Re: [Samba] Samba - getting long share names from Netapp
Hi Peter, If you create a share >12 chars long testparm gives you this message: WARNING: You have some share names that are longer than 12 characters. These may not be accessible to some older clients. So I imagine that in the past this hasn't worked at all. It is strange though that smbclient would ignore the name entirely without even printing some of it (at least this is what happens in 3.0.21rc2.) For me though the 'net' command worked, I ran: $ net -S server -U username rpc share And providing 'username' was a member of the domain it gave me a list of shares, including those longer than 12 characters (however this may be because I was connecting to a Samba machine that had joined the domain.) Cheers, Adam. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Slightly OT - Samba 3 and Windows DNS
[EMAIL PROTECTED] wrote: Dear All Has any one had any success with getting a Linux box to register with a DNS server hosted on a Windows 2k3 server? This is not samba related, but anyway: I think one would let the DHCP server do the registration in DNS, not the clients themselves. This would work both for Linux and Windows clients obtaining their IP number thru DHCP. Mogens -- Mogens Kjaer, Carlsberg A/S, Computer Department Gamle Carlsberg Vej 10, DK-2500 Valby, Denmark Phone: +45 33 27 53 25, Fax: +45 33 27 47 08 Email: [EMAIL PROTECTED] Homepage: http://www.crc.dk -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba - getting long share names from Netapp
We defined a share, sales_cifs_test, on our NetApp server. Note that the length of the name is longer than 13 characters. We can see the share with Microsoft Explorer. We can mount the share from Linux using smbmount. What we want to do is to get a list of shares from NetApp. The tools that can do this are the samba programs smbclient and net. Smbclient will not show names longer than 13 characters. The following command gives a share list, but again, does not include names longer than 13 characters. net net -W YOURDOMAIN --user='user%password' -w YOURDOMAIN -S NETAPP_SERVER_IP rap share The command net net -W YOURDOMAIN --user='user%password' -w YOURDOMAIN -S NETAPP_SERVER_IP rpc share is the samba command that gives a list of shares, even if they have long names. The problem is that we can't get it to access NetApp successfully. We have searched both the Netapp site and the Samba site and can't find anything that is relevant. We would really appreciate an answer as to why the command is failing. Peter -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Sid S-0-0 is not in a valid format
Hi all, I'm trying to get winbind going on a different PC to the one I've already got working, but I can't figure out why winbind won't work on this other PC. It mostly works (wbinfo works, net ads testjoin reports OK) but "getent passwd" doesn't return anything. The winbind log reports this: [2006/01/17 15:27:15, 1] nsswitch/winbindd.c:main(976) winbindd version 3.0.21rc2 started. Copyright The Samba Team 2000-2004 [2006/01/17 15:27:15, 0] lib/util_sid.c:string_to_sid(285) string_to_sid: Sid S-0-0 is not in a valid format. [2006/01/17 15:27:15, 0] nsswitch/winbindd_util.c:trustdom_recv(259) Got invalid trustdom response [2006/01/17 15:27:17, 0] nsswitch/winbindd.c:request_len_recv(554) request_len_recv: Invalid request size received: 1824 [2006/01/17 15:27:17, 0] nsswitch/winbindd.c:request_len_recv(554) request_len_recv: Invalid request size received: 1824 Does anyone have any idea what that means and how I can fix it? I'm a bit stuck - running winbind with -d9 doesn't help and it doesn't print any debug messages when it receives a request so I can't see what's happening. Thanks, Adam. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] net rpc vampire -> segmentation fault
Antonius Aji wrote: > > Thanks for the reply. > > You're right ... it is becoming common problem in 3.0.21a In one of > the message: it says that there is a patch to solve this problem in > bugzilla repository. I am still searching that patch in bugzilla. If > it is not found, I will use older version. > > rgds, > antonius aji Not a bad idea at all... Download old version; 3.0.14a comes to mind as one that had a working vampire. Vampire your users across and then upgrade once everything is working to 3.0.21a . Cheers GS -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] net rpc vampire -> segmentation fault
Geoffrey Scott wrote: > snip -- snip -- snip > > > It looks like it's currently a common problem. See: > > http://lists.samba.org/archive/samba/2006-January/subject.html > > And search for the word vampire using your web browser. So it's > probably not you that's at fault.. Thanks for the reply. You're right ... it is becoming common problem in 3.0.21a In one of the message: it says that there is a patch to solve this problem in bugzilla repository. I am still searching that patch in bugzilla. If it is not found, I will use older version. rgds, antonius aji -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] net rpc vampire -> segmentation fault
Antonius Aji wrote: > Hi all, > > I am trying to migrate NT4 domain to Samba-3 PDC, yet I stuck at > migrating NT4 PDC information using "net rpc vampire" -- giving > "segmentation fault". Any help? It looks like it's currently a common problem. See: http://lists.samba.org/archive/samba/2006-January/subject.html And search for the word vampire using your web browser. So it's probably not you that's at fault.. Cheers GS -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba 3.0.20b running in Debian Server
Hi guys, i have problem with the Samba version 3.0.20b running in Debian 3.1Sarge Server, my users make files and directory but dont change the directorys and files. My smb.conf file is: [global] wins support=yes os level=65 local master=true preferred master=true domain master=true encrypt passwords = true security = user netbios name = SERVER netbios aliases = Servidor LinuxServer workgroup = Workgroup time server= true log level = 3 veto files = /*.mp3/*.divx/*.eml/*.avi/*.pif/*.mpeg/*.mpg/*.bak # Share == ## # Desenvolvimento PHP Web ## [WebDeveloper] comment = Desenvolvimento Web path=/var/www/phpdeveloper/ valid users = @web read list = @web write list = @web #force group = @web read only = no create mask = 0774 directory mask = 0775 writable = yes The directorys and shared volume have the permission OS OK, setting for 775. Please i need help ! Thanks" -- André Jaccon Engenharia da Computação 055 11 9488 7978 - São Paulo - S.P -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] net rpc vampire -> segmentation fault
