/smb2/tcon.c === --- branches/SAMBA_4_0/source/smb_server/smb2/tcon.c2006-05-11 10:47:37 UTC (rev 15532) +++ branches/SAMBA_4_0/source/smb_server/smb2/tcon.c2006-05-11 11:01:47 UTC (rev 15533) @@ -34,10 +34,10 @@ /* TODO: do real tree connect */ - io-out.unknown1= 0; - io-out.unknown2= 0; - io-out.unknown3= 0; - io-out.access_mask = 0; + io-out.unknown1= 0x0001; /* 1 - DISK, 2 - Print, 3 - IPC */ + io-out.unknown2= 0x; + io-out.unknown3= 0x; + io-out.access_mask = SEC_RIGHTS_FILE_ALL; io-out.tid = tcon-tid;
svn commit: samba r15534 - in trunk/source: .
Author: metze Date: 2006-05-11 11:07:26 + (Thu, 11 May 2006) New Revision: 15534 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=15534 Log: fix linking of smbmnt and smbumount with socket wrapper metze Modified: trunk/source/Makefile.in Changeset: Modified: trunk/source/Makefile.in === --- trunk/source/Makefile.in2006-05-11 11:01:47 UTC (rev 15533) +++ trunk/source/Makefile.in2006-05-11 11:07:26 UTC (rev 15534) @@ -604,9 +604,9 @@ MOUNT_OBJ = client/smbmount.o \ $(PARAM_OBJ) $(LIBSMB_OBJ) $(KRBCLIENT_OBJ) $(LIB_NONSMBD_OBJ) $(SECRETS_OBJ) -MNT_OBJ = client/smbmnt.o lib/replace.o $(VERSION_OBJ) $(SNPRINTF_OBJ) +MNT_OBJ = client/smbmnt.o lib/replace.o $(VERSION_OBJ) $(SNPRINTF_OBJ) @SOCKWRAP@ -UMOUNT_OBJ = client/smbumount.o +UMOUNT_OBJ = client/smbumount.o @SOCKWRAP@ CIFS_MOUNT_OBJ = client/mount.cifs.o
svn commit: samba r15535 - in branches/SAMBA_4_0/source/smb_server/smb2: .
Author: metze
Date: 2006-05-11 18:32:34 + (Thu, 11 May 2006)
New Revision: 15535
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=15535
Log:
fix the build
metze
Modified:
branches/SAMBA_4_0/source/smb_server/smb2/tcon.c
Changeset:
Modified: branches/SAMBA_4_0/source/smb_server/smb2/tcon.c
===
--- branches/SAMBA_4_0/source/smb_server/smb2/tcon.c2006-05-11 11:07:26 UTC
(rev 15534)
+++ branches/SAMBA_4_0/source/smb_server/smb2/tcon.c2006-05-11 18:32:34 UTC
(rev 15535)
@@ -24,6 +24,7 @@
#include smb_server/smb_server.h
#include smb_server/service_smb_proto.h
#include smb_server/smb2/smb2_server.h
+#include librpc/gen_ndr/security.h
static NTSTATUS smb2srv_tcon_backend(struct smb2srv_request *req, struct
smb2_tree_connect *io)
{
svn commit: samba r15537 - in branches/SAMBA_3_0/source/rpcclient: .
Author: jra
Date: 2006-05-11 18:59:41 + (Thu, 11 May 2006)
New Revision: 15537
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=15537
Log:
Ignore // or \\ in //server or \\server.
Jeremy.
Modified:
branches/SAMBA_3_0/source/rpcclient/rpcclient.c
Changeset:
Modified: branches/SAMBA_3_0/source/rpcclient/rpcclient.c
===
--- branches/SAMBA_3_0/source/rpcclient/rpcclient.c 2006-05-11 18:59:33 UTC
(rev 15536)
+++ branches/SAMBA_3_0/source/rpcclient/rpcclient.c 2006-05-11 18:59:41 UTC
(rev 15537)
@@ -787,6 +787,11 @@
}
}
+ if ((server[0] == '/' || server[0] == '\\')
+ (server[1] == '/' || server[1] == '\\')) {
+ server += 2;
+ }
+
nt_status = cli_full_connection(cli, global_myname(), server,
opt_ipaddr ? server_ip : NULL,
opt_port,
IPC$, IPC,
svn commit: samba r15536 - in trunk/source/rpcclient: .
