Re: [Samba] W2K with Samba 3.3.2 problem

[Karolin Seeger]

Hi,

On Fri, Jun 19, 2009 at 03:38:08PM -0300, tisdn tisdn wrote:
 We've had a problem using Samba 3.3.2 and windows 2000 workstations sp4.
 After many tests, it was discovered that when the netbios name has an hyphen
 the windows 2000 workstations don't see the groups on the samba domain, but
 when the name is changed for one without hyphen the error doesn't occur.
 
 How to reproduce the problem?
 - Configure samba 3.3.2 as domain controller
 - Fill the netbios name parameter (smb.conf) using a name with hyphen like:
 xxx-yyy
 - Join the w2k workstation on the domain
 - On the w2k workstation, logon using a non-administrative account and type
 net user user /domain
 - The result will be access denied
 
 Do the same test using a netbios name without hyphen (it works!).
 
 Any idea about this problem?

Please re-try with Samba 3.3.5. I am pretty sure that this one has been
fixed.

Thanks!

Karolin

-- 
Samba   http://www.samba.org
SerNet  http://www.sernet.de
sambaXP http://www.sambaxp.org



pgp7911JbQkHo.pgp
Description: PGP signature
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

[Samba] Use windows to set file permissions.

[Johan Hendriks]

I have searched for a howto, but could not find one.

Is it possible to use a windows workstation to set ACL attributes on files, or 
the share itself.

 

Regards,
Johan 



--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Use windows to set file permissions.

[赵老师]

  Windows? no way~~

2009/6/22 Johan Hendriks jo...@double-l.nl

 I have searched for a howto, but could not find one.

 Is it possible to use a windows workstation to set ACL attributes on files,
 or the share itself.



 Regards,
 Johan



 --
 To unsubscribe from this list go to the following URL and read the
 instructions:  https://lists.samba.org/mailman/options/samba




-- 
赵文彪   教员
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Use windows to set file permissions.

[Björn Meier]

Of course, it works. I use it in my domain with ACL-support.

赵老师 wrote:

  Windows? no way~~

2009/6/22 Johan Hendriks jo...@double-l.nl

  

I have searched for a howto, but could not find one.

Is it possible to use a windows workstation to set ACL attributes on files,
or the share itself.



Regards,
Johan



--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba






  


--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Use windows to set file permissions.

[Björn Meier]

And you need winbind to fetch the fetch out of the domain, otherwise 
windows could not known the samba-users.


vishesh kumar wrote:
If you mount ext3 formatted partition, with support of acl then it is 
possible to set acl permission using windows


Thanks


2009/6/22 Björn Meier bjoern.me...@googlemail.com 
mailto:bjoern.me...@googlemail.com


Of course, it works. I use it in my domain with ACL-support.


赵老师 wrote:

Windows? no way~~

2009/6/22 Johan Hendriks jo...@double-l.nl
mailto:jo...@double-l.nl


I have searched for a howto, but could not find one.

Is it possible to use a windows workstation to set ACL
attributes on files,
or the share itself.



Regards,
Johan



--
To unsubscribe from this list go to the following URL and
read the
instructions: https://lists.samba.org/mailman/options/samba







-- 
To unsubscribe from this list go to the following URL and read the

instructions: https://lists.samba.org/mailman/options/samba




--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

RE: [Samba] Use windows to set file permissions.

[Johan Hendriks]

And you need winbind to fetch the fetch out of the domain, otherwise 
windows could not known the samba-users.

vishesh kumar wrote:
 If you mount ext3 formatted partition, with support of acl then it is 
 possible to set acl permission using windows

 Thanks


 2009/6/22 Björn Meier bjoern.me...@googlemail.com 
 mailto:bjoern.me...@googlemail.com

 Of course, it works. I use it in my domain with ACL-support.


 赵老师 wrote:

 Windows? no way~~

 2009/6/22 Johan Hendriks jo...@double-l.nl
 mailto:jo...@double-l.nl


 I have searched for a howto, but could not find one.

 Is it possible to use a windows workstation to set ACL
 attributes on files,
 or the share itself.



 Regards,
 Johan


Ok i knew it was possible, i use winbind against a win2003 Server, i compiled 
Samba with ACL support, the only thin is i use FreeBSD as a server.
It has ACL support on the filesystem.

Are there any config options needed within smb.conf that must exist to use this 
feature?

Regards,
Johan

No virus found in this outgoing message.
Checked by AVG - www.avg.com 
Version: 8.5.339 / Virus Database: 270.12.83/2191 - Release Date: 06/21/09 
20:02:00
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Use windows to set file permissions.

[vishesh kumar]

If you mount ext3 formatted partition, with support of acl then it is
possible to set acl permission using windows

Thanks


2009/6/22 Björn Meier bjoern.me...@googlemail.com

 Of course, it works. I use it in my domain with ACL-support.


 赵老师 wrote:

  Windows? no way~~

 2009/6/22 Johan Hendriks jo...@double-l.nl



 I have searched for a howto, but could not find one.

 Is it possible to use a windows workstation to set ACL attributes on
 files,
 or the share itself.



 Regards,
 Johan



 --
 To unsubscribe from this list go to the following URL and read the
 instructions:  https://lists.samba.org/mailman/options/samba









 --
 To unsubscribe from this list go to the following URL and read the
 instructions:  https://lists.samba.org/mailman/options/samba

--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

[Samba] ubuntu, samba and users autheticated over AD

[Gabriel Petrescu]

Hi:)

I try to make an ubuntu with samba to authenticate users from AD.

samba, krb5 installed.

smb.conf - no errors

krb5.conf - no errors

it's workig:

kinit

klist

i can see the shares from AD

I added the linux samba server in domain:

kinit gabr...@mydomain.local

net ads join -U gabriel%password

after that i've got a message:

Using short domain name -- MYDOMAIN
Disabled account for 'FILESERVER' in realm 'MYDOMAIN.LOCAL'
Failed to join domain: Type or value exists

If I check AD filserver - my linux samba machine - is in computer's list,
but is disabled.

wbinfo -u and wbinfo -g gives nothing..

I have no ideea what to do..

Please help:)

Thank you:)

Gabi
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] ubuntu, samba and users autheticated over AD

[Volker Lendecke]

On Mon, Jun 22, 2009 at 02:54:52PM +0300, Gabriel Petrescu wrote:
 Hi:)
 
 I try to make an ubuntu with samba to authenticate users from AD.
 
 samba, krb5 installed.
 
 smb.conf - no errors
 
 krb5.conf - no errors
 
 it's workig:
 
 kinit
 
 klist
 
 i can see the shares from AD
 
 I added the linux samba server in domain:
 
 kinit gabr...@mydomain.local
 
 net ads join -U gabriel%password
 
 after that i've got a message:
 
 Using short domain name -- MYDOMAIN
 Disabled account for 'FILESERVER' in realm 'MYDOMAIN.LOCAL'
 Failed to join domain: Type or value exists

Try to give your host a fully qualified domain name. The
output of hostname and hostname -f must differ.

Volker


pgpi3MUMBnvEh.pgp
Description: PGP signature
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] ubuntu, samba and users autheticated over AD

[Helmut Hullen]

Hallo, Volker,

Du meintest am 22.06.09:

 Try to give your host a fully qualified domain name. The
 output of hostname and hostname -f must differ.

That depends.
My slackware hostname (from the tcpip package or the util-linux  
package) shows the same when I type hostname -f or hostname, I get  
the short version with hostname -s.

Viele Gruesse!
Helmut
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

[Samba] Copy *just* user accounts from LDAP?

[johnh]

Greetings All,

I have a Samba-controlled domain, with everything in LDAP.

I also have an off-site server that I rsync all our files to every couple 
hours. 

What I'd like to do is set up a new Samba domain on the off-site server so 
users can log into it for disaster recovery purposes - and I'd like to 
keep the user account information synchronized with the main server so 
user's passwords are the same, etc. - while leaving behind workstation 
accounts, etc.