Hi all, I am trying to migrate NT4 domain to Samba-3 PDC, yet I stuck at migrating NT4 PDC information using "net rpc vampire" -- giving "segmentation fault". Any help? I use: Debian Linux, Samba 3.0.21a-Debian The steps that I did: a. In NT's server manager, I created GL-BACKUP as BDC b. Here is my smb.conf [global] workgroup = GLNET netbios name = GL-BACKUP passdb backend = tdbsam domain master = No domain logons = Yes os level = 33 wins server = 172.16.0.22 [linuxstorage] comment = backup storage path = /linuxstorage valid users=Administrator read only=Yes [backup-02] comment = backup storage - 2 for gl-dwh, smoothwall, gl-web, gl-nav path = /home/backup valid users=Administrator read only=yes c. Restart Samba: # /etc/init.d/samba restart d. Join the GLNET domain: # net rpc join -S GL-MAIN4 -U Administrator%passwdxx --> Joined domain GLNET e. Try to copy user account of PDC: # net rpc vampire -S GL-MAIN4 -W GLNET -U Administrator%passwdx --> Fetching DOMAIN database --> Segmentation Fault f. Check accounts: #pdbedit -L --> it lists my local account of samba server, it means that the process of 'vampire' did not succed Test domain join: # net rpc testjoin --> Join to 'GLNET' is OK Test status of Samba: # smbstatus --> Samba version 3.0.21a-Debian --> PID . Any clue what should I do? rgds, antonius aji -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] samba 3.0.21 PDC with LDAP problems
Dear all I have a system with samba PDC with LDAP, samba version being 3.0.21 and openLDAP version 2.2.13 i have another linux system with samba version being 3.0.10 which is a member server to samba pdc. i have configured nss_ldap, and ldap.conf configured on the member server pointing to my ldap server on samba pdc The samba PDC LDAP is configured for simple bind . 1 )i have been getting the following errors: on the member server when i issue the command net rpc info i get the following error rpc_parse/parse_prs.c prs_mem_get(537) prs_mem_get: reading data size 14418130 would overrun buffer what does the above error mean 2) on the domain member server i get the error: nss_wins ldap_simple_bind can't contact LDAP server 3) And often on the samba PDC /var/log/message i get the following error init_sam_from_ldap , Failed to get password history for user 4) on samba PDC , With LDAP , i get the following error, slapd[] bdb_equality_candidates : (uid) index_param failed bdb_equality_candidates : (sambaGroupType) index_parm failed i believe the above error means that there some indexing problem with my slapd.conf file in my samba PDC, but what exaclty that is causing the problem , unable to figure it out. my slapd.conf of samba pdc is ### include/etc/openldap/schema/core.schema include/etc/openldap/schema/cosine.schema include/etc/openldap/schema/inetorgperson.schema include/etc/openldap/schema/nis.schema include/etc/openldap/schema/samba.schema allow bind_v2 pidfile/var/run/slapd.pid argsfile/var/run/slapd.args ### # ldbm and/or bdb database definitions ### databasebdb suffix"dc=msdpl,dc=com" rootdn"cn=manager,dc=msdpl,dc=com" rootpwsecret idletimeout 30 timelimit 30 directory/var/lib/ldap index objectClass eq,pres index ou,cn,mail,surname,givenname eq,pres,sub index loginShelleq,pres index nisMapName,nisMapEntryeq,pres,sub index displayName eq,pres,sub index uidNumber eq index gidNumber eq index memberUID eq index sambaSID eq index sambaPrimaryGroupSID eq index default sub access to attrs=userPassword,sambaLMPassword,sambaNTPassword,sambaPwdLastSet,sambaPwdMustChange by dn="cn=Domain Admins,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Domain Users,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Domain Guests,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Administrators,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Account Operators,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Print Operators,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Backup Operators,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Replicators,ou=Groups,dc=msdpl,dc=com" write by anonymous auth by * none # some attributes need to be readable anonymously so that 'id user' can answer correctly access to attrs=objectClass,entry,homeDirectory,uid,uidNumber,gidNumber,memberUid by dn="cn=nns,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Domain Admins,ou=Groups,dc=msdpl,dc=com" write by * read # somme attributes can be writable by users themselves access to attrs=description,telephoneNumber,roomNumber,homePhone,loginShell,gecos,cn,sn,givenname by dn="cn=nns,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Domain Admins,ou=Groups,dc=msdpl,dc=com" write by * read # some attributes need to be writable for samba access to dn.base="dc=msdpl,dc=com" by dn="cn=nns,ou=Groups,dc=msdpl,dc=com" write by dn="uid=kk1438,ou=People,dc=msdpl,dc=com" write by dn="cn=Domain Admins,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Administrators,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Account Operators,ou=Groups,dc=msdpl,dc=com" write by * none # samba need to be able to create new users account access to dn="ou=People,dc=msdpl,dc=com" by dn="cn=nns,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Domain Admins,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Administrators,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Account Operators,ou=Groups,dc=msdpl,dc=com" write by * none # samba need to be able to create new groups account access to dn="ou=Groups,dc=msdpl,dc=com" by dn="cn=nns,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Domain Admins,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Administrators,ou=Groups,dc=msdpl,dc=com" write by dn="cn=Account Operators,ou=Groups,dc=msdpl,dc=com" write by * none # samba need to be able to create new computers account access to dn="ou=Computers,dc=msdpl,dc=com"
Re: [Samba] Who or what is IP client 0.0.0.0?
On 1/16/06, James Peach <[EMAIL PROTECTED]> wrote: > So, you have one or more clients on your network that disconnects from the > server unexpectedly. You might be able to track them down by increasing > the log level. This is typical; Windows clients attempt to connect on both ports 139 and 445, and when one succeeds, they immediately close the other. The error message is harmless and can be ignored, or you can configure Samba to only listen on one port using the smb ports option in smb.conf. Josh Kelley -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Can anyone get winbind to update group membership?
Hi all, Does this work for anyone out there? I've never gotten it to work: (the set up is Samba as a member of an Active Directory run by Windows servers.) -- 1. Pick an NT group that's been there since you installed Samba, and of which you are a member. I'll call it DOMAIN\Oldgroup. 2. Run "chgrp DOMAIN\\Oldgroup test" then "chmod g+w,o-w test" 3. Access the 'test' folder from Windows via Samba and observe you can create files in this folder, as you are a member of a group with write access. -- 4. Either make a new NT group, or pick one that you're not a member of. I'll call it DOMAIN\Newgroup. 5. Run "chgrp DOMAIN\\Newgroup test" 6. Access the 'test' folder and observe that you can't write to the folder as you don't have access to it any more (since you're no longer a member of the group that has write access.) -- 7. Go back and add yourself to DOMAIN\\Newgroup. 8. Run "getent group DOMAIN\\Newgroup" and observe that you're now a member of this group. 9. Access the 'test' folder again, but this time notice that you still can't write to the folder, even though you're a member of a group that *has* write access. -- I can't for the life of me work out why Samba won't let me write to the share once I've added myself (or anyone else for that matter) to a group that was created after Samba was first run. It doesn't matter how long you leave it, Samba will never let you access the folder. Is anyone else able to do this? Thanks, Adam. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] One SAMBA Server, two networks.
