Re: [Samba] samba 3.6.16 and kinit
Hi. On 22.07.2013 16:28, Eugene M. Zheganin wrote: When I'm trying to join a machine to a domain via ADS I get kerberos_kinit_password d...@norma.com failed: Looping detected inside krb5_get_in_tkt. In the same time plain kinit d...@norma.com from a console gives me a ticket without errors. Is this a bug (so I should report it) or can this still be some misconfiguration on my side ? I'm doing this on testparm-approved config file from 3.5.x. P.S. FreeBSD 10.0-CURRENT. After not having luck with ntlm_auth in samba4, I decided to return and to investigate this problem. In wireshark I see that this looping is actually a sequence of exchanges AS-REQ - KRB5KDC_ERR_PREAUTH_REQUIRED. After two tries I got this (looping detected ...) error from kinit. What is the reason of samba kinit not preauthenticating (while FreeBSD's kinit does, because it works) ? Plus, after each joining retry I got in 'Active directory users in computers' a new machine account from this samba instance (does this mean it has actually joined ?). below is the link to a -d 10 output from the net ads join: http://tech.hq.norma.perm.ru/files/join.log Thanks. Eugene. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba4 and squid with NTLM auth
Hi. On 08.08.2013 11:33, Andrew Bartlett wrote: Certainly this looks like an missing NULL terminator, if if it as you describe. Can you operate ntlm_auth manually (operate one ntlm_auth in client mode, another in squid-2.5-ntlmssp mode and copy the blobs back and forth), and demonstrate it? This will avoid all the complexity of squid, and help isolate the issue. I surely can, but right now I have no idea about how to do this. I understood that I should run two helpers with different protocols, and then copy tokens/challenges between them, but ntlm_auth kinda lacks documentation about protocol sequence. Could you please give me an example of the sequence, or at least me point me to some decent article, as googling didn't give me any useful information. Thanks. Eugene. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] samba4 and squid with NTLM auth
Hi. Samba-4.0.7 FreeBSD 10.0-CURRENT Besides serving files I'm using Samba to authenticate users in the Windows AD with squid. After having issues with samba 3.6.16 I decided to see if samba4 will fit me more. I was surprised, but I found that Samba 4 is fully functional in my environment and is nearly production-ready. After that I tried to setup squid to use samba for NTLM authentication. I found something that may be a bug, but may be also a misconfiguration of some sort. In short words - it doesn't work. To describe what's not working, I should say that in my configuration squid is authorizing user in two stages: - ntlm_auth is authenticating user - external squid helper is authorizing user's access to an URL using a supplied by ntlm_auth name and the group membership information from the AD. It turns out that for some reason ntlm_auth authenticates user just fine, but then it is supplying squid with some sort of corrupted username: squid access log: 1375868558.129 1957 192.168.7.71 TCP_DENIED/403 2338 GET http://www.ru/rus/index.php %a0%92%03\r%08 HI ER_NONE/- text/html This [...] is actually my username - 'emz', but looks it's authenticated by ntlm_auth. Squid also thinks that this username has been just authenticated, and tries to look it's group membership information. Squid cache log: support_member.cc(124): pid=12390 :2013/08/07 15:42:38| kerberos_ldap_group: INFO: User ═.. . is not member of group@domain Internet Users - Crystal@NULL Considering that everything is fine when using samba 3.5.x, I suppose the answer is is samba software. Is this some bug or a misconfiguration ? Thanks. Eugene. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] samba 3.6.16 and kinit
Hi. When I'm trying to join a machine to a domain via ADS I get kerberos_kinit_password d...@norma.com failed: Looping detected inside krb5_get_in_tkt. In the same time plain kinit d...@norma.com from a console gives me a ticket without errors. Is this a bug (so I should report it) or can this still be some misconfiguration on my side ? I'm doing this on testparm-approved config file from 3.5.x. P.S. FreeBSD 10.0-CURRENT. Thanks. Eugene. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] samba 3.6.16 and kinit
Hi. When I'm trying to join a machine to a domain via ADS I get kerberos_kinit_password d...@norma.com failed: Looping detected inside krb5_get_in_tkt. In the same time plain kinit d...@norma.com from a console gives me a ticket without errors. Is this a bug (so I should report it) or can this still be some misconfiguration on my side ? I'm doing this on testparm-approved config file from 3.5.x. P.S. FreeBSD 10.0-CURRENT. Thanks. Eugene. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] winbind and group membership
Hi. FreeBSD 8.2 Samba 3.5.11 from ports I have an issue with group membership. id shows only small part of the groups a user is member of. I'm aware about UNIX max group issue, but this isn't related to it - for example for a user which is member of the 6 griups id shows only 3. Although wbinfo -r shows correct number of groups and wbinfo -G is able to successfully translate UNIX group to a domain SID. Can this be solved somehow ? I tried the 3.6.1 from ports, but using it's nss_winbind.so id only shows primary group for mapped users and none for system users existing in the domain. For example: [emz@witchdoctor:/var/db/samba]# id emz uid=1001(emz) gid=0(wheel) groups=0(wheel),20007(администраторы домена),20100(warez-rw),20248(internet users - panicbox),20413(internet users - samara),20456(internet users - crystal) [emz@witchdoctor:/var/db/samba]# wbinfo -r emz 20002 20459 20456 20100 20547 20413 20007 20248 20009 20692 20587 20695 20693 20694 20585 20652 20584 20621 20613 20649 20590 20654 20664 20657 20612 20586 20001 2 [emz@witchdoctor:/var/db/samba]# wbinfo -r emz | xargs wbinfo -G S-1-5-21-3780126066-798514342-2262872178-513 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20002 S-1-5-21-3780126066-798514342-2262872178-513 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20459 S-1-5-21-3780126066-798514342-2262872178-17960 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20456 S-1-5-21-3780126066-798514342-2262872178-17956 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20100 S-1-5-21-3780126066-798514342-2262872178-11860 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20547 S-1-5-21-3780126066-798514342-2262872178-20184 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20413 S-1-5-21-3780126066-798514342-2262872178-17662 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20007 S-1-5-21-3780126066-798514342-2262872178-512 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20248 S-1-5-21-3780126066-798514342-2262872178-15792 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20009 S-1-5-21-3780126066-798514342-2262872178-5934 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20692 S-1-5-21-3780126066-798514342-2262872178-19463 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20587 S-1-5-21-3780126066-798514342-2262872178-13813 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20695 S-1-5-21-3780126066-798514342-2262872178-19466 Thanks. Eugene. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] winbind group membership
Hi. On 28.01.2012 15:03, Volker Lendecke wrote: id user can not work reliably without a successful authentication using wbinfo -a before. There are just too many group combinations to take care of, and certain trust scenarios just can never work due to insufficient access to the trusted domains. If you have a problem with id after having successfully logged in to the box, this is a problem that we will definitely chase. So, as I understand, I should try 'wbinfo -a username%password' ? Is this just for test, or should this be done for every username to refresh the groups the user is in ? Anyway, I tried id both ways and this doesn't change group list for the user. Should I report the bug ? P.S. Also, what can be possible reason of 'wbinfo -a' working in challenge/response only under the root account on some machines ? Plaintext authentication doesn't have this problem. Thanks. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] winbind group membership
Hi. FreeBSD 8.2 Samba 3.5.11 from ports I have an issue with group membership. id shows only small part of the groups a user is member of. I'm aware about UNIX max group issue, but this isn't related to it - for example for a user which is member of the 6 griups id shows only 3. Although wbinfo -r shows correct number of groups and wbinfo -G is able to successfully translate UNIX group to a domain SID. Can this be solved somehow ? I tried the 3.6.1 from ports, but using it's nss_winbind.so id only shows primary group for mapped users and none for system users existing in the domain. For example: [emz@witchdoctor:/var/db/samba]# id emz uid=1001(emz) gid=0(wheel) groups=0(wheel),20007(администраторы домена),20100(warez-rw),20248(internet users - panicbox),20413(internet users - samara),20456(internet users - crystal) [emz@witchdoctor:/var/db/samba]# wbinfo -r emz 20002 20459 20456 20100 20547 20413 20007 20248 20009 20692 20587 20695 20693 20694 20585 20652 20584 20621 20613 20649 20590 20654 20664 20657 20612 20586 20001 2 [emz@witchdoctor:/var/db/samba]# wbinfo -r emz | xargs wbinfo -G S-1-5-21-3780126066-798514342-2262872178-513 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20002 S-1-5-21-3780126066-798514342-2262872178-513 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20459 S-1-5-21-3780126066-798514342-2262872178-17960 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20456 S-1-5-21-3780126066-798514342-2262872178-17956 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20100 S-1-5-21-3780126066-798514342-2262872178-11860 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20547 S-1-5-21-3780126066-798514342-2262872178-20184 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20413 S-1-5-21-3780126066-798514342-2262872178-17662 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20007 S-1-5-21-3780126066-798514342-2262872178-512 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20248 S-1-5-21-3780126066-798514342-2262872178-15792 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20009 S-1-5-21-3780126066-798514342-2262872178-5934 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20692 S-1-5-21-3780126066-798514342-2262872178-19463 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20587 S-1-5-21-3780126066-798514342-2262872178-13813 [emz@witchdoctor:/var/db/samba]# wbinfo -G 20695 S-1-5-21-3780126066-798514342-2262872178-19466 Thanks. Eugene. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] winbind group membership
Hi. On 27.01.2012 14:48, Eugene M. Zheganin wrote: Hi. FreeBSD 8.2 Samba 3.5.11 from ports I have an issue with group membership. id shows only small part of the groups a user is member of. I'm aware about UNIX max group issue, but this isn't related to it - for example for a user which is member of the 6 griups id shows only 3. Although wbinfo -r shows correct number of groups and wbinfo -G is able to successfully translate UNIX group to a domain SID. I was able to localize the problem a bit more. First of all, winbind doesn't recognize at all the Universal domain groups. Since I have only one domain, I simply changed all the universal group I'm interested in to global ones (still wonder who and why created all these groups as universal). But this solved only a part of the problem. I sill don't see all of the domain groups in 'id' output for the user. I compared the 'wbinfo -g' output and the 'getent group' output. In the 'getent group' some groups are missing ! These are the same groups that are missing from 'id user'. So any ideas ? Thanks. Eugene. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] winbind and ipv6
Hi.
FreeBSD 8.2-RELEASE
Samba 3.4.9
security = ads
Samba as domain member. Controllers on Win2008 R2.
When using IPv4 all is fine.
Today I added IPv6 on controllers, winbind stopped working when using IPv6.
I.e. when
password server = NAME, which resolves to , winbind says
===Cut===
# wbinfo -t
checking the trust secret via RPC calls failed
error code was NT_STATUS_DOMAIN_CONTROLLER_NOT_FOUND (0xc233)
Could not check secret
===Cut===
when I set password server to IPv4 address, all is fine again.
Before you will start to blame me for lack of IPv6 connectivity, I want
to say that IPv6 is working in this LAN for about half-a-year.
Samba server can ping6 domains controller.
Furthermore, when issuing kinit I see in tcpdump that it gets tickets by
using ipv6. Samba is used by squid to authenticate users on this server.
Users are succesfully connecting to squid via IPv6.
Disturbing strings in log:
===Cut===
[2011/06/09 22:13:58, 3] winbindd/winbindd_cm.c:1597(connection_ok)
connection_ok: Connection to HQ-GC.norma.com for domain SOFTLAB is
not connected
[2011/06/09 22:13:58, 0] libads/kerberos.c:693(print_kdc_line)
print_kdc_line: can't resolve name for kdc with non-default port
[fd00::32d]. Error hostname nor servname provided, or not known
.cm_prepare_connection: Unknown error: 0
[2011/06/09 22:13:58, 0] libads/kerberos.c:693(print_kdc_line)
print_kdc_line: can't resolve name for kdc with non-default port
[fd00::32d]. Error hostname nor servname provided, or not known
.cm_prepare_connection: Unknown error: 0
[2011/06/09 22:13:58, 0] libads/kerberos.c:693(print_kdc_line)
print_kdc_line: can't resolve name for kdc with non-default port
[fd00::32d]. Error hostname nor servname provided, or not known
===Cut===
(lots of these)
fd00::32d is the address of the domain controller. SOFTLAB is my
Win2008 domain. HQ-GC.norma.com is the name of the domain controller.
krb5.conf looks like this (Kerberos seems to be working using IPv6, as I
already said):
===Cut===
[libdefaults]
default_realm = NORMA.COM
default_keytab_name = /etc/krb5.keytab
[realms]
NORMA.COM = {
kdc = tcp/hq-gc.norma.com
admin_server = hq-gc.norma.com
}
[domain_realm]
.kerberos.server = NORMA.COM
[logging]
default = SYSLOG:INFO
===Cut===
Any ideas ?
Thanks.
Eugene.
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
[Samba] winbind and ipv6
Hi.
FreeBSD 8.2-RELEASE
Samba 3.4.9
security = ads
Samba as domain member. Controllers on Win2008 R2.
When using IPv4 all is fine.
Today I added IPv6 on controllers, winbind stopped working when using IPv6.
I.e. when
password server = NAME, which resolves to , winbind says
===Cut===
# wbinfo -t
checking the trust secret via RPC calls failed
error code was NT_STATUS_DOMAIN_CONTROLLER_NOT_FOUND (0xc233)
Could not check secret
===Cut===
when I set password server to IPv4 address, all is fine again.
Before you will start to blame me for lack of IPv6 connectivity, I want
to say that IPv6 is working in this LAN for about half-a-year.