Does anyone have any ideas on how best to approach this?  I guess what I'm 
asking is, I'm OK with slapcat/slapadd'ing periodically from the main 
server to the off-site server, but does anyone have ideas for how to 
filter just the user accounts into the LDIF?

Thanks in advance,

-John

--
Please consider the environment before printing this e-mail.
 
This e-mail is intended only for the named person or entity to which it
is addressed and contains valuable business information that is
privileged, confidential and/or otherwise protected from disclosure.
Dissemination, distribution or copying of this e-mail or the information
herein by anyone other than the intended recipient, or an employee, or
agent responsible for delivering the message to the intended recipient,
is strictly prohibited.  All contents are the copyright property of the
sender.  If you are not the intended recipient, you are nevertheless
bound to respect the sender's worldwide legal rights.  We require that
unintended recipients delete the e-mail and destroy all electronic
copies in their system, retaining no copies in any media.  If you have
received this e-mail in error, please immediately notify us by calling
our Help Desk at (603) 433-1143, or e-mail to i...@primebuchholz.com.
We appreciate your cooperation.

-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Copy *just* user accounts from LDAP?

[Marc Muehlfeld]

jo...@primebuchholz.com schrieb:
What I'd like to do is set up a new Samba domain on the off-site server so 
users can log into it for disaster recovery purposes - and I'd like to 
keep the user account information synchronized with the main server so 
user's passwords are the same, etc. - while leaving behind workstation 
accounts, etc.


Why you don't want to sync the machine accounts? The workstations wouldn't be 
allowed to logon to the domain, if the machine account passwort differs. And 
doesn't you require the ldap groups too for managing access?




Does anyone have any ideas on how best to approach this?  I guess what I'm 
asking is, I'm OK with slapcat/slapadd'ing periodically from the main 
server to the off-site server, but does anyone have ideas for how to 
filter just the user accounts into the LDIF?


Instead of export/transfer/delete-ldap/import, I would use the openldap 
replication functions. If you really don't want to have access to 
groups/machine account OU, you can define a ACL in your slave server, that 
denies access to that branches.

--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Use windows to set file permissions.

[Miguel Medalha]

And you need winbind to fetch the fetch out of the domain, otherwise 
windows could not known the samba-users.


You only need winbind if your server is a member server of a Windows 
Active Directory.


I am setting file permissions from Windows on a Linux Samba PDC and I 
don't use winbind.


You need a filesystem with ACL support (not only EXT3) or another method 
to store ACLs such as Extended Attributes or a TDB database using one of 
the VFS modules provided with Samba.


--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Use windows to set file permissions.

[Miguel Medalha]

Are there any config options needed within smb.conf that must exist to use this 
feature?

  


Yes, there are. Instead of listing them here, I would direct you to the 
smb.conf man page, available here in html format:


http://us3.samba.org/samba/docs/man/manpages-3/smb.conf.5.html

Search for ACL and permission and ye shall find.

(You can start with nt acl support = yes.)
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Use windows to set file permissions.

[John Drescher]

 And you need winbind to fetch the fetch out of the domain, otherwise
 windows could not known the samba-users.

 You only need winbind if your server is a member server of a Windows Active
 Directory.

 I am setting file permissions from Windows on a Linux Samba PDC and I don't
 use winbind.

PDCs work with out winbind but domain member servers do not seem to
work without winbind. Also with a domain member server I was required
to have a working idmap otherwise every time I set an acl in XP it
just got reset back to the default after pressing ok.

 You need a filesystem with ACL support (not only EXT3) or another method to
 store ACLs such as Extended Attributes or a TDB database using one of the
 VFS modules provided with Samba.

This is essential.

John
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Use windows to set file permissions.

[Björn Meier]

Miguel Medalha wrote:


And you need winbind to fetch the fetch out of the domain, otherwise 
windows could not known the samba-users.


You only need winbind if your server is a member server of a Windows 
Active Directory.


I am setting file permissions from Windows on a Linux Samba PDC and I 
don't use winbind.


You need a filesystem with ACL support (not only EXT3) or another 
method to store ACLs such as Extended Attributes or a TDB database 
using one of the VFS modules provided with Samba.



ok then you have the same users on both systems.
--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Use windows to set file permissions.

[Miguel Medalha]

ok then you have the same users on both systems.


No, I don't have the same users on both systems. The Samba machine is 
the Primary Domain Controller. The users of the Windows workstations are 
authorized by the samba PDC. All the users are defined on the PDC only.


--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] ubuntu, samba and users autheticated over AD

[Gabriel Petrescu]

hy:)

As i a first conclusion, there are several issues:

- to make samba to authenticate users agains a AD there are several how to's

based on the linux distribution there are different packages which need to
be installed.

also the settings are different based on how to.

one of my main questions is.. what you install and configure:

kerberos, samba, samba common, winbind comes with samba

edit the config files for:

kerberos, samba, nsswitch

chech the time is sincronised.

is important when you config the files and put samba in AD samba and winbind
to be stoped?

putting together info from several how to's theoretically i should't have
any problem, but i have.

the errors are:
Jun 22 13:54:13 file-server su[4443]: pam_unix(su:session): unrecognized
option [pam_mkhomedir.so]
Jun 22 13:54:13 file-server su[4443]: pam_unix(su:session): unrecognized
option [umask=0022]
Jun 22 13:54:13 file-server su[4443]: pam_unix(su:session): unrecognized
option [skel=/etc]
Jun 22 13:54:13 file-server su[4443]: pam_unix(su:session): session opened
for user root by cristian(uid=0)


Jun 22 13:45:05 file-server smbd[4333]: nss_ldap: failed to bind to LDAP
server ldap://127.0.0.1: Invalid credentials
Jun 22 13:45:05 file-server smbd[4333]: nss_ldap: could not search LDAP
server - Server is unavailable
Jun 22 13:47:00 file-server nss_wins[4424]: pam_smbpass(sshd:auth):
unrecognized option [missingok]
Jun 22 13:47:00 file-server nss_wins[4424]: pam_winbind(sshd:auth): getting
password (0x)
Jun 22 13:47:00 file-server nss_wins[4424]: pam_winbind(sshd:auth): request
failed: Access denied, PAM error was System error (4), NT error was
NT_STATUS_ACCESS_DENIED

[2009/06/22 13:19:06, 0]
rpc_client/cli_pipe.c:get_schannel_session_key_common(2445)
  get_schannel_session_key: could not fetch trust account password for
domain 'MYDOMAIN'
[2009/06/22 13:19:06, 0]
rpc_client/cli_pipe.c:cli_rpc_pipe_open_schannel(2641)
  cli_rpc_pipe_open_schannel: failed to get schannel session key from server
SERVER.MYDOMAIN.LOCAL for domain MYDOMAIN.
[2009/06/22 13:19:06, 0]
auth/auth_domain.c:connect_to_domain_password_server(119)
  connect_to_domain_password_server: unable to open the domain client
session to machine SERVER.MYDOMAIN.LOCAL. Error was :
NT_STATUS_CANT_ACCESS_DOMAIN_INFO.
[2009/06/22 13:19:06, 0] auth/auth_domain.c:domain_client_validate(220)
  domain_client_validate: Domain password server not available.


I appreciate, any, help, ideea:)

Thanks:)

Gabi

On Mon, Jun 22, 2009 at 3:36 PM, Helmut Hullen hul...@t-online.de wrote:

 Hallo, Volker,

 Du meintest am 22.06.09:

  Try to give your host a fully qualified domain name. The
  output of hostname and hostname -f must differ.

 That depends.
 My slackware hostname (from the tcpip package or the util-linux
 package) shows the same when I type hostname -f or hostname, I get
 the short version with hostname -s.

 Viele Gruesse!
 Helmut
 --
 To unsubscribe from this list go to the following URL and read the
 instructions:  https://lists.samba.org/mailman/options/samba

-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

[Samba] fixed delay logging onto Samba3.3 from Vista Business

[Abey Thomas]

Hi all,

I was wondering if anybody has experienced a fixed delay about 30-40seconds
while logging onto the samba domain running samba version 3.3 from Windows
Vista Business


Cheers,
Abey
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

[Samba] Re: fixed delay logging onto Samba3.3 from Vista Business

[Abey Thomas]

Hi all,

After enabling netlogon debugging i was able to see the 30seconds timegap in
the log

06/22 17:11:21 [MISC] NetpDcInitializeContext: DSGETDC_VALID_FLAGS is
c001
06/22 17:11:21 [MISC] NetpDcGetName: TESTDOMAIN2 similar query failed
recently 78
06/22 17:11:21 [MISC] DsGetDcName function returns 1355: Dom:TESTDOMAIN2
Acct:(null) Flags: DS RET_DNS
06/22 17:11:50 [MISC] DsGetDcName function called: Dom:TESTDOMAIN2
Acct:(null) Flags: DSP
06/22 17:11:50 [MISC] NetpDcInitializeContext: DSGETDC_VALID_FLAGS is
c001
06/22 17:11:50 [MISC] NetpDcGetName: TESTDOMAIN2 similar query failed
recently 29749
06/22 17:11:50 [MISC] DsGetDcName function returns 1355: Dom:TESTDOMAIN2
Acct:(null) Flags: DSP
06/22 17:11:50 [SITE] DsrGetSiteName: Returning site name '(null)' from
local cache.
06/22 17:11:51 [SESSION] I_NetLogonGetAuthData called: (null) TESTDOMAIN2
(Flags 0x1)
06/22 17:11:51 [CRITICAL] I_NetLogonGetAuthData failed: (null) TESTDOMAIN2
(Flags 0x1): 0xc05e
06/22 17:11:51 [MISC] DsGetDcName function called: Dom:TESTDOMAIN2
Acct:(null) Flags: DSP
06/22 17:11:51 [MISC] NetpDcInitializeContext: DSGETDC_VALID_FLAGS is
c001
06/22 17:11:51 [MISC] NetpDcGetName: TESTDOMAIN2 similar query failed
recently 30435

i have no idea what these log messages mean :-(

Cheers
Abey

On Mon, Jun 22, 2009 at 4:53 PM, Abey Thomas abe...@gmail.com wrote:

 Hi all,

 I was wondering if anybody has experienced a fixed delay about 30-40seconds
 while logging onto the samba domain running samba version 3.3 from Windows
 Vista Business


 Cheers,
 Abey




-- 
Regards,
Abey Babu Thomas
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] ubuntu, samba and users autheticated over AD

[Matthias Grimm]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1

Am 22.06.2009 13:54, schrieb Gabriel Petrescu:
 Hi:)

Hi,

The 'best', let's say, which worked for me from the start, is this one:
http://wiki.samba.org/index.php/Samba_%26_Active_Directory

It's fairly generic, but worked on CentOS 5.3. From the last post I
would say: badly screwed, better start from scratch and stick with one
howto, understand what you're doing and allways do small steps.

Cheers

Matthias

 
 I try to make an ubuntu with samba to authenticate users from AD.
 
 samba, krb5 installed.
 
 smb.conf - no errors
 
 krb5.conf - no errors
 
 it's workig:
 
 kinit
 
 klist
 
 i can see the shares from AD
 
 I added the linux samba server in domain:
 
 kinit gabr...@mydomain.local
 
 net ads join -U gabriel%password
 
 after that i've got a message:
 
 Using short domain name -- MYDOMAIN
 Disabled account for 'FILESERVER' in realm 'MYDOMAIN.LOCAL'
 Failed to join domain: Type or value exists
 
 If I check AD filserver - my linux samba machine - is in computer's list,
 but is disabled.
 
 wbinfo -u and wbinfo -g gives nothing..
 
 I have no ideea what to do..
 
 Please help:)
 
 Thank you:)
 
 Gabi

-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.9 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAko/q+QACgkQf3LySRiTg2wzqQCfegrCArrK9iNDI9U3HO2no8n6
LS4AnR1h6dZ2e20uLuWWfNyLhVgVtbrL
=yJ9R
-END PGP SIGNATURE-

-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] fixed delay logging onto Samba3.3 from Vista Business

[Gabriel Petrescu]

Abey,

it seems you managed something I am seraching for..

how you made the authentication samba / domain?

i've got some errors and I didn't managed to add the samba server into
domain..


Gabi

On Mon, Jun 22, 2009 at 6:53 PM, Abey Thomas abe...@gmail.com wrote:

 Hi all,

 I was wondering if anybody has experienced a fixed delay about 30-40seconds
 while logging onto the samba domain running samba version 3.3 from Windows
 Vista Business


 Cheers,
 Abey
 --
 To unsubscribe from this list go to the following URL and read the
 instructions:  https://lists.samba.org/mailman/options/samba

-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] My Documents: Music shows, Pictures not so much

[Todd E Thomas]

no theories? Bueller...Bueller...Bueller...

?


Todd E Thomas wrote:
on the outside chance I didn't provide nearly enough information I 
thought I would include the configuration file ;) it should also be know 
that I am using windows xp to test with. I have tested this with both 
the hidden and veto directives on and off - same effect, either way.


[global]
   netbios name = SMBSRV
   workgroup = OFFICE
   server string = Palladium %v
   security = user
   encrypt passwords = yes
   ntlm auth = yes
   lanman auth = no
   passwd program = /usr/bin/passwd %u
   passwd chat = *New*password* %n\n Retype*new*password* %n\n *updated*
;unix password sync = yes
   domain master = yes
   domain logons = yes
   os level = 35
   name resolve order = wins bcast hosts
   log file = /var/log/samba/%m.log
   log level = 3
   max log size = 1000
   syslog only = no
   syslog = 3
   preferred master = yes
   local master = yes
   wins support = yes
   username map = /etc/samba/smbusers
   logon script = %G.vbs
   logon path =
   logon drive = H:
   logon home =
   interfaces = lo eth0
   bind interfaces only = Yes
   hosts deny = ALL
   hosts allow = 127. 10.0.0.0/24
   obey pam restrictions = yes
   socket options = TCP_NODELAY
;   time server = yes
;   printcap name = cups
;   printing = cups
   pam password change = yes
   enable privileges = yes
   dns proxy = no
   panic action = /usr/share/samba/panic-action %d

# Enable Zimbra LDAP Backend
   ldap passwd sync = yes
   passdb backend = ldapsam:ldap://zmail.ptest.us:389
   ldap admin dn = cn=config
   ldap suffix = dc=ptest,dc=us
   ldap group suffix = ou=groups
   ldap user suffix = ou=people
   ldap machine suffix = ou=machines
;guest account = nobody
;invalid users = root

   # SCRIPTS: if uncommented, each script has been tested and should 
be assumed solid.
   add machine script = /usr/sbin/useradd -n -g 100 -c Workstation 
(%u) -M -d /nohome -s /bin/false %u
   add user script = /usr/sbin/useradd -n -g 100 -d /export/homes/%u 
-s /bin/false %u

   delete user script = /usr/sbin/userdel %u
   add group script = /usr/sbin/groupadd %g
   delete group script = /usr/sbin/groupdel %g
   add user to group script = /usr/bin/gpasswd -a %u %g
   delete user from group script = /usr/bin/gpasswd -d %u %g
   set primary group script = /usr/sbin/usermod -g %g %u


[apps]
   comment = Software and Utilities
   path = /export/apps
   browseable = yes
   writable = no
   write list = @dmins, admin, root, thomas
;read list = @domusers, @domadmins, admin, root

[docs]
   comment = Corporate Documentation
   path = /export/docs
   browseable = yes
   writable = yes
;read list = @domusers, @domadmins, test6, admin, root
;write list = @domadmins, admin, root, thomas

[homes]
   comment = Your Home Directory
   path = /export/homes/%U
   browseable = no
   writable = yes
   valid users = %S
;hide files = /.bash*/*.ini/*.mozilla/*profile*/
;veto files = /*Music.lnk*/*Pictures.lnk*/
;delete veto files = Yes  
[netlogon]

   comment = Network Logon Service
   path = /var/lib/samba/netlogon
   guest ok = yes
   writable = no
;share modes = no
;write list = @domadmins

;[Profiles]
;path = /var/lib/samba/profiles
;browseable = no
;guest ok = yes

# A public directory accessible by any domain user
[public]
   comment = Public Stuff
   path = /export/public
   public = yes
   writable = yes
   printable = no

;[scripts]
;comment = Software and Utilities
;path = /var/lib/samba/scripts
;browseable = no
;writable = no
;valid users = %S
;write list = @domadmins

[IPC$]
   hosts allow = 10.0.0.0/24 127.0.0.1
   hosts deny = 0.0.0.0/0






Todd E Thomas wrote:
Hey all, I have a functioning Samba server in my test lab. All of my 
must-haves are met.


My problem really boils down to a minor nuisance. Basically, when I 
log the test users in and open My Documents I only see one folder: My 
Music. Not that I really care but curiosity is killing me here and I 
can't figure out why the My Pictures folder is not present also. On 
top of that users love their comfort level and I don't want them minus 
something they're used to when using my server.


If I create a user local to the windows xp box that I use for testing 
then both of the My Music and My Pictures folders are displayed so I 
know the template profile (used to make all other profiles) is working.


My only theory is performance, logins are somewhat slow, maybe 20 
seconds or so before the hour glass goes away. I'd say this is pretty 
thin if not completely off point.


If there are any useful insights out there I'm all ears.


Thanks in advance,

Todd E Thomas






--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] W2K with Samba 3.3.2 problem

[tisdn tisdn]

Hi Karolin.
It works perfectlly with version 3.3.5.

Thanks,
TISDN

2009/6/22 Karolin Seeger ksee...@samba.org

 Hi,

 On Fri, Jun 19, 2009 at 03:38:08PM -0300, tisdn tisdn wrote:
  We've had a problem using Samba 3.3.2 and windows 2000 workstations sp4.
  After many tests, it was discovered that when the netbios name has an
 hyphen
  the windows 2000 workstations don't see the groups on the samba domain,
 but
  when the name is changed for one without hyphen the error doesn't occur.
 
  How to reproduce the problem?
  - Configure samba 3.3.2 as domain controller
  - Fill the netbios name parameter (smb.conf) using a name with hyphen
 like:
  xxx-yyy
  - Join the w2k workstation on the domain
  - On the w2k workstation, logon using a non-administrative account and
 type
  net user user /domain
  - The result will be access denied
 
  Do the same test using a netbios name without hyphen (it works!).
 
  Any idea about this problem?

 Please re-try with Samba 3.3.5. I am pretty sure that this one has been
 fixed.

 Thanks!

 Karolin

 --
 Samba   http://www.samba.org
 SerNet  http://www.sernet.de
 sambaXP http://www.sambaxp.org


-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

[Samba] Samba mounted home shares will break many applications

[Bob Smith]

I didn't get any responses to my previous post Wine broken on Samba
shares due to colon : filenames so I am re-posting with a subject to
reflect what I now believe to the the root cause of my problems.

I recently changed from mounting my home directory using NFS to mounting
with CIFS via the pam module pam_mount.so. It turns out that I am having
problems with many applications that are embedding any of the Samba
reserved characters \ / : * ?|, principally the colon :. Here
is a short list of applications that I use that embed the colon in files
within their respective configuration directories in the home directory:

Evolution
Wine
Picasa (via wine)
VNC
Opera
Pulse Audio
Nautilus
Rhythmbox (if your track name has a colon)

Possibly many others. Some apps gracefully handle any problems, many
others don't.

I am positive that I have enabled Unix Extensions on my Samba server.
Here is a snippet of my smb.conf for the Samba server serving the home
shares:
[global]
  unix extensions = yes
  case sensitive = yes
  delete readonly = yes

  dos charset =
  unix charset = UTF8

On my client workstation (Ubuntu Karmic Koala (latest)) I have the
following output from /proc/fs/cifs:
$ cat LinuxExtensionsEnabled
1
$ cat DebugData
Display Internal CIFS Data Structures for Debugging
---
CIFS Version 1.55
Active VFS Requests: 0
Servers:
1) Name: 192.168.1.4  Domain: BISLINK Uses: 3 OS: Unix
NOS: Samba 3.3.2-0.33.fc11  Capability: 0x80f3fd
SMB session status: 1   TCP status: 1
Local Users To Server: 1 SecMode: 0x3 Req On Wire: 0
Shares:
1) \\san01\work Mounts: 1 Type: NTFS DevInfo: 0x0 Attributes: 0x1002f
PathComponentMax: 255 Status: 0x1 type: 0 

2) \\san01\business Mounts: 1 Type: NTFS DevInfo: 0x0 Attributes:
0x1002f
PathComponentMax: 255 Status: 0x1 type: 0 

3) \\san01\finances Mounts: 1 Type: NTFS DevInfo: 0x0 Attributes:
0x1002f
PathComponentMax: 255 Status: 0x1 type: 0 

MIDs:

I would appreciate any assistance with this issue. I will provide
additional information upon request to anyone willing to help me look
into this problem.

Regards,
Bob
--bs




-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Samba mounted home shares will break many applications

[Bob Smith]

To follow up on Unix Extension verification I ran the following on a
CIFS mounted share:

$  testfile\/
bash: testfile\/: Is a directory
$  testfile:
bash: testfile:: No such file or directory
$  testfile\:
bash: testfile\:: No such file or directory
$  testfile*
$  testfile?
$  testfile\
$  testfile
$  testfile
$  testfile|
$ ls -l testfile*
-rw-r--r-- 1 rwsmith rwsmith 0 2009-06-22 19:21 testfile
-rw-r--r-- 1 rwsmith rwsmith 0 2009-06-22 19:21 testfile
-rw-r--r-- 1 rwsmith rwsmith 0 2009-06-22 19:21 testfile|
-rw-r--r-- 1 rwsmith rwsmith 0 2009-06-22 19:20 testfile?
-rw-r--r-- 1 rwsmith rwsmith 0 2009-06-22 19:21 testfile
-rw-r--r-- 1 rwsmith rwsmith 0 2009-06-22 19:20 testfile*
-rw-r--r-- 1 rwsmith rwsmith 0 2009-06-22 19:19 testfile\

As you can see 7 of the reserved characters can be used within
filenames--the slash / character I known why, but why not the colon
: character?!?!

Bob
--bs

P.S. I have also validated that this an issue when using a client with
Fedora 11 + CIFS.


 I didn't get any responses to my previous post Wine broken on Samba
 shares due to colon : filenames so I am re-posting with a subject to
 reflect what I now believe to the the root cause of my problems.
 
 I recently changed from mounting my home directory using NFS to mounting
 with CIFS via the pam module pam_mount.so. It turns out that I am having
 problems with many applications that are embedding any of the Samba
 reserved characters \ / : * ?|, principally the colon :. Here
 is a short list of applications that I use that embed the colon in files
 within their respective configuration directories in the home directory:
 
 Evolution
 Wine
 Picasa (via wine)
 VNC
 Opera
 Pulse Audio
 Nautilus
 Rhythmbox (if your track name has a colon)
 
 Possibly many others. Some apps gracefully handle any problems, many
 others don't.
 
 I am positive that I have enabled Unix Extensions on my Samba server.
 Here is a snippet of my smb.conf for the Samba server serving the home
 shares:
 [global]
   unix extensions = yes
   case sensitive = yes
   delete readonly = yes
 
   dos charset =
   unix charset = UTF8
 
 On my client workstation (Ubuntu Karmic Koala (latest)) I have the
 following output from /proc/fs/cifs:
 $ cat LinuxExtensionsEnabled
 1
 $ cat DebugData
 Display Internal CIFS Data Structures for Debugging
 ---
 CIFS Version 1.55
 Active VFS Requests: 0
 Servers:
 1) Name: 192.168.1.4  Domain: BISLINK Uses: 3 OS: Unix
   NOS: Samba 3.3.2-0.33.fc11  Capability: 0x80f3fd
   SMB session status: 1   TCP status: 1
   Local Users To Server: 1 SecMode: 0x3 Req On Wire: 0
   Shares:
   1) \\san01\work Mounts: 1 Type: NTFS DevInfo: 0x0 Attributes: 0x1002f
 PathComponentMax: 255 Status: 0x1 type: 0 
 
   2) \\san01\business Mounts: 1 Type: NTFS DevInfo: 0x0 Attributes:
 0x1002f
 PathComponentMax: 255 Status: 0x1 type: 0 
 
   3) \\san01\finances Mounts: 1 Type: NTFS DevInfo: 0x0 Attributes:
 0x1002f
 PathComponentMax: 255 Status: 0x1 type: 0 
 
   MIDs:
 
 I would appreciate any assistance with this issue. I will provide
 additional information upon request to anyone willing to help me look
 into this problem.
 
 Regards,
 Bob
 --bs
 
 
 

-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

Re: [Samba] Samba mounted home shares will break many applications

[Bob Smith]

Found the problem to be fixed by Jeremy Alison in Samba version 3.3.3,
BUG 6196: Unable to serve files with colons to Linux CIFS/VFS client. 

Thanks to the Samba team for being more on top of issues than I am (of
course I just spent the last three wasted days scouring the web for this
tidbit ;-)

Now I'll just wait for Fedora 11 to get the update, sigh :(

Bob
--bs
 
On Tue, 23 Jun 2009 04:20:12 +0200, Bob Smith wrote:

 To follow up on Unix Extension verification I ran the following on a
 CIFS mounted share:
 
 $  testfile\/
 bash: testfile\/: Is a directory
 $  testfile:
 bash: testfile:: No such file or directory $  testfile\:
 bash: testfile\:: No such file or directory $  testfile*
 $  testfile?
 $  testfile\
 $  testfile
 $  testfile
 $  testfile|
 $ ls -l testfile*
 -rw-r--r-- 1 rwsmith rwsmith 0 2009-06-22 19:21 testfile -rw-r--r-- 1
 rwsmith rwsmith 0 2009-06-22 19:21 testfile -rw-r--r-- 1 rwsmith
 rwsmith 0 2009-06-22 19:21 testfile| -rw-r--r-- 1 rwsmith rwsmith 0
 2009-06-22 19:20 testfile? -rw-r--r-- 1 rwsmith rwsmith 0 2009-06-22
 19:21 testfile -rw-r--r-- 1 rwsmith rwsmith 0 2009-06-22 19:20
 testfile* -rw-r--r-- 1 rwsmith rwsmith 0 2009-06-22 19:19 testfile\
 
 As you can see 7 of the reserved characters can be used within
 filenames--the slash / character I known why, but why not the colon
 : character?!?!
 
 Bob
 --bs
 
 P.S. I have also validated that this an issue when using a client with
 Fedora 11 + CIFS.
 
 
 I didn't get any responses to my previous post Wine broken on Samba
 shares due to colon : filenames so I am re-posting with a subject
to
 reflect what I now believe to the the root cause of my problems.
 
 I recently changed from mounting my home directory using NFS to
 mounting with CIFS via the pam module pam_mount.so. It turns out that
I
 am having problems with many applications that are embedding any of
the
 Samba reserved characters \ / : * ?|, principally the colon
 :. Here is a short list of applications that I use that embed the
 colon in files within their respective configuration directories in
the
 home directory:
 
 Evolution
 Wine
 Picasa (via wine)
 VNC
 Opera
 Pulse Audio
 Nautilus
 Rhythmbox (if your track name has a colon)
 
 Possibly many others. Some apps gracefully handle any problems, many
 others don't.
 
 I am positive that I have enabled Unix Extensions on my Samba server.
 Here is a snippet of my smb.conf for the Samba server serving the
home
 shares:
 [global]
   unix extensions = yes
   case sensitive = yes
   delete readonly = yes
 
   dos charset =
   unix charset = UTF8
 
 On my client workstation (Ubuntu Karmic Koala (latest)) I have the
 following output from /proc/fs/cifs:
 $ cat LinuxExtensionsEnabled
 1
 $ cat DebugData
 Display Internal CIFS Data Structures for Debugging
 --- CIFS Version 1.55
 Active VFS Requests: 0
 Servers:
 1) Name: 192.168.1.4  Domain: BISLINK Uses: 3 OS: Unix
  NOS: Samba 3.3.2-0.33.fc11  Capability: 0x80f3fd SMB session 
status: 1
  TCP status: 1
  Local Users To Server: 1 SecMode: 0x3 Req On Wire: 0 Shares:
  1) \\san01\work Mounts: 1 Type: NTFS DevInfo: 0x0 Attributes: 
0x1002f
 PathComponentMax: 255 Status: 0x1 type: 0
 
  2) \\san01\business Mounts: 1 Type: NTFS DevInfo: 0x0 Attributes:
 0x1002f
 PathComponentMax: 255 Status: 0x1 type: 0
 
  3) \\san01\finances Mounts: 1 Type: NTFS DevInfo: 0x0 Attributes:
 0x1002f
 PathComponentMax: 255 Status: 0x1 type: 0
 
  MIDs:
 
 I would appreciate any assistance with this issue. I will provide
 additional information upon request to anyone willing to help me look
 into this problem.
 
 Regards,
 Bob
 --bs
 
 




-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

[Samba] Panic without coredump

[Alex Masterov]

Hi All!

I have samba 3.3.4 installed on FreeBSD 7.2.
Once a day, avg, smbd panics with this messages like following in log file:


[2009/06/22 16:40:50,  0] lib/fault.c:fault_report(40)
  ===
[2009/06/22 16:40:50,  0] lib/fault.c:fault_report(41)
  INTERNAL ERROR: Signal 11 in pid 14985 (3.3.4)
  Please read the Trouble-Shooting section of the Samba3-HOWTO
[2009/06/22 16:40:50,  0] lib/fault.c:fault_report(43)

  From: http://www.samba.org/samba/docs/Samba3-HOWTO.pdf
[2009/06/22 16:40:50,  0] lib/fault.c:fault_report(44)
  ===
[2009/06/22 16:40:50,  0] lib/util.c:smb_panic(1667)
  smb_panic: clobber_region() last called from [cli_connect(1527)]
[2009/06/22 16:40:50,  0] lib/util.c:smb_panic(1673)
  PANIC (pid 14985): internal error
[2009/06/22 16:40:50,  0] lib/util.c:log_stack_trace(1777)
  BACKTRACE: 22 stack frames:
   #0 0x2d1a1d smb_panic+175 at /usr/local/sbin/smbd
   #1 0x2bae8d dump_core_setup+1957 at /usr/local/sbin/smbd
   #2 0xbfbfffb4
   #3 0x2d61be receive_smb_raw+55 at /usr/local/sbin/smbd
   #4 0xfe72e cli_receive_smb+120 at /usr/local/sbin/smbd
   #5 0xffe06 cli_negprot+500 at /usr/local/sbin/smbd
   #6 0x100674 cli_start_connection+854 at /usr/local/sbin/smbd
   #7 0x10347e cli_full_connection+135 at /usr/local/sbin/smbd
   #8 0x3245a1 enumerate_domain_trusts+309 at /usr/local/sbin/smbd
   #9 0x32430d update_trustdom_cache+237 at /usr/local/sbin/smbd
   #10 0x318b77 is_trusted_domain+87 at /usr/local/sbin/smbd
   #11 0x31cfef make_user_info_map+358 at /usr/local/sbin/smbd
   #12 0x31f4d8 auth_ntlmssp_start+550 at /usr/local/sbin/smbd
   #13 0x127954 ntlmssp_set_username+1675 at /usr/local/sbin/smbd
   #14 0x127194 ntlmssp_update+659 at /usr/local/sbin/smbd
   #15 0x31f239 auth_ntlmssp_update+60 at /usr/local/sbin/smbd
   #16 0xb291d parse_spnego_mechanisms+2733 at /usr/local/sbin/smbd
   #17 0xb3e48 reply_sesssetup_and_X+2723 at /usr/local/sbin/smbd
   #18 0xe90cf remove_deferred_open_smb_message+2063 at
/usr/local/sbin/smbd
   #19 0xeb37e smbd_process+2390 at /usr/local/sbin/smbd
   #20 0x4fcdb1 main+8819 at /usr/local/sbin/smbd
   #21 0x68df3 _start+131 at /usr/local/sbin/smbd
[2009/06/22 16:40:50,  0] lib/util.c:smb_panic(1678)
  smb_panic(): calling panic action [/bin/sleep 9]


I compiled samba with maximal debug information, i.e.
CPPFLAGS+=  -g
LDFLAGS+=   -g
Configure args:
--enable-debug \
--enable-socket-wrapper --enable-nss-wrapper \
--enable-developer --enable-krb5developer \
--enable-dmalloc --with-profiling-data

But I can not find core! Standard FreeBSD place for samba cores
/var/log/samba/cores/smbd is empty.
I've used /bin/find / -name \*.core but it has found nothing.

sysctl variables about core:
kern.corefile: %N.core
kern.nodump_coredump: 0
kern.coredump: 1
kern.sugid_coredump: 0
debug.elf32_legacy_coredump: 0

System version:
FreeBSD zpl.bit.ab.ru 7.2-20090423-SNAP FreeBSD 7.2-20090423-SNAP #0: Fri
Apr 24 09:53:12 OMSST 2009 a...@zpl.bit.ab.ru:/usr/obj/usr/src/sys/GENERIC
i386


Where can I find core file to use gdb as Samba Howto advices?

Thanks a lot!
-- 
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

[SCM] Samba Shared Repository - branch master updated - release-4-0-0alpha8-39-g36a8abc

[Günther Deschner]

The branch, master has been updated
   via  36a8abce4f737102b5a2acf3c0e221391079831d (commit)
  from  4aade2768b40b805b50578ec6fa99fe57525b147 (commit)

http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master


- Log -
commit 36a8abce4f737102b5a2acf3c0e221391079831d
Author: Günther Deschner g...@samba.org
Date:   Mon Jun 22 22:35:58 2009 +0200

s3-libnet: fix libnet_unjoin_remove_machine_acct() when called without ads 
struct.

Guenther

---

Summary of changes:
 source3/libnet/libnet_join.c |8 +++-
 1 files changed, 7 insertions(+), 1 deletions(-)


Changeset truncated at 500 lines:

diff --git a/source3/libnet/libnet_join.c b/source3/libnet/libnet_join.c
index a96fd8c..86d2a02 100644
--- a/source3/libnet/libnet_join.c
+++ b/source3/libnet/libnet_join.c
@@ -264,7 +264,13 @@ static ADS_STATUS 
libnet_unjoin_remove_machine_acct(TALLOC_CTX *mem_ctx,
ADS_STATUS status;
 
if (!r-in.ads) {
-   return libnet_unjoin_connect_ads(mem_ctx, r);
+   status = libnet_unjoin_connect_ads(mem_ctx, r);
+   if (!ADS_ERR_OK(status)) {
+   libnet_unjoin_set_error_string(mem_ctx, r,
+   failed to connect to AD: %s,
+   ads_errstr(status));
+   return status;
+   }
}
 
status = ads_leave_realm(r-in.ads, r-in.machine_name);


-- 
Samba Shared Repository

Build status as of Tue Jun 23 00:00:02 2009

[build]

URL: http://build.samba.org/

--- /home/build/master/cache/broken_results.txt.old 2009-06-22 
00:00:28.0 +
+++ /home/build/master/cache/broken_results.txt 2009-06-23 00:00:28.0 
+
@@ -1,22 +1,22 @@
-Build status as of Mon Jun 22 00:00:02 2009
+Build status as of Tue Jun 23 00:00:02 2009
 
 Build counts:
 Tree Total  Broken Panic 
 build_farm   0  0  0 
 ccache   31 5  0 
 distcc   0  0  0 
-ldb  31 31 0 
-libreplace   31 10 0 
+ldb  32 32 0 
+libreplace   31 11 0 
 lorikeet 0  0  0 
-pidl 22 2  0 
-ppp  15 0  0 
-rsync30 9  0 
+pidl 23 2  0 
+ppp  14 0  0 
+rsync32 9  0 
 samba-docs   0  0  0 
 samba-web0  0  0 
-samba_3_current 29 20 0 
-samba_3_master 30 27 4 
+samba_3_current 29 21 0 
+samba_3_master 29 26 3 
 samba_3_next 30 28 0 
-samba_4_0_test 31 25 1 
-talloc   31 31 0 
-tdb  29 24 0 
+samba_4_0_test 29 24 1 
+talloc   32 32 0 
+tdb  30 25 0 
 

[SCM] CTDB repository - branch master updated - ctdb-1.0.84-23-g16ec9ca

[Ronnie Sahlberg]

The branch, master has been updated
   via  16ec9ca56a9f5b88d7a5ed4f89a28a53f5c9c081 (commit)
   via  867f57d166395c92949e480ca725249b0ca8950b (commit)
   via  070305adfe636c2580776e6bf24bb8be06622b86 (commit)
  from  fc69b6a66282d5be6edeb286bf72aeafb252e6dd (commit)

http://gitweb.samba.org/?p=sahlberg/ctdb.git;a=shortlog;h=master


- Log -
commit 16ec9ca56a9f5b88d7a5ed4f89a28a53f5c9c081
Author: Ronnie Sahlberg ronniesahlb...@gmail.com
Date:   Tue Jun 23 11:01:04 2009 +1000

rename 99.routing to 11.routing so the eventscript is processed before
NFS and LVS

commit 867f57d166395c92949e480ca725249b0ca8950b
Author: Martin Schwenke mar...@meltin.net
Date:   Tue Jun 2 15:54:04 2009 +1000

Fix minor problem in previous initscript commit.

The valgrind start case should not use daemon, since this is specific
to Red Hat.

Signed-off-by: Martin Schwenke mar...@meltin.net

commit 070305adfe636c2580776e6bf24bb8be06622b86
Author: Martin Schwenke mar...@meltin.net
Date:   Tue Jun 2 10:01:50 2009 +1000

Initscript fixes, mostly for stop action.

Use a local variable $ctdbd so that we always run ctdbd from the the
same place and so that we know what to kill.  This variable respects
the $CTDBD environment variable, which may be used to specify an
alternative location for the daemon.

In the important cases use pkill -0 -f to check if ctdbd is
running.  Also, remove the special case for killing ctdbd when running
under valgrind.  The regular case will handle this just fine.

Signed-off-by: Martin Schwenke mar...@meltin.net

---

Summary of changes:
 config/ctdb.init   |   27 +--
 config/events.d/{99.routing = 11.routing} |0 
 2 files changed, 13 insertions(+), 14 deletions(-)
 rename config/events.d/{99.routing = 11.routing} (100%)


Changeset truncated at 500 lines:

diff --git a/config/ctdb.init b/config/ctdb.init
index 5cf13ac..4076c5b 100755
--- a/config/ctdb.init
+++ b/config/ctdb.init
@@ -93,6 +93,8 @@ set_retval() {
return $1
 }
 
+ctdbd=${CTDBD:-/usr/sbin/ctdbd}
+
 start() {
echo -n $Starting ctdbd service: 
 
@@ -118,22 +120,24 @@ start() {
 
case $init_style in
valgrind)
-   valgrind -q --log-file=/var/log/ctdb_valgrind /usr/sbin/ctdbd 
--nosetsched $CTDB_OPTIONS 
+   valgrind -q --log-file=/var/log/ctdb_valgrind \
+   $ctdbd --nosetsched $CTDB_OPTIONS 
RETVAL=0
;;
suse)
-   startproc /usr/sbin/ctdbd $CTDB_OPTIONS
+   startproc $ctdbd $CTDB_OPTIONS
rc_status -v
RETVAL=$?
;;
redhat)
-   daemon ctdbd $CTDB_OPTIONS
+   daemon $ctdbd $CTDB_OPTIONS
RETVAL=$?
echo
[ $RETVAL -eq 0 ]  touch /var/lock/subsys/ctdb || RETVAL=1
;;
ubuntu)
-   start-stop-daemon --start --quiet --background --exec 
/usr/sbin/ctdbd -- $CTDB_OPTIONS
+   start-stop-daemon --start --quiet --background \
+   --exec $ctdbd -- $CTDB_OPTIONS
RETVAL=$?
;;
esac
@@ -152,7 +156,7 @@ start() {
 
 stop() {
echo -n $Shutting down ctdbd service: 
-   ctdb ping  /dev/null || {
+   pkill -0 -f $ctdbd || {
echo -n   Warning: ctdbd not running ! 
case $init_style in
suse)
@@ -164,20 +168,15 @@ stop() {
esac
return 0
}
-   ctdb shutdown
+   ctdb shutdown /dev/null 21
RETVAL=$?
count=0
-   if [ $init_style = valgrind ]; then
-   # very crude method
-   sleep 2
-   pkill -9 -f valgrind
-   fi
-   while killall -q -0 ctdbd; do
+   while pkill -0 -f $ctdbd ; do
sleep 1
-   count=`expr $count + 1`
+   count=$(($count + 1))
[ $count -gt 10 ]  {
echo -n $killing ctdbd 
-   killall -q -9 ctdbd
+   pkill -9 -f $ctdbd
pkill -9 -f $CTDB_BASE/events.d/
}
done
diff --git a/config/events.d/99.routing b/config/events.d/11.routing
similarity index 100%
rename from config/events.d/99.routing
rename to config/events.d/11.routing


-- 
CTDB repository

[SCM] CTDB repository - branch master updated - ctdb-1.0.84-27-g553a244

[Ronnie Sahlberg]

The branch, master has been updated
   via  553a244fc8d7814634330bf4829ac127d63886be (commit)
   via  a4b682e3b2657abeca3e387d96949f83bdbd7b2f (commit)
   via  9bc8e7eec7ffa8969f0f170a77b13cd0033790f1 (commit)
   via  937b029fd47d6af162c27d9dce6da0e22b36b79a (commit)
  from  16ec9ca56a9f5b88d7a5ed4f89a28a53f5c9c081 (commit)

http://gitweb.samba.org/?p=sahlberg/ctdb.git;a=shortlog;h=master


- Log -
commit 553a244fc8d7814634330bf4829ac127d63886be
Merge: 937b029fd47d6af162c27d9dce6da0e22b36b79a 
a4b682e3b2657abeca3e387d96949f83bdbd7b2f
Author: Ronnie Sahlberg ronniesahlb...@gmail.com
Date:   Tue Jun 23 11:21:37 2009 +1000

Merge r...@10.1.1.27:/shared/ctdb/ctdb-git

commit a4b682e3b2657abeca3e387d96949f83bdbd7b2f
Author: Ronnie Sahlberg ronniesahlb...@gmail.com
Date:   Tue Jun 23 11:30:25 2009 +1000

new version 1.0.85

commit 9bc8e7eec7ffa8969f0f170a77b13cd0033790f1
Author: Ronnie Sahlberg ronniesahlb...@gmail.com
Date:   Tue Jun 23 11:29:26 2009 +1000

rename 99.routing to 11.routing so that it executed before the service 
scripts

commit 937b029fd47d6af162c27d9dce6da0e22b36b79a
Author: Ronnie Sahlberg ronniesahlb...@gmail.com
Date:   Tue Jun 23 11:23:54 2009 +1000

new version 1.0.85

---

Summary of changes:
 Makefile.in |2 +-
 packaging/RPM/ctdb.spec |   21 +++--
 2 files changed, 20 insertions(+), 3 deletions(-)


Changeset truncated at 500 lines:

diff --git a/Makefile.in b/Makefile.in
index 7d8050e..ea3a450 100755
--- a/Makefile.in
+++ b/Makefile.in
@@ -208,6 +208,7 @@ install: all
${INSTALLCMD} -m 755 config/events.d/00.ctdb 
$(DESTDIR)$(etcdir)/ctdb/events.d
${INSTALLCMD} -m 755 config/events.d/10.interface 
$(DESTDIR)$(etcdir)/ctdb/events.d
${INSTALLCMD} -m 755 config/events.d/11.natgw 
$(DESTDIR)$(etcdir)/ctdb/events.d
+   ${INSTALLCMD} -m 755 config/events.d/11.routing 
$(DESTDIR)$(etcdir)/ctdb/events.d
${INSTALLCMD} -m 755 config/events.d/20.multipathd 
$(DESTDIR)$(etcdir)/ctdb/events.d
${INSTALLCMD} -m 644 config/events.d/31.clamd 
$(DESTDIR)$(etcdir)/ctdb/events.d
${INSTALLCMD} -m 755 config/events.d/40.vsftpd 
$(DESTDIR)$(etcdir)/ctdb/events.d
@@ -217,7 +218,6 @@ install: all
${INSTALLCMD} -m 755 config/events.d/61.nfstickle 
$(DESTDIR)$(etcdir)/ctdb/events.d
${INSTALLCMD} -m 755 config/events.d/70.iscsi 
$(DESTDIR)$(etcdir)/ctdb/events.d
${INSTALLCMD} -m 755 config/events.d/91.lvs 
$(DESTDIR)$(etcdir)/ctdb/events.d
-   ${INSTALLCMD} -m 755 config/events.d/99.routing 
$(DESTDIR)$(etcdir)/ctdb/events.d
${INSTALLCMD} -m 755 tools/ctdb_diagnostics $(DESTDIR)$(bindir)
${INSTALLCMD} -m 755 tools/onnode $(DESTDIR)$(bindir)
if [ -f doc/ctdb.1 ];then ${INSTALLCMD} -d $(DESTDIR)$(mandir)/man1; fi
diff --git a/packaging/RPM/ctdb.spec b/packaging/RPM/ctdb.spec
index 83b43c0..3bcd87e 100644
--- a/packaging/RPM/ctdb.spec
+++ b/packaging/RPM/ctdb.spec
@@ -4,7 +4,7 @@ Summary: Clustered TDB
 Vendor: Samba Team
 Packager: Samba Team sa...@samba.org
 Name: ctdb
-Version: 1.0.84
+Version: 1.0.85
 Release: 1
 Epoch: 0
 License: GNU GPL version 3
@@ -106,6 +106,7 @@ fi
 %{_sysconfdir}/ctdb/events.d/00.ctdb
 %{_sysconfdir}/ctdb/events.d/10.interface
 %{_sysconfdir}/ctdb/events.d/11.natgw
+%{_sysconfdir}/ctdb/events.d/11.routing
 %{_sysconfdir}/ctdb/events.d/20.multipathd
 %{_sysconfdir}/ctdb/events.d/31.clamd
 %{_sysconfdir}/ctdb/events.d/40.vsftpd
@@ -115,7 +116,6 @@ fi
 %{_sysconfdir}/ctdb/events.d/61.nfstickle
 %{_sysconfdir}/ctdb/events.d/70.iscsi
 %{_sysconfdir}/ctdb/events.d/91.lvs
-%{_sysconfdir}/ctdb/events.d/99.routing
 %{_sysconfdir}/ctdb/statd-callout
 %{_sbindir}/ctdbd
 %{_bindir}/ctdb
@@ -131,6 +131,23 @@ fi
 %{_libdir}/pkgconfig/ctdb.pc
 
 %changelog
+* Tue Jun 23 2009 : Version 1.0.85
+ - From William Jojo : Dont use getopt on AIX
+ - Make it possible to use ctdb listnodes also when the daemon is not running
+ - Provide machinereadable output to ctdb listnodes
+ - Dont list DELETED nodes in the ctdb listnodes output
+ - Try to avoid causing a recovery for the average case when 
adding/deleting/moving an ip
+ - When banning a node, drop the IPs on that node only and not all nodes.
+ - Add tests for NFS and CIFS tickles
+ - Rename 99.routing to 11.routing so it executes before NFS and LVS scripts
+ - Increase the default timeout before we deem an unresponsive recovery daemon 
hung and shutdown
+ - Reduce the reclock timout to 5 seconds
+ - Spawn a child process in the recovery daemon ot check the reclock file to
+   avoid blocking the process if the underlying filesystem is unresponsive
+ - fix for filedescriptor leak when a child process timesout
+ - Dont log errors if waitpid() returns -1
+ - Onnode updates by Martins
+ - Test and initscript cleanups from Martin S
 * Tue Jun 2 2009 : Version 1.0.84

[SCM] CTDB repository - annotated tag ctdb-1.0.85 created - ctdb-1.0.85

[Ronnie Sahlberg]

The annotated tag, ctdb-1.0.85 has been created
at  175eda100020329096976e913a96c207e1a4dc74 (tag)
   tagging  553a244fc8d7814634330bf4829ac127d63886be (commit)
  replaces  ctdb-1.0.84
 tagged by  Ronnie Sahlberg
on  Tue Jun 23 11:25:14 2009 +1000

- Log -
tag for 1.0.85
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQBKQC8K2aJ36aon/y8RApf0AJsHpEhffSuQZ9M2817cGJQ6lTlFXQCeJK+9
ifdWEakDk8Jhmv34eCDWIsg=
=AYIT
-END PGP SIGNATURE-

Martin Schwenke (6):
  Increase threshold in 51_ctdb_bench from 2% to 5%.
  New tests for NFS and CIFS tickles.
  Fix minor onnode bugs relating to local daemons.
  Clean up handling the of CTDB restarts in testcases.
  Initscript fixes, mostly for stop action.
  Fix minor problem in previous initscript commit.

Ronnie Sahlberg (21):
  From William Jojo w.jojo[AT]hvcc.edu
  make it possible to run 'ctdb listnodes' also if the daemon is not 
running.
  dont list DELETED nodes in the ctdb listnodes output
  when adding an ip, try manually adding and takingover the ip instead of 
triggering a full recovery to do the same thing
  try avoiding to cause a recovery when deleting a public ip from a node
  improve ctdb moveip so that it does not always trigger a recovery.
  dont require particular values for NoIPFailback and DeterministicIPs when
  remove unused variable
  When we ban a node, only drop the IPs on the node being banned, not on 
every node
  rename 99.routing to 11.routing
  increase the timeout before we shutdown when ther ecovery daemon is hung
  reduce the timeout we wait for the reclock child process to finish to 5 
seconds
  in the recovery daemon, check that the recovery master can access the 
recovery lock file and verify it is not stale from a child process.
  dont leak file descriptors
  dont leak file descriptors when set recmdoe timesout
  dont log an error if waitpid returns -1 and errno is ECHILD
  rename 99.routing to 11.routing so the eventscript is processed before
  new version 1.0.85
  rename 99.routing to 11.routing so that it executed before the service 
scripts
  new version 1.0.85
  Merge r...@10.1.1.27:/shared/ctdb/ctdb-git

---


-- 
CTDB repository

[SCM] Samba Shared Repository - branch master updated - release-4-0-0alpha8-40-g5a4d618

[Steven Danneman]

The branch, master has been updated
   via  5a4d61810961af199859dfb52981632bfe594e95 (commit)
  from  36a8abce4f737102b5a2acf3c0e221391079831d (commit)

http://gitweb.samba.org/?p=samba.git;a=shortlog;h=master


- Log -
commit 5a4d61810961af199859dfb52981632bfe594e95
Author: Aravind Srinivasan aravind.sriniva...@isilon.com
Date:   Tue Jun 16 15:11:32 2009 -0700

s3: forward MSG_DEBUG from smbd parent to all children

Before 3.3, an smbcontrol debug message sent to the target smbd would
actually be sent to all running processes including nmbd and winbindd.
This behavior was changed in 3.3 so that the smbd target would only
send a message to the process found in smbd.pid, while the all target
would send a message to all processes.

The ability to set the debug level of all processes within a single
daemon, without specifying each pid is quite useful.  This was implemented
in winbindd in 065760ed.  This patch does the same thing for smbd.

Upon receiving a MSG_DEBUG the parent smbd will rebroadcast it to all of
its children.

The printing process has been added to the list of smbd child processes,
and we now always track the number of smbd children regardless of the
max smbd processes setting.

---

Summary of changes:
 docs-xml/manpages-3/smbcontrol.1.xml |5 +++-
 source3/include/smb.h|6 +
 source3/printing/printing.c  |   19 
 source3/smbd/process.c   |9 +++
 source3/smbd/server.c|   39 +
 5 files changed, 63 insertions(+), 15 deletions(-)


Changeset truncated at 500 lines:

diff --git a/docs-xml/manpages-3/smbcontrol.1.xml 
b/docs-xml/manpages-3/smbcontrol.1.xml
index bb0aa30..c41dadc 100644
--- a/docs-xml/manpages-3/smbcontrol.1.xml
+++ b/docs-xml/manpages-3/smbcontrol.1.xml
@@ -121,7 +121,10 @@
varlistentry
termdebug/term
listitemparaSet debug level to the value specified by the 
-   parameter. This can be sent to any of the destinations./para
+   parameter. This can be sent to any of the destinations. If this
+   message is sent to either the smbd or winbindd daemons, the parent
+   process will rebroadcast the message to all child processes changing
+   the debug level in each one./para
/listitem
/varlistentry
 
diff --git a/source3/include/smb.h b/source3/include/smb.h
index 4eed68f..87fd2b0 100644
--- a/source3/include/smb.h
+++ b/source3/include/smb.h
@@ -1927,4 +1927,10 @@ struct smb_filename {
SMB_STRUCT_STAT st;
 };
 
+/* struct for maintaining the child processes that get spawned from smbd */
+struct child_pid {
+   struct child_pid *prev, *next;
+   pid_t pid;
+};
+
 #endif /* _SMB_H */
diff --git a/source3/printing/printing.c b/source3/printing/printing.c
index e73669f..986176d 100644
--- a/source3/printing/printing.c
+++ b/source3/printing/printing.c
@@ -1399,6 +1399,22 @@ static void printing_pause_fd_handler(struct 
tevent_context *ev,
exit_server_cleanly(NULL);
 }
 
+static void add_child_pid(pid_t pid)
+{
+   extern struct child_pid *children;
+   struct child_pid *child;
+   extern int num_children;
+
+child = SMB_MALLOC_P(struct child_pid);
+if (child == NULL) {
+DEBUG(0, (Could not add child struct -- malloc failed\n));
+return;
+}
+child-pid = pid;
+DLIST_ADD(children, child);
+num_children += 1;
+}
+
 static pid_t background_lpq_updater_pid = -1;
 
 /
@@ -1426,6 +1442,9 @@ void start_background_queue(void)
exit(1);
}
 
+   /* Track the printing pid along with other smbd children */
+   add_child_pid(background_lpq_updater_pid);
+
if(background_lpq_updater_pid == 0) {
struct tevent_fd *fde;
int ret;
diff --git a/source3/smbd/process.c b/source3/smbd/process.c
index 0a3777a..b26bc15 100644
--- a/source3/smbd/process.c
+++ b/source3/smbd/process.c
@@ -2103,6 +2103,15 @@ void smbd_process(void)
messaging_register(smbd_messaging_context(), NULL,
   MSG_SMB_CLOSE_FILE, msg_close_file);
 
+   /*
+* Use the default MSG_DEBUG handler to avoid rebroadcasting
+* MSGs to all child processes
+*/
+   messaging_deregister(smbd_messaging_context(),
+MSG_DEBUG, NULL);
+   messaging_register(smbd_messaging_context(), NULL,
+  MSG_DEBUG, debug_message);
+
if ((lp_keepalive() != 0)
 !(event_add_idle(smbd_event_context(), NULL,
timeval_set(lp_keepalive(), 0),
diff --git