Re: [Samba] Linux member server, or something else?
Hello, On Mon, Jun 29, 2009 at 11:11 PM, John Drescher wrote: >> I have a Samba PDC with an LDAP backend password database, against which >> WinXP clients authenticate. I also have a Ubuntu workstation, which >> authenticates directly to the same LDAP password database (no Samba). >> >> I now wish to have the WinXP clients be able to map shares on the Ubuntu >> workstation, so I obviously need to get Samba working on it. I can slog >> through the technical details, but I want to make sure I have the concept >> properly figured out - will the Ubuntu workstation be a "member server", >> configured as such per the Samba documentation using Winbind, or is there a >> different way I should be thinking about this? >> >> Thanks for any general pointers. >> > > That is what I have with my samba setup. I mean I have a PDC, a BDC, 3 > to 5 LDAP servers and 5 or so member servers. On my PDC and BDC there > are no real file shares. The member servers have that. My member > servers have winbind. At work, we're in the process of starting a migration of our Windows XP clients to Ubuntu. My PDC is a Samba server running on Ubuntu Hardy with LDAP backend. I'm testing with my workstation (Ubuntu Jaunty). Samba uses the PDC as a password server. Users and groups are read from LDAP via nsswitch (i.e. nothing about LDAP in smb.conf on the client). Also, no winbind. It seems to work, but I want to know if I'm missing something. Why should I run winbind? If I need to run winbind, does it need to run on server _and_ clients? Many thanks in advance, Norberto -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Linux member server, or something else?
> I have a Samba PDC with an LDAP backend password database, against which > WinXP clients authenticate. I also have a Ubuntu workstation, which > authenticates directly to the same LDAP password database (no Samba). > > I now wish to have the WinXP clients be able to map shares on the Ubuntu > workstation, so I obviously need to get Samba working on it. I can slog > through the technical details, but I want to make sure I have the concept > properly figured out - will the Ubuntu workstation be a "member server", > configured as such per the Samba documentation using Winbind, or is there a > different way I should be thinking about this? > > Thanks for any general pointers. > That is what I have with my samba setup. I mean I have a PDC, a BDC, 3 to 5 LDAP servers and 5 or so member servers. On my PDC and BDC there are no real file shares. The member servers have that. My member servers have winbind. John -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows XP login
On Mon, Jun 29, 2009 at 9:59 PM, John Drescher wrote: >>> This desktop.ini file is a hidden file that windows places in all >>> folders of your system to store the preferences of your explorer view. >>> The problem here is samba is making this hidden file in the startup >>> folder of the start menu visible instead of default hidden. >>> >>> John >> >> Thanks for info, what do I need to modify or configure in order for this >> file to remain hidden on all clients? > > I have not solved that myself. > > look at the documentation for hidden file mapping and veto files I have. Using the user_xattr mount option and (IIRC) "store dos attributes". Here is an excerpt from my smb.conf profile acls = Yes hide unreadable = Yes map acl inherit = Yes store dos attributes = Yes map archive = No map read only = No HTH, Norberto -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Linux member server, or something else?
Hello list! I have a Samba PDC with an LDAP backend password database, against which WinXP clients authenticate. I also have a Ubuntu workstation, which authenticates directly to the same LDAP password database (no Samba). I now wish to have the WinXP clients be able to map shares on the Ubuntu workstation, so I obviously need to get Samba working on it. I can slog through the technical details, but I want to make sure I have the concept properly figured out - will the Ubuntu workstation be a "member server", configured as such per the Samba documentation using Winbind, or is there a different way I should be thinking about this? Thanks for any general pointers. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Fwd: [Samba] Windows XP login
>> This desktop.ini file is a hidden file that windows places in all >> folders of your system to store the preferences of your explorer view. >> The problem here is samba is making this hidden file in the startup >> folder of the start menu visible instead of default hidden. >> >> John > > Thanks for info, what do I need to modify or configure in order for this > file to remain hidden on all clients? I have not solved that myself. look at the documentation for hidden file mapping and veto files > Is this also the reason why the > desktop setting is not being applied on logins? > I do not think so. I believe this file is only for view settings of explorer.exe. Detailed, Icon, web view ... John -- John M. Drescher -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows XP login