Samba server can ping6 domains controller.
Furthermore, when issuing kinit I see in tcpdump that it gets tickets by
using ipv6. Samba is used by squid to authenticate users on this server.
Users are succesfully connecting to squid via IPv6.
Disturbing strings in log:
===Cut===
[2011/06/09 22:13:58, 3] winbindd/winbindd_cm.c:1597(connection_ok)
connection_ok: Connection to HQ-GC.norma.com for domain SOFTLAB is
not connected
[2011/06/09 22:13:58, 0] libads/kerberos.c:693(print_kdc_line)
print_kdc_line: can't resolve name for kdc with non-default port
[fd00::32d]. Error hostname nor servname provided, or not known
.cm_prepare_connection: Unknown error: 0
[2011/06/09 22:13:58, 0] libads/kerberos.c:693(print_kdc_line)
print_kdc_line: can't resolve name for kdc with non-default port
[fd00::32d]. Error hostname nor servname provided, or not known
.cm_prepare_connection: Unknown error: 0
[2011/06/09 22:13:58, 0] libads/kerberos.c:693(print_kdc_line)
print_kdc_line: can't resolve name for kdc with non-default port
[fd00::32d]. Error hostname nor servname provided, or not known
===Cut===
(lots of these)
fd00::32d is the address of the domain controller. SOFTLAB is my
Win2008 domain. HQ-GC.norma.com is the name of the domain controller.
krb5.conf looks like this (Kerberos seems to be working using IPv6, as I
already said):
===Cut===
[libdefaults]
default_realm = NORMA.COM
default_keytab_name = /etc/krb5.keytab
[realms]
NORMA.COM = {
kdc = tcp/hq-gc.norma.com
admin_server = hq-gc.norma.com
}
[domain_realm]
.kerberos.server = NORMA.COM
[logging]
default = SYSLOG:INFO
===Cut===
Any ideas ?
Thanks.
Eugene.
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba 3.5.6, winbindd and getent/id
Hi. On 04.12.2010 01:18, Volker Lendecke wrote: You are not the first to say that. Many others, including me, are having winbind problems after upgrading to 3.5.x. Interestingly enough, the problems are quite disparate between users; i.e., everyone seems to have a different problem; and there appears to be no consistent cause and no easy answer. If you're curious, Debian forwarded my bug to: https://bugzilla.samba.org/show_bug.cgi?id=7818 (Thanks, Christian!). Posted a hint to cldap.c. We immediately time out cldap requests, I'm looking at the code right now why this might happen. For me, downgrading to 3.4.9 and launching on tdbs from 3.5.6 (even withoung rejoining) did the trick. getent/id are working now. Eugene. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba 3.5.6, winbindd and getent/id
Hi. On 02.12.2010 15:02, Christopher Chan wrote: wbinfo -u/-g should work if the configuration is correct. At least they work for me on 3.5.4. Yeah, at least for me it used to work on 3.0.x and 3.4.9. So the configuration was correct and I guess it's highly unlikely that it became incorrect after an upgrade. What are your idmap settings? I guess they are mostly set to default. I also have the idmap uid = 2-3 idmap gid = 2-3 settings. I added the idmap alloc backend = tdb but nothing changed. Nothing about idmap except these string in my config file. And this is proved to work on earlier versions. You might want to look in/tail log.winbindd, log.winbindd-idmap and see what is going on when you issue a winbind -u/-g. Well, it states only this: [2010/12/02 18:58:27.644357, 1] ../librpc/ndr/ndr.c:395(ndr_pull_error) ndr_pull_error(1): String terminator not present or outside string boundaries [2010/12/02 18:58:27.66, 10] winbindd/winbindd_list_groups.c:128(winbindd_list_groups_done) Domain SOFTLAB returned 29 users [2010/12/02 18:58:27.644471, 10] winbindd/winbindd_list_groups.c:134(winbindd_list_groups_done) list_groups for domain SOFTLAB failed [2010/12/02 18:58:27.644498, 10] winbindd/winbindd.c:655(wb_request_done) wb_request_done[65824:LIST_GROUPS]: NT_STATUS_OK [2010/12/02 18:58:27.644549, 10] winbindd/winbindd.c:716(winbind_client_response_written) winbind_client_response_written[65824:LIST_GROUPS]: deliverd response to client [2010/12/02 18:58:27.644656, 6] winbindd/winbindd.c:816(winbind_client_request_read) closing socket 50, client exited There are much more users in SOFTLAB. Much more than 29. Actually, they are about 2000. And this is the log level 10. Sometimes winbind thinks that there probably are much more users in my domain: [2010/12/02 19:06:13.750270, 10] winbindd/winbindd_list_groups.c:128(winbindd_list_groups_done) Domain SOFTLAB returned 21924496 users Although the wbinfo -g output is still empty. Thanks. Eugene. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] samba 3.5.6, winbindd and getent/id
Hi.
I'm using samba to authenticate squid users in Windows AD, and to
provide 'em some statistics on the Internet usage. As this requires the
existence of windows users in Unix environment, I use nsswitch.conf and
nss_winbind.so to map users in Unix environment via samba as domain
member (security = ads) and its winbindd daemon.
As of samba 3.5.6 I'm expiriencing some major problems with it. To be
exact, neither id nor getent passwd don't work (allthough the squid
authentication is working perfectly even for windows-only users). For
providing some statistics I need them to work.
How can I debug this ? I'm using the same config on 3.0.x, 3.4.9 and on
3.5.6.
wbinfo -t gives me all ok.
wbinfo -g / wbinfo -u give me empty list regardless of the setting
winbind enum group/users.
The only error I see in logs (except those about PROBE domain) is that
winbindd cannot open /usr/local/lib/samba/passdb.so. Indeed, this file
doesn't exist, but it also doesn't exist on 3.4.9 where all is fine.
Is my problem related to it ?
I dont' see any other errors in logfiles on debug level 10 ('grep -i
error', 'grep -i failed' gives nothing).
Thanks.
Eugene.
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
[Samba] PROBE domain
Hi. After an upgrade from 3.0.34 to 3.4.x or 3.5.x (I run samba on FreeBSD, and, ufortunately, 3.0.x branch was just removed from FreeBSD ports) I notices that I got a new domain PROBE, not referenced in any of my configs. Previously it was only a BUILTIN domain, now there are two of them. As the number of predefined domains continues to grow - I want to ask, if there is any possibility to get rid of PROBE ? It keeps on searching its controllers and complains in logs because cannot find any. Thanks. Eugene. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Damnit audit
Hi, all. It seems like everybody ignore my letters about audit in samba. I wanna ask one simple question- have anyone working audit in samba ? WBR -- Origin:...and your cities will become your tombs(2:5054/63@Fidonet) -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Audit in 2.2.6
Greetings. I have samba 2.2.6 installed on FreeBSD 4.7-RC, from ports, compiled with audit/syslog/recycle/winbind. I try to use audit via syslogd. I created the following share: ===Cut=== [price] create mask = 664 security mask = 644 directory security mask = 000 directory mask = 755 comment = Fresh Norma PriceList path = /usr/local/public/ftp/pub/price valid users = emz ramil hunter alex ckv vitaly vvs mars vaganova_e browseable = yes writeable = yes guest ok = no vfs object = /usr/local/lib/samba/audit.so ===Cut=== All works just fine, but when I try to create new file or directory - smbd drops connection and in samba logs I recieve the following: ===Cut=== Oct 21 15:00:38 freedom smbd_audit[88374]: [2002/10/21 15:00:38, 0] lib/fault.c:fault_report(38) Oct 21 15:00:38 freedom smbd_audit[88374]: === Oct 21 15:00:38 freedom smbd_audit[88374]: [2002/10/21 15:00:38, 0] lib/fault.c:fault_report(39) Oct 21 15:00:38 freedom smbd_audit[88374]: INTERNAL ERROR: Signal 11 in pid 88374 (2.2.6) Oct 21 15:00:38 freedom smbd_audit[88374]: Please read the file BUGS.txt in the distribution Oct 21 15:00:39 freedom smbd_audit[88374]: [2002/10/21 15:00:39, 0] lib/fault.c:fault_report(41) Oct 21 15:00:39 freedom smbd_audit[88374]: === Oct 21 15:00:39 freedom smbd_audit[88374]: [2002/10/21 15:00:39, 0] lib/util.c:smb_panic(1094) Oct 21 15:00:39 freedom smbd_audit[88374]: PANIC: internal error ===Cut=== I'm not straight sure that this is not my configuration bug. So i wanna ask- does someone have working audit configuration on 2.2.6 ? May I see it ? -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re[2]: [Samba] Audit in 2.2.6
Hello Gerald. I have samba 2.2.6 installed on FreeBSD 4.7-RC, from ports, compiled with audit/syslog/recycle/winbind. I try to use audit via syslogd. I created the following share: GJC Can you recreate the crash when not using audit.so ? No. No ideas. I saw that message in my logs for the first time, right after using audit.so. -- Best regards, Eugenemailto:emz;norma.perm.ru -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