At 01/16/06 08:12, Robert Adkins wrote: Hello, I am making some changes to our network to split the front office and back office onto two seperate subnets, but need to keep the same Samba server in place serving both subnets. What I am intending to do is install an additional network card into the server and address this new card for the new subnet. What I am looking to do is properly broadcast the server's samba status/availability across both networks and properly serve files/domain controller data across both subnets. To do this, I intend to duplicate all the entries in the lmhosts file in /etc/samba with the only difference being the network that the server is broadcasting on. Will this work, or is this more complicated then I am currently seeing? -- Regards, Robert AdkinsIT Manager/Buyer Impel Industries, inc. 586-254-5800 I've gotten most of this to work by using the example in Chapt 3 of the Samba-3 by Example book. However, I'm stuck on being able to get access to only some of my shares--for the ones to which I can't connect, I get a BAD_NETWORK_NAME error. If you get past this, please post your solution here. Eric Hines There is no nonsense so errant that it cannot be made the creed of the vast majority by adequate governmental action. --Bertrand Russell -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba and authentication
Bruno Gola wrote: Good morning (brazil ;-]) everyone, I'm in trouble and i need your help! I have a samba 3 running on a linux box (debian 3.1 sarge) as PDC (domain is EVERSYSTEMS_INF). I dont know if it's possible, but, i need that samba controls the authentication on some windows machines, an example: i have a machine A,B and C, and all of them are part of theont machine A and B, but not in C. I'm having trouble understanding what your requesting. You have 3 machines A, B, and C. after that I'm not sure what your saying. Is it: machines A and B are part of the Domain and C is not. I don't know what theont is. Sorry the issue is too complex without understanding the network better. And a user brunog that can login on machine A and C, not in B. Note that my windows machines are already authenticating against samba. Is this possible with samba? Thanks, -- Bruno Fialho Marques Gola <[EMAIL PROTECTED]> Cel: (11) 9294-5883 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Cannot login to domain network shares
Philip Washington wrote: Whenever I go to the Network icon on the Suse10 desktop, I can see the network computers, but when I click on a share I can't login. I enter user "Domain\User1" or "Domain+User1" password "secret" and it doesn't log me in. The application on RH/Fedora is different but it seems to work and I am wondering why it works there but not on Suse. Sorry wrong group. Meant to send this to the suse group. But hey if you have the answer I'll take it. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] all winbind members of same group
hi there, i'm trying to configure samba so that of my winbind users are added to the same group. can someone tell me how to do that? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Who or what is IP client 0.0.0.0?
On 1/15/06, taso <[EMAIL PROTECTED]> wrote: > Samba 3.0.21a > > Getting a fair bit of activity logged from IP 0.0.0.0 > What does it mean? > > [2006/01/14 13:42:23, 0] lib/util_sock.c:get_peer_addr(1222) >getpeername failed. Error was Transport endpoint is not connected > [2006/01/14 13:42:23, 0] lib/access.c:check_access(328) > [2006/01/14 13:42:23, 0] lib/util_sock.c:get_peer_addr(1222) >getpeername failed. Error was Transport endpoint is not connected >Denied connection from (0.0.0.0) > [2006/01/14 13:42:23, 1] smbd/process.c:process_smb(1187) > [2006/01/14 13:42:23, 0] lib/util_sock.c:get_peer_addr(1222) >getpeername failed. Error was Transport endpoint is not connected >Connection denied from 0.0.0.0 > [2006/01/14 13:42:23, 0] lib/util_sock.c:write_data(554) >write_data: write failure in writing to client 0.0.0.0. Error Connection > reset by peer > [2006/01/14 13:42:23, 0] lib/util_sock.c:send_smb(762) >Error writing 5 bytes to client. -1. (Connection reset by peer) > [2006/01/14 13:54:23, 0] lib/util_sock.c:get_peer_addr(1222) 0.0.0.0 is not the address of any client. This log snippet shows that smbd is calling the getpeername function to retrieve the IP address of the client. This fails because the client has already disconnected (this is what "transport endpoint is not connected" means). So, you have one or more clients on your network that disconnects from the server unexpectedly. You might be able to track them down by increasing the log level. -- James Peach | [EMAIL PROTECTED] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Cannot login to domain network shares
Whenever I go to the Network icon on the Suse10 desktop, I can see the network computers, but when I click on a share I can't login. I enter user "Domain\User1" or "Domain+User1" password "secret" and it doesn't log me in. The application on RH/Fedora is different but it seems to work and I am wondering why it works there but not on Suse. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] HELP
Dear Developers! I have latest release of Samba and I have trouble.. my system charset is koi8-r and smb.conf is: [global] workgroup = ALEXSOFT server string = Samba security = share log file = /var/log/samba.%m max log size = 50 dns proxy = no restrict anonymous = no domain master = no preferred master = no max protocol = NT ldap ssl = No server signing = Auto wins server = 192.168.11.1 hostname lookups = yes unix charset = KOI8-R #display charset = KOI8-R dos charset = CP866 enhanced browsing = no browse list = no large readwrite = no unix extensions = no nt status support = no nt pipe support = no [soft_win32] case sensitive = no msdfs proxy = no path = /mnt/c/soft_win32/ guest ok = yes [flashes] case sensitive = no guest ok = yes msdfs proxy = no path = /mnt/c/Raznoe/Flashes But in konqueror shared folder named on Russian like as Äí¼Ñ¡¡¿¬ In English thats work fine I use all methods in forums and Howto's. but it's not workI think it's bug( HELP ME PLEASE!!! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Problem getting share list from NetApp
We defined a share, sales_cifs_test, on our NetApp server. Note that the length of the name is longer than 13 characters. We can see the share with Microsoft Explorer. We can mount the share from Linux using smbmount. What we want to do is to get a list of shares from NetApp. The tools that can do this are the samba programs smbclient and net. Smbclient will not show names longer than 13 characters. The following command gives a share list, but again, does not include names longer than 13 characters. net net -W YOURDOMAIN --user='user%password' -w YOURDOMANIN -S NETAPP_SERVER_IP rap share The command net net -W YOURDOMAIN --user='user%password' -w YOURDOMANIN -S NETAPP_SERVER_IP rpc share is the samba command that gives a list of shares, even if they have long names. The problem is that we can't get it to access NetApp successfully. We have searched both the Netapp site and the Samba site and can't find anything that is relevant. We would really appreciate an answer as to why the command is failing. Thanks, Peter -- Peter Gordon Phone: +972 544 438029 Email: [EMAIL PROTECTED] Web: www.pg-consultants.com -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] smbpasswd and rpcclient differences between 3.0.14a and 3.0.21a
Hi all, The problem is that from version 3.0.21a the commands rpcclient and smbpasswd does't work as before (and as I wish), when connecting to remote Windows2000 domain controller. Below are some tests and outputs, which show the command outputs. In both cases samba is compiled from original sources. OS - Debian testing and verified on Ubuntu. RPCLIENT: ./rpcclient -c 'queryuser 0x2270' -U admin%password PDC 3.0.14a returns neccessary user data, like: User Name : ... ... ... logon_hrs[0..21]... 3.0.21a returns: === result was NT_STATUS_NONE_MAPPED === (other tested rpclient commands works as expected) SMBPASSWD: in version 3.0.21a it is impossible to change expired passwords and passwords, where the option "User must change password at next logon" is enabled. 3.0.21a: == ./smbpasswd -r PDC -U domuser Old SMB password: New SMB password: Retype new SMB password: cli_pipe_validate_current_pdu: RPC fault code NT code 0x0005 received from remote machine PDC pipe \samr fnum 0x4002! machine PDC rejected the password change: Error was : NT code 0x0005. Failed to modify password entry for user domuser == 3.0.14a: == ./smbpasswd -r PDC -U domuser Old SMB password: New SMB password: Retype new SMB password: Password changed for user domuser on PDC. == Actually both commands are very useful, we are used it for our tasks (to query user data and change passwords from web form), but now with new versions they don't work as (we) expected. Or I'm something missing, and both tasks can be accomplished in different ways? Have a nice day! Gints Neimanis -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ACL set up yet Security Properties not sticking.