Author: jra
Date: 2006-05-11 18:59:33 + (Thu, 11 May 2006)
New Revision: 15536
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=15536
Log:
Ignore // or \\ in //server or \\server.
Jeremy.
Modified:
trunk/source/rpcclient/rpcclient.c
Changeset:
Modified: trunk/source/rpcclient/rpcclient.c
===
--- trunk/source/rpcclient/rpcclient.c 2006-05-11 18:32:34 UTC (rev 15535)
+++ trunk/source/rpcclient/rpcclient.c 2006-05-11 18:59:33 UTC (rev 15536)
@@ -789,6 +789,11 @@
}
}
+ if ((server[0] == '/' || server[0] == '\\')
+ (server[1] == '/' || server[1] == '\\')) {
+ server += 2;
+ }
+
nt_status = cli_full_connection(cli, global_myname(), server,
opt_ipaddr ? server_ip : NULL,
opt_port,
IPC$, IPC,
svn commit: samba r15538 - in branches/SAMBA_4_0/source/lib/tls: .
Author: jelmer Date: 2006-05-11 21:21:36 + (Thu, 11 May 2006) New Revision: 15538 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=15538 Log: Use pkg-config file where possible and only fall back to manual tests if that can't be found (for systems that have older versions of gnutls without the .pc file installed) Modified: branches/SAMBA_4_0/source/lib/tls/config.m4 Changeset: Modified: branches/SAMBA_4_0/source/lib/tls/config.m4 === --- branches/SAMBA_4_0/source/lib/tls/config.m4 2006-05-11 18:59:41 UTC (rev 15537) +++ branches/SAMBA_4_0/source/lib/tls/config.m4 2006-05-11 21:21:36 UTC (rev 15538) @@ -1,19 +1,20 @@ ### # start SMB_EXT_LIB_GNUTLS # check for gnutls/gnutls.h and -lgnutls -# -# Should eventually change to simply: -# SMB_EXT_LIB_FROM_PKGCONFIG(GNUTLS, gnutls) -AC_CHECK_HEADERS(gnutls/gnutls.h) -AC_CHECK_LIB_EXT(gnutls, GNUTLS_LIBS, gnutls_global_init) -if test x$ac_cv_header_gnutls_gnutls_h = xyes -a x$ac_cv_lib_ext_gnutls_gnutls_global_init = xyes;then - SMB_ENABLE(GNUTLS,YES) - AC_CHECK_DECL(gnutls_x509_crt_set_subject_key_id, - [AC_DEFINE(HAVE_GNUTLS_X509_CRT_SET_SUBJECT_KEY_ID,1,gnutls subject_key)], [], [ -#include gnutls/gnutls.h -#include gnutls/x509.h -]) +SMB_EXT_LIB_FROM_PKGCONFIG(GNUTLS, gnutls) + +if test x$SMB_ENABLE_GNUTLS = xNO; then + AC_CHECK_HEADERS(gnutls/gnutls.h) + AC_CHECK_LIB_EXT(gnutls, GNUTLS_LIBS, gnutls_global_init) + if test x$ac_cv_header_gnutls_gnutls_h = xyes -a x$ac_cv_lib_ext_gnutls_gnutls_global_init = xyes;then + SMB_ENABLE(GNUTLS,YES) + AC_CHECK_DECL(gnutls_x509_crt_set_subject_key_id, + [AC_DEFINE(HAVE_GNUTLS_X509_CRT_SET_SUBJECT_KEY_ID,1,gnutls subject_key)], [], [ + #include gnutls/gnutls.h + #include gnutls/x509.h + ]) + fi + SMB_EXT_LIB(GNUTLS, $GNUTLS_LIBS) fi -SMB_EXT_LIB(GNUTLS, $GNUTLS_LIBS) # end SMB_EXT_LIB_GNUTLS ###
svn commit: samba r15539 - in branches/SAMBA_3_0/source/nsswitch: .
Author: jra
Date: 2006-05-11 22:47:28 + (Thu, 11 May 2006)
New Revision: 15539
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=15539
Log:
Use portable wrapper functions instead of seteuid
directly in winbindd.
Jeremy.
Modified:
branches/SAMBA_3_0/source/nsswitch/winbindd_cred_cache.c
branches/SAMBA_3_0/source/nsswitch/winbindd_pam.c
Changeset:
Modified: branches/SAMBA_3_0/source/nsswitch/winbindd_cred_cache.c
===
--- branches/SAMBA_3_0/source/nsswitch/winbindd_cred_cache.c2006-05-11
21:21:36 UTC (rev 15538)
+++ branches/SAMBA_3_0/source/nsswitch/winbindd_cred_cache.c2006-05-11
22:47:28 UTC (rev 15539)
@@ -105,7 +105,7 @@
if ((entry-renew_until time(NULL)) (entry-pass != NULL)) {
- seteuid(entry-uid);
+ set_effective_uid(entry-uid);
ret = kerberos_kinit_password_ext(entry-principal_name,
entry-pass,
@@ -116,7 +116,7 @@
False, /* no PAC required
anymore */
True,
WINBINDD_PAM_AUTH_KRB5_RENEW_TIME);
- seteuid(0);
+ gain_root_privilege();
if (ret) {
DEBUG(3,(could not re-kinit: %s\n,
error_message(ret)));
@@ -132,13 +132,13 @@
goto done;
}
- seteuid(entry-uid);
+ set_effective_uid(entry-uid);
ret = smb_krb5_renew_ticket(entry-ccname,
entry-principal_name,
entry-service,
new_start);
- seteuid(0);
+ gain_root_privilege();
if (ret) {
DEBUG(3,(could not renew tickets: %s\n, error_message(ret)));
Modified: branches/SAMBA_3_0/source/nsswitch/winbindd_pam.c
===
--- branches/SAMBA_3_0/source/nsswitch/winbindd_pam.c 2006-05-11 21:21:36 UTC
(rev 15538)
+++ branches/SAMBA_3_0/source/nsswitch/winbindd_pam.c 2006-05-11 22:47:28 UTC
(rev 15539)
@@ -478,7 +478,7 @@
if (!internal_ccache) {
- seteuid(uid);
+ set_effective_uid(uid);
DEBUG(10,(winbindd_raw_kerberos_login: uid is %d\n, uid));
}
@@ -533,7 +533,7 @@
}
if (!internal_ccache) {
- seteuid(0);
+ gain_root_privilege();
}
/ NON-ROOT **/
@@ -631,7 +631,7 @@
SAFE_FREE(client_princ_out);
if (!internal_ccache) {
- seteuid(0);
+ gain_root_privilege();
}
return result;
svn commit: samba r15540 - in trunk/source/nsswitch: .
Author: jra
Date: 2006-05-11 23:04:38 + (Thu, 11 May 2006)
New Revision: 15540
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=15540
Log:
Use portable wrapper functions instead of seteuid
directly in winbindd.
Jeremy.
Modified:
trunk/source/nsswitch/winbindd_cred_cache.c
trunk/source/nsswitch/winbindd_pam.c
Changeset:
Modified: trunk/source/nsswitch/winbindd_cred_cache.c
===
--- trunk/source/nsswitch/winbindd_cred_cache.c 2006-05-11 22:47:28 UTC (rev
15539)
+++ trunk/source/nsswitch/winbindd_cred_cache.c 2006-05-11 23:04:38 UTC (rev
15540)
@@ -105,7 +105,7 @@
if ((entry-renew_until time(NULL)) (entry-pass != NULL)) {
- seteuid(entry-uid);
+ set_effective_uid(entry-uid);
ret = kerberos_kinit_password_ext(entry-principal_name,
entry-pass,
@@ -116,7 +116,7 @@
False, /* no PAC required
anymore */
True,
WINBINDD_PAM_AUTH_KRB5_RENEW_TIME);
- seteuid(0);
+ gain_root_privilege();
if (ret) {
DEBUG(3,(could not re-kinit: %s\n,
error_message(ret)));
@@ -132,13 +132,13 @@
goto done;
}
- seteuid(entry-uid);
+ set_effective_uid(entry-uid);
ret = smb_krb5_renew_ticket(entry-ccname,
entry-principal_name,
entry-service,
new_start);
- seteuid(0);
+ gain_root_privilege();
if (ret) {
DEBUG(3,(could not renew tickets: %s\n, error_message(ret)));
Modified: trunk/source/nsswitch/winbindd_pam.c
===
--- trunk/source/nsswitch/winbindd_pam.c2006-05-11 22:47:28 UTC (rev
15539)
+++ trunk/source/nsswitch/winbindd_pam.c2006-05-11 23:04:38 UTC (rev
15540)
@@ -478,7 +478,7 @@
if (!internal_ccache) {
- seteuid(uid);
+ set_effective_uid(uid);
DEBUG(10,(winbindd_raw_kerberos_login: uid is %d\n, uid));
}
@@ -533,7 +533,7 @@
}
if (!internal_ccache) {
- seteuid(0);
+ gain_root_privilege();
}
/ NON-ROOT **/
@@ -631,7 +631,7 @@
SAFE_FREE(client_princ_out);
if (!internal_ccache) {
- seteuid(0);
+ gain_root_privilege();
}
return result;
svn commit: samba r15541 - branches/SAMBA_3_0/source/nsswitch trunk/source/nsswitch
Author: gd
Date: 2006-05-11 23:07:34 + (Thu, 11 May 2006)
New Revision: 15541
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=15541
Log:
Only ever store a user's password in a WINBINDD_CCACHE_ENTRY struct when
we have a reason to do so.
Guenther
Modified:
branches/SAMBA_3_0/source/nsswitch/winbindd_cred_cache.c
trunk/source/nsswitch/winbindd_cred_cache.c
Changeset:
Modified: branches/SAMBA_3_0/source/nsswitch/winbindd_cred_cache.c
===
--- branches/SAMBA_3_0/source/nsswitch/winbindd_cred_cache.c2006-05-11
23:04:38 UTC (rev 15540)
+++ branches/SAMBA_3_0/source/nsswitch/winbindd_cred_cache.c2006-05-11
23:07:34 UTC (rev 15541)
@@ -227,7 +227,7 @@
new_entry-service = talloc_strdup(mem_ctx, service);
NT_STATUS_HAVE_NO_MEMORY(new_entry-service);
}
- if (pass) {
+ if (schedule_refresh_event pass) {
new_entry-pass = talloc_strdup(mem_ctx, pass);
NT_STATUS_HAVE_NO_MEMORY(new_entry-pass);
}
Modified: trunk/source/nsswitch/winbindd_cred_cache.c
===
--- trunk/source/nsswitch/winbindd_cred_cache.c 2006-05-11 23:04:38 UTC (rev
15540)
+++ trunk/source/nsswitch/winbindd_cred_cache.c 2006-05-11 23:07:34 UTC (rev
15541)
@@ -227,7 +227,7 @@
new_entry-service = talloc_strdup(mem_ctx, service);
NT_STATUS_HAVE_NO_MEMORY(new_entry-service);
}
- if (pass) {
+ if (schedule_refresh_event pass) {
new_entry-pass = talloc_strdup(mem_ctx, pass);
NT_STATUS_HAVE_NO_MEMORY(new_entry-pass);
}
Build status as of Fri May 12 00:00:01 2006
URL: http://build.samba.org/ --- /home/build/master/cache/broken_results.txt.old 2006-05-11 00:00:45.0 + +++ /home/build/master/cache/broken_results.txt 2006-05-12 00:01:00.0 + @@ -1,17 +1,17 @@ -Build status as of Thu May 11 00:00:02 2006 +Build status as of Fri May 12 00:00:01 2006 Build counts: Tree Total Broken Panic -ccache 6 0 0 -distcc 12 1 0 -lorikeet-heimdal 33 21 0 -ppp 18 0 0 -rsync35 3 0 -samba2 0 0 +ccache 35 3 0 +distcc 35 3 0 +lorikeet-heimdal 33 23 0 +ppp 20 0 0 +rsync35 2 0 +samba4 0 0 samba-docs 0 0 0 -samba4 40 26 4 -samba_3_036 10 0 -smb-build25 0 0 -talloc 7 4 0 -tdb 3 1 0 +samba4 40 24 4 +samba_3_036 11 0 +smb-build28 0 0 +talloc 32 15 0 +tdb 31 3 0