On Mon, Jun 29, 2009 at 7:26 PM, David Christensen wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > When WinXP users login to the samba domain a text file opens that contains: > > [.ShellClassInfo] > localizedresourcena...@%systemroot%\system32\shell32.dll,-21787 > > This seems to be tied to the roaming profile, it only surfaced once I > enabled roaming profiles but I am not sure how to correct it. I also > noticed that the desktop background setting is persistent when a user > logs on but the actual background is not being displayed until the user > accesses the desktop properties and clicks ok. > > Is this an configuration issue with samba, or do I need some logon script? > This desktop.ini file is a hidden file that windows places in all folders of your system to store the preferences of your explorer view. The problem here is samba is making this hidden file in the startup folder of the start menu visible instead of default hidden. John -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Windows XP login
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 When WinXP users login to the samba domain a text file opens that contains: [.ShellClassInfo] localizedresourcena...@%systemroot%\system32\shell32.dll,-21787 This seems to be tied to the roaming profile, it only surfaced once I enabled roaming profiles but I am not sure how to correct it. I also noticed that the desktop background setting is persistent when a user logs on but the actual background is not being displayed until the user accesses the desktop properties and clicks ok. Is this an configuration issue with samba, or do I need some logon script? Thanks. -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iEYEARECAAYFAkpJTbcACgkQ5B+8XEnAvqs6jwCfXxNfP0QcNEV8agbA0rFcn7RA MH0AoJfW6kOI5SjGWBxVuBLH3h2bX/Is =Z4Y2 -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] DNS Problems on `net ads join`
On Mon, Jun 29, 2009 at 11:27 AM, Mala Dibbs wrote: > Hi, > > im having Problems joining my ubuntu-Machine to a Win2k3 Active Directory. > > I tryed > m...@ubuntu-05:/home$ sudo net ads join -U domainadmin > domainadmin's password: > Using short domain name -- INTRANET > No DNS domain configured for localhost. Unable to perform DNS Update. > DNS update failed! > Joined 'UBUNTU-05' to realm 'INTRANET.LAN' > > What bothers my the most ist the line with 'localhost'. Where does this > come from? The ubuntu-Machine or the Windows-Directory? I want the machine > joined as ubuntu-05.intranet.lan. But after the join above, its DNS Name is > listed as 'localhost' instead of 'ubuntu-05.intranet.lan'. > Is this a Problem of the Client (ubuntu-05) or the AD- and DNS-Server? > > Greets, mala > > This is a problem with the client identity. Please edit /etc/hostname with the short name, also edit /etc/hosts with the fully qualified domain name of the machine. Since we have a disjoined DNS space for our AD, I put a line like the following in my /etc/hosts file 127.0.0.1 hostname.domain.local hostname.domain.com hostname Test your edits using the `hostname` command. Check both the short name and the FQDN using the -f flag. You may want to reboot for good measure to be sure the hostname is changed and sticks through reboots. Then try to join again, the DNS update should work in that case now that FQDN of the client now matches the AD domain. Robert LeBlanc Life Sciences & Undergraduate Education Computer Support Brigham Young University -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Re: DNS Problems on `net ads join`
Resolved. Needed to put fdqn in /etc/hosts in the first place for 127.0.0.1 Mala Dibbs wrote: Hi, im having Problems joining my ubuntu-Machine to a Win2k3 Active Directory. I tryed m...@ubuntu-05:/home$ sudo net ads join -U domainadmin domainadmin's password: Using short domain name -- INTRANET No DNS domain configured for localhost. Unable to perform DNS Update. DNS update failed! Joined 'UBUNTU-05' to realm 'INTRANET.LAN' What bothers my the most ist the line with 'localhost'. Where does this come from? The ubuntu-Machine or the Windows-Directory? I want the machine joined as ubuntu-05.intranet.lan. But after the join above, its DNS Name is listed as 'localhost' instead of 'ubuntu-05.intranet.lan'. Is this a Problem of the Client (ubuntu-05) or the AD- and DNS-Server? Greets, mala -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Setting File/Directory permissions
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 I was having an issue granting users access to their home share, the smb.conf masks didn't seem to be applied so I ended up changing the permissions in Linux. What is the "appropriate" way of handling this, should it be via samba or via the host OS? -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iEYEARECAAYFAkpJBEEACgkQ5B+8XEnAvquccQCfZyqd7r1iIYCYOdZiq6YKnpOT ipwAnA90jnJn9fAwc8Qb+2MHhaWYkz6O =C7eR -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] DNS Problems on `net ads join`
Hi, im having Problems joining my ubuntu-Machine to a Win2k3 Active Directory. I tryed m...@ubuntu-05:/home$ sudo net ads join -U domainadmin domainadmin's password: Using short domain name -- INTRANET No DNS domain configured for localhost. Unable to perform DNS Update. DNS update failed! Joined 'UBUNTU-05' to realm 'INTRANET.LAN' What bothers my the most ist the line with 'localhost'. Where does this come from? The ubuntu-Machine or the Windows-Directory? I want the machine joined as ubuntu-05.intranet.lan. But after the join above, its DNS Name is listed as 'localhost' instead of 'ubuntu-05.intranet.lan'. Is this a Problem of the Client (ubuntu-05) or the AD- and DNS-Server? Greets, mala -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Timed out error