[EMAIL PROTECTED] wrote: thanks again James! I'm downloading the 2.6.15-git12 source/patch and will give it a go as the changelog shows this patch was rolled in. Not being a developer, this may be a stupid question and I woudln't know it , can I take proc.c from the page you supplied, replace the existing one in, and recompile my 2.6.5-7.191 kernel from source? I guess what i'm asking is if it is version sensitive. I ask as this is a sles9 box under support; I'd rather try and keep things as much the way it was shipped as possible. thanks james for your help, greg Greg, It appears the patch is across all versions. You should be able to patch your current kernel, if you have the source. I'm also not sure if this is the exact problem. I build my own kernel from the 2.4.x source tree frequently and update my RPMs by hand, so I try to keep track of the patches. This one sticks out; because it involves the smb file sharing and possible corruption with the file permissions. Good Luck, James Kosin -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ACL set up yet Security Properties not sticking.
thanks again James! I'm downloading the 2.6.15-git12 source/patch and will give it a go as the changelog shows this patch was rolled in. Not being a developer, this may be a stupid question and I woudln't know it , can I take proc.c from the page you supplied, replace the existing one in, and recompile my 2.6.5-7.191 kernel from source? I guess what i'm asking is if it is version sensitive. I ask as this is a sles9 box under support; I'd rather try and keep things as much the way it was shipped as possible. thanks james for your help, greg > > > [EMAIL PROTECTED] wrote: >> Its actualy a 2.6 kernel James, but thanks for the quick reply. >> >> Have a great day, >> greg >> >> Linux exec 2.6.5-7.191-default #1 Tue Jun 28 14:58:56 UTC 2005 i686 i686 >> i386 GNU/Linux >> >> == > > Greg, > > The same patch applies to the 2.6.x kernel tree. > > http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=ac34dd052400b1e63aa8e711a13c0670943296fd;hp=a12dea7af93ae83bd868c0dc09367090ead7cc1e > > James Kosin > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ACL set up yet Security Properties not sticking.
[EMAIL PROTECTED] wrote: Its actualy a 2.6 kernel James, but thanks for the quick reply. Have a great day, greg Linux exec 2.6.5-7.191-default #1 Tue Jun 28 14:58:56 UTC 2005 i686 i686 i386 GNU/Linux == Greg, The same patch applies to the 2.6.x kernel tree. http://www.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commitdiff;h=ac34dd052400b1e63aa8e711a13c0670943296fd;hp=a12dea7af93ae83bd868c0dc09367090ead7cc1e James Kosin -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ACL set up yet Security Properties not sticking.
Its actualy a 2.6 kernel James, but thanks for the quick reply. Have a great day, greg Linux exec 2.6.5-7.191-default #1 Tue Jun 28 14:58:56 UTC 2005 i686 i686 i386 GNU/Linux == > [EMAIL PROTECTED] wrote: >> Hi, >> >> On a windows client if I attempt to modify the permissions on a file >> which >> resides on a linux server, when I hit "apply or ok" my changes are >> lost. >> >> Doing it from the unix cli (using setfacl) works as expected and the >> changes are not lost. >> >> Yet on windows if I right click - properties - Security. select add, >> add >> a user or group, hit Apply and the user/group I just added is removed. >> >> ACL support is properly configured as far as I am aware on the linux >> file >> server. >> >> any one with any idea as to what I should look at, that would be >> great, >> thanks! >> >> It has been a bummer modifying all the permission change requests by >> hand. > > What version of kernel are you using? > > There is a patch to 2.4.x kernel tree here: > http://www.kernel.org/git/?p=linux/kernel/git/marcelo/linux-2.4.git;a=commitdiff;h=5739b33aeee122d6096f93afdf5c8ea8f7e8e094;hp=e8e0b7c821da4287c8ca837190c7f34588df76e2 > > This could be the problem. > > James Kosin > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE: [Samba] Solaris 9/Samba 3.0.21a
It looks like this may have solved the problem... I have checked a couple of users that were experiencing the problem, and things seem to be working. Thanks for the pointer, Jerry... You're a lifesaver! Alex Moen Operations Technology Specialist NDTC > -Original Message- > From: Gerald (Jerry) Carter [mailto:[EMAIL PROTECTED] > Sent: Monday, January 16, 2006 12:51 PM > To: Alex Moen > Cc: samba@lists.samba.org > Subject: Re: [Samba] Solaris 9/Samba 3.0.21a > > > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > Alex Moen wrote: > > > === > > [2006/01/16 09:32:12, 0] lib/fault.c:fault_report(37) > > INTERNAL ERROR: Signal 10 in pid 12203 (3.0.21a) > > Please read the Trouble-Shooting section of the Samba3-HOWTO > > [2006/01/16 09:32:12, 0] lib/fault.c:fault_report(39) > > From: http://www.samba.org/samba/docs/Samba3-HOWTO.pdf > > [2006/01/16 09:32:12, 0] lib/fault.c:fault_report(40) > > === > > [2006/01/16 09:32:12, 0] lib/util.c:smb_panic2(1554) > > PANIC: internal error > > [2006/01/16 09:32:12, 1] smbd/service.c:make_connection_snum(666) > > mikes_pc (192.168.1.180) connect to service mike > initially as user mike > > (uid=100, gid=100) (pid 12208) > > --- > > > Please test the patch at > https://bugzilla.samba.org/show_bug.cgi?id=3346 > > > > Thanks. > > > > > > > > cheers, jerry > -BEGIN PGP SIGNATURE- > Version: GnuPG v1.4.2 (GNU/Linux) > Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org > > iD8DBQFDy+r7IR7qMdg1EfYRAjBkAKDtYTVNVjGFqIJ/AdJJ+l/y8rQyFgCfdKty > 73iULp5GkwOWSfkpxm0+ocU= > =4PPs > -END PGP SIGNATURE- > -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ACL set up yet Security Properties not sticking.
