Pessoal,
Alguém tem alguma idéia de como resolver?? Até agora
estou me batendo com este problema...
abração!
Murilo
--- Dantas <[EMAIL PROTECTED]> escreveu:
> Grande Ygor! Alô Lista!
>
>
> Desde já agradeço pela ajuda!
>
> Quando aparece a telinha de logon eu digito meu
> login
> e senha do A/D o site entra... Quais permissões
> preciso ver?
>
> /var/spool/squid ->
> drwxr-xr-x 66 proxy proxy squid
>
> /var/run/samba/winbindd_privileged ->
> drwxr-x--- 2 root proxy 4096 winbindd_privileged
>
> No /var/log/squid/cache.log aparece isso quando a
> tela
> de logon é exibida no browser:
> [2008/02/18 15:50:47, 3]
> utils/ntlm_auth.c:winbind_pw_check(429)
> Login for user [EMAIL PROTECTED] failed
> due to [NT_STATUS_UNEXPECTED_NETWORK_ERROR]
>
>
> No /var/log/syslog:
> Feb 18 15:55:26 fox winbindd[8146]: [2008/02/18
> 15:55:26, 0] lib/util_sock.c:write_data(564)
> Feb 18 15:55:26 fox winbindd[8146]: write_data:
> write failure. Error = Conexão fechada pela outra
> ponta
> Feb 18 15:55:26 fox winbindd[8146]: [2008/02/18
> 15:55:26, 0] libsmb/clientgen.c:write_socket(138)
> Feb 18 15:55:26 fox winbindd[8146]: write_socket:
> Error writing 446 bytes to socket 15: ERRNO =
> Conexão
> fechada pela outra ponta
> Feb 18 15:55:26 fox winbindd[8146]: [2008/02/18
> 15:55:26, 0] libsmb/clientgen.c:cli_send_smb(168)
> Feb 18 15:55:26 fox winbindd[8146]: Error writing
> 446 bytes to client. -1 (Conexão fechada pela outra
> ponta)
> Feb 18 15:55:26 fox winbindd[8146]: [2008/02/18
> 15:55:26, 0] rpc_client/cli_pipe.c:rpc_api_pipe(790)
> Feb 18 15:55:26 fox winbindd[8146]: rpc_api_pipe:
> Remote machine MAQ01 pipe \NETLOGON fnum
> 0xc008returned critical error. Error was Write
> error:
> Conexão fechada pela outra ponta
>
>
> Meu squid.conf:
> # Access Control Lists
> #
>
-----------------------------------------------------------------------------
> acl all src 0.0.0.0/0.0.0.0
> acl from_all src 0.0.0.0/0.0.0.0
> acl from_localhost src 127.0.0.1/32
> acl from_loopback src 127.0.0.0/8
> acl from_intranet_a src 10.67.54.0/25
> acl from_intranet_b src 10.67.54.128/25
> acl from_intranet_c src 10.67.55.0/24
>
> acl to_all dst 0.0.0.0/0.0.0.0
> acl to_localhost dst 127.0.0.1/32
> acl to_loopback dst 127.0.0.0/8
> acl to_intranet_a dst 10.67.54.0/25
> acl to_intranet_b dst 10.67.54.128/25
> acl to_intranet_c dst 10.67.55.0/24
> # Sites bloqueados
> #acl blocked_sites dstdom_regex
> "/etc/squid/cache/squid/block/proibidos_dominios"
> # Palavras bloqueadas
> #acl blocked_words urlpath_regex
> "/cache/squid/block/proibidos_palavras"
> #
>
-----------------------------------------------------------------------------
> # Cache manager
> #
>
-----------------------------------------------------------------------------
> acl manager proto cache_object
> #
>
-----------------------------------------------------------------------------
> # Known ports
> #
>
-----------------------------------------------------------------------------
> acl SSL_ports port 443 563 # https,snews
> acl Safe_ports port 80 # http
> acl Safe_ports port 8080 # http proxy
> acl Safe_ports port 8880 # http proxy
> acl Safe_ports port 81 # http
> acl Safe_ports port 443 # https
> acl Safe_ports port 20 # ftp
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 563 # https, snews
> acl Safe_ports port 593 # http rpc ep map
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl Safe_ports port 554 # media player
> #
>
-----------------------------------------------------------------------------
> # Queries and connections
> #
>
-----------------------------------------------------------------------------
> acl QUERY urlpath_regex cgi-bin \?
> acl CONNECT method CONNECT
> #
>
-----------------------------------------------------------------------------
> # General directives
> #
>
-----------------------------------------------------------------------------
> http_port 3128
> cache_mem 128 MB
> maximum_object_size 1024 MB
> cache_effective_user proxy
> emulate_httpd_log on
> cachemgr_passwd ***** all
> logfile_rotate 3
> pid_filename /var/run/squid.pid
> cache_log /var/log/squid/cache.log
> cache_access_log /var/log/squid/access.log
> cache_store_log /var/log/squid/store.log
> ie_refresh on
> refresh_pattern ^ftp: 1440 20%
> 10080
> refresh_pattern ^gopher: 1440 0% 1440
> refresh_pattern . 0 20%
> 10080
> no_cache deny SSL_ports
> extension_methods RPC_CONNECT SEARCH SUBSCRIBE
> UNSUBSCRIBE POLL BCOPY BPROPPATCH GNUTELLA REPORT
> MERGE MKACTIVITY CHECKOUT GET HEAD DELETE OPTIONS
> TRACE CONNECT POST PUT SOAP
> #
>
-----------------------------------------------------------------------------
> # Directories
> #
>
-----------------------------------------------------------------------------
> cache_dir diskd /var/spool/squid/ 256 64 64 Q1=64
> Q2=72
> icon_directory /usr/share/squid/icons
> error_directory /usr/share/squid/errors/Portuguese
> #
>
-----------------------------------------------------------------------------
> # Clients privacy
> #
>
-----------------------------------------------------------------------------
>
> # Access Control
> #
>
-----------------------------------------------------------------------------
> auth_param ntlm program /usr/bin/ntlm_auth
> --helper-protocol=squid-2.5-ntlmssp
> auth_param ntlm children 30
> #auth_param ntlm use_ntlm_negotiate off
> #auth_param ntlm max_challenge_reuses 0
> #auth_param ntlm max_challenge_lifetime 2 minutes
> auth_param basic program /usr/bin/ntlm_auth
> --helper-protocol=squid-2.5-basic
> auth_param basic children 5
> auth_param basic realm Sistema de Controle WEB
> auth_param basic credentialsttl 2 hours
> auth_param basic casesensitive on
> authenticate_ttl 0 seconds
> acl users_rede proxy_auth REQUIRED
> authenticate_cache_garbage_interval 10 seconds
>
> ##Grupos
> external_acl_type wbinfo_group %LOGIN
> /usr/lib/squid/wbinfo_group.pl
>
> acl diretoria external wbinfo_group diretoria
> acl secretaria external wbinfo_group secretaria
> acl servicos external wbinfo_group servicos
> acl biblioteca external wbinfo_group biblioteca
> acl alunos external wbinfo_group alunos
> acl professores external wbinfo_group professores
> acl cact external wbinfo_group cact
> acl atualizacao external wbinfo_group g_atualizacao
> acl administradores external wbinfo_group adm
> acl estagiarios external wbinfo_group estagiarios
> acl estsecplus external wbinfo_group estsecplus
> acl estserplus external wbinfo_group estserplus
> acl logistica external wbinfo_group logistica
> acl informatica external wbinfo_group informatica
> acl da external wbinfo_group da
>
> ##Restricoes
>
> acl downloads url_regex -i .exe$ .ipz$ .mp3$ .pif$
> .scr$ .avi$ .wmv$ .mpg$ .rmvb$ .mpeg$ .mpe$ .mov$
> .wav$ .ini$ .msi$
> acl sites_especificos url_regex -i
> "/etc/squid/sites_especificos"
> acl sites_proibidos url_regex -i
> "/etc/squid/sites_proibidos"
>
=== message truncated ===
Abra sua conta no Yahoo! Mail, o único sem limite de espaço para
armazenamento!
http://br.mail.yahoo.com/
---------------------------------------------------------------------------
Esta lista é patrocinada pela Conectiva S.A. Visite http://www.conectiva.com.br
Arquivo: http://bazar2.conectiva.com.br/mailman/listinfo/linux-br
Regras de utilização da lista: http://linux-br.conectiva.com.br
FAQ: http://www.zago.eti.br/menu.html