Helmut Hullen wrote: Actually in the internet i have seen that there is a default timeout for smbclient is 2. Is any configuration is there to change default timeout of smbclient. -Aravind Hallo, Aravind, Du meintest am 29.06.09: I am using backuppc to backup my files in a remote system.Now a days my backups are failing with this error.Its using smbclient to take backup. "call timed out server did not respond after 2 milliseconds opening remote file" Can anyone give me a suggestion. Are you quite sure that samba is responsible for this error? Sounds like a connection problem, no samba problem. Viele Gruesse! Helmut -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Wrong ACL in subdir
Hi, I've noticed the following ACL problem in a newly created subfolder: Let a folder have full rights for the owner, no rights for the primary group, no rights for everyone, no further rights defined. Add, from WinXP, an ACL for another user with Read&Execute rights and the option "This folder only". Now create a subfolder: in the new subfolder, the parent group has "Full control" although it had no rights in the parent. In the log I can find the entry change_dir_owner_to_parent: device/inode/mode on directory ... changed. Refusing to chown ! Happens with Samba 3.2.7, 3.3.5, 3.3.6 (no other versions tested) Details on this are in https://bugzilla.samba.org/show_bug.cgi?id=6507 Peter Rindfuss -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Timed out error
Hallo, Aravind, Du meintest am 29.06.09: > I am using backuppc to backup my files in a remote system.Now a days > my backups are failing with this error.Its using smbclient to take > backup. > "call timed out server did not respond after 2 milliseconds > opening remote file" > Can anyone give me a suggestion. Are you quite sure that samba is responsible for this error? Sounds like a connection problem, no samba problem. Viele Gruesse! Helmut -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Timed out error
Hi All, I am using backuppc to backup my files in a remote system.Now a days my backups are failing with this error.Its using smbclient to take backup. "call timed out server did not respond after 2 milliseconds opening remote file" Can anyone give me a suggestion. Regards, Aravind M D -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Lots of "smbd/vfs.c:reduce_name(985)" in log.smbd
Hi. I subscripted just now to the mailing list, but I've been using a Samba file server (PDC) on Debian for about 2.5 years now. Users are almost all WinXP SP3. No users are complaining but since I changed everything to one share with group permission on underlying directories I see a lot of errors in log.smbd. Anyone knows what the log message exactly means? I guess it has something to do with permissions. Maybe WinXP trying to access subdirectories it can't? It's all about this folder: drwxrwxr-x 14 root root 4096 2009-06-26 13:36 newton_share Subdirectories are restricted to specific groups. Some people are part of one or more groups. drwxrws--- 8 root aankoopdienst 4096 2009-02-05 13:23 aankoopdienst drwxrws--- 10 root boekhouding4096 2009-06-09 12:00 boekhouding drwxrws--- 5 root directie 4096 2009-06-16 10:58 directie drwxrws--- 9 root kindadministratie 4096 2009-06-09 08:31 kindadministratie drwxrws--- 2 root ortho_sociale 4096 2009-06-25 17:21 ortho_en_sociale drwxrws--- 2 root orthopedagogen 4096 2009-06-18 16:18 orthopedagogen drwxrws--- 30 root personeelsdienst 4096 2009-06-26 12:52 personeelsdienst drwxr-s--- 4 root plannen_koca 4096 2009-06-09 08:35 plannen_koca drwxrws--- 5 root sociale_dienst 4096 2009-02-03 16:05 sociale_dienst drwxrws--- 8 root technische_dienst 4096 2009-03-13 09:17 technische_dienst drwxrws--- 5 root uurrooster 4096 2009-06-09 08:33 uurrooster drwxrws--- 16 root veiligheid16384 2009-06-09 08:33 veiligheid [Newton] comment = Gedeelde map op server Newton browseable = yes writeable = yes wide links = no write list = +domusers +domadmins path= /data/shares/newton_share force directory mode = 770 force create mode = 770 valid users = +domusers +domadmins create mode = 770 directory mode = 770 A sample of last hour: [2009/06/29 08:37:40, 1] smbd/vfs.c:reduce_name(985) reduce_name: couldn't get realpath for veiligheid/* [2009/06/29 09:02:17, 1] smbd/vfs.c:reduce_name(985) reduce_name: couldn't get realpath for orthopedagogen/* [2009/06/29 09:09:19, 1] smbd/vfs.c:reduce_name(985) reduce_name: couldn't get realpath for sociale_dienst/* [2009/06/29 09:11:18, 1] smbd/vfs.c:reduce_name(985) reduce_name: couldn't get realpath for personeelsdienst/* [2009/06/29 09:11:19, 1] smbd/vfs.c:reduce_name(985) reduce_name: couldn't get realpath for orthopedagogen/* [2009/06/29 09:11:22, 1] smbd/vfs.c:reduce_name(985) reduce_name: couldn't get realpath for personeelsdienst/* [2009/06/29 09:12:34, 1] smbd/vfs.c:reduce_name(985) reduce_name: couldn't get realpath for personeelsdienst/* [2009/06/29 09:12:58, 1] smbd/vfs.c:reduce_name(985) reduce_name: couldn't get realpath for sociale_dienst/* [2009/06/29 09:23:30, 1] smbd/vfs.c:reduce_name(985) reduce_name: couldn't get realpath for technische_dienst/* [2009/06/29 09:23:30, 1] smbd/vfs.c:reduce_name(985) reduce_name: couldn't get realpath for sociale_dienst/* [2009/06/29 09:30:31, 1] smbd/vfs.c:reduce_name(985) reduce_name: couldn't get realpath for technische_dienst/* [2009/06/29 09:30:31, 1] smbd/vfs.c:reduce_name(985) reduce_name: couldn't get realpath for sociale_dienst/* Greetings, Koen Linders -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba