[Samba] read_fd_with_timeout error messages
Hello, since the upgrade to Debian Squeeze with Samba 3.5.6 I get lot of the following messages: [2011/11/21 11:19:55.183005, 0] lib/util_sock.c:474 (read_fd_with_timeout) [2011/11/21 11:19:55.183087, 0] lib/util_sock.c:1441(get_peer_addr_internal) read_fd_with_timeout: client 0.0.0.0 read error = No route to host. What does this mean and how can I stop it? Clearly "client 0.0.0.0" means that something odd is going on. So far I haven't received any complaints from users, but the log messages are bothering me. The host acts as a fileserver and domain member in a Samba domain. Regards, Henry -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] nmbd: Ignoring request packet with opcode 5
Hello, I have lots of the following entries in my log: nmbd[1605]: [2010/05/28 09:59:51, 0] nmbd/nmbd_packets.c:validate_nmb_packet(1375) nmbd[1605]: validate_nmb_packet: Bad REG/REFRESH Packet. validate_nmb_packet: Ignoring request packet with opcode 5. What does this mean exactly? Can I ignore this? I use samba (sernet-samba) 3.3.12-25 on Debian Lenny. Thanks and Regards. Henry -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Delay of group membership modifications
Hello, On Wed, 05 Aug 2009 12:29:38 -0400 Adam Tauno Williams wrote: > Is the host running nscd? If so, stop the nscd service. Yes, that was it. It seems that nscd was installed as a dependency along with libnss-ldap. # apt-cache show libnss-ldap |grep ^Recommends Recommends: nscd, libpam-ldap After stopping nscd and restart of samba changing of group memberships are recognized immediately by samba now. What I still find curious is, that getent(1) was aware of the modification and samba not. Since it is recommended to use nscd when using LDAP (for performance reasons), instead of stopping or even deinstalling nscd one should better call nscd with the --invalidate option (e. g. "nscd --invalidate group") after making modifications in the LDAP tree. I don't believe, that I am the only who stumbled upon this problem. Perhaps this should be mentioned somewhere in the documentation/Samba HOWTO collection? (You know this cases: your boss is calling you and tells you, that Mr. Miller needs access to this folder right now.) Regards, Henry -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Delay of group membership modifications
Hello, We use samba 3.2.5 on Debian Lenny with LDAP backend (OpenLDAP 2.4.11). Access to files and directories are granted via ACLs. For example, we have a directory "projekt-my-test": # getfacl projekt-my-test # file: projekt-my-test/ # owner: root # group: Domain\040Admins user::rwx group::rwx group:projekt-my-test-rw:rwx mask::rwx other::--- So, I added a user to the group "projekt-my-test-rw" in the LDAP tree. I could confirm with "getent group" that the user was now member of the group. But when the user tried to access the directory, access was denied. When I checked with "net RPC GROUP MEMBERS projekt-my-test-rw", the user was not listed as a group member. After I waited for about half an hour, the user suddenly could access the directory. And really, when I checked now with the net RPC GROUP MEMBERS, the user was listed as a member. I did some research if samba does some caching regarding user and group information from a LDAP server, but hadn't found anything. So I wanted to ask the experts on the list: What is causing this delay of about 30 minutes of group membership modification in the LDAP database and the recognition by Samba? And how can I prevent it, i. e. how can I force samba, to re-read/refresh group information from LDAP (besides from a restart of the service)? Regards, Henry -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] get_ea_dos_attributes Operation not supported
Hello, I upgraded from Samba 3.0.34 to 3.2.8 on Debian Etch, using the packges from SerNet (enterprisesamba.com). I get the following error message in the logs since then: smbd/dosmode.c:get_ea_dos_attribute(208) get_ea_dos_attributes: Cannot get attribute from EA on file .: Error = Operation not supported Any idea what is going on? Regrds, Henry -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Samba Domain and OpenVPN
Hello, we have a new branch office about 200 kilometers away from our main office. I established a connection between the two with OpenVPN. Right now a single Windows-PC is connected to our OpenVPN-Server, which acts as a bridge to our internal network. Now the other (Windows) clients - 7 units - and the employees at the branch office shall be integrated in our existing Samba Domain. What is the best solution to accomplish this? Some additional inormation: - I think loading profiles from our server would not be a good idea, because the VPN tunnel would be to slow for this. - I use password protected keys for the clients, so OpenVPN can't be started automatically as Windows service, because it requires that the user enters a password. Because of this, I think, it is not possible that the clients at the branch office can become members of our domain. At the moment the users at the branch office have local accounts at the single Windows PC and in our Samba domain. Of course, user names of passwords are kept in sync manually. But I think this is not the optimal solution. I thought about establish a second domain at the branch office and establish a domain trust relationship. But I read that this feature in Samba is not very stable and insecure. Additionally I'm not sure if this procedure is worth the trouble for only 7 clients. Any ideas? Henry -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] First user can't find profile
Hello, We use Samba as Domain Controller and file server with XP Prof. Clients. There are 5 Samba Servers with network shares spread acroll all servers. I have the problem that the first user that wants to logon in the morning can't find the profile at least two or three times a week - thus the local profile is used. Additionally the mapping of network drives is going on really slow - he must wait up to two minutes until all network drives appears (currently about 7 network drives). When the other colleagues are in the office and log on samba became faster. It is like samba is sleeping and slowly "wakes up" when the first user logs on, after it has a cup of coffee first. We have a 100 MBit switched network with about 60 clients. Regards, Henry -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] 3.0.25b problems, was: Offline files enabled clients are loosing network drives
Hello, FYI: Samba 3.0.25a is running again here for two days after the downgrade from 3.0.25b, no problems any more so far. In fact quite the different: I got backfeed from users that the network is now "a lot faster". Regards, Henry On Tue, Aug 21, 2007 at 08:51:55AM +0000, Henry Jensen wrote: > The problems I had here with samba 3.0.25b are significant. It all began > after the upgrade: > > - Notebook-Clients which had offline files enabled are losing network drives. > > - MS-Office complains that it can not safe files. The error messages are > variantly (translated from german Windows XP Prof. and MS-Office 2003) > "No space left on device" (which is a network share) and "Too many open > files". Unfortunatley this is erradic and not reproducible, and I have > no time to debug, because this is a production system which must > "simply work". > I can't find any messages regarding this problems in the samba log. > > I have now downgraded to Samba 3.0.25a again which was running with no > problems for two month before the upgrade to 3.0.25b. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Offline files enabled clients are loosing network drives
Hello, On Thu, Aug 16, 2007 at 09:19:04AM +, Henry Jensen wrote: > since the update to Samba 3.0.25b Clients which have offline files enabled > - typically notebooks - are sporadical loosing their network drives. The problems I had here with samba 3.0.25b are significant. It all began after the upgrade: - Notebook-Clients which had offline files enabled are losing network drives. - MS-Office complains that it can not safe files. The error messages are variantly (translated from german Windows XP Prof. and MS-Office 2003) "No space left on device" (which is a network share) and "Too many open files". Unfortunatley this is erradic and not reproducible, and I have no time to debug, because this is a production system which must "simply work". I can't find any messages regarding this problems in the samba log. I have now downgraded to Samba 3.0.25a again which was running with no problems for two month before the upgrade to 3.0.25b. Regards, Henry -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Offline files enabled clients are loosing network drives
Hello, since the update to Samba 3.0.25b Clients which have offline files enabled - typically notebooks - are sporadical loosing their network drives. In the samba logs I see: "read_data: read failure for 4 bytes to client 192.168.1.58. Error = Connection timed out" After a new login the client can connect again to the shares again, but after some minutes of work the same thing happens again. Clients with no enabled offline files have no problems. We are using XP Prof. Clients and Samba 3.0.25b (sernet-samba) on Debian Etch. One of our five samba file server is acting as PDC with OpenLDAP as auth. backend. Regards, Henry -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Recycle bin and ACL
Hello, we are using the vfs module recycle with the following config: vfs objects = recycle recycle: repository = .Papierkorb recycle:directory_mode = 0777 recycle:subdir_mode = 0777 recycle: keeptree = Yes recycle: exclude = *.tmp, *.temp, *.log, *.ldb recycle: exclude_dir = tmp recycle:versions = Yes Problem is that everybody can see deleted documents in the recycle bin. But if I set recycle:subdir_mode = 0770 then members of the group can not delete into the recycle bin. This is because we are using ACLs. For example a directory has following ACL: $ getfacl ttt # file: ttt # owner: root # group: Domain\040Admins user::rwx group::rwx group:projekt-rw:rwx group:projekt-r:r-x mask::rwx other::--- If I delete a file in directory ttt, this directory is created in the recycle bin with following ACLs: $ getfacl ttt # file: ttt # owner: jensenh # group: Domain\040Admins user::rwx group::rwx other::--- As you can see the ACLs are lost. This means another member of group projekt-rw will be unable to delete something into the recycle bin. So the only solution is to set directory mode and/or subdir mode to 777. This is far from optimum. Has anybody another solution? Regards, Henry -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba seems to forget ACLs sometime
Hello, I have a strange problem here, we have 4 samba servers plus a PDC with samba and openldap as backend. Users are organized in groups and we give group ACLs to directories to grant access. This worked until a few weeks ago, when we upgraded from Debian Sarge to Etch. Since then samba seems to forget ACLs sometimes. This is almost not reproducible. Users who have normally access to a particular directories are saying "I cant't see the directory in Windows Exxplorer anymore". I check the ACL then and everythis is okay, Windows reports "full Access" for this user, but he can't see nor enter the directory in Windows explorer. Strange enough: In Windows cmd console he can enter the directory. I could reproduce (sort of) this error with smbclient, it looks like this: smb: \> ls test2 NT_STATUS_NO_SUCH_FILE listing \test2 58028 blocks of size 4194304. 34997 blocks available smb: \> cd test2 smb: \test2\> ls . D0 Tue Jun 5 10:26:16 2007 .. D0 Tue Jun 5 10:27:40 2007 We have, as I said, Debian Etch with package sernet-samba 3.0.23b-13, Linux Kernel 2.6.15-28-686 on the servers (from Ubuntu LTS, since Kaspersky Antivirus won't work with the standard Etch Kernel), ext3 file system with ACL option. On the PDC kernel 2.6.18-4-686 is running. Can anyone explain that strange behaviour? Regards, Henry -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba