[Samba] Tiger 10.4.2 problems with connection to Samba Server
Hi, my name is Andre Jaccon network managament of PC Magazine/BR, i need 10 workstations running OS X 10.4 and my server is powered by Debian Sarge 3.1running Samba 3.0.14a, after update the workstations to version OS X 10.4.2, dont connection to Linux Samba Server. In log files dont write different arguments. Please help... -- André Jaccon PC Magazine Brasil 055 11 9488 7978 - São Paulo - S.P -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] The single WINS problem
I don't understand what you mean with DOMAIN1B or DOMAIN1C... Does it concern, for example, machine 1B in domain DOMAIN? If it is, you're still in the Netbios context, which I don't use... My queries are alike 1B.DOMAIN. Please clarify for I find it a very interesting issue... Kind regards, Jeroen van Meeuwen -- kanarip -Original Message- From: [EMAIL PROTECTED] [mailto:samba- [EMAIL PROTECTED] On Behalf Of Andreas Sent: Thursday, November 24, 2005 23:43 To: samba@lists.samba.org Subject: Re: [Samba] The single WINS problem On Thu, Nov 24, 2005 at 10:31:01PM +0100, Jeroen van Meeuwen wrote: So you can't use DNS for that sixteenth field of netbios names (like 1C, 1B, etc). Or can you? Dynamic DNS is a setup primarily for networks with DHCP. Using DHCP, you can only have 1 IP lease per physical interface. This IP, along with the system's hostname, are registered in DNS, and that's were we resolve the names you currently use in a Netbios/WINS environment. I understood this part. What I didn't understand is how a DNS server can answer queries like DOMAIN1C and DOMAIN1B. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] The single WINS problem
On Fri, Nov 25, 2005 at 11:11:50AM +0100, Jeroen van Meeuwen wrote: I don't understand what you mean with DOMAIN1B or DOMAIN1C... Does It means finding the Domain Master Browser (PDC) and all the logon servers (1C) for DOMAIN. It is done with a netbios query, but since you don't use netbios I was wondering how these netbios specific attributes (1C, 1B, 00, 20, etc) are stored in DNS. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Any downsides to using MS Services for Unix NIS server?
I have both an AD domain and an existing NIS setup, and would like to merge the accounts. It would seem from reading the help files that installing Services for Unix on my domain controllers and using the AD-integrated NIS server would work well. I wouldn't need to use winbind, and I would have not only consistent but predictable ID mapping, ie I can ensure that INTERNAL\jhatfield maps to UID 115, which is what it is on the existing NIS server. Are there any downsides to doing this - it seems much simpler than deploying winbind that I feel there must be a catch! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] need some help with debuggin.
Nobody ? -Oorspronkelijk bericht- Van: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Namens Louis van Belle Verzonden: woensdag 23 november 2005 11:14 Aan: samba@lists.samba.org Onderwerp: [Samba] need some help with debuggin. Hi everybody on the sambalist my server is running pretty ok now, but after examening my logs im trying to get rid of the last messages. 1) Tons of messages like this, ( i have 20 printers overhere ) log.smbd [2005/11/23 10:24:09, 0] printing/print_cups.c:cups_queue_get(790) Unable to get jobs for ipp://localhost/printers//usr/bin/lpq -P'pdfprinter' - printing is setup RAW, using windows printer drivers. 2) log.nmbd [] 0 L:[ 1+14 15/ 15] *(910 / 910b)= EOF [2005/11/22 07:48:55, 0] libsmb/nmblib.c:send_udp(790) Packet send failed to 192.168.249.202(138) ERRNO=Operation not permitted ( on different ip's ) i dont know where this is comming from, need help with this one. In short, im running samba 3.0.14a-debian + ldap + cups + pdf printer+ EA ACL + time + recycle bin + dynamic dns debian sarge kernel 2.6.11 if needed i post the config im running here Louis -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] samba + ldap
Hi, all. Now my ldap-directory used for storing unix users accounts. I want use it for samba auth too. My samba config and ldap records attached. When I try start smbd I get error in logfile: [2005/11/25 16:30:21, 3]passdb/pdb_ldap.c:ldapsam_enum_group_memberships(2513) primary group of [nobody] not found Any ideas? WBR -- Dmitriy Kirhlarov OILspace, 26 Leninskaya sloboda, bld. 2, 2nd floor, 115280 Moscow, Russia P:+7 095 105 7247 ext.203 F:+7 095 105 7246 E:[EMAIL PROTECTED] OILspace - The resource enriched - www.oilspace.com dn: uid=root,ou=users,o=oiltest cn: root sn: root objectClass: inetOrgPerson objectClass: sambaSamAccount objectClass: posixAccount objectClass: shadowAccount gidNumber: 0 uid: root uidNumber: 0 homeDirectory: /home/root sambaPwdLastSet: 0 sambaLogonTime: 0 sambaLogoffTime: 2147483647 sambaKickoffTime: 2147483647 sambaPwdCanChange: 0 sambaPwdMustChange: 2147483647 sambaPrimaryGroupSID: S-1-5-21-3177952046-2209943301-2637743033-512 sambaLMPassword: XXX sambaNTPassword: XXX sambaAcctFlags: [U ] sambaSID: S-1-5-21-3177952046-2209943301-2637743033-500 loginShell: /bin/false gecos: Netbios Domain Administrator dn: uid=nobody,ou=users,o=oiltest cn: nobody sn: nobody objectClass: inetOrgPerson objectClass: sambaSamAccount objectClass: posixAccount objectClass: shadowAccount gidNumber: 514 uid: nobody uidNumber: 999 homeDirectory: /dev/null sambaPwdLastSet: 0 sambaLogonTime: 0 sambaLogoffTime: 2147483647 sambaKickoffTime: 2147483647 sambaPwdCanChange: 0 sambaPwdMustChange: 2147483647 sambaPrimaryGroupSID: S-1-5-21-3177952046-2209943301-2637743033-514 sambaLMPassword: NO PASSWORDX sambaNTPassword: NO PASSWORDX sambaAcctFlags: [NU ] loginShell: /bin/false sambaSID: S-1-5-21-3177952046-2209943301-2637743033-501 dn: cn=Domain Admins,ou=groups,o=oiltest objectClass: posixGroup objectClass: sambaGroupMapping gidNumber: 512 cn: Domain Admins memberUid: root description: Netbios Domain Administrators sambaSID: S-1-5-21-3177952046-2209943301-2637743033-512 sambaGroupType: 2 displayName: Domain Admins dn: cn=Domain Guests,ou=groups,o=oiltest objectClass: posixGroup objectClass: sambaGroupMapping gidNumber: 514 cn: Domain Guests description: Netbios Domain Guests Users sambaSID: S-1-5-21-3177952046-2209943301-2637743033-514 sambaGroupType: 2 displayName: Domain Guests memberUid: nobody dn: cn=Domain Users,ou=groups,o=oiltest sambaGroupType: 2 displayName: Domain Users description: Netbios Domain Users objectClass: posixGroup objectClass: sambaGroupMapping memberUid: nobody gidNumber: 513 sambaSID: S-1-5-21-3177952046-2209943301-2637743033-513 cn: Domain Users [global] add group script = /usr/local/sbin/smbldap-groupadd -p %g add machine script = /usr/local/sbin/smbldap-useradd -w %u add user to group script = /usr/local/sbin/smbldap-groupmod -m %u %g admin users = root Administrator available = yes bind interfaces only = yes client ntlmv2 auth = yes deadtime = 30 delete user from group script = /usr/local/sbin/smbldap-groupmod -x %u %g delete user script = /usr/local/sbin/smbldap-userdel %u display charset = KOI8-R dont descend = /proc,/dev,/usr/compat/linux/proc dos charset = CP866 dos filetimes = yes interfaces = fxp0 lo0 lanman auth = no ldap admin dn = uid=fbsd-samba-admin,ou=virtusers,o=oiltest ldap group suffix = ou=groups ldap machine suffix = ou=machines ldap passwd sync = Only ldap replication sleep = 2000 ldapsam:trusted = yes ldap ssl = start_tls ldap suffix = o=oiltest ldap user suffix = ou=users log file = /var/log/samba/log log level = 3 passdb:5 auth:10 winbind:2 map to guest = Bad User netbios name = FBSD os level = 65 passdb backend = ldapsam:ldap://fbsd passwd program = /usr/local/sbin/smbldap-passwd %u preload = Guest pub cdrom printers security = USER server signing = auto server string = Samba Server on fbsd.mow.oilspace.com set primary group script = /usr/local/sbin/smbldap-usermod -g %g %u time server = yes workgroup = OILSPACE [Guest] # This share need for map to guest if security not share comment = FTP public share path = /var/ftp/pub read only = yes [pub] hide dot files = no hide special files = yes inherit acls = yes inherit permissions = yes locking = yes map acl inherit = yes available = no comment = FTP public share path = /var/ftp/pub browseable = yes [homes] comment = Home Directory path = /home/%U read only = no browseable = yes -- To unsubscribe from this list go to the following URL and read the instructions:
RE: [Samba] The single WINS problem
You seem to forget that my 'master browsers' are in fact DNS Servers, and there is no such thing as Netbios querying for logon servers. That is DNS integrated in Windows 2003. Kind regards, Jeroen van Meeuwen -- kanarip -Original Message- From: [EMAIL PROTECTED] [mailto:samba- [EMAIL PROTECTED] On Behalf Of Andreas Hasenack Sent: Friday, November 25, 2005 11:44 To: samba@lists.samba.org Subject: Re: [Samba] The single WINS problem On Fri, Nov 25, 2005 at 11:11:50AM +0100, Jeroen van Meeuwen wrote: I don't understand what you mean with DOMAIN1B or DOMAIN1C... Does It means finding the Domain Master Browser (PDC) and all the logon servers (1C) for DOMAIN. It is done with a netbios query, but since you don't use netbios I was wondering how these netbios specific attributes (1C, 1B, 00, 20, etc) are stored in DNS. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] windows printer driver installation with samba and cups
Hi Using: - SUSE 9.2 - SAMBA 3.0.7 - CUPS 1.1.21 I am successfully using my network printer under cups. Now I would like to share this printer to all windows clients with samba. These are my smb.conf configurations: ** [global] interfaces = eth0 ... load printers = yes printing = cups printcap name = /etc/printcap printer admin = @mygroup [print$] comment = Printer Driver path = /daten/printers browseable = yes guest ok = yes read only = yes write list = @mygroup [printers] comment = All Printers path = /var/spool/samba browsable = yes guest ok = no writeable = no printable = yes *** The rights for the directories are as follows: myserver:/ # la daten/printers/ total 1 drwxrwxr-x 2 root mygroup 48 Nov 25 15:29 . drwxr-xr-x 20 root mygroup 472 Nov 25 14:59 .. myserver:/ # la /var/spool/samba total 0 drwsrwsrwx 2 root root 48 Jan 28 2005 . drwxr-xr-x 14 root root 368 Dec 13 2004 .. Under my windows 2000 (and XP) client, I see my printer within the folder PRINTERS. With properties-No-Advanced-New Driver (Windows-Driver-Wizard) I can specify the driver and follow all instructions. At the end, when I finish the wizard, a message can not install driver. the procedure could not finished appears. Within the directory /daten/printers NO DRIVER is installed! The log.smbd file says, that the user opens the print$ share, but nothing else: [2005/11/25 15:58:27, 1] smbd/service.c:make_connection_snum(647) gonzales (192.168.0.54) connect to service print$ initially as user beat (uid=509, gid=100) (pid 18552) I allready read a lot of posts about similar problems, but didn't find any description that would fix my problem. Did someone know this problem or see something similar? thanks beat -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] get_users_in_group bug on Solaris
Hi List I have been trying to setup a very basic (basic as in it's using the simple config from the HOWTO) to tryout 3.0.20b on Solaris 8. The problems I have had have all revolved around the new (samba-3) feature add user to group script option. I could be well off the mark here but I think I may have found a bug - everyone else clearly thinks I'm mad as the only replies I've had run along the lines of well it works for me. Basically Samba never calls the script for local groups and is broken for domain groups. After some further testing and code spelunking (I'm not a programmer so I could be well wrong) I have found that the smb_add_user_group() function is never called when adding a user to a local group, but it is called when adding a user to a domain group. However, when adding a user to a DOMAIN group (samba does call the script and it works) but returns the NT_STATUS_MEMBER_NOT_IN_GROUP error. I've tracked this problem with adding to Domain groups down to the get_users_in_group function in lib/util_getent.c The broken section is the #if section that starts #if !defined(BROKEN_GETGRNAM) Now according to the comments (not many in the files) TRU64 Unix has a Broken GETGRNAM function. This is Solaris 8 so I would've thought that BROKEN_GETGRNAM should *not* be defined. If I manually edit the code to remove the '!' to force it to call the correct section of code all of a sudden as if by magic I can add users to domain groups. I still have not figured out why the code is *never* called for adding to local groups but now assume it must be a similar bug - don't think I'd be so lucky that simply properly undefining BROKEN_GETGRNAM would sort this problem. Naturally I appreciate many people will simple dismiss this missive on the grounds He's clearly mad - it works for me but I suspect it probably only works on Linux and not SOlaris. I am pretty confident that it is not me who has loused things up. I only configured samba with: ./configure --with-acl-support and then compiled and installed. I have only tried my fix against 3.0.20b but in my investigations I have compiled 3.0.11, 3.0.12,3.0.14 all with Sun Workshop compiler 5.1 and GCC 3.x (whatever is the most recent on Sunfreeware). I have also used the 3.0.10 package from Sunfreeware. ALL exhibit exactly the same problems: the add user to group script funciton doesn't work (not at all for local groups, or properly for domain groups). I would really truly appreciate if someone could tell me why the smb_add_user_group() function is never ever called when adding users to local groups (ON SOLARIS) with a mind to fixing it. I'm not a developer, I don't know how debuggers work, and I hate crawling through C code - I have found what I have by several days worth of crawling through logs, grepping C code. I'm sure a developer could just say OH, you want function blah in file x in a matter of minutes (I know plenty of people spend days crawling through logs and C code but that kinda stuff would take me several life times). Help, please. Hugo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] (Solved) Performance Problem / failed to verify PAC server signature
On 24.11-01:22, Doug VanLeuven wrote: ktpass.exe: +des (des only - default for command) -des (not des only) I tried to create keytabs for this computer account with all possible options -DESOnly, /crypto DES-CBC-CRC, /crypto DES-CBC-MD5. But as I always had use kerberos keytab = yes, I guess samba always overwrote the host/... principal anyway. As this PAC thingy (I still don't know what it stands for) doesn't seem to be important, I commented out the relevant parts in smb_krb5_verify_checksum(). Surprise: The STATUS_LOGON_FAILUREs I mentionned in my first mail still occurred. Then It dawned on me, that I was possibly searching in the wrong place. After looking at the level 10 logs some more, I found out, that samba was unhappy over the nonexisting machine accounts of the clients. (Local User Accounts here, synced by script) Adding a machine account to my local /etc/passwd seems to remedy the STATUS_LOGON_FAILUREs and the corresponding delays. Next step will be to either sync the AD machine accounts to my local passwd also (which is so ugly!) or getting winbind with idmap backend = idmap_ad to run, which I'm not too confident about... Thanks for taking the time to help me, Doug and Guenther. Chris -- -- Christoph Kaegi [EMAIL PROTECTED] -- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Share disconnect after inactivity
Hi list,
I've the strange problem, that after some time of inactivity a share is
being disconnected. This leads to a red 'X' in the Workplace's list of
connected drives. When opening a disconnected drive, the drive is being
reconnected.
BUT: This has a very fatal side-effect: When f.e. an MS-Access database
is open and the user does not use this db, the share is also being
disconnected. The connection is not restored, when the user works again
in the access-db.
My question: Is this a windows-behaviour or is this from the samba? The
disconnected drives (marked with the red 'X') I can see also on machines
connected to a Windows PDC, but no problems with access occurs there.
Many thanks in advance!
Here some snips of my smb.conf:
[global]
workgroup = LUNGOETZ
netbios aliases = LUNGOETZ1
server string = %h server (Samba %v)
passdb backend = ldapsam:ldap://127.0.0.1/
enable privileges = Yes
syslog = 0
log file = /var/log/samba/log.%m
max log size = 1000
debug uid = Yes
time server = Yes
printcap cache time = 60
printcap name = cups
add user script = /usr/local/sbin/smbldap-useradd -m %u
delete user script = /usr/local/sbin/smbldap-userdel %u
add group script = /usr/local/sbin/smbldap-groupadd -p %g
delete group script = /usr/local/sbin/smbldap-groupdel %g
add user to group script = /usr/local/sbin/smbldap-groupmod -m
%u %g
delete user from group script =
/usr/local/sbin/smbldap-groupmod -x %u %g
set primary group script = /usr/local/sbin/smbldap-usermod -g
%g %u
add machine script = /usr/local/sbin/smbldap-useradd -w %u
logon script = login.kix
logon drive = E:
domain logons = Yes
os level = 65
preferred master = Yes
domain master = Yes
wins support = Yes
ldap admin dn = cn=admin,dc=lun1,dc=kaindl,dc=com
ldap delete dn = Yes
ldap group suffix = ou=Groups
ldap idmap suffix = ou=Idmap
ldap machine suffix = ou=Computers
ldap passwd sync = Yes
ldap suffix = dc=lun1,dc=kaindl,dc=com
ldap ssl = no
ldap user suffix = ou=Users
utmp = Yes
remote announce = 172.16.0.4
remote browse sync = 172.16.0.4
panic action = /usr/share/samba/panic-action %d
idmap uid = 1-1
idmap gid = 1-1
template homedir = /home/samba/%D/%U
template shell = /bin/bash
admin users = xxx, yyy, zzz
printer admin = xxx, yyy, zzz
map acl inherit = Yes
acl check permissions = No
printing = cups
print command =
lpq command = %p
lprm command =
veto files = /*.eml/*.nws/*.{*}/
veto oplock files = /*doc/*.xls/*.mdb/
hide files = /Access_QS/
[IPC$]
path = /tmp
[netlogon]
comment = Network Logon Service
path = /home/samba/Netlogon
write list = administrator, aschlager, crettenbacher
guest ok = Yes
locking = No
[profiles]
comment = Profile Share
path = /home/samba/Profiles
read only = No
create mask = 0700
directory mask = 0700
profile acls = Yes
[homes]
comment = Home Directories
valid users = %U
read only = No
create mask = 0700
directory mask = 0700
browseable = No
acl group control = Yes
inherit owner = Yes
inherit permissions = Yes
[printers]
comment = All Printers
path = /tmp
create mask = 0700
printable = Yes
browseable = No
[print$]
comment = Printer Drivers
path = /var/lib/samba/drivers
write list = Administrator, crettenbacher, aschlager, root
guest ok = Yes
[Programme]
comment = Programme
path = /home/samba/Programme
read only = No
create mask = 0770
directory mask = 0750
acl group control = Yes
inherit owner = Yes
inherit permissions = Yes
[EMail]
comment = Pegasus Mailfolder
path = /home/samba/Users/EMail
read only = No
create mask = 0700
directory mask = 0700
acl group control = Yes
inherit owner = Yes
inherit permissions = Yes
Regard,
--
M. Kaindl Holzindustrie
Kaindlstraße 2
A-5071 Wals/Salzburg
Andreas Schlager, IT
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Best way to upgrade domain from control by 2.2.5 PDC to control by 3.0.20b PDC
Hi Folks- I'll start by saying thanks to all the people who have made samba and shared it as open source software. Samba is truly an amazing suite of software. I have a small domain of less than 10 clients which is currently being controlled with a Samba 2.2.5 PDC running on a Compaq x86 server with a very old Suse Linux 8.1 OS. Since setting up this Compaq server, my preferred distribution has changed from Suse to Gentoo and my ultimate goal is to upgrade the OS on the Compaq server to Gentoo. Perhaps the biggest reason for the change in preference is the difficulty I've found in upgrading any rpm-based distribution. Because I've tried it so many times and lost days or weeks of time in the process, I don't think I even want to try a direct upgrade of the samba-2.2.5-80 rpm on this Suse 8.1 OS, but I thought that I would instead, install a new server on the network with the Gentoo distribution and all of the latest software in Gentoo portage. With that in place, I figured I would slowly migrate the services currently being provided by the Compaq server to the new server. Since the PDC and other samba services are the most mission-critical components of the network, the biggest step in the process seems like it will be getting the new server set up to do all of the PDC and other functions of the old Compaq server. One important aspect of the migration is that I'd ultimately like to end up using ldap as the backend database. It seems to me that there are at least two ways to go about performing this migration step: 1) make the new server a PDC with the ldap backend; once running, and all other services are unloaded onto the new server, take the Compaq server offline and upgrade it to Gentoo, maybe making it a BDC (or not using a BDC at all). 2) make the new server a BDC (not sure if I would have a choice in the backend here) to the old PDC, then upgrade the old Compaq server from Suse 8.1 to Gentoo, and restore it as the PDC for the domain after upgrading the whole OS and samba to the latest release My first question for the list is: which one of these methods is likely to be least problematic and least time-consuming? My other questions are: a) Any problems with a samba-3.x BDC backing up a samba 2.2.5 PDC? b) If I go with method 2 above, am I right in thinking that I'd have to stay with the smbpasswd backend for the BDC (which is what the PDC uses)? This would only be a very temporary arrangement; I realize that it's discouraged in the docs. If not, and if ldap could be the backend for the BDC somehow, then how would I accomplish this? c) If I go with method 1 above (seems like it might be easier to me right now), what are the key files that need to come over from the old server to the new server? I realize that the contents of (at least some of, and maybe all of) these files would probably need to be revised somehow (maybe putting them in the LDAP Directory), but what information must be preserved from the old machine to make sure that I don't have to go around to all of the clients and add them to a new domain? d) I'd obviously like for it to be a seamless transition as far as the clients go and the fact that the two servers will have different IP addresses is a concern there. And if I go with method 2, will the clients need any reconfiguration to use the BDC for login (until the Compaq server can be upgraded to Gentoo and be back in business as the PDC)? e) Relating to the set of questions in (c), if I have an existing openldap-v2.2.27 server running with a few LDAP Directories (with a domain/contact sort of schema built from LDAP fields in existing schemas like inetperson and courierimap and a few others) in it on a third server, would it be possible to use one of the existing Directories as the ldap backend authentication source for the new samba server or would I need to create a new Directory with a samba-only schema to be the ldap backend? Thanks for any replies. -Kevin -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba + ldap
i had the same problem as this!! well if your using ldapsam:trusted=yes look for the thread titled [samba]ldapsam:trusted = yes kills smbd ..but pretty much it was this.. i have changed the sambaPrimaryGroupSid: S-1-1-0 on uid=nobody and changed sambaSID: S-1-1-0 on group nobody and it now starts yeh!! :) On Fri, 2005-11-25 at 14:37, Dmitriy Kirhlarov wrote: Hi, all. Now my ldap-directory used for storing unix users accounts. I want use it for samba auth too. My samba config and ldap records attached. When I try start smbd I get error in logfile: [2005/11/25 16:30:21, 3]passdb/pdb_ldap.c:ldapsam_enum_group_memberships(2513) primary group of [nobody] not found Any ideas? WBR -- Dmitriy Kirhlarov OILspace, 26 Leninskaya sloboda, bld. 2, 2nd floor, 115280 Moscow, Russia P:+7 095 105 7247 ext.203 F:+7 095 105 7246 E:[EMAIL PROTECTED] OILspace - The resource enriched - www.oilspace.com __ -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] USRMGR Not adding users properly
I'm having problems adding users with usrmgr. I can run the scripts from my smb.conf fine from command line and do what I need to. But, when adding users with usrmgr, the login script and path statements are not identified and I have to go in and edit them manually. Does adding a user with usrmgr not use the add user script from Samba? Or must the user environment variables be added manually? If usrmgr does NOT use the add user script from smb.conf, what does? Thanks, Michael CentOS4, Samba 3.0.10-1.4E.2 Pertinent parts of smb.conf: [GLOBAL] domain logons = yes logon home = \\%L\%U\profile logon drive = n: logon path = \\%L\profiles\%U\%m logon script = scripts\%U.bat add machine script = /usr/sbin/adduser -g machines -c Machine -d /dev/null -s /bin/false -n %m$ add user script = /usr/sbin/useradd -m %u delete user script = /usr/sbin/userdel -r %u add group script = /usr/sbin/groupadd %g delete group script = /usr/sbin/groupdel %g add user to group script = /usr/bin/gpasswd -a %u %g delete user from group script = /usr/bin/gpasswd -d %u %g store dos attributes = yes utmp = yes [netlogon] path = /home/_shares/netlogon browseable = no read only = yes root preexec = /home/_shares/execscripts/netlogon.sh %U %g %H %M %a %I %m %L root postexec = /home/_shares/execscripts/netlogoff.sh %U %g %H %M %a %I %m %T -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Red X and guest user message in logs
Hello, I have a Debian Sarge machine running Samba 3.0.14a as PDC and file server. Everything runs smoothly, except for a random problem: users (on Win2000Pro clients) are often seeing a red cross on the main network share, as if it was disconnected. This red X seems to come and go at random. The red cross would not be a big issue itself, but it has an annoying consequence: when it appears, Windows thinks the connection is down, so if you save a file on the share while the red X is there you get an error dialog telling something like The connection to the server has been reset. The file cannot be saved. (recalling from memory and translating from Italian, so the actual English message might be very different). The file is saved anyway, but users are obviously alarmed by the message. I had a look at my Samba logs (level 2) around the time when an user told me he noticed the red cross, but didn't find anything special, exception made for the following message: [2005/11/25 17:14:51, 2] smbd/service.c:make_connection_snum(314) guest user (from session setup) not permitted to access this share (COMMESSE) The user was already authenticated on the domain, and didn't logoff, so I can't understand where does this guest access come from. Can this message be related to my problem? Here follows an excerpt from my smb.conf, as returned by testparm, with some more or less sensible data omitted. BTW, the log file where I found that message was named client_name..log, which is correct (see log file setting below). I really hope someone can give me some clues, as this has been going on for months now. Thanks in advance. - [global] unix charset = UTF8 workgroup = domain name server string = Server Linux, Samba %v passdb backend = tdbsam log level = 2 vfs:2 syslog = 0 log file = /var/log/samba/%m.%U.log max log size = 0 logon script = netlogon.bat logon path = \\%L\profiles\%U logon drive = Z: domain logons = Yes os level = 64 preferred master = Yes domain master = Yes enhanced browsing = No create mask = 0664 directory mask = 0775 hosts allow = 127.0.0.1, 192.168.1.0/255.255.255.0 ea support = Yes hide files = /desktop.ini/.DS_Store/ veto oplock files = /NTUSER.DAT/ map archive = No store dos attributes = Yes dos filemode = Yes [netlogon] path = /home/netlogon browseable = No [profiles] path = /home/samba/profiles read only = No create mask = 0600 directory mask = 0700 browseable = No [COMMESSE] path = a valid path invalid users = one username force user = another username read only = No vfs objects = recycle recycle:exclude = ~$* ~*.doc *~*.tmp *.bak recycle:touch = yes recycle:versions = yes recycle:keeptree = yes recycle:repository = .cestino - -- Ciao, Marco. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] USRMGR Not adding users properly
On Friday 25 November 2005 11:03, Michael Barnes wrote: I'm having problems adding users with usrmgr. I can run the scripts from my smb.conf fine from command line and do what I need to. But, when adding users with usrmgr, the login script and path statements are not identified and I have to go in and edit them manually. Does adding a user with usrmgr not use the add user script from Samba? Or must the user environment variables be added manually? What passdb backend are you running? The smbpasswd file is not capable of storing this information, so you must use the tdbsam backend. Also see below for additional changes that should be made. You should add to [global] passdb backend = tdbsam The existing smbpasswd file (if one exists) can be migrated to the tdbsam backend by executing: pdbedit -i smbpasswd -e tdbsam If usrmgr does NOT use the add user script from smb.conf, what does? Thanks, Michael CentOS4, Samba 3.0.10-1.4E.2 Pertinent parts of smb.conf: [GLOBAL] domain logons = yes logon home = \\%L\%U\profile logon drive = n: logon path = \\%L\profiles\%U\%m Interesting - you want per user profiles keeping machines separate - that's what the above does. In that case, why have a roaming profile at all? logon script = scripts\%U.bat logon script = scripts\%U.bat add machine script = /usr/sbin/adduser -g machines -c Machine -d /dev/null -s /bin/false -n %m$ add machine script = /usr/sbin/useradd -g machines -c Machine -d /dev/null -s /bin/false %u Do not use the '%m' macro for this. The '%u' macro will automatically use the correct machine name, including the terminating '$'. add user script = /usr/sbin/useradd -m %u delete user script = /usr/sbin/userdel -r %u add group script = /usr/sbin/groupadd %g delete group script = /usr/sbin/groupdel %g add user to group script = /usr/bin/gpasswd -a %u %g delete user from group script = /usr/bin/gpasswd -d %u %g In all the above it is best to put the macros in double or single quotes to prevent the possibility of the username or groupname from being interpreted by the shell it is run in. store dos attributes = yes utmp = yes [netlogon] path = /home/_shares/netlogon browseable = no read only = yes root preexec = /home/_shares/execscripts/netlogon.sh %U %g %H %M %a %I %m %L root postexec = /home/_shares/execscripts/netlogoff.sh %U %g %H %M %a %I %m %T Again, you should quote the macros (i.e.: enclose them in single or double quotes) to prevent the data from being interpreted by a shell. For example, Instead of %U have %U. - John T. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] USRMGR Not adding users properly
I'm using tdbsam. Below is the complete global, profiles, and netlogon parts of smb.conf. I put in the quotes as suggested, now no one can log in. Also are a couple pdbedit reports from the profiles. When trying to add a new user with usrmgr, I still must add all the profile data manually. If I use useradd -m, passwd, smbpasswd -a, all the user environment variables are automatically created. User created manually with useradd -m, passwd, smbpasswd -a: [root][WRN3:~] pdbedit -Lv mbarnes Unix username:mbarnes NT username: Account Flags:[U ] User SID: S-1-5-21-823801451-2368998670-4123379855-2000 Primary Group SID:S-1-5-21-823801451-2368998670-4123379855-2001 Full Name:Michael Home Directory: \\wrn3\mbarnes\profile HomeDir Drive:n: Logon Script: scripts\mbarnes.bat Profile Path: \\wrn3\profiles\mbarnes Domain: WRNHQ Account desc: IT Guy Workstations: Munged dial: Logon time: 0 Logoff time: Mon, 18 Jan 2038 21:14:07 GMT Kickoff time: 0 Password last set:Mon, 24 Oct 2005 17:49:02 GMT Password can change: Mon, 24 Oct 2005 17:49:02 GMT Password must change: Mon, 18 Jan 2038 21:14:07 GMT Last bad password : 0 Bad password count : 0 Logon hours : FF [root][WRN3:~] This user was created with usrmgr, only entering the user name and password: [root][WRN3:~] pdbedit -Lv twink Unix username:twink NT username: Account Flags:[U ] User SID: S-1-5-21-823801451-2368998670-4123379855-2084 Primary Group SID:S-1-5-21-823801451-2368998670-4123379855-513 Full Name:Twinkle Toes Home Directory: HomeDir Drive: Logon Script: Profile Path: Domain: WRNHQ Account desc: Workstations: Munged dial: Logon time: 0 Logoff time: Mon, 18 Jan 2038 21:14:07 GMT Kickoff time: 0 Password last set:Fri, 25 Nov 2005 13:20:58 GMT Password can change: Fri, 25 Nov 2005 13:20:58 GMT Password must change: Thu, 23 Feb 2006 13:20:58 GMT Last bad password : 0 Bad password count : 0 Logon hours : FF [root][WRN3:~] My smb.conf, updated per below suggestions: [global] workgroup = WRNHQ netbios name = WRN3 netbios aliases = WRN3 wrn3 server string = Samba v%v File Server on %h security = user socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 time server = yes map to guest = bad user os level = 255 passdb backend = tdbsam local master = yes encrypt passwords = yes unix password sync = yes passwd program = /usr/bin/passwd %u passwd chat = *New*password* %n\n *Retype*new*password* %n\n *passwd:*all*authentication*tokens*updated*successfully* log level = 0 log file = /var/log/samba/%m.log max log size = 1000 printing = cups printcap name = cups domain logons = yes logon home = \\%L\%U\profile logon drive = n: logon path = \\%L\profiles\%U logon script = scripts\%U.bat add machine script = /usr/sbin/adduser -g machines -c Machine -d /dev/null -s /bin/false %u add user script = /usr/sbin/useradd -m %u delete user script = /usr/sbin/userdel -r %u add group script = /usr/sbin/groupadd %g delete group script = /usr/sbin/groupdel %g add user to group script = /usr/bin/gpasswd -a %u %g delete user from group script = /usr/bin/gpasswd -d %u %g store dos attributes = yes utmp = yes domain master = yes cups options = raw smb ports = 139 username map = /etc/samba/smbusers wins server = 10.143.0.11 [netlogon] path = /home/_shares/netlogon browseable = no read only = yes root preexec = /home/_shares/execscripts/netlogon.sh %U %g %H %M %a %I %m %L root postexec = /home/_shares/execscripts/netlogoff.sh %U %g %H %M %a %I %m %T [profiles] comment = profiles share for Win2K and WinXP user profiles path = /home/profiles browseable = no read only = no profile acls = yes John H Terpstra told me on 11/25/2005 12:37: On Friday 25 November 2005 11:03, Michael Barnes wrote: I'm having problems adding users with usrmgr. I can run the scripts from my smb.conf fine from command line and do what I need to. But, when adding users with usrmgr, the login script and path statements are not identified and I have to go in and edit them manually. Does adding a user with usrmgr not use the add user script from Samba? Or must the user environment variables be added manually? What passdb backend are you running? The smbpasswd file is not capable of storing this information, so you must use the tdbsam backend. Also see below for additional
[Samba] inherit owner is not working..... how i can make it work
Hai All, i am getting some problem... with the option inherit owner i set this.. to make sure.. when ever a use creating a folder in share.. it must be as the same ownership of its parent Directory... but its not working fine with me.. My parent Directory GALLERY is owned by user sysadmin while a user tries to create a folder inside.. GALLERY it created as his own ownership...(while user name nikki creating a folder its ownership comes as only nikki (why inherit owner is not working with me.. ) how i can over come this) all i need is.. while user nikki or anyone create a folder it must create the ownership of sysadmin (that means its parent directory's owner IF any idea... please share i don't know where i am stuck.. [BACKUP] path = /backup writable = yes public = yes nt acl support = yes create mask = 0775 directory mask = 0775 inherit permissions = yes inherit owner = yes inherit acls = yes security mask = 0775 force security mode = directory security mask = 0777 force directory security mode = Thank you in advance; Jerrynikki. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] firewall
It work's OK but. When I installed a wireless acces point Linksys it does not work. I disabled the firewall in the acces point but with no result. Can anybody help me??? Alejandro G. Schujman AGS Computación y Sistemas [EMAIL PROTECTED] MSN [EMAIL PROTECTED] 0341 4219625 Movil 0341 15 5410122 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] The single WINS problem
Em Quinta 24 Novembro 2005 18:17, Andreas Hasenack escreveu: Everybody encourages Samba admins to enable WINS whenever possible, and I agree that it helps a lot to solve these networks' problems. It's so good that, when it fails, it's a disaster. How are people coping with the samba limitation of not being able to replicate the WINS database and thus its inability to have more than one WINS server in a domain? Nobody else? :( -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] firewall
At 06:31 PM 11/25/2005 -0300, contacto_AGS wrote: It work's OK but. When I installed a wireless acces point Linksys it does not work. I disabled the firewall in the acces point but with no result. Can anybody help me??? Many so-called wireless access points (WAP) are in reality a router with a wireless access point attached internally. You haven't given much information here so it's very hard to help you. It doesn't work is not enough. Does it break your whole network? Or is it only equipment connected to the WAP that doesn't work? Or is it only wireless gear attached to the WAP that fails to gain connectivity? What model number Linksys WAP have you got there? Explain what your network looks like too, what's connected to what and using what ports. There's no way to tell from your message if it's a router/WAP or not. Most likely, it is. If so, everything connected to it is on a separate IP subnet from whatever is on its WAN port. Some of them don't care if the subnets are numbered the same: You can have 192.168.0.x on both sides, and they will be separate subnets, and the firmware is too dumb to object. Of course, routing between them is totally screwed up and confused. If you have a true WAP, without a router attached, or with routing turned off, then there's some other problem, like WEP key mismatch or configuration issues. Supply more info. [Government]Foreign aid might be defined as a transfer from poor people in rich countries to rich people in poor countries.--Douglas Casey, Classmate of W.J.Clinton at Georgetown U. (1992) --... ...-- -.. . -. . --.- --.- -... [EMAIL PROTECTED] (remove nospam) N9QQB (amateur radio) HEY YOU (loud shouting) WEB ADDRESS http//www.mixweb.com/tpeters 43° 7' 17.2 N by 88° 6' 28.9 W, Elevation 815', Grid Square EN53wc WAN/LAN/Telcom Analyst, Tech Writer, MCP, CCNA, Registered Linux User 385531 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Best way to upgrade domain from control by 2.2.5 PDC to control by 3.0.20b PDC
On Fri, 2005-11-25 at 10:55 -0500, Kevin wrote: Hi Folks- I'll start by saying thanks to all the people who have made samba and shared it as open source software. Samba is truly an amazing suite of software. I have a small domain of less than 10 clients which is currently being controlled with a Samba 2.2.5 PDC running on a Compaq x86 server with a very old Suse Linux 8.1 OS. Since setting up this Compaq server, my preferred distribution has changed from Suse to Gentoo and my ultimate goal is to upgrade the OS on the Compaq server to Gentoo. Perhaps the biggest reason for the change in preference is the difficulty I've found in upgrading any rpm-based distribution. Because I've tried it so many times and lost days or weeks of time in the process, I don't think I even want to try a direct upgrade of the samba-2.2.5-80 rpm on this Suse 8.1 OS, but I thought that I would instead, install a new server on the network with the Gentoo distribution and all of the latest software in Gentoo portage. With that in place, I figured I would slowly migrate the services currently being provided by the Compaq server to the new server. Since the PDC and other samba services are the most mission-critical components of the network, the biggest step in the process seems like it will be getting the new server set up to do all of the PDC and other functions of the old Compaq server. One important aspect of the migration is that I'd ultimately like to end up using ldap as the backend database. It seems to me that there are at least two ways to go about performing this migration step: 1) make the new server a PDC with the ldap backend; once running, and all other services are unloaded onto the new server, take the Compaq server offline and upgrade it to Gentoo, maybe making it a BDC (or not using a BDC at all). 2) make the new server a BDC (not sure if I would have a choice in the backend here) to the old PDC, then upgrade the old Compaq server from Suse 8.1 to Gentoo, and restore it as the PDC for the domain after upgrading the whole OS and samba to the latest release My first question for the list is: which one of these methods is likely to be least problematic and least time-consuming? least problematic and least time consuming would probably involve making sure that all of the user profiles are set to local, setting up new samba 3/ldap and re-joining the computers to the new domain and then migrating the user profiles back to roaming on the new domain if desired. My other questions are: a) Any problems with a samba-3.x BDC backing up a samba 2.2.5 PDC? samba 2.x.x doesn't support BDC b) If I go with method 2 above, am I right in thinking that I'd have to stay with the smbpasswd backend for the BDC (which is what the PDC uses)? This would only be a very temporary arrangement; I realize that it's discouraged in the docs. If not, and if ldap could be the backend for the BDC somehow, then how would I accomplish this? samba 2.x.x ldap structure is different than samba 3.x.x structure c) If I go with method 1 above (seems like it might be easier to me right now), what are the key files that need to come over from the old server to the new server? I realize that the contents of (at least some of, and maybe all of) these files would probably need to be revised somehow (maybe putting them in the LDAP Directory), but what information must be preserved from the old machine to make sure that I don't have to go around to all of the clients and add them to a new domain? 10 machines, I'd probably opt for joining them to new domain. d) I'd obviously like for it to be a seamless transition as far as the clients go and the fact that the two servers will have different IP addresses is a concern there. And if I go with method 2, will the clients need any reconfiguration to use the BDC for login (until the Compaq server can be upgraded to Gentoo and be back in business as the PDC)? e) Relating to the set of questions in (c), if I have an existing openldap-v2.2.27 server running with a few LDAP Directories (with a domain/contact sort of schema built from LDAP fields in existing schemas like inetperson and courierimap and a few others) in it on a third server, would it be possible to use one of the existing Directories as the ldap backend authentication source for the new samba server or would I need to create a new Directory with a samba-only schema to be the ldap backend? no - you should be able to add samba ldap attributes to existing DSA Craig -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Red X and guest user message in logs
-- Joel Franco | | self-powered by | Debian Linux | | .''`. | : :' : | `. `' | `- | On Sex Nov 25 05 19:00, Marco De Vitis wrote: Hello, I have a Debian Sarge machine running Samba 3.0.14a as PDC and file server. Everything runs smoothly, except for a random problem: users (on Win2000Pro clients) are often seeing a red cross on the main network share, as if it was disconnected. This red X seems to come and go at random. I had that problem of a radom red X in the mapped drive too when the server was a Win98 machine. The problem was hardware on this server. The red cross would not be a big issue itself, but it has an annoying consequence: when it appears, Windows thinks the connection is down, so if you save a file on the share while the red X is there you get an error dialog telling something like The connection to the server has been reset. The file cannot be saved. (recalling from memory and translating from Italian, so the actual English message might be very different). The file is saved anyway, but users are obviously alarmed by the message. I had a look at my Samba logs (level 2) around the time when an user told me he noticed the red cross, but didn't find anything special, exception made for the following message: [2005/11/25 17:14:51, 2] smbd/service.c:make_connection_snum(314) guest user (from session setup) not permitted to access this share (COMMESSE) The user was already authenticated on the domain, and didn't logoff, so I can't understand where does this guest access come from. Can this message be related to my problem? Here follows an excerpt from my smb.conf, as returned by testparm, with some more or less sensible data omitted. BTW, the log file where I found that message was named client_name..log, which is correct (see log file setting below). I really hope someone can give me some clues, as this has been going on for months now. Thanks in advance. - [global] unix charset = UTF8 workgroup = domain name server string = Server Linux, Samba %v passdb backend = tdbsam log level = 2 vfs:2 syslog = 0 log file = /var/log/samba/%m.%U.log max log size = 0 logon script = netlogon.bat logon path = \\%L\profiles\%U logon drive = Z: domain logons = Yes os level = 64 preferred master = Yes domain master = Yes enhanced browsing = No create mask = 0664 directory mask = 0775 hosts allow = 127.0.0.1, 192.168.1.0/255.255.255.0 ea support = Yes hide files = /desktop.ini/.DS_Store/ veto oplock files = /NTUSER.DAT/ map archive = No store dos attributes = Yes dos filemode = Yes [netlogon] path = /home/netlogon browseable = No [profiles] path = /home/samba/profiles read only = No create mask = 0600 directory mask = 0700 browseable = No [COMMESSE] path = a valid path invalid users = one username force user = another username read only = No vfs objects = recycle recycle:exclude = ~$* ~*.doc *~*.tmp *.bak recycle:touch = yes recycle:versions = yes recycle:keeptree = yes recycle:repository = .cestino - -- Ciao, Marco. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] The single WINS problem
On Friday 25 November 2005 15:00, Andreas Hasenack wrote: Em Quinta 24 Novembro 2005 18:17, Andreas Hasenack escreveu: Everybody encourages Samba admins to enable WINS whenever possible, and I agree that it helps a lot to solve these networks' problems. It's so good that, when it fails, it's a disaster. How are people coping with the samba limitation of not being able to replicate the WINS database and thus its inability to have more than one WINS server in a domain? Nobody else? :( Andreas, I have documented the fundamentals of network browsing and the importance of NetBIOS name resolution in the book The Official Samba-3 HOWTO and Reference Guide. Where Samba-3 is a member of a Windows Active Directory domain it is possible to use just DNS based name resolution, but when Samba-3 provides the domain control technology it is necessary to use NetBIOS over TCP/IP. In that case, if the network is multi-segmented the choice to not use WINS is really a bad decision. WINS adds stability and cross-segment network operation. Sure, this can be done in other ways, but all alternatives require a lot more management and overhead, and are generally less reliable in practice. How often does WINS fail? That is the vital question. In my experience a Samba WINS server is considerably more reliable and dependable than a Windows NT4 WINS server. Your experience may vary. The largest network I have worked with has 20 remote and local segments with over 4200 Windows clients over a large WAN. The only time any problem was experienced with the single WINS server was when a link went down, in which case the network was off the air anyhow, and the other few times occured when a netwrok card or a switch went defective. The total lost time over the past 3 years has been about 4 hours. In chapter 6 of my book Samba-3 by Example, second edition I have documented work-around methods that can be used in ultra-large global networks. Windows networks are by their nature somewhat fragile, and therefore must be planed and implemented carefully. DNS is not capable of substituting for WINS where NetBIOS over TCP/IP is used. With all due respect, I belive that your alarm and concern is a little excessive. What sort of response are you looking for? What are you hoping to achieve from your request? - John T. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: Red X and guest user message in logs
Joel Franco wrote: I had that problem of a radom red X in the mapped drive too when the server was a Win98 machine. The problem was hardware on this server. I already thought about a hardware problem, but one thing mostly keeps me away from this idea: supposing there was some hardware network fault, I'd expect to find traces of communication errors in Samba logs (and maybe syslog). Instead, I see no errors in there, apart from the guest user message I reported. -- Ciao, Marco. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] The single WINS problem
Em Sexta 25 Novembro 2005 21:45, John H Terpstra escreveu: With all due respect, I belive that your alarm and concern is a little excessive. What sort of response are you looking for? What are you hoping to achieve from your request? The point is not how often the wins service (or its machine) fails, but what happens to the rest of the network when it does. Considering netbios name resolution is not just about mapping name-IP, but also about locating services (who is the logon server? who is the domain master browser?), a single wins makes the windows network, which is already fragile, even more so. I've seen a wins server fail (kernel panic), and it wasn't pretty to the rest of the network. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] The single WINS problem
On Friday 25 November 2005 17:41, Andreas Hasenack wrote: Em Sexta 25 Novembro 2005 21:45, John H Terpstra escreveu: With all due respect, I belive that your alarm and concern is a little excessive. What sort of response are you looking for? What are you hoping to achieve from your request? The point is not how often the wins service (or its machine) fails, but what happens to the rest of the network when it does. Considering netbios name resolution is not just about mapping name-IP, but also about locating services (who is the logon server? who is the domain master browser?), a single wins makes the windows network, which is already fragile, even more so. I've seen a wins server fail (kernel panic), and it wasn't pretty to the rest of the network. That failure was not the fault of the WINS server. The simple fact is that there is NO mechanism for resolving the service information via DNS, except when running ADS - something that Samba-3 does not do. - John T. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Red X and guest user message in logs
Suggestions.. Try sniff the ethernet communication with ethereal in the server (within a VNC server is cool), or try to increase the log level (3 gives you a lot information). -- Joel Franco | | self-powered by | Debian Linux | | .''`. | : :' : | `. `' | `- | On Sáb Nov 26 05 01:19, Marco De Vitis wrote: Joel Franco wrote: I had that problem of a radom red X in the mapped drive too when the server was a Win98 machine. The problem was hardware on this server. I already thought about a hardware problem, but one thing mostly keeps me away from this idea: supposing there was some hardware network fault, I'd expect to find traces of communication errors in Samba logs (and maybe syslog). Instead, I see no errors in there, apart from the guest user message I reported. -- Ciao, Marco. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] (no subject)
Hi All, I'm really sad that Win2k3 server runs a lot better in a shared folder that keep a file based database that Windows 9x and WinNT clients. Explaining it better... Here in Brazil, unfortunaly we still have a lot business that is based in the old file shared database, like Dataflex, Clipper and like. Then, they need a robust and fast server to centralize that files. With Windows98 clients and Samba 3 server, the performance of the access to this shared database file is good and because the ultra robust samba server (based in Linux), this configuration scenario was a excelent solution. However, the Windows 98 is stopping be supported by Microsoft and this is forcing the client machines of this business to migrate to NT based workstations (win2k and winXP usually). Here starts the problem... Empirically, when a NT based is added to the existing network, the database application runs slowly (access data) in this client machine and in others NT machines that are added to the LAN. If i substitute this samba server with a Win2k3 Standard Server, the application latency backs to the original (or close), before the NT clients. This was a big deception to me and since then, i'm trying to find why this happens but i'm specialist. I have observed in the ethereal sniffer that exists a lot of Locking AndX Request and Locking AndX Response that is highly ping pong communication between the server and the client, that certainly don't permit a good brute transfer. I understand that must exist a lock mechanism to not corrupt the file database shared between others stations. A quick observation in the ethereal with the 98 clients, show that the protocol is different and the sniffer have not a good knowledge of it (it appears like a raw traffic). I have not still observed the Win2k3 protocol with the NT stations. This maybe is my next step. My fundamental question is, why the different protocol is so slow and, supposing that the 98 protocol with the server is better (fast and safe - at least in this files database in my experience), how i can configure the samba server to just accept this old protocol or how to configure the NT stations to runs faster. Regards All, -- Joel Franco | | self-powered by | Debian Linux | | .''`. | : :' : | `. `' | `- | -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Best way to upgrade domain from control by 2.2.5 PDC to control by 3.0.20b PDC
Thanks for your reply, Craig. Craig White wrote: My first question for the list is: which one of these methods is likely to be least problematic and least time-consuming? least problematic and least time consuming would probably involve making sure that all of the user profiles are set to local, setting up new samba 3/ldap and re-joining the computers to the new domain and then migrating the user profiles back to roaming on the new domain if desired. Really!? I would've thought that to be the most problematic and most time-consuming. The general description you've given here is helpful, but... would I be looking a gift horse in the mouth by asking for a more detailed description? Or is there such a description in the docs somewhere that I've missed? After reading my Using Samba book from O'Reilly and browsing the Official HowTo, I don't find one. I do see this: Disabling Roaming Profile Support ... In smb.conf Affect the following settings and ALL clients will be forced to use a local profile: logon home = and logon path = The arguments to these parameters must be left blank. It is necessary to include the = sign to specifically assign the empty value. The text formatting may be making that statement a little confusing to me. Should I read that as: smb.conf = logon home = logon path = = Just want to make sure. If I do this and take the old PDC offline, users will still be able to login? I thought the user profiles were just the files to make up the user desktop; not the authentication credentials. Perhaps I'm mistaken on that point. And won't rejoining the computers to the new domain end up renaming all of the users' local directory structures (under the Documents and Settings folder on the local windows client) and thereby making the users' locally stored data inaccessible to them? I seem to recall this happening when I've rejoined computer clients to a new domain in the past. Setting up the new samba 3/ldap domain I'm sure I'll find well documented, but it seems to me that in upgrading, I'll have a host of issues to deal with that someone setting up a brand new samba 3/ldap domain wouldn't have to worry about. samba 2.x.x doesn't support BDC I thought that 2.2.x introduced some BDC functionality. No? Thanks for your thoughts, Craig. -Kevin -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Best way to upgrade domain from control by 2.2.5 PDC to control by 3.0.20b PDC
On Fri, 2005-11-25 at 21:33 -0500, Kevin wrote: Thanks for your reply, Craig. Craig White wrote: My first question for the list is: which one of these methods is likely to be least problematic and least time-consuming? least problematic and least time consuming would probably involve making sure that all of the user profiles are set to local, setting up new samba 3/ldap and re-joining the computers to the new domain and then migrating the user profiles back to roaming on the new domain if desired. Really!? I would've thought that to be the most problematic and most time-consuming. you asked for an opinion and you got mine...10 users, 10 machines...easier/better/safer/quicker to do new setup and have machines join new domain. Myself, I would probably migrate it rather than creating a new setup. One of the things that weighed in on my opinion in your case was remembering my first setups of samba 3.0.0 and discovering that samba 3.0.x in barely resembles samba 2.2.x...it is an entirely different beast. The general description you've given here is helpful, but... would I be looking a gift horse in the mouth by asking for a more detailed description? Or is there such a description in the docs somewhere that I've missed? After reading my Using Samba book from O'Reilly and browsing the Official HowTo, I don't find one. I do see this: Disabling Roaming Profile Support ... In smb.conf Affect the following settings and ALL clients will be forced to use a local profile: logon home = and logon path = The arguments to these parameters must be left blank. It is necessary to include the = sign to specifically assign the empty value. The text formatting may be making that statement a little confusing to me. Should I read that as: smb.conf = logon home = logon path = = Just want to make sure. yes If I do this and take the old PDC offline, users will still be able to login? if the PDC is offline, users won't be able to login unless the system provides cached credentials. I thought the user profiles were just the files to make up the user desktop; not the authentication credentials. Perhaps I'm mistaken on that point. that is pretty much an accurate description And won't rejoining the computers to the new domain end up renaming all of the users' local directory structures (under the Documents and Settings folder on the local windows client) and thereby making the users' locally stored data inaccessible to them? I seem to recall this happening when I've rejoined computer clients to a new domain in the past. I already answered this in the previous email - you need to review the samba 'How-To' on migrating user profiles. Setting up the new samba 3/ldap domain I'm sure I'll find well documented, but it seems to me that in upgrading, I'll have a host of issues to deal with that someone setting up a brand new samba 3/ldap domain wouldn't have to worry about. samba 2.x.x doesn't support BDC I thought that 2.2.x introduced some BDC functionality. No? No - apparently saying it once isn't enough though. Craig -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] The single WINS problem
On Thu, 2005-11-24 at 20:42 -0200, Andreas wrote: On Thu, Nov 24, 2005 at 10:31:01PM +0100, Jeroen van Meeuwen wrote: So you can't use DNS for that sixteenth field of netbios names (like 1C, 1B, etc). Or can you? Dynamic DNS is a setup primarily for networks with DHCP. Using DHCP, you can only have 1 IP lease per physical interface. This IP, along with the system's hostname, are registered in DNS, and that's were we resolve the names you currently use in a Netbios/WINS environment. I understood this part. What I didn't understand is how a DNS server can answer queries like DOMAIN1C and DOMAIN1B. It cannot. I typically run a WINS server to handle those names, with names already in DNS, and 'dns proxy = yes' set, so that the 'normal' names are avaialble via WINS also. In Samba4, metze is developing WINS replication testsuites and server functionality, but you will need to ask him about where it is up to. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] AS/U as a member server on a SAmba PDC
On Wed, 2005-11-23 at 18:05 +0100, Lapin(c) wrote: Hi team, I actually managed to join AS/U (version 4.0 on AIX) into a domain, with a Samba PDC. Samba tells me that the AS/U server is a member, but there is still some failing dialog between AS/U and Samba. For instance, I can't access to AS/U's shares, it seems that I fall into a timeout, and more presumably a schannel error (even increasing log level gives me few informations...). Samba is 3.0.4. I've seen a 'enable asu support' in 3.0.20, could this option deals with that problem ? You should always run the latest Samba, if at all possible. The option here was due to a change in functionality that would allegedly break ASU, but be more like windows by default. That is, there was an old comment in the code, and some fear that a change might have broken AS/U. If you post more debugging details (logfiles, pcap format network sniffs, etc) to the list, one of the Samba3 maintainers might have a bit more of a clue what is going on. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] The single WINS problem
On Fri, 2005-11-25 at 16:05 +0100, Jeroen van Meeuwen wrote: You seem to forget that my 'master browsers' are in fact DNS Servers, and there is no such thing as Netbios querying for logon servers. That is DNS integrated in Windows 2003. But Samba3 implements NT4 semantics (in the DC area in particular), and as such clients depend on the very much existing thing of NetBIOS queries for logon servers. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] The single WINS problem
On Fri, 2005-11-25 at 16:45 -0700, John H Terpstra wrote: The largest network I have worked with has 20 remote and local segments with over 4200 Windows clients over a large WAN. The only time any problem was experienced with the single WINS server was when a link went down, in which case the network was off the air anyhow, and the other few times occured when a netwrok card or a switch went defective. The total lost time over the past 3 years has been about 4 hours. My experience is similar, with the old P133, RH 7.3 still one of the most reliable machines on the network (after the CPU fan was upgraded 4 years ago). The machine has been running for 5.5 years, I think... I am of course looking forward to the WINS replication functionality in Samba4, but I've had more trouble from my 'rudundent' DNS servers than the little WINS server has ever given me. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [samba] FAILED with error NT_STATUS_UNSUCCESSFUL
On Thu, 2005-11-24 at 11:49 +0100, Daniel Wilson wrote: Hi List, The last couple of days we have been having intermittent problems with our samba domain. We have 3.0.14a (from source) on a Suse Linux box. Samba has been working great since we used it but now we seem to get the issue of some people not being able to connect to a share ,this is the error: [2005/11/24 11:30:00, 0] auth/auth_sam.c:check_sam_security(324) check_sam_security: make_server_info_sam() failed with 'NT_STATUS_UNSUCCESSFUL' [2005/11/24 11:30:00, 2] auth/auth.c:check_ntlm_password(312) check_ntlm_password: Authentication for user [wq0mjo] - [wq0mjo] FAILED with error NT_STATUS_UNSUCCESSFUL [2005/11/24 11:30:00, 2] rpc_server/srv_samr_nt.c:_samr_lookup_domain(2580) Returning domain sid for domain UNI-STAFF - S-1-5-21-82148923-2461359520-1342846908 [2005/11/24 11:30:00, 2] lib/smbldap.c:smbldap_open_connection(692) smbldap_open_connection: connection opened The weird thing is, 2 minutes later it works, then doesnt?!! Could this be a local network probelm we are having, we have a large flat class B network! My guess is that you have problems with nss_ldap, which is sometimes (and sometimes not) resolving the userids. Take a sniff and look closely at the ldap traffic. You can reduce the load on the LDAP server by setting 'ldapsam:trusted=yes', but read up the comments and documentation of this smb.conf parameter, as every user you want to have Samba use (including the guest account) must be in LDAP for both nss (posix) and Samba parts. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ntlm_auth from pppd help
On Wed, 2005-11-23 at 09:42 -0500, Brian Hoover wrote: Hello all, I am working on a VPN solution using FC3-2.6.12-1.1381 - openswan 2.4.4-1 - l2tpd 0.69-13 - pppd 2.4.3-5 - samba 3.0.10-1. When attempting a connection from an XP-SP2 box pppd dies without authenticating the user (see below). I have run ntlm_auth from the command line with success. What tools can I use to identify the failure? Perhaps pipe the ntlm_auth invokation via 'tee' and see what is being written to ntlm_auth? Also try an strace. Are you running the patched pppd, due to my snarfu with base64 encoding? (Patch on the poptop page). Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] patch request - inherit owner
On Tue, 2005-11-22 at 06:00 -0700, Craig White wrote: On Tue, 2005-11-22 at 09:33 +0100, [EMAIL PROTECTED] wrote: Craig White wrote: On Mon, 2005-11-21 at 17:36 +0100, [EMAIL PROTECTED] wrote: Gerald (Jerry) Carter wrote: [EMAIL PROTECTED] wrote: | so a patch to add an inherit owner group option | would be very useful. Unix file systems already support this with the group ID bit. Just chmod g+s dirname. Ok it's working. I didn't knew I could have a s without a x, so I was worried about the security as some users have access to a shell on the Samba server. 'x' has different meaning when it comes to a directory. It indicates whether a user of that type can 'descend' into the directory. Craig I know this, but I am moving data from a Windows server to Samba i.e. I have to copy files preserving the creation times and then set up the access rights. And as I tought that s goes with x, and there is not way (well, as least from what I know) to recursievly set the s just to directories (as with the X) I had no solution. --- chmod -R g+s /path/to/directory # recursively set guid bit --- Watch out, that will set the setgid bit on any files in that directory. Where 'foo' is the directory, try: find foo -type d | xargs chmod g+s -- Andrew Bartletthttp://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] printer admin: deprecated?
On Thu, 2005-11-24 at 09:53 +1000, Adam Nielsen wrote: If printer admin is deprecated, what option replace it? I'm not sure, I was wondering this same question myself. printer admin is still valid? if yes, until version will support it? I'm using Samba 3.0.20 and it still seems to work, but I'm not sure when it'll be taken out. I understand it has been replaced with proper ACLs and privileges. Check the release notes. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] windowsNT 4.0 and ServicePack 5
On Tue, 2005-11-22 at 19:49 +0100, [EMAIL PROTECTED] wrote: Hello when I try to connect from a Windows NT 4.0 and servicePack 5 I get the message Der Netzwerkpfad wird nicht gefunden Apparently this is: The network path was not found With ServicePack 6 it is no problem, but on some workstations I cant´t change !!! Is there a possibility (configuration) for ServicePack5 ??? Our samba Version is 2.2.7. In earlier times we had Version 2.0.7 - there was no problem with SP5. Sorry - my bad english, but perhaps you can help me Perhaps you should try upgrading to the current Samba 3.0? (3.0.20b) Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Can Winbind go directly to LDAP/Kerberos? Or is it PDC NTLM only?
On Mon, 2005-11-21 at 15:19 -0800, SAMBA wrote: Hi. I've been digging through published and online documents, but most documentation is oriented to old-school PDC. I want to avoid NTLM and PDCs of the past for security and performance reasons (NTLM single DES vs. Kerberos triple DES for instance) The issue of what authentication types are supported is not really related to which user information modal is adopted. That is, I suggest you chose the use winbind as per the standard documentation, then set your DC to only accept NTLMv2 and Kerberos (and triple-des kerberos etc). The biggest real threat with network security is the LM half of NTLM authentication, which should be disabled (possibly by group policy) on the clients. (Modern clients will negotiate NTLM2, which removes the problematic LM authentication, but this can be modified by an active attacker.) Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Backup Domain Controllers
On Tue, 2005-11-22 at 19:14 +0200, Ian Barnes wrote: Hmm, I was looking. The ntlm authenticator that comes with squid allows multiple domain controllers to load balance or failover between. Does samba support this ? winbindd handles the actual connection to the DC, and you can set the 'password server' parameter if you have particular requirements, but it will do failover automatically, selecting the best available DC. Andrew Bartlett -- Andrew Bartletthttp://samba.org/~abartlet/ Samba Developer, SuSE Labs, Novell Inc.http://suse.de Authentication Developer, Samba Team http://samba.org Student Network Administrator, Hawker College http://hawkerc.net signature.asc Description: This is a digitally signed message part -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: smbd purpose?
[Disclaimer: I'm not really a VMS person - just a lurking Samba-on-Unix list member] Robert Young asked : [I disabled the smbd service but] samba is working just fine ... What is the purpose of the smbd service exactly ? smbd is a fundamental and vital part of Samba, responsible for performing the actual data transfers involved in file access. That being the case, it's hard to understand how your Samba can possibly be working fine. * smbd handles file data transfer (on TCP port 139). * nmbd handles machine name-to-address lookups (simplisticly put) and Network Neighbourhood browsing (on UDP ports 137 and 138). (The above is for Samba V2.x.x - it's more complicated at Samba V3+) Your VMS should create (spawn in VMS-ese ?) a copy of the smbd process for each concurrently connected user. (Somebody tell us if it's different on VMS ...) Nick Boyce EDS Central Ireland ADU (UKIA), Bristol, UK PLEASE READ THIS IMPORTANT ETIQUETTE MESSAGE BEFORE POSTING: http://www.catb.org/~esr/faqs/smart-questions.html
Re: smbd purpose?
Here is what I see from show system while I am connected and have the directories mounted on my PC. I have copied files from the VMS system to the desktop w/out trouble. Welcome to OpenVMS (TM) Alpha Operating System, Version V7.3 on node LURKER Last interactive login on Friday, 25-NOV-2005 08:34:34.36 Last non-interactive login on Thursday, 24-NOV-2005 11:01:08.26 $ sh system OpenVMS V7.3 on node LURKER 25-NOV-2005 11:10:52.96 Uptime 10 00:11:57 PidProcess NameState Pri I/O CPU Page flts Pages 0201 SWAPPER HIB 160 0 00:00:01.24 0 0 0204 LANACP HIB 13 54 0 00:00:00.09 91115 0206 FASTPATH_SERVER HIB 109 0 00:00:00.02 70 84 0207 IPCACP HIB 10 10 0 00:00:00.02 31 42 0208 ERRFMT HIB 827519 0 00:00:22.45 96112 020A OPCOM LEF 6 173805 0 00:02:13.30 1829 49 020B AUDIT_SERVERHIB 10 101 0 00:00:00.29 138168 020C JOB_CONTROL HIB 8 545 0 00:00:00.96 58 81 020E QUEUE_MANAGER HIB 10 1343 0 00:00:02.08 130164 020F SECURITY_SERVER HIB 10 59 0 00:05:44.19 576230 0210 ACME_SERVER HIB 9 73 0 00:00:00.16 416409 M 0212 DNS$ADVER LEF 5 170245 0 00:01:38.21 1717771 0213 LES$ACP_V30 HIB 10 122 0 00:00:00.10 73 85 0214 NET$ACP HIB 5 85 0 00:00:00.15 158159 0215 REMACP HIB 9 26 0 00:00:00.00 36 23 0216 NET$EVD HIB 6 20 0 00:01:36.15 358194 0217 DTSS$CLERK LEF 1210803 0 00:00:10.38 149189 0218 TP_SERVER HIB 1057787 0 00:01:52.19 73 95 0219 TCPIP$TNS1 HIB 4 54 0 00:00:00.11 222135 021A TCPIP$INETACP HIB 8 588 0 00:00:00.51 179130 021B TCPIP$PORTM_1 LEF 1032701 0 00:00:18.02 283185 N 021C TCPIP$FTP_1 LEF 10 444 0 00:00:00.37 626227 N 021D TCPIP$LPD_QUEUE HIB 5 55 0 00:00:00.10 246112 021E TCPIP$NFS_1 HIB 10 181 0 00:00:00.25 494186 N 0220 TCPIP$PCNFSD_1 LEF 10 153 0 00:00:00.16 338161 N 0226 TCPIP$FTPC2 LEF 6 109 0 00:00:00.11 270188 N 0227 TCPIP$FTPC4 LEF 6 105 0 00:00:00.13 273183 N 02A8 SMBD_ROBERT-YOU LEF 8 3734 0 00:00:02.66 722568 N 02AC SMBD_ROBERT-YOU LEF 8 5710 0 00:00:06.73 673568 N 02B0 SMBD_ROBERT-YOU LEF 8 7258 0 00:00:09.63 705571 N 02B4 SMBD_ROBERT-YOU LEF 8 5421 0 00:00:06.48 742556 N 02B8 SMBD_ROBERT-YOU LEF 7 6956 0 00:00:06.93 749556 N 02BC SMBD_ROBERT-YOU LEF 812270 0 00:00:29.28 750562 N 02D4 SMBD_ROBERT-YOU LEF 6 9084 0 00:00:17.89 716572 N 02D8 SMBD_ROBERT-YOU LEF 8 3380 0 00:00:02.43 742549 N 02DC SMBD_ROBERT-YOU LEF 6 3482 0 00:00:02.58 745549 N 02E0 SMBD_ROBERT-YOU LEF 8 2763 0 00:00:01.94 748549 N 02E4 SMBD_ROBERT-YOU LEF 6 3118 0 00:00:02.35 673558 N 02E5 YOUNG CUR 0 7 119 0 00:00:00.13 245111 $ The VMS version of portmapper is enabled, so I wondered if that was handling things? $ tcpip show service Service Port ProtoProcess AddressState FTP 21 TCP TCPIP$FTP 0.0.0.0 Enabled LPD 515 TCP TCPIP$LPD 0.0.0.0 Enabled MOUNT 10 TCP,UDP TCPIP$MOUNTD 0.0.0.0 Disabled NFS 2049 UDP TCPIP$NFS 0.0.0.0 Enabled PCNFS 5151 TCP,UDP TCPIP$PCNFSD 0.0.0.0 Enabled PORTMAPPER 111 TCP,UDP TCPIP$PORTM 0.0.0.0 Enabled RDBSERVER611 TCP RDB71 0.0.0.0 Disabled TELNET23 TCP not defined 0.0.0.0 Enabled On Nov 25, 2005, at 10:35 AM, Boyce, Nick wrote: [Disclaimer: I'm not really a VMS person - just a lurking Samba-on- Unix list member] Robert Young asked : [I disabled the smbd service but] samba is working just fine ... What is the purpose of the smbd service exactly ? smbd is a fundamental and vital part of Samba, responsible for performing the actual data transfers involved in file access.
svn commit: samba r11895 - in branches/SAMBA_4_0/source/libcli/smb2: .
Author: metze
Date: 2005-11-25 08:24:36 + (Fri, 25 Nov 2005)
New Revision: 11895
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11895
Log:
- reorder some code to make it easier to follow, how the fields appear on the
wire
- add some comments to the header file, to represent the wire format
metze
Modified:
branches/SAMBA_4_0/source/libcli/smb2/find.c
branches/SAMBA_4_0/source/libcli/smb2/setinfo.c
branches/SAMBA_4_0/source/libcli/smb2/smb2_calls.h
branches/SAMBA_4_0/source/libcli/smb2/trans.c
Changeset:
Modified: branches/SAMBA_4_0/source/libcli/smb2/find.c
===
--- branches/SAMBA_4_0/source/libcli/smb2/find.c2005-11-25 06:50:29 UTC
(rev 11894)
+++ branches/SAMBA_4_0/source/libcli/smb2/find.c2005-11-25 08:24:36 UTC
(rev 11895)
@@ -40,7 +40,6 @@
SCVAL(req-out.body, 0x03, io-in.continue_flags);
SIVAL(req-out.body, 0x04, io-in.unknown);
smb2_push_handle(req-out.body+0x08, io-in.handle);
- SIVAL(req-out.body, 0x1C, io-in.max_response_size);
status = smb2_push_o16s16_string(req-out, 0x18, io-in.pattern);
if (!NT_STATUS_IS_OK(status)) {
@@ -48,6 +47,8 @@
return NULL;
}
+ SIVAL(req-out.body, 0x1C, io-in.max_response_size);
+
smb2_transport_send(req);
return req;
Modified: branches/SAMBA_4_0/source/libcli/smb2/setinfo.c
===
--- branches/SAMBA_4_0/source/libcli/smb2/setinfo.c 2005-11-25 06:50:29 UTC
(rev 11894)
+++ branches/SAMBA_4_0/source/libcli/smb2/setinfo.c 2005-11-25 08:24:36 UTC
(rev 11895)
@@ -30,13 +30,20 @@
*/
struct smb2_request *smb2_setinfo_send(struct smb2_tree *tree, struct
smb2_setinfo *io)
{
+ NTSTATUS status;
struct smb2_request *req;
req = smb2_request_init_tree(tree, SMB2_OP_SETINFO, 0x20,
io-in.blob.length);
if (req == NULL) return NULL;
SSVAL(req-out.body, 0x02, io-in.level);
- smb2_push_s32o32_blob(req-out, 0x04, io-in.blob);
+
+ status = smb2_push_s32o32_blob(req-out, 0x04, io-in.blob);
+ if (!NT_STATUS_IS_OK(status)) {
+ talloc_free(req);
+ return NULL;
+ }
+
SIVAL(req-out.body, 0x0C, io-in.flags);
smb2_push_handle(req-out.body+0x10, io-in.handle);
Modified: branches/SAMBA_4_0/source/libcli/smb2/smb2_calls.h
===
--- branches/SAMBA_4_0/source/libcli/smb2/smb2_calls.h 2005-11-25 06:50:29 UTC
(rev 11894)
+++ branches/SAMBA_4_0/source/libcli/smb2/smb2_calls.h 2005-11-25 08:24:36 UTC
(rev 11895)
@@ -291,15 +291,27 @@
struct smb2_find {
struct {
+ /* static body buffer 32 (0x20) bytes */
+ /* uint16_t buffer_code; 0x21 = 0x20 + 1 */
uint8_t level;
uint8_t continue_flags; /* SMB2_CONTINUE_FLAG_* */
uint32_t unknown; /* perhaps a continue token? */
struct smb2_handle handle;
+ /* uint16_t pattern_ofs; */
+ /* uint32_t pattern_size; */
uint32_t max_response_size;
+
+ /* dynamic body */
const char *pattern;
} in;
struct {
+ /* static body buffer 8 (0x08) bytes */
+ /* uint16_t buffer_code; 0x08 */
+ /* uint16_t blob_ofs; */
+ /* uint32_t blob_size; */
+
+ /* dynamic body */
DATA_BLOB blob;
} out;
};
@@ -308,20 +320,38 @@
struct smb2_trans {
struct {
+ /* static body buffer 56 (0x38) bytes */
+ /* uint16_t buffer_code; 0x39 = 0x38 + 1 */
+ uint16_t _pad;
uint32_t pipe_flags;
struct smb2_handle handle;
+ /* uint32_t out_ofs; */
+ /* uint32_t out_size; */
uint32_t unknown2;
+ /* uint32_t in_ofs; */
+ /* uint32_t in_size; */
uint32_t max_response_size;
uint64_t flags;
+
+ /* dynamic body */
+ DATA_BLOB out;
DATA_BLOB in;
- DATA_BLOB out;
} in;
struct {
- uint32_t unknown1;
+ /* static body buffer 48 (0x30) bytes */
+ /* uint16_t buffer_code; 0x31 = 0x30 + 1 */
+ uint16_t _pad;
+ uint32_t pipe_flags;
struct smb2_handle handle;
+ /* uint32_t in_ofs; */
+ /* uint32_t in_size; */
+ /* uint32_t out_ofs; */
+ /* uint32_t out_size; */
uint32_t unknown2;
uint32_t unknown3;
+
+ /* dynamic body */
DATA_BLOB in;
DATA_BLOB out;
} out;
Modified:
svn commit: samba r11896 - in branches/SAMBA_4_0/source/wrepl_server: .
Author: metze
Date: 2005-11-25 10:08:31 + (Fri, 25 Nov 2005)
New Revision: 11896
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11896
Log:
max_version of 0 means unlimited
metze
Modified:
branches/SAMBA_4_0/source/wrepl_server/wrepl_in_call.c
Changeset:
Modified: branches/SAMBA_4_0/source/wrepl_server/wrepl_in_call.c
===
--- branches/SAMBA_4_0/source/wrepl_server/wrepl_in_call.c 2005-11-25
08:24:36 UTC (rev 11895)
+++ branches/SAMBA_4_0/source/wrepl_server/wrepl_in_call.c 2005-11-25
10:08:31 UTC (rev 11896)
@@ -217,6 +217,14 @@
}
/*
+* the client sends a max_version of 0, interpret it as
+* (uint64_t)-1
+*/
+ if (owner_in-max_version == 0) {
+ owner_in-max_version = (uint64_t)-1;
+ }
+
+ /*
* if the partner ask for nothing, or give invalid ranges,
* return an empty list.
*/
svn commit: samba r11897 - in branches/SAMBA_4_0/source/torture/nbt: .
Author: metze
Date: 2005-11-25 10:11:01 + (Fri, 25 Nov 2005)
New Revision: 11897
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11897
Log:
add 2 more sgroup vs. sgroup tests with the replica having no addresses
metze
Modified:
branches/SAMBA_4_0/source/torture/nbt/winsreplication.c
Changeset:
Modified: branches/SAMBA_4_0/source/torture/nbt/winsreplication.c
===
--- branches/SAMBA_4_0/source/torture/nbt/winsreplication.c 2005-11-25
10:08:31 UTC (rev 11896)
+++ branches/SAMBA_4_0/source/torture/nbt/winsreplication.c 2005-11-25
10:11:01 UTC (rev 11897)
@@ -394,6 +394,24 @@
.ip = TEST_ADDRESS_X_PREFIX.4
}
};
+static const struct wrepl_ip addresses_A_3_4_B_3_4[] = {
+ {
+ .owner = TEST_OWNER_A_ADDRESS,
+ .ip = TEST_ADDRESS_A_PREFIX.3
+ },
+ {
+ .owner = TEST_OWNER_A_ADDRESS,
+ .ip = TEST_ADDRESS_A_PREFIX.4
+ },
+ {
+ .owner = TEST_OWNER_B_ADDRESS,
+ .ip = TEST_ADDRESS_B_PREFIX.3
+ },
+ {
+ .owner = TEST_OWNER_B_ADDRESS,
+ .ip = TEST_ADDRESS_B_PREFIX.4
+ }
+};
static const struct wrepl_ip addresses_A_3_4_OWNER_B[] = {
{
.owner = TEST_OWNER_B_ADDRESS,
@@ -4037,6 +4055,37 @@
}
},
/*
+* sgroup,active vs. sgroup,active same addresses
+* = should be NOT replaced
+*/
+ {
+ .line = __location__,
+ .name = _NBT_NAME(_DIFF_OWNER, 0x00, NULL),
+ .comment= A:A_3_4 vs. B:NULL,
+ .extra = True,
+ .r1 = {
+ .owner = ctx-a,
+ .type = WREPL_TYPE_SGROUP,
+ .state = WREPL_STATE_ACTIVE,
+ .node = WREPL_NODE_B,
+ .is_static = False,
+ .num_ips= ARRAY_SIZE(addresses_A_3_4),
+ .ips= addresses_A_3_4,
+ .apply_expected = True
+ },
+ .r2 = {
+ .owner = ctx-b,
+ .type = WREPL_TYPE_SGROUP,
+ .state = WREPL_STATE_ACTIVE,
+ .node = WREPL_NODE_B,
+ .is_static = False,
+ .num_ips= 0,
+ .ips= NULL,
+ .apply_expected = False,
+ .sgroup_cleanup = True
+ }
+ },
+ /*
* sgroup,active vs. sgroup,active subset addresses, special case...
* = should NOT be replaced
*/
@@ -4447,6 +4496,63 @@
{
.line = __location__,
.name = _NBT_NAME(_DIFF_OWNER, 0x00, NULL),
+ .comment= A:A_3_4_B_3_4 vs. B:NULL = B:A_3_4,
+ .extra = True,
+ .r1 = {
+ .owner = ctx-a,
+ .type = WREPL_TYPE_SGROUP,
+ .state = WREPL_STATE_ACTIVE,
+ .node = WREPL_NODE_B,
+ .is_static = False,
+ .num_ips= ARRAY_SIZE(addresses_A_3_4_B_3_4),
+ .ips= addresses_A_3_4_B_3_4,
+ .apply_expected = True,
+ },
+ .r2 = {
+ .owner = ctx-b,
+ .type = WREPL_TYPE_SGROUP,
+ .state = WREPL_STATE_ACTIVE,
+ .node = WREPL_NODE_B,
+ .is_static = False,
+ .num_ips= 0,
+ .ips= NULL,
+ .sgroup_merge = True,
+ .merge_owner= ctx-b,
+ .sgroup_cleanup = True
+ }
+ },
+ {
+ .line = __location__,
+ .name = _NBT_NAME(_DIFF_OWNER, 0x00, NULL),
+ .cleanup= True,
+ .r1 = {
+ .owner = ctx-a,
+ .type = WREPL_TYPE_SGROUP,
+ .state = WREPL_STATE_ACTIVE,
+ .node = WREPL_NODE_B,
+ .is_static = False,
+ .num_ips= 0,
+ .ips= NULL,
+ .apply_expected = False,
+ },
+ .r2 = {
+ .owner = ctx-a,
+ .type = WREPL_TYPE_UNIQUE,
+ .state = WREPL_STATE_TOMBSTONE,
+
svn commit: samba r11898 - branches/SAMBA_3_0/source/rpc_server trunk/source/rpc_server
Author: vlendec
Date: 2005-11-25 10:19:24 + (Fri, 25 Nov 2005)
New Revision: 11898
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11898
Log:
Add a missing become_root().
Volker
Modified:
branches/SAMBA_3_0/source/rpc_server/srv_samr_nt.c
trunk/source/rpc_server/srv_samr_nt.c
Changeset:
Modified: branches/SAMBA_3_0/source/rpc_server/srv_samr_nt.c
===
--- branches/SAMBA_3_0/source/rpc_server/srv_samr_nt.c 2005-11-25 10:11:01 UTC
(rev 11897)
+++ branches/SAMBA_3_0/source/rpc_server/srv_samr_nt.c 2005-11-25 10:19:24 UTC
(rev 11898)
@@ -307,6 +307,11 @@
{
DEBUG(10,(free_samr_cache: deleting cache for SID %s\n, sid_str));
+ /* We need to become root here because the paged search might have to
+* tell the LDAP server we're not interested in the rest anymore. */
+
+ become_root();
+
if (disp_info-users) {
DEBUG(10,(free_samr_cache: deleting users cache\n));
pdb_search_destroy(disp_info-users);
@@ -338,6 +343,8 @@
disp_info-enum_users = NULL;
}
disp_info-enum_acb_mask = 0;
+
+ unbecome_root();
}
/***
Modified: trunk/source/rpc_server/srv_samr_nt.c
===
--- trunk/source/rpc_server/srv_samr_nt.c 2005-11-25 10:11:01 UTC (rev
11897)
+++ trunk/source/rpc_server/srv_samr_nt.c 2005-11-25 10:19:24 UTC (rev
11898)
@@ -307,6 +307,11 @@
{
DEBUG(10,(free_samr_cache: deleting cache for SID %s\n, sid_str));
+ /* We need to become root here because the paged search might have to
+* tell the LDAP server we're not interested in the rest anymore. */
+
+ become_root();
+
if (disp_info-users) {
DEBUG(10,(free_samr_cache: deleting users cache\n));
pdb_search_destroy(disp_info-users);
@@ -338,6 +343,8 @@
disp_info-enum_users = NULL;
}
disp_info-enum_acb_mask = 0;
+
+ unbecome_root();
}
/***
svn commit: samba r11899 - in branches/SAMBA_4_0/source/torture/nbt: .
Author: metze
Date: 2005-11-25 10:44:03 + (Fri, 25 Nov 2005)
New Revision: 11899
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11899
Log:
add some usefull debug messages
metze
Modified:
branches/SAMBA_4_0/source/torture/nbt/winsreplication.c
Changeset:
Modified: branches/SAMBA_4_0/source/torture/nbt/winsreplication.c
===
--- branches/SAMBA_4_0/source/torture/nbt/winsreplication.c 2005-11-25
10:19:24 UTC (rev 11898)
+++ branches/SAMBA_4_0/source/torture/nbt/winsreplication.c 2005-11-25
10:44:03 UTC (rev 11899)
@@ -4753,6 +4753,11 @@
}
if (records[i].r2.sgroup_cleanup) {
+ if (!ret) {
+ printf(failed before sgroup_cleanup
record[%u]: %s\n, i, records[i].line);
+ return ret;
+ }
+
/* clean up the SGROUP record */
wins_name_r1-name = records[i].name;
wins_name_r1-flags =
WREPL_NAME_FLAGS(WREPL_TYPE_SGROUP,
@@ -4808,6 +4813,11 @@
wins_name_r2-unknown = 255.255.255.255;
ret = test_wrepl_update_one(ctx, records[i].r2.owner,
wins_name_r2);
ret = test_wrepl_is_applied(ctx, records[i].r2.owner,
wins_name_r2, True);
+
+ if (!ret) {
+ printf(failed in sgroup_cleanup record[%u]:
%s\n, i, records[i].line);
+ return ret;
+ }
}
/* the first one is a cleanup run */
svn commit: samba r11900 - in branches/SAMBA_4_0/source/nbt_server/wins: .
Author: metze
Date: 2005-11-25 10:46:38 + (Fri, 25 Nov 2005)
New Revision: 11900
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11900
Log:
- make sure address and registered_by are replaced when they're not present
- make sure we don't add active records with 0 addresses
metze
Modified:
branches/SAMBA_4_0/source/nbt_server/wins/winsdb.c
Changeset:
Modified: branches/SAMBA_4_0/source/nbt_server/wins/winsdb.c
===
--- branches/SAMBA_4_0/source/nbt_server/wins/winsdb.c 2005-11-25 10:44:03 UTC
(rev 11899)
+++ branches/SAMBA_4_0/source/nbt_server/wins/winsdb.c 2005-11-25 10:46:38 UTC
(rev 11900)
@@ -513,9 +513,16 @@
struct winsdb_record *rec, TALLOC_CTX
*mem_ctx)
{
int i, ret=0;
+ size_t addr_count;
struct ldb_message *msg = ldb_msg_new(mem_ctx);
if (msg == NULL) goto failed;
+ /* make sure we don't put in corrupted records */
+ addr_count = winsdb_addr_list_length(rec-addresses);
+ if (rec-state == WREPL_STATE_ACTIVE addr_count == 0) {
+ rec-state = WREPL_STATE_RELEASED;
+ }
+
msg-dn = winsdb_dn(msg, rec-name);
if (msg-dn == NULL) goto failed;
ret |= ldb_msg_add_fmt(msg, type, 0x%02X, rec-name-type);
@@ -534,9 +541,11 @@
ldb_timestring(msg, rec-expire_time));
ret |= ldb_msg_add_fmt(msg, versionID, %llu, rec-version);
ret |= ldb_msg_add_string(msg, winsOwner, rec-wins_owner);
+ ret |= ldb_msg_add_empty(msg, address, 0);
for (i=0;rec-addresses[i];i++) {
ret |= ldb_msg_add_winsdb_addr(msg, address,
rec-addresses[i]);
}
+ ret |= ldb_msg_add_empty(msg, registeredBy, 0);
if (rec-registered_by) {
ret |= ldb_msg_add_string(msg, registeredBy,
rec-registered_by);
if (ret != 0) goto failed;
svn commit: samba r11901 - in branches/SAMBA_4_0/source/libcli/smb2: .
Author: tridge
Date: 2005-11-25 11:04:42 + (Fri, 25 Nov 2005)
New Revision: 11901
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11901
Log:
added smb2_logoff() support (metze correctly guessed opcode 2 was
logoff)
Added:
branches/SAMBA_4_0/source/libcli/smb2/logoff.c
Modified:
branches/SAMBA_4_0/source/libcli/smb2/config.mk
branches/SAMBA_4_0/source/libcli/smb2/smb2.h
Changeset:
Modified: branches/SAMBA_4_0/source/libcli/smb2/config.mk
===
--- branches/SAMBA_4_0/source/libcli/smb2/config.mk 2005-11-25 10:46:38 UTC
(rev 11900)
+++ branches/SAMBA_4_0/source/libcli/smb2/config.mk 2005-11-25 11:04:42 UTC
(rev 11901)
@@ -13,5 +13,6 @@
read.o \
setinfo.o \
find.o \
- trans.o
+ trans.o \
+ logoff.o
REQUIRED_SUBSYSTEMS = LIBCLI_RAW LIBPACKET
Added: branches/SAMBA_4_0/source/libcli/smb2/logoff.c
===
--- branches/SAMBA_4_0/source/libcli/smb2/logoff.c 2005-11-25 10:46:38 UTC
(rev 11900)
+++ branches/SAMBA_4_0/source/libcli/smb2/logoff.c 2005-11-25 11:04:42 UTC
(rev 11901)
@@ -0,0 +1,67 @@
+/*
+ Unix SMB/CIFS implementation.
+
+ SMB2 client logoff handling
+
+ Copyright (C) Andrew Tridgell 2005
+
+ This program is free software; you can redistribute it and/or modify
+ it under the terms of the GNU General Public License as published by
+ the Free Software Foundation; either version 2 of the License, or
+ (at your option) any later version.
+
+ This program is distributed in the hope that it will be useful,
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ GNU General Public License for more details.
+
+ You should have received a copy of the GNU General Public License
+ along with this program; if not, write to the Free Software
+ Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+*/
+
+#include includes.h
+#include libcli/raw/libcliraw.h
+#include libcli/smb2/smb2.h
+#include libcli/smb2/smb2_calls.h
+
+/*
+ send a logoff request
+*/
+struct smb2_request *smb2_logoff_send(struct smb2_tree *tree)
+{
+ struct smb2_request *req;
+
+ req = smb2_request_init_tree(tree, SMB2_OP_LOGOFF, 0x04, 0);
+ if (req == NULL) return NULL;
+
+ SSVAL(req-out.body, 0x02, 0);
+
+ smb2_transport_send(req);
+
+ return req;
+}
+
+
+/*
+ recv a logoff reply
+*/
+NTSTATUS smb2_logoff_recv(struct smb2_request *req)
+{
+ if (!smb2_request_receive(req) ||
+ smb2_request_is_error(req)) {
+ return smb2_request_destroy(req);
+ }
+
+ SMB2_CHECK_PACKET_RECV(req, 0x04, False);
+ return smb2_request_destroy(req);
+}
+
+/*
+ sync logoff request
+*/
+NTSTATUS smb2_logoff(struct smb2_tree *tree)
+{
+ struct smb2_request *req = smb2_logoff_send(tree);
+ return smb2_logoff_recv(req);
+}
Modified: branches/SAMBA_4_0/source/libcli/smb2/smb2.h
===
--- branches/SAMBA_4_0/source/libcli/smb2/smb2.h2005-11-25 10:46:38 UTC
(rev 11900)
+++ branches/SAMBA_4_0/source/libcli/smb2/smb2.h2005-11-25 11:04:42 UTC
(rev 11901)
@@ -159,6 +159,7 @@
/* SMB2 opcodes */
#define SMB2_OP_NEGPROT 0x00
#define SMB2_OP_SESSSETUP 0x01
+#define SMB2_OP_LOGOFF0x02
#define SMB2_OP_TCON 0x03
#define SMB2_OP_TDIS 0x04
#define SMB2_OP_CREATE0x05
svn commit: samba r11902 - in branches/SAMBA_4_0/source/torture/smb2: .
Author: tridge
Date: 2005-11-25 11:05:21 + (Fri, 25 Nov 2005)
New Revision: 11902
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11902
Log:
added smb2_logoff() testing
Modified:
branches/SAMBA_4_0/source/torture/smb2/connect.c
Changeset:
Modified: branches/SAMBA_4_0/source/torture/smb2/connect.c
===
--- branches/SAMBA_4_0/source/torture/smb2/connect.c2005-11-25 11:04:42 UTC
(rev 11901)
+++ branches/SAMBA_4_0/source/torture/smb2/connect.c2005-11-25 11:05:21 UTC
(rev 11902)
@@ -182,6 +182,7 @@
TALLOC_CTX *mem_ctx = talloc_new(NULL);
struct smb2_tree *tree;
struct smb2_handle h1, h2;
+ NTSTATUS status;
if (!torture_smb2_connection(mem_ctx, tree)) {
return False;
@@ -194,6 +195,18 @@
torture_smb2_close(tree, h1);
torture_smb2_close(tree, h2);
+ status = smb2_logoff(tree);
+ if (!NT_STATUS_IS_OK(status)) {
+ printf(Logoff failed - %s\n, nt_errstr(status));
+ return False;
+ }
+
+ status = smb2_logoff(tree);
+ if (!NT_STATUS_EQUAL(status, NT_STATUS_USER_SESSION_DELETED)) {
+ printf(Logoff should have disabled session - %s\n,
nt_errstr(status));
+ return False;
+ }
+
talloc_free(mem_ctx);
return True;
svn commit: samba r11903 - in branches/SAMBA_4_0/source/libcli/smb2: .
Author: tridge
Date: 2005-11-25 11:11:47 + (Fri, 25 Nov 2005)
New Revision: 11903
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11903
Log:
added smb2_tdis() (opcode 4)
Added:
branches/SAMBA_4_0/source/libcli/smb2/tdis.c
Modified:
branches/SAMBA_4_0/source/libcli/smb2/config.mk
Changeset:
Modified: branches/SAMBA_4_0/source/libcli/smb2/config.mk
===
--- branches/SAMBA_4_0/source/libcli/smb2/config.mk 2005-11-25 11:05:21 UTC
(rev 11902)
+++ branches/SAMBA_4_0/source/libcli/smb2/config.mk 2005-11-25 11:11:47 UTC
(rev 11903)
@@ -14,5 +14,6 @@
setinfo.o \
find.o \
trans.o \
- logoff.o
+ logoff.o \
+ tdis.o
REQUIRED_SUBSYSTEMS = LIBCLI_RAW LIBPACKET
Added: branches/SAMBA_4_0/source/libcli/smb2/tdis.c
===
--- branches/SAMBA_4_0/source/libcli/smb2/tdis.c2005-11-25 11:05:21 UTC
(rev 11902)
+++ branches/SAMBA_4_0/source/libcli/smb2/tdis.c2005-11-25 11:11:47 UTC
(rev 11903)
@@ -0,0 +1,67 @@
+/*
+ Unix SMB/CIFS implementation.
+
+ SMB2 client tdis handling
+
+ Copyright (C) Andrew Tridgell 2005
+
+ This program is free software; you can redistribute it and/or modify
+ it under the terms of the GNU General Public License as published by
+ the Free Software Foundation; either version 2 of the License, or
+ (at your option) any later version.
+
+ This program is distributed in the hope that it will be useful,
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ GNU General Public License for more details.
+
+ You should have received a copy of the GNU General Public License
+ along with this program; if not, write to the Free Software
+ Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+*/
+
+#include includes.h
+#include libcli/raw/libcliraw.h
+#include libcli/smb2/smb2.h
+#include libcli/smb2/smb2_calls.h
+
+/*
+ send a tdis request
+*/
+struct smb2_request *smb2_tdis_send(struct smb2_tree *tree)
+{
+ struct smb2_request *req;
+
+ req = smb2_request_init_tree(tree, SMB2_OP_TDIS, 0x04, 0);
+ if (req == NULL) return NULL;
+
+ SSVAL(req-out.body, 0x02, 0);
+
+ smb2_transport_send(req);
+
+ return req;
+}
+
+
+/*
+ recv a tdis reply
+*/
+NTSTATUS smb2_tdis_recv(struct smb2_request *req)
+{
+ if (!smb2_request_receive(req) ||
+ smb2_request_is_error(req)) {
+ return smb2_request_destroy(req);
+ }
+
+ SMB2_CHECK_PACKET_RECV(req, 0x04, False);
+ return smb2_request_destroy(req);
+}
+
+/*
+ sync tdis request
+*/
+NTSTATUS smb2_tdis(struct smb2_tree *tree)
+{
+ struct smb2_request *req = smb2_tdis_send(tree);
+ return smb2_tdis_recv(req);
+}
svn commit: samba r11904 - in branches/SAMBA_4_0/source/torture/smb2: .
Author: tridge
Date: 2005-11-25 11:12:08 + (Fri, 25 Nov 2005)
New Revision: 11904
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11904
Log:
added smb2_tdis() testing
Modified:
branches/SAMBA_4_0/source/torture/smb2/connect.c
Changeset:
Modified: branches/SAMBA_4_0/source/torture/smb2/connect.c
===
--- branches/SAMBA_4_0/source/torture/smb2/connect.c2005-11-25 11:11:47 UTC
(rev 11903)
+++ branches/SAMBA_4_0/source/torture/smb2/connect.c2005-11-25 11:12:08 UTC
(rev 11904)
@@ -195,8 +195,20 @@
torture_smb2_close(tree, h1);
torture_smb2_close(tree, h2);
- status = smb2_logoff(tree);
+ status = smb2_tdis(tree);
if (!NT_STATUS_IS_OK(status)) {
+ printf(tdis failed - %s\n, nt_errstr(status));
+ return False;
+ }
+
+ status = smb2_tdis(tree);
+ if (!NT_STATUS_EQUAL(status, NT_STATUS_NETWORK_NAME_DELETED)) {
+ printf(tdis should have disabled session - %s\n,
nt_errstr(status));
+ return False;
+ }
+
+ status = smb2_logoff(tree);
+ if (!NT_STATUS_IS_OK(status)) {
printf(Logoff failed - %s\n, nt_errstr(status));
return False;
}
svn commit: samba r11905 - in branches/SAMBA_4_0/source: include libcli/smb2 torture/smb2
Author: tridge
Date: 2005-11-25 11:33:57 + (Fri, 25 Nov 2005)
New Revision: 11905
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11905
Log:
added SMB2_FLUSH as opcode 7. Thanks to metze and volker for help
brainstorming this one.
Added:
branches/SAMBA_4_0/source/libcli/smb2/flush.c
Modified:
branches/SAMBA_4_0/source/include/structs.h
branches/SAMBA_4_0/source/libcli/smb2/config.mk
branches/SAMBA_4_0/source/libcli/smb2/smb2.h
branches/SAMBA_4_0/source/libcli/smb2/smb2_calls.h
branches/SAMBA_4_0/source/torture/smb2/connect.c
Changeset:
Modified: branches/SAMBA_4_0/source/include/structs.h
===
--- branches/SAMBA_4_0/source/include/structs.h 2005-11-25 11:12:08 UTC (rev
11904)
+++ branches/SAMBA_4_0/source/include/structs.h 2005-11-25 11:33:57 UTC (rev
11905)
@@ -357,4 +357,5 @@
struct smb2_write;
struct smb2_find;
struct smb2_trans;
+struct smb2_flush;
struct smb2_handle;
Modified: branches/SAMBA_4_0/source/libcli/smb2/config.mk
===
--- branches/SAMBA_4_0/source/libcli/smb2/config.mk 2005-11-25 11:12:08 UTC
(rev 11904)
+++ branches/SAMBA_4_0/source/libcli/smb2/config.mk 2005-11-25 11:33:57 UTC
(rev 11905)
@@ -15,5 +15,6 @@
find.o \
trans.o \
logoff.o \
- tdis.o
+ tdis.o \
+ flush.o
REQUIRED_SUBSYSTEMS = LIBCLI_RAW LIBPACKET
Added: branches/SAMBA_4_0/source/libcli/smb2/flush.c
===
--- branches/SAMBA_4_0/source/libcli/smb2/flush.c 2005-11-25 11:12:08 UTC
(rev 11904)
+++ branches/SAMBA_4_0/source/libcli/smb2/flush.c 2005-11-25 11:33:57 UTC
(rev 11905)
@@ -0,0 +1,70 @@
+/*
+ Unix SMB/CIFS implementation.
+
+ SMB2 client flush handling
+
+ Copyright (C) Andrew Tridgell 2005
+
+ This program is free software; you can redistribute it and/or modify
+ it under the terms of the GNU General Public License as published by
+ the Free Software Foundation; either version 2 of the License, or
+ (at your option) any later version.
+
+ This program is distributed in the hope that it will be useful,
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ GNU General Public License for more details.
+
+ You should have received a copy of the GNU General Public License
+ along with this program; if not, write to the Free Software
+ Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+*/
+
+#include includes.h
+#include libcli/raw/libcliraw.h
+#include libcli/smb2/smb2.h
+#include libcli/smb2/smb2_calls.h
+
+/*
+ send a flush request
+*/
+struct smb2_request *smb2_flush_send(struct smb2_tree *tree, struct smb2_flush
*io)
+{
+ struct smb2_request *req;
+
+ req = smb2_request_init_tree(tree, SMB2_OP_FLUSH, 0x18, 0);
+ if (req == NULL) return NULL;
+
+ SSVAL(req-out.body, 0x02, 0); /* pad? */
+ SIVAL(req-out.body, 0x04, io-in.unknown);
+ smb2_push_handle(req-out.body+0x08, io-in.handle);
+
+ smb2_transport_send(req);
+
+ return req;
+}
+
+
+/*
+ recv a flush reply
+*/
+NTSTATUS smb2_flush_recv(struct smb2_request *req, struct smb2_flush *io)
+{
+ if (!smb2_request_receive(req) ||
+ smb2_request_is_error(req)) {
+ return smb2_request_destroy(req);
+ }
+
+ SMB2_CHECK_PACKET_RECV(req, 0x04, False);
+
+ return smb2_request_destroy(req);
+}
+
+/*
+ sync flush request
+*/
+NTSTATUS smb2_flush(struct smb2_tree *tree, struct smb2_flush *io)
+{
+ struct smb2_request *req = smb2_flush_send(tree, io);
+ return smb2_flush_recv(req, io);
+}
Modified: branches/SAMBA_4_0/source/libcli/smb2/smb2.h
===
--- branches/SAMBA_4_0/source/libcli/smb2/smb2.h2005-11-25 11:12:08 UTC
(rev 11904)
+++ branches/SAMBA_4_0/source/libcli/smb2/smb2.h2005-11-25 11:33:57 UTC
(rev 11905)
@@ -164,6 +164,7 @@
#define SMB2_OP_TDIS 0x04
#define SMB2_OP_CREATE0x05
#define SMB2_OP_CLOSE 0x06
+#define SMB2_OP_FLUSH 0x07
#define SMB2_OP_READ 0x08
#define SMB2_OP_WRITE 0x09
#define SMB2_OP_TRANS 0x0b
Modified: branches/SAMBA_4_0/source/libcli/smb2/smb2_calls.h
===
--- branches/SAMBA_4_0/source/libcli/smb2/smb2_calls.h 2005-11-25 11:12:08 UTC
(rev 11904)
+++ branches/SAMBA_4_0/source/libcli/smb2/smb2_calls.h 2005-11-25 11:33:57 UTC
(rev 11905)
@@ -356,3 +356,10 @@
DATA_BLOB out;
} out;
};
+
+struct smb2_flush {
+ struct {
+ uint32_t unknown;
+ struct smb2_handle handle;
+ } in;
+};
Modified: branches/SAMBA_4_0/source/torture/smb2/connect.c
svn commit: samba r11906 - in branches/SAMBA_4_0/source/libcli/smb2: .
Author: tridge
Date: 2005-11-25 11:51:15 + (Fri, 25 Nov 2005)
New Revision: 11906
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11906
Log:
opcode 13 appears to be keepalive. Metze guessed this one :-)
Added:
branches/SAMBA_4_0/source/libcli/smb2/keepalive.c
Modified:
branches/SAMBA_4_0/source/libcli/smb2/config.mk
branches/SAMBA_4_0/source/libcli/smb2/smb2.h
Changeset:
Modified: branches/SAMBA_4_0/source/libcli/smb2/config.mk
===
--- branches/SAMBA_4_0/source/libcli/smb2/config.mk 2005-11-25 11:33:57 UTC
(rev 11905)
+++ branches/SAMBA_4_0/source/libcli/smb2/config.mk 2005-11-25 11:51:15 UTC
(rev 11906)
@@ -16,5 +16,6 @@
trans.o \
logoff.o \
tdis.o \
- flush.o
+ flush.o \
+ keepalive.o
REQUIRED_SUBSYSTEMS = LIBCLI_RAW LIBPACKET
Added: branches/SAMBA_4_0/source/libcli/smb2/keepalive.c
===
--- branches/SAMBA_4_0/source/libcli/smb2/keepalive.c 2005-11-25 11:33:57 UTC
(rev 11905)
+++ branches/SAMBA_4_0/source/libcli/smb2/keepalive.c 2005-11-25 11:51:15 UTC
(rev 11906)
@@ -0,0 +1,67 @@
+/*
+ Unix SMB/CIFS implementation.
+
+ SMB2 client keepalive handling
+
+ Copyright (C) Andrew Tridgell 2005
+
+ This program is free software; you can redistribute it and/or modify
+ it under the terms of the GNU General Public License as published by
+ the Free Software Foundation; either version 2 of the License, or
+ (at your option) any later version.
+
+ This program is distributed in the hope that it will be useful,
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ GNU General Public License for more details.
+
+ You should have received a copy of the GNU General Public License
+ along with this program; if not, write to the Free Software
+ Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+*/
+
+#include includes.h
+#include libcli/raw/libcliraw.h
+#include libcli/smb2/smb2.h
+#include libcli/smb2/smb2_calls.h
+
+/*
+ send a keepalive request
+*/
+struct smb2_request *smb2_keepalive_send(struct smb2_tree *tree)
+{
+ struct smb2_request *req;
+
+ req = smb2_request_init_tree(tree, SMB2_OP_KEEPALIVE, 0x04, 0);
+ if (req == NULL) return NULL;
+
+ SSVAL(req-out.body, 0x02, 0);
+
+ smb2_transport_send(req);
+
+ return req;
+}
+
+
+/*
+ recv a keepalive reply
+*/
+NTSTATUS smb2_keepalive_recv(struct smb2_request *req)
+{
+ if (!smb2_request_receive(req) ||
+ smb2_request_is_error(req)) {
+ return smb2_request_destroy(req);
+ }
+
+ SMB2_CHECK_PACKET_RECV(req, 0x04, False);
+ return smb2_request_destroy(req);
+}
+
+/*
+ sync keepalive request
+*/
+NTSTATUS smb2_keepalive(struct smb2_tree *tree)
+{
+ struct smb2_request *req = smb2_keepalive_send(tree);
+ return smb2_keepalive_recv(req);
+}
Modified: branches/SAMBA_4_0/source/libcli/smb2/smb2.h
===
--- branches/SAMBA_4_0/source/libcli/smb2/smb2.h2005-11-25 11:33:57 UTC
(rev 11905)
+++ branches/SAMBA_4_0/source/libcli/smb2/smb2.h2005-11-25 11:51:15 UTC
(rev 11906)
@@ -169,6 +169,7 @@
#define SMB2_OP_WRITE 0x09
#define SMB2_OP_TRANS 0x0b
#define SMB2_OP_CANCEL0x0c
+#define SMB2_OP_KEEPALIVE 0x0d
#define SMB2_OP_FIND 0x0e
#define SMB2_OP_NOTIFY0x0f
#define SMB2_OP_GETINFO 0x10
svn commit: samba r11907 - in branches/SAMBA_4_0/source/torture/smb2: .
Author: tridge
Date: 2005-11-25 11:51:47 + (Fri, 25 Nov 2005)
New Revision: 11907
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11907
Log:
added testing of SMB2 keepalive
Modified:
branches/SAMBA_4_0/source/torture/smb2/connect.c
Changeset:
Modified: branches/SAMBA_4_0/source/torture/smb2/connect.c
===
--- branches/SAMBA_4_0/source/torture/smb2/connect.c2005-11-25 11:51:15 UTC
(rev 11906)
+++ branches/SAMBA_4_0/source/torture/smb2/connect.c2005-11-25 11:51:47 UTC
(rev 11907)
@@ -200,7 +200,6 @@
h1 = torture_smb2_create(tree, test9.dat);
h2 = torture_smb2_create(tree, test9.dat);
-// h2 = torture_smb2_create(tree, test9test9test9t9.dat);
torture_smb2_write(tree, h1);
torture_smb2_close(tree, h1);
torture_smb2_close(tree, h2);
@@ -229,6 +228,12 @@
return False;
}
+ status = smb2_keepalive(tree);
+ if (!NT_STATUS_IS_OK(status)) {
+ printf(keepalive failed? - %s\n, nt_errstr(status));
+ return False;
+ }
+
talloc_free(mem_ctx);
return True;
svn commit: samba r11908 - in branches/SAMBA_4_0/source/wrepl_server: .
Author: metze Date: 2005-11-25 12:03:40 + (Fri, 25 Nov 2005) New Revision: 11908 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11908 Log: implement SGROUP merging, that passes the different owner tests (but only without socket_wrapper, I need to look at that later and then add the different_owner test to NBT-WINSREPLICATION-QUICK so that it'll be runned by make test) metze Modified: branches/SAMBA_4_0/source/wrepl_server/wrepl_apply_records.c Changeset: Sorry, the patch is too large (303 lines) to include; please use WebSVN to see it! WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11908
svn commit: samba-docs r866 - in trunk/smbdotconf/misc: .
Author: vlendec Date: 2005-11-25 12:32:05 + (Fri, 25 Nov 2005) New Revision: 866 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=samba-docsrev=866 Log: Document reset on zero vc Added: trunk/smbdotconf/misc/resetonzerovc.xml Changeset: Added: trunk/smbdotconf/misc/resetonzerovc.xml === --- trunk/smbdotconf/misc/resetonzerovc.xml 2005-11-17 17:59:42 UTC (rev 865) +++ trunk/smbdotconf/misc/resetonzerovc.xml 2005-11-25 12:32:05 UTC (rev 866) @@ -0,0 +1,28 @@ +samba:parameter name=reset on zero vc +context=S +type=boolean +advanced=1 developer=0 +xmlns:samba=http://www.samba.org/samba/DTD/samba-doc; +description + para + This boolean option controls whether an incoming session setup + should kill other connections coming from the same IP. This matches +the default Windows 2003 behaviour. + + Setting this parameter to yes becomes necessary when you have a flaky + network and windows decides to reconnect while the old connection + still has files with share modes open. These files become inaccessible + over the new connection. + + The client sends a zero VC on the new connection, and Windows 2003 + kills all other connections coming from the same IP. This way the + locked files are accessible again. + + Please be aware that enabling this option will kill connections behind + a masquerading router. + + /para +/description + +value type=defaultno/value +/samba:parameter
svn commit: samba r11910 - in branches/SAMBA_4_0/source/nbt_server/wins: .
Author: metze
Date: 2005-11-25 13:43:12 + (Fri, 25 Nov 2005)
New Revision: 11910
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11910
Log:
fix nbt_name_release and nbt_name_query, so that we pass the owned_released vs.
replica
winsrepl torture test
metze
Modified:
branches/SAMBA_4_0/source/nbt_server/wins/winsserver.c
Changeset:
Modified: branches/SAMBA_4_0/source/nbt_server/wins/winsserver.c
===
--- branches/SAMBA_4_0/source/nbt_server/wins/winsserver.c 2005-11-25
12:31:40 UTC (rev 11909)
+++ branches/SAMBA_4_0/source/nbt_server/wins/winsserver.c 2005-11-25
13:43:12 UTC (rev 11910)
@@ -236,11 +236,15 @@
uint16_t nb_flags = 0; /* TODO: ... */
status = winsdb_lookup(winssrv-wins_db, name, packet, rec);
- if (!NT_STATUS_IS_OK(status) || rec-state != WREPL_STATE_ACTIVE) {
- nbtd_negative_name_query_reply(nbtsock, packet, src);
- return;
+ if (!NT_STATUS_IS_OK(status)) {
+ goto notfound;
}
+ /*
+* for group's we always reply with
+* 255.255.255.255 as address, even if
+* the record is released or tombstoned
+*/
if (rec-type == WREPL_TYPE_GROUP) {
addresses = talloc_array(packet, const char *, 2);
if (addresses == NULL) {
@@ -249,16 +253,24 @@
}
addresses[0] = WINSDB_GROUP_ADDRESS;
addresses[1] = NULL;
- } else {
- addresses = winsdb_addr_string_list(packet, rec-addresses);
- if (addresses == NULL) {
- nbtd_negative_name_query_reply(nbtsock, packet, src);
- return;
- }
+ goto found;
}
+ if (rec-state != WREPL_STATE_ACTIVE) {
+ goto notfound;
+ }
+
+ addresses = winsdb_addr_string_list(packet, rec-addresses);
+ if (!addresses) {
+ goto notfound;
+ }
+found:
nbtd_name_query_reply(nbtsock, packet, src, name,
0, nb_flags, addresses);
+ return;
+
+notfound:
+ nbtd_negative_name_query_reply(nbtsock, packet, src);
}
/*
@@ -274,27 +286,65 @@
struct wins_server *winssrv = iface-nbtsrv-winssrv;
struct nbt_name *name = packet-questions[0].name;
struct winsdb_record *rec;
+ uint32_t modify_flags = 0;
+ uint8_t ret;
status = winsdb_lookup(winssrv-wins_db, name, packet, rec);
- if (!NT_STATUS_IS_OK(status) ||
- rec-state != WREPL_STATE_ACTIVE ||
- rec-type == WREPL_TYPE_GROUP) {
+ if (!NT_STATUS_IS_OK(status)) {
goto done;
}
- /* we only allow releases from an owner - other releases are
- silently ignored */
- if (winsdb_addr_list_check(rec-addresses, src-addr)) {
- const char *address =
packet-additional[0].rdata.netbios.addresses[0].ipaddr;
+ if (rec-state != WREPL_STATE_ACTIVE) {
+ goto done;
+ }
- DEBUG(4,(WINS: released name %s at %s\n, nbt_name_string(rec,
rec-name), address));
- winsdb_addr_list_remove(rec-addresses, address);
- if (rec-addresses[0] == NULL) {
+ /*
+* TODO: do we need to check if
+* src-addr matches
packet-additional[0].rdata.netbios.addresses[0].ipaddr
+* here?
+*/
+
+ /*
+* we only allow releases from an owner - other releases are
+* silently ignored
+*/
+ if (!winsdb_addr_list_check(rec-addresses, src-addr)) {
+ goto done;
+ }
+
+ DEBUG(4,(WINS: released name %s from %s\n, nbt_name_string(rec,
rec-name), src-addr));
+
+ switch (rec-type) {
+ case WREPL_TYPE_UNIQUE:
+ rec-state = WREPL_STATE_RELEASED;
+ break;
+
+ case WREPL_TYPE_GROUP:
+ rec-state = WREPL_STATE_RELEASED;
+ break;
+
+ case WREPL_TYPE_SGROUP:
+ winsdb_addr_list_remove(rec-addresses, src-addr);
+ /* TODO: do we need to take the ownership here? */
+ if (winsdb_addr_list_length(rec-addresses) == 0) {
rec-state = WREPL_STATE_RELEASED;
}
- winsdb_modify(winssrv-wins_db, rec, 0);
+ break;
+
+ case WREPL_TYPE_MHOMED:
+ winsdb_addr_list_remove(rec-addresses, src-addr);
+ /* TODO: do we need to take the ownership here? */
+ if (winsdb_addr_list_length(rec-addresses) == 0) {
+ rec-state = WREPL_STATE_RELEASED;
+ }
+ break;
}
+ ret = winsdb_modify(winssrv-wins_db, rec, modify_flags);
+ if (ret != NBT_RCODE_OK) {
+ DEBUG(1,(WINS: FAILED: released name %s at
svn commit: samba r11911 - in branches/SAMBA_4_0/source/torture/nbt: .
Author: metze Date: 2005-11-25 13:44:16 + (Fri, 25 Nov 2005) New Revision: 11911 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11911 Log: as we pass the owned_released vs. replica test now, run it with make test metze Modified: branches/SAMBA_4_0/source/torture/nbt/winsreplication.c Changeset: Modified: branches/SAMBA_4_0/source/torture/nbt/winsreplication.c === --- branches/SAMBA_4_0/source/torture/nbt/winsreplication.c 2005-11-25 13:43:12 UTC (rev 11910) +++ branches/SAMBA_4_0/source/torture/nbt/winsreplication.c 2005-11-25 13:44:16 UTC (rev 11911) @@ -9463,6 +9463,7 @@ ctx = test_create_conflict_ctx(mem_ctx, address); ret = test_conflict_same_owner(ctx); + ret = test_conflict_owned_released_vs_replica(ctx); talloc_free(mem_ctx);
svn commit: samba r11912 - in branches/SAMBA_4_0/source/nbt_server/wins: .
Author: metze Date: 2005-11-25 15:30:35 + (Fri, 25 Nov 2005) New Revision: 11912 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11912 Log: fix nbt_name_registration, there's still some minor stuff todo, e.g. to return the first address of the 0x1B address as first address in the 0x1C reply, and handle sgroup merge overflow of 25 addresses metze Modified: branches/SAMBA_4_0/source/nbt_server/wins/winsserver.c branches/SAMBA_4_0/source/nbt_server/wins/winswack.c Changeset: Sorry, the patch is too large (311 lines) to include; please use WebSVN to see it! WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11912
svn commit: samba r11913 - in branches/SAMBA_4_0/source/nbt_server/wins: .
Author: metze
Date: 2005-11-25 15:36:47 + (Fri, 25 Nov 2005)
New Revision: 11913
WebSVN:
http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=sambarev=11913
Log:
if we have a UNIQUE name with more than 1 address,
it becomes implicit an MHOMED record
metze
Modified:
branches/SAMBA_4_0/source/nbt_server/wins/winswack.c
Changeset:
Modified: branches/SAMBA_4_0/source/nbt_server/wins/winswack.c
===
--- branches/SAMBA_4_0/source/nbt_server/wins/winswack.c2005-11-25
15:30:35 UTC (rev 11912)
+++ branches/SAMBA_4_0/source/nbt_server/wins/winswack.c2005-11-25
15:36:47 UTC (rev 11913)
@@ -81,6 +81,11 @@
rec-expire_time);
if (rec-addresses == NULL) goto failed;
+ /* if we have more than one address, this becomes implicit a MHOMED
record */
+ if (winsdb_addr_list_length(rec-addresses) 1) {
+ rec-type = WREPL_TYPE_MHOMED;
+ }
+
winsdb_modify(state-winssrv-wins_db, rec, WINSDB_FLAG_ALLOC_VERSION |
WINSDB_FLAG_TAKE_OWNERSHIP);
DEBUG(4,(WINS: accepted registration of %s with address %s\n,
svn commit: samba-docs r867 - in trunk/Samba3-ByExample: .
Author: jht Date: 2005-11-25 18:47:42 + (Fri, 25 Nov 2005) New Revision: 867 WebSVN: http://websvn.samba.org/cgi-bin/viewcvs.cgi?view=revroot=samba-docsrev=867 Log: Fix typos. Modified: trunk/Samba3-ByExample/SBE-Appendix1.xml Changeset: Modified: trunk/Samba3-ByExample/SBE-Appendix1.xml === --- trunk/Samba3-ByExample/SBE-Appendix1.xml2005-11-25 12:32:05 UTC (rev 866) +++ trunk/Samba3-ByExample/SBE-Appendix1.xml2005-11-25 18:47:42 UTC (rev 867) @@ -617,14 +617,14 @@ steppara Install the files shown in link linkend=sbehap-ldifpata/ and link linkend=sbehap-ldifpatb/ into the directory - filename/etc/openldap/SambaInit/Init-ldif.pat./filename These two files are + filename/etc/openldap/SambaInit/./filename These two files are parts A and B, respectively, of the filenameinit-ldif.pat/filename file. /para/step steppara Change to the filename/etc/openldap/SambaInit/filename directory. Execute the following: screen -rootprompt; ./SMBLDAP-ldif-preconfig.sh +rootprompt; sh SMBLDAP-ldif-preconfig.sh How do you wish to refer to your organization? Suggestions:
Build status as of Sat Nov 26 00:00:02 2005
URL: http://build.samba.org/ --- /home/build/master/cache/broken_results.txt.old 2005-11-25 00:00:12.0 + +++ /home/build/master/cache/broken_results.txt 2005-11-26 00:00:12.0 + @@ -1,17 +1,17 @@ -Build status as of Fri Nov 25 00:00:01 2005 +Build status as of Sat Nov 26 00:00:02 2005 Build counts: Tree Total Broken Panic -ccache 36 5 0 -distcc 36 4 0 -lorikeet-heimdal 32 32 0 -ppp 18 0 0 -rsync35 2 0 +ccache 35 5 0 +distcc 15 2 0 +lorikeet-heimdal 30 16 0 +ppp 17 0 0 +rsync15 2 0 samba3 0 0 samba-docs 0 0 0 -samba4 35 23 0 -samba_3_036 7 0 +samba4 35 20 1 +samba_3_036 8 0 smb-build30 5 0 talloc 34 14 0 -tdb 33 4 0 +tdb 29 4 0