[EMAIL PROTECTED] wrote: Hi, On a windows client if I attempt to modify the permissions on a file which resides on a linux server, when I hit "apply or ok" my changes are lost. Doing it from the unix cli (using setfacl) works as expected and the changes are not lost. Yet on windows if I right click - properties - Security. select add, add a user or group, hit Apply and the user/group I just added is removed. ACL support is properly configured as far as I am aware on the linux file server. any one with any idea as to what I should look at, that would be great, thanks! It has been a bummer modifying all the permission change requests by hand. What version of kernel are you using? There is a patch to 2.4.x kernel tree here: http://www.kernel.org/git/?p=linux/kernel/git/marcelo/linux-2.4.git;a=commitdiff;h=5739b33aeee122d6096f93afdf5c8ea8f7e8e094;hp=e8e0b7c821da4287c8ca837190c7f34588df76e2 This could be the problem. James Kosin -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] differences between restart and reload
if you really want to kill all connected clients and force them to reread the smb.conf you should use restart i always try to avoid restart in a productive env because some apps my fail or open files may got lost greez Fabio wrote: Hi! I read in samba howto that "samba restart" command restarts both daemons nmbd and smbd while "samba reload" command force smbd to read smb.conf. question: when is important restart samba daemons after changed smb.conf? in case of changed of global section? thanks in advance, Fabio -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] ACL set up yet Security Properties not sticking.
Hi, On a windows client if I attempt to modify the permissions on a file which resides on a linux server, when I hit "apply or ok" my changes are lost. Doing it from the unix cli (using setfacl) works as expected and the changes are not lost. Yet on windows if I right click - properties - Security. select add, add a user or group, hit Apply and the user/group I just added is removed. ACL support is properly configured as far as I am aware on the linux file server. any one with any idea as to what I should look at, that would be great, thanks! It has been a bummer modifying all the permission change requests by hand. == samba is built with ACL support: smbd -b |grep ACL HAVE_SYS_ACL_H HAVE_POSIX_ACLS == Kernel has ACL support built in as does the file system: CONFIG_NFS_ACL=y CONFIG_NFSD_ACL=y CONFIG_NFS_ACL_SUPPORT=y CONFIG_REISERFS_FS_POSIX_ACL=y CONFIG_FS_POSIX_ACL=y == mount returns: /dev/mapper/VG01-LV01 on /export/exec type reiserfs (rw,acl,user_xattr) === if I modify a files ACL from the command line (local to the server) the changes stick and are viewable on the windows client: exec:/export/exec/foobar # getfacl complight.jpg # file: complight.jpg # owner: greg # group: users user::rw- group::r-x group:systems_smb:r-x mask::rwx other::--- exec:/export/exec/foobar # setfacl -m user:john:rwx complight.jpg exec:/export/exec/foobar # getfacl complight.jpg # file: complight.jpg # owner: greg # group: users user::rw- user:john:rwx group::r-x group:systems_smb:r-x mask::rwx other::--- === The domain is controled by a samba pdc server running version 3.0.8, all linux samba servers run in DOMAIN mode. I'll be glad to provide further information if required. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: NFS4 as SMB share
Al Active wrote: Greetings all, Can Samba export SMB file and directory shares off a NFS-Clinet's NFSv4 shares? The Samba is on the NFSv4-Client. The NFS-Share is mounted on /Data on the NFS-Client/Samba Server? Any rights issues to consider? You certainly can, but it could be potentially slow/problematic dealing with file locking. My last attempt (using a linux (rhel3) NFSv3 server) yielded very poor file locking performance. -- Rex -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Solaris 9/Samba 3.0.21a
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Alex Moen wrote: > === > [2006/01/16 09:32:12, 0] lib/fault.c:fault_report(37) > INTERNAL ERROR: Signal 10 in pid 12203 (3.0.21a) > Please read the Trouble-Shooting section of the Samba3-HOWTO > [2006/01/16 09:32:12, 0] lib/fault.c:fault_report(39) > From: http://www.samba.org/samba/docs/Samba3-HOWTO.pdf > [2006/01/16 09:32:12, 0] lib/fault.c:fault_report(40) > === > [2006/01/16 09:32:12, 0] lib/util.c:smb_panic2(1554) > PANIC: internal error > [2006/01/16 09:32:12, 1] smbd/service.c:make_connection_snum(666) > mikes_pc (192.168.1.180) connect to service mike initially as user mike > (uid=100, gid=100) (pid 12208) > --- Please test the patch at https://bugzilla.samba.org/show_bug.cgi?id=3346 Thanks. cheers, jerry -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFDy+r7IR7qMdg1EfYRAjBkAKDtYTVNVjGFqIJ/AdJJ+l/y8rQyFgCfdKty 73iULp5GkwOWSfkpxm0+ocU= =4PPs -END PGP SIGNATURE- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] NFS4 as SMB share
Greetings all, Can Samba export SMB file and directory shares off a NFS-Clinet's NFSv4 shares? The Samba is on the NFSv4-Client. The NFS-Share is mounted on /Data on the NFS-Client/Samba Server? Any rights issues to consider? :-) Al -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] String comments and multiple personalities server issue
Hi, I have configuration of 2 HYPERLINK "http://us5.samba.org/samba/docs/man/Samba-HOWTO-Collection/cfgsmarts.html#i d2640886"Multiple Virtual Server Personalities (one public, and another one private) which are running. smb.conf. are included in main smb.conf file, it works fine, but comments of both servers are equals in the network neightborrood (comment displayed : "Private server" for both servers) , it seems that this parameter come from last configuration file loaded. hows is it possible to have differents server string for both virtual server ? Thanks in advance. Francois here is my configuration files : smb.conf : [global] netbios aliases = public PRIVATE smb ports = 139 workgroup = WORKGROUP netbios name = PRIVATE socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 include = /etc/samba/smb.conf.%L smb.conf.public : [global] workgroup = WORKGROUP security = share socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 disable spoolss = yes server string = Public server [public] path = /tmp/public browseable = yes read only = no create mask = 777 directory mask = 777 guest ok = yes only guest = yes public = yes smb.conf.PRIVATE : [global] security = user encrypt passwords = yes smb passwd file = /etc/samba/smbpasswd socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 server string = Private server [private] path = /tmp/private valid users = fred browseable = yes read only = no create mask = 777 directory mask = 777 guest ok = no -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.371 / Virus Database: 267.14.18/230 - Release Date: 14/01/2006 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Solaris 9/Samba 3.0.21a
Hi list, Having a problem with a newly replaced fileserver. Using V3.0.21a on fully patched Solaris 9 Sparc. uname -a reports Generic_118558-06. Problems reported seem to be linked to file size; for instance, users can't open their .pst or netscape mail files stored on a share of the samba server. Other files seem to open properly, just large files seem to be affected (100 mb or more). Compiled with: ./configure --with-acl-support --disable-cups --without-ldap Have GNU gcc, make, automake, autoconf, flex, glib, libgcc, bison, libiconv, zlib... Most are sunfreeware binaries. Here's an example of the logs I'm seeing from a client (WinXP): --- [2006/01/16 07:56:52, 1] smbd/service.c:make_connection_snum(666) mikes_pc (192.168.1.180) connect to service mike initially as user mike (uid=100, gid=100) (pid 19045) [2006/01/16 07:57:06, 1] smbd/service.c:make_connection_snum(666) mikes_pc (192.168.1.180) connect to service groups initially as user mike (uid=100, gid=100) (pid 19045) [2006/01/16 07:57:22, 0] lib/fault.c:fault_report(36) === [2006/01/16 07:57:22, 0] lib/fault.c:fault_report(37) INTERNAL ERROR: Signal 10 in pid 19045 (3.0.21a) Please read the Trouble-Shooting section of the Samba3-HOWTO [2006/01/16 07:57:22, 0] lib/fault.c:fault_report(39) From: http://www.samba.org/samba/docs/Samba3-HOWTO.pdf [2006/01/16 07:57:22, 0] lib/fault.c:fault_report(40) === "mikes_pc.log" 1218 lines, 68494 characters mikes_pc (192.168.1.180) connect to service mike initially as user mike (uid=100, gid=100) (pid 12201) [2006/01/16 09:31:53, 0] lib/fault.c:fault_report(36) === [2006/01/16 09:31:53, 0] lib/fault.c:fault_report(37) INTERNAL ERROR: Signal 10 in pid 12201 (3.0.21a) Please read the Trouble-Shooting section of the Samba3-HOWTO [2006/01/16 09:31:53, 0] lib/fault.c:fault_report(39) From: http://www.samba.org/samba/docs/Samba3-HOWTO.pdf [2006/01/16 09:31:53, 0] lib/fault.c:fault_report(40) === [2006/01/16 09:31:53, 0] lib/util.c:smb_panic2(1554) PANIC: internal error [2006/01/16 09:31:55, 1] smbd/service.c:make_connection_snum(666) mikes_pc (192.168.1.180) connect to service mike initially as user mike (uid=100, gid=100) (pid 12203) [2006/01/16 09:32:12, 0] lib/fault.c:fault_report(36) === [2006/01/16 09:32:12, 0] lib/fault.c:fault_report(37) INTERNAL ERROR: Signal 10 in pid 12203 (3.0.21a) Please read the Trouble-Shooting section of the Samba3-HOWTO [2006/01/16 09:32:12, 0] lib/fault.c:fault_report(39) From: http://www.samba.org/samba/docs/Samba3-HOWTO.pdf [2006/01/16 09:32:12, 0] lib/fault.c:fault_report(40) === [2006/01/16 09:32:12, 0] lib/util.c:smb_panic2(1554) PANIC: internal error [2006/01/16 09:32:12, 1] smbd/service.c:make_connection_snum(666) mikes_pc (192.168.1.180) connect to service mike initially as user mike (uid=100, gid=100) (pid 12208) --- smb.conf: --- [global] admin users = root workgroup = a36561 create mask = 0777 directory mask = 0777 password server = 192.168.1.4 server string = New E250 SunRay server log file = /var/log/samba/%m.log max log size = 1000 security = user encrypt passwords = yes smb passwd file = /etc/samba/smbpasswd unix password sync = Yes passwd program = /usr/bin/passwd %u passwd chat = *New*password:* %n\n *Re-enter*new*password:* %n\n *passwd*(SYSTEM):*passwd*successfully*changed*for* socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192 IPTOS_LOWDELAY interfaces = 192.168.1.4/24 hosts allow = 192.168.1. 192.168.255. 127. 10.10.10. local master = yes os level = 33 domain master = yes preferred master = yes domain logons = yes logon script = logon.bat logon drive = h: name resolve order = wins lmhosts bcast wins support = yes dns proxy = no idmap uid = 1-2 idmap gid = 1-2 winbind use default domain = yes [homes] comment = Your Home Directory browseable = no writable = yes [netlogon] comment = Network Logon Service path = /home/netlogon guest ok = yes browsable = no writable = no share modes = no [users] comment = User Directories path = /home/users guest ok = yes writable = no [groups] comment = Group Directories path = /home/groups guest ok = yes writable = yes [share] comment = Share space path = /home/share public = yes writeable = yes read only = no printable = no write list = @users force create mode = 660 force directory mode
Re: [Samba] Samba sharing ramdisk
Alessandro Siniscalchi wrote: Hi all, i have a problem with samba server: I created a ramdisk ( /dev/rd/1 ) with ext2 fs I mounted it on a directory that after I shared by samba. The problem is that when I mount it by smbfs on a machine it cannot set correctly the size of the device: # df -a ... /dev/rd/1 7931 115 7407 2% /mnt/tmp //localhost/prueba 0 0 0 - /home/alex/Desktop/mnt with /mnt/tmp shared with name prueba. mount output: ... /dev/rd/1 on /mnt/tmp type ext2 (rw) //localhost/prueba on /home/alex/Desktop/mnt type smbfs (0) How could let samba server work like usually works with real shared folder? Thanks in advance, Alessandro Siniscalchi Hi, I have another strange thing: if in the ramdisk I mount any device ... the samba share put it with 0 size.. Help Alex -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] One SAMBA Server, two networks.
Hello, I am making some changes to our network to split the front office and back office onto two seperate subnets, but need to keep the same Samba server in place serving both subnets. What I am intending to do is install an additional network card into the server and address this new card for the new subnet. What I am looking to do is properly broadcast the server's samba status/availability across both networks and properly serve files/domain controller data across both subnets. To do this, I intend to duplicate all the entries in the lmhosts file in /etc/samba with the only difference being the network that the server is broadcasting on. Will this work, or is this more complicated then I am currently seeing? -- Regards, Robert Adkins IT Manager/Buyer Impel Industries, inc. 586-254-5800 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba and authentication
Good morning (brazil ;-]) everyone, I'm in trouble and i need your help! I have a samba 3 running on a linux box (debian 3.1 sarge) as PDC (domain is EVERSYSTEMS_INF). I dont know if it's possible, but, i need that samba controls the authentication on some windows machines, an example: i have a machine A,B and C, and all of them are part of theont machine A and B, but not in C. And a user brunog that can login on machine A and C, not in B. Note that my windows machines are already authenticating against samba. Is this possible with samba? Thanks, -- Bruno Fialho Marques Gola <[EMAIL PROTECTED]> Cel: (11) 9294-5883 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Adding workstations to domain as non-root [SOLVED]
Quoting simo <[EMAIL PROTECTED]>: On Mon, 2006-01-16 at 09:41 +, James Cort wrote: Hi, The Problem: I have a samba domain using LDAP as the backend, complete with the IdealX LDAP scripts. Most of my Unix boxes (certainly anything which does any Samba stuff) authenticates against the same LDAP backend, using it for groups and users. I need to grant some people sufficient priviliges to add workstations to the domain, but I don't want to give them the root password in LDAP as doing so will also give them root access to the Unix boxes. Set "enable privileges = yes" in smb.conf Create a specific group for the users that you want to be able to add the group. Map the group with net groupmap When done, use net rights grant to grant this group the SeMacchineAccount privilege. No need to chown the scripts, samba will take care of everything. Ab-so-lutely wonderful. Works like a charm. Many thanks. James. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Adding workstations to domain as non-root
On Mon, 2006-01-16 at 09:41 +, James Cort wrote: > Hi, > > The Problem: > > I have a samba domain using LDAP as the backend, complete with the > IdealX LDAP scripts. > > Most of my Unix boxes (certainly anything which does any Samba stuff) > authenticates against the same LDAP backend, using it for groups and > users. > > I need to grant some people sufficient priviliges to add workstations > to the domain, but I don't want to give them the root password in LDAP > as doing so will also give them root access to the Unix boxes. Set "enable privileges = yes" in smb.conf Create a specific group for the users that you want to be able to add the group. Map the group with net groupmap When done, use net rights grant to grant this group the SeMacchineAccount privilege. No need to chown the scripts, samba will take care of everything. Simo. -- Simo Sorce Samba Team email: [EMAIL PROTECTED] http://samba.org/~idra -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] allowing users to install printers
Ian schrieb:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Tomasz Chmielewski wrote:
You have to write your own adm file. You can set any registry
setting via an NT4 policy file.
The problem is, I don't really know which registry setting
I have to set to allow users to set up printers.
Hence my original suggestion about tweaking it using
gpedit.msc. Watch what happens (with regmon.exe) when you
change the setting.
Actually, I'm no longer able to add a new printer on a newly installed
workstation, even with all suggested changes (in gpedit.msc), found in
google, etc.
Probably I added that printer as an administrator first (and then
removed it), and then confused it and wrongly assumed that the change in
gpedit.msc allowed normal users to install printers.
It seems to me that it's impossible to add a printer as a normal user.
So then I banged my head against the wall, because I wasted so much time
on it, and wrote this little bash script that does everything I wanted.
I'm posting it here in case someone looked for something similar in the
future.
It produces a batch script which has all the printers installed on a
Samba server, and adds them on a Windows workstation with "rundll32
printui.dll,PrintUIEntry ...".
It has to be run as Administrator or SYSTEM first, and then in a
netlogon script (for a user).
If you're wondering how to execute a batch script as an Administrator or
SYSTEM, you may check the link at the very bottom of this mail :)
#!/bin/bash
# A script that adds printers for Windows workstations
# Location of the script which adds the printers
# It has to be executed with the permissions of the SYSTEM or
# Administrator first (to add a printer to the workstation)
# and then as a user netlogon script
ADDPRINTERSCRIPT=/home/samba/netlogon/scripts/addprinters.bat
# Find out what printers we have
PRINTERS=`smbclient -L localhost -U% 2>/dev/null|grep Printer| cut -d "
" -f 1`
# Find out the name of our Samba server
SERVER=`cat /etc/samba/smb.conf | grep "netbios name" | awk '{print $NF}'`
# Clear the script from old printers
> $ADDPRINTERSCRIPT
# Add new printers
for PRINTER in $PRINTERS
do
echo "rundll32 printui.dll,PrintUIEntry /q /y /ga /in /n
$SERVER\\$PRINTER" >> $ADDPRINTERSCRIPT
done
# Convert the script to have dos characters
dos2unix -D $ADDPRINTERSCRIPT
# EOF
--
Tomasz Chmielewski
http://wpkg.org
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Slightly OT - Samba 3 and Windows DNS
Dear All Has any one had any success with getting a Linux box to register with a DNS server hosted on a Windows 2k3 server? This process takes place automatically on the Windows boxes but not at all on the Linux boxes. We run our Intranet/Web servers on Linux but the whole of the rest of our network is run on Windows. In the past we have used SAMBA to maintain WINS entries but would now like to also maintain DNS entries. Is this a samba issue or a Linux/Unix one (I suspect the latter). If Linux how does one fix the problem (PUMP/dhcp)? I know it's slightly OT but assumed that with so many of you using samba, probably in a windows environment some one may have come across this problem before. Many thanks Paul --- This email and any attachments transmitted with it are confidential (and potentially legally privileged) and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the sender and do not store, copy or disclose the content to any other person. It is the responsibility of the recipient to ensure that opening this message and/or any of its attachments will not adversely affect its systems. No responsibility is accepted by the sender. --- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] differences between restart and reload
Hi! I read in samba howto that "samba restart" command restarts both daemons nmbd and smbd while "samba reload" command force smbd to read smb.conf. question: when is important restart samba daemons after changed smb.conf? in case of changed of global section? thanks in advance, Fabio -- Dott. Fabio Marcone 2T srl Telefono+39 - 0871- 540154 Fax +39 - 0871- 571594 Email [EMAIL PROTECTED] Indirizzo Viale B. Croce 573, 66013 Chieti Scalo (CH) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] change passwords
/Samba experts,/ /I am using Samba 3.0.21a with ldap //authentication. I have ldap working so that users can authenticate in / /their samba account via ldap. However, I am trying to figure out the / /best method for allowing users to change their ldap samba account //password./ /What is the best method to allow end users to change their LM/NT / /passwords for Samba via LDAP?// Should I be using smbpasswd? Or should I be using the smbldap-tools / /and use smbldap-passwd.pl? Or is there another option? i tried the phpldappasswd but i think it doesn't work with the LM/NT passwords! thanks for your help in advance! greetz Andreas / / / -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: RE [Samba] Adding workstations to domain as non-root
Quoting [EMAIL PROTECTED]: I your log I see two problem or comment : - Have you configured idealx-tools (smbldap.conf & smbldap_bind.conf) Yes. I should mention that I can use Samba as a domain controller and add workstations just fine provided I add workstations as root - but as discussed earlier, I don't want to do this. - Have you added in your ldap_tree the objectclass sambaUnixIdPool into the entry sambaDomainName="xxx" (it's the preference entry from idealx-howto) I have: [EMAIL PROTECTED] ~ $ ldapsearch -D"cn=manager,dc=u4eatech,dc=com" -b "sambaDomainName=U4EATECH,dc=u4eatech,dc=com" -h localhost -W -v -x ldap_initialize( ldap://localhost ) Enter LDAP Password: filter: (objectclass=*) requesting: ALL # extended LDIF # # LDAPv3 # base with scope sub # filter: (objectclass=*) # requesting: ALL # # U4EATECH, u4eatech.com dn: sambaDomainName=U4EATECH,dc=u4eatech,dc=com sambaSID: S-1-5-21-2044582568-1589646193-1504741369 sambaDomainName: U4EATECH sambaAlgorithmicRidBase: 1000 gidNumber: 3000 objectClass: sambaDomain objectClass: sambaUnixIdPool uidNumber: 2011 # search result search: 2 result: 0 Success # numResponses: 2 # numEntries: 1 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
RE [Samba] Adding workstations to domain as non-root
I your log I see two problem or comment : - Have you configured idealx-tools (smbldap.conf & smbldap_bind.conf) - Have you added in your ldap_tree the objectclass sambaUnixIdPool into the entry sambaDomainName="xxx" (it's the preference entry from idealx-howto) --- Stéphane PURNELLE [EMAIL PROTECTED] Service Informatique Corman S.A. Tel : 00 32 087/342467 [EMAIL PROTECTED] a écrit sur 16/01/2006 10:41:55 : > Hi, > > The Problem: > > I have a samba domain using LDAP as the backend, complete with the > IdealX LDAP scripts. > > Most of my Unix boxes (certainly anything which does any Samba stuff) > authenticates against the same LDAP backend, using it for groups and > users. > > I need to grant some people sufficient priviliges to add workstations > to the domain, but I don't want to give them the root password in LDAP > as doing so will also give them root access to the Unix boxes. > > I would therefore like to configure the system such that users who are > a member of a specific group (Domain Admins springs immediately to > mind) are able to add workstations to the domain. > > I have already added myself to the "Domain Admins" group: > > # Domain Admins, Group, u4eatech.com > dn: cn=Domain Admins,ou=Group,dc=u4eatech,dc=com > objectClass: posixGroup > objectClass: sambaGroupMapping > gidNumber: 512 > cn: Domain Admins > memberUid: Administrator > memberUid: jamesc > description: Netbios Domain Administrators > sambaSID: S-1-5-21-2044582568-1589646193-1504741369-512 > sambaGroupType: 2 > displayName: Domain Admins > > > And I've chown/chmod'ed the smbldap config files so members of the > Domain Admins group can read them: > > elli sbin # ls -ail /etc/smbldap-tools/ > total 27 > 238406 drwxr-xr-x 2 root root 192 Jan 11 16:16 . > 9120 drwxr-xr-x 42 root root 3160 Jan 12 09:31 .. > 238451 -rw-r--r-- 1 root root 7634 Jan 11 16:06 smbldap.conf > 30283 -rw-r--r-- 1 root root 7728 Jan 10 13:44 smbldap.conf.old > 238421 -rw-r- 1 root Domain Admins 438 Jan 11 08:52 smbldap_bind.conf > > > However, I can't add users using the smbldap-useradd script: > > [EMAIL PROTECTED] ~ $ /usr/sbin/smbldap-useradd -w "phobos$" > Could not find base dn, to get next uidNumber at > /usr/sbin//smbldap_tools.pm line 995. > > Looking at the OpenLDAP logs, it seems that smbldap-useradd is > performing the search without first authenticating with the LDAP server: > > > Jan 16 09:24:19 cygnus_new slapd[12571]: conn=67383 fd=52 ACCEPT from > IP=172.30.1.22:60342 (IP=0.0.0.0:389) > Jan 16 09:24:19 cygnus_new slapd[26453]: conn=67383 op=1 SRCH > base="dc=u4eatech,dc=com" scope=2 deref=2 > filter="(&(objectClass=posixAccount)(uid=phobos$))" > Jan 16 09:24:19 cygnus_new slapd[26453]: conn=67383 op=1 SEARCH RESULT > tag=101 err=0 nentries=0 text= > Jan 16 09:24:19 cygnus_new slapd[16367]: conn=67383 op=2 SRCH > base="sambaDomainName=U4EATECH,dc=u4eatech,dc=com" scope=0 deref=2 > filter="(objectClass=sambaUnixIdPool)" > Jan 16 09:24:19 cygnus_new slapd[16367]: conn=67383 op=2 SEARCH RESULT > tag=101 err=0 nentries=0 text= > Jan 16 09:24:19 cygnus_new slapd[12571]: conn=67383 fd=52 closed > > > > > -- > To unsubscribe from this list go to the following URL and read the > instructions: https://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Adding workstations to domain as non-root
Hi, The Problem: I have a samba domain using LDAP as the backend, complete with the IdealX LDAP scripts. Most of my Unix boxes (certainly anything which does any Samba stuff) authenticates against the same LDAP backend, using it for groups and users. I need to grant some people sufficient priviliges to add workstations to the domain, but I don't want to give them the root password in LDAP as doing so will also give them root access to the Unix boxes. I would therefore like to configure the system such that users who are a member of a specific group (Domain Admins springs immediately to mind) are able to add workstations to the domain. I have already added myself to the "Domain Admins" group: # Domain Admins, Group, u4eatech.com dn: cn=Domain Admins,ou=Group,dc=u4eatech,dc=com objectClass: posixGroup objectClass: sambaGroupMapping gidNumber: 512 cn: Domain Admins memberUid: Administrator memberUid: jamesc description: Netbios Domain Administrators sambaSID: S-1-5-21-2044582568-1589646193-1504741369-512 sambaGroupType: 2 displayName: Domain Admins And I've chown/chmod'ed the smbldap config files so members of the Domain Admins group can read them: elli sbin # ls -ail /etc/smbldap-tools/ total 27 238406 drwxr-xr-x 2 root root 192 Jan 11 16:16 . 9120 drwxr-xr-x 42 root root 3160 Jan 12 09:31 .. 238451 -rw-r--r-- 1 root root 7634 Jan 11 16:06 smbldap.conf 30283 -rw-r--r-- 1 root root 7728 Jan 10 13:44 smbldap.conf.old 238421 -rw-r- 1 root Domain Admins 438 Jan 11 08:52 smbldap_bind.conf However, I can't add users using the smbldap-useradd script: [EMAIL PROTECTED] ~ $ /usr/sbin/smbldap-useradd -w "phobos$" Could not find base dn, to get next uidNumber at /usr/sbin//smbldap_tools.pm line 995. Looking at the OpenLDAP logs, it seems that smbldap-useradd is performing the search without first authenticating with the LDAP server: Jan 16 09:24:19 cygnus_new slapd[12571]: conn=67383 fd=52 ACCEPT from IP=172.30.1.22:60342 (IP=0.0.0.0:389) Jan 16 09:24:19 cygnus_new slapd[26453]: conn=67383 op=1 SRCH base="dc=u4eatech,dc=com" scope=2 deref=2 filter="(&(objectClass=posixAccount)(uid=phobos$))" Jan 16 09:24:19 cygnus_new slapd[26453]: conn=67383 op=1 SEARCH RESULT tag=101 err=0 nentries=0 text= Jan 16 09:24:19 cygnus_new slapd[16367]: conn=67383 op=2 SRCH base="sambaDomainName=U4EATECH,dc=u4eatech,dc=com" scope=0 deref=2 filter="(objectClass=sambaUnixIdPool)" Jan 16 09:24:19 cygnus_new slapd[16367]: conn=67383 op=2 SEARCH RESULT tag=101 err=0 nentries=0 text= Jan 16 09:24:19 cygnus_new slapd[12571]: conn=67383 fd=52 closed -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
