Re: [Samba] samba 2.2.3a / openLDAP connection problem
On Tue, 16 Mar 2004 12:38:32 + Martin Wood [EMAIL PROTECTED] wrote: Hi, ldapsearch -b ou=People,dc=ideaworks3d,dc=com -LLL -D cn=manager,dc=ideaworks3d,dc=com -W -x (uid=marvldap) gives me the correct output (the LDIF format entry for marvldap) but still no luck with smbpasswd -a smbuser If you don't happen to have your slapd providing ldaps only (and as your Samba-setup uses non-encrypted LDAP), then your best bet is to check the slapd-log/-debug-output: Does Samba connect to the LDAP-server? What does it (Samba) want? What does the LDAP-server think of it? etc... Sorry, I'm running out of ideas... Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba 2.2.3a / openLDAP connection problem
On Mon, 15 Mar 2004 16:47:14 + Martin Wood [EMAIL PROTECTED] wrote: Hi, ok, thanks for the replies so far...I dont seem to be having much luck the samba and ldap servers are on the same machine.. [...] ldapsearch -x '(cn=Manager)' gives : [nothing-found] Can you add entries to and search the directory without any Samba software involved? What does ldapsearch -x return? Also, try some more verbose ldapsearch-commands. Debian e.g. needs /etc/ldap/ldap.conf to hold BASE and URI information in order for ldapsearch -x '(pattern)' to succeed (AFAICT), otherwise your have to set these options explicitly... Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] LDAP: add machine script required?
On Fri, 22 Aug 2003 07:59:13 +0800 Nick Urbanik [EMAIL PROTECTED] wrote: My question is simply what should the add machine script do (now that you have clarified that I need one)? I wrote a create-machine-account.sh for Samba 2.2 ( http://homex.subnet.at/~max/ldap/index.php#samba-join-windows ). Summary of its actions: * Get the necessary data to be able to connect to the LDAP-server. (The script uses settings in pam_ldap.conf and ldap.secret for this.) * Next, it finds the highest uidNumber of any already existing machine-account. * If necessary, it creates the group machines. This group will be the group of all machines. * It checks if the machine-account already exists. If so, it exits. * If everything went fine until here, it creates the Linux-account. * Afterwards, it makes this new entry a full Samba-Machine-Account using smbpasswd -a -m. You will have to adapt this to work with Samba 3.0 (probably change attributes from sambaAccount to sambaSamAccount and similar stuff, but I don't know Samba 3.0 yet). Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Howto released: Using OpenLDAP on Debian Woody to serveLinux and Samba users
On Tue, 12 Aug 2003 21:15:25 +0200 Markus Amersdorfer [EMAIL PROTECTED] wrote: - -it is possible to set it up that machine accounts are created on the fly, in fact it can be setup such that non-root users can do join machines and have accounts added, which is how we default on Mandrake(by good file permissions). Got this working finally, with user root joining the domain. (I didn't try it as a DomainAdmin-user yet.) Document and script updated. Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Howto released: Using OpenLDAP on Debian Woody to serveLinux and Samba users
On Tue, 12 Aug 2003 15:51:45 +0200 Buchan Milne [EMAIL PROTECTED] wrote: Hi Buchan! I'd like to finally announce version 1.0 of my (unofficial) LDAP-Howto Using OpenLDAP on Debian Woody to serve Linux and Samba users: http://homex.subnet.at/~max/ldap/ I hope it may be of help to somebody. I notice that you do reference the mandrakesecure.net articles (since it's down, you may want to link to my personal copy, which may however be slightly out-of-date, my last edits were sent as diffs ... but is accessible here: http://ranger.dnsalias.com/samba-ldap-advanced.php Thanks, I included the link in my doc... There are a number of issues I addressed which you missed (even though you pulled some things straight from it) ... - -it is possible to set it up that machine accounts are created on the fly, in fact it can be setup such that non-root users can do join machines and have accounts added, which is how we default on Mandrake (by good file permissions). It was not covered in detail, since the packages are setup to work out-the-box. I tried this automatic user-creation as mentioned in http://homex.subnet.at/~max/ldap/#samba-join-windows , but unfortunately it didn't work in my case. Perhaps it's a Debian-package-problem, perhaps it's Samba 2.2.3a, probably I did sth. wrong. (While checking again, I may have found the error: according my log, I seemed to use smbldap-tools' option -g but forgot to specify a group the user account shall belong to. I'll try this again within the next weeks or so...) - -you should not need to edit the files from migration-tools (http://ranger.dnsalias.com/samba-ldap-advanced.php#initldap) Information added. - -I would seriously reccomend samba-2.2.8a over previous releases, since password changes from a BDC work (this only started working in 2.2.8 IIRC), but of course Debian doesn't have packages :-/ There _are_ Debian packages out there for Samba-2.2.8a, but these are only from unofficial sources. Most things I need work fine with 2.2.3a here currently, so I'll stick to this version as e.g. security-updates are provided for it by Debian's security team. Anyway, I think it would be better to improve the samba docs in respect to LDAP setup, ACK. Though of course Samba in general is large and LDAP is HUGE (concerning configurability, which might differ significantly from one implementation to the next). My biggest problem was not to get Samba working with LDAP, but to understand LDAP and get _this_ part of the overall setup working initially... Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Howto released: Using OpenLDAP on Debian Woody to serveLinux and Samba users
Hi everyone! I'd like to finally announce version 1.0 of my (unofficial) LDAP-Howto Using OpenLDAP on Debian Woody to serve Linux and Samba users: http://homex.subnet.at/~max/ldap/ I hope it may be of help to somebody. Of course, I'm always glad to hear about your opinion, additions, corrections or any other kind of add-ons. Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] DID IT! - Samba 2.2.8a+LDAP+PDC
On Sat, 9 Aug 2003 19:28:41 -0500 PHELPS, SCOTT [EMAIL PROTECTED] wrote: Hi! I even kept the same: domain name and old PDC NetBios name. The trickiest part was getting all of the users to keep their same profile, but I managed that by cloning the RID and Lanman/NT hashes for the user accounts. Could you tell us, how you managed to keep the same domain name and the old PDC's NetBios name? (I always thought that a (NT4-)PDC can't be demoted to anything less than a BDC without re-installing the whole thing. This combined with Samba 2.2 not being able to handle BDCs would render it impossible to keep the old domain/NetBios names... but it galdly seems I was wrong!?) Many thanks in advance!! Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3 + PDC + LDAP machine accounts
On Tue, 5 Aug 2003 17:38:15 +1200 [EMAIL PROTECTED] wrote: Hi! (eg had machines in ou=Machines,dc=domain,dc=com and people in ou=People,dc=domain,dc=com)? If so, how did you add machines? I've tried smbpasswd -a -m MACHINE and with debugging, it shows that it tries to find a posix account for MACHINE$ first, which obviously doesn't exist. As you probably know: you have to create a Linux-User first which resides in ou=Machines. In order to have the system find it when doing the lookup, you'll need to tell your NSS to also search in the Machines-tree for users: In /etc/ldap.conf (e.g. Mandrake) or /etc/libnss-ldap.conf (Debian), change as follows: # nss_base_passwd ou=People,dc=domain,dc=net nss_base_passwd dc=domain,dc=net?sub The actual fault is, after determining that a sambaSamAccount object doesn't exist, it goes back to getpwnam to try and find an account. Obviously if I am putting machines in a different tree, pam_ldap, etc aren't going to find them there. Right. Just that it's not pam_ldap but lib-nss. (PAM does the authentication-stuff while NSS does the user-lookups.) (At least Samba 2.2.x relies on NSS too.) The problem I had while trying this with Debian's 2.2.3a yesterday was that I _could_ get the system (and Samba) to find the Linux user, but smbpasswd -m -a created an entry in ou=People nevertheless. This means, I got two entries for one machine: the Linux-User machine$ in ou=Machines, and the Samba-part in ou=People. Any idea how to fix this? (I move machines to ou=People now, but I'd also rather see them in ou=Machines...) Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: pdbedit [ WAS Re: [Samba] smbpasswd and LDAP
On Fri, 1 Aug 2003 17:47:11 +0700 Beast [EMAIL PROTECTED] wrote: It seems samba was trying to add this new user instead of modify. Whenever I add new user which doesn't has posixaccount yet, smbpasswd refused to add. It's like chicken and egg pb. Aah.., using pdbedit -a was able to add new (non existing posixaccount), but what if I want to add custom attributes? So you solved your problems finally? I suppose with add custom attributes you mean you want to write your own schema-file and have the users use these new objectClass(es) and attributes. Well, then just use LDAP-commands to assign them to them. That's nothing Samba-specific... (Don't ask me how to apply a specific LDAP-command such as ldapmodify to a perhaps large subset of all LDAP entries ... I just don't know that yet either.) Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] smbpasswd and LDAP
On Sat, 26 Jul 2003 12:38:12 +0700 Beast [EMAIL PROTECTED] wrote: Hi! Is it possible to use smbpasswd command to add necessary objectclasses and attributes to existing ldap entries which contain only posix account?? Yes, it should work. I got invalid DN syntax when adding smbuser using smbpasswd : - [EMAIL PROTECTED] root]# smbpasswd -a beast New SMB password: Retype new SMB password: failed to add domain dn= sambaDomainName=DJKT,dc=mydomain,dc=com with: Invalid DN syntax invalid DN Adding domain info for DJKT failed with NT_STATUS_UNSUCCESSFUL failed to add user dn= uid=beast,ou=people,dc=mydomain,dc=com with: Invalid DN syntax invalid DN failed to modify/add user with uid = beast (dn = uid=beast,ou=people,dc=mydomain,dc=com) Failed to add entry for user beast. Failed to modify password entry for user beast I have necessary ldap entry under ou=people,ou=mysite,dc=mydomain,dc=com. Your LDAP entries really are at ou=, ou=, dc=, dc=? This setup is not a standard setup (which holds people in ou=People,dc=mydomain,dc=net. You'll have to tell Samba about where to search for your Users using smb.conf's option ldap suffix. Here are my LDAP-settings in smb.conf: # Without SSL: ldap admin dn = cn=manager,dc=mydomain,dc=net ldap server = ldap.mydomain.net ldap suffix = ou=People,dc=mydomain,dc=net # Plus these options for SSL support: #ldap port = 636 #ldap ssl = on Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] winbind, pam_stack and debian
On 01 Aug 2003 11:27:32 +1200 Brent Addis [EMAIL PROTECTED] wrote: Im trying to get a samba pc reading passwords off a windows pdc for authorising user shares. The howtos all say to use pam_stack.so for this however it does not exist in debian (its a redhat thing). is there a workaround for this? AFAIR libpam-smb does what you want. Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba-ldap-debian
On Tue, 22 Jul 2003 12:24:10 +0200 Thomas Dewar [EMAIL PROTECTED] wrote: Actually when i try and compile with --with-ldapsam I get this error durinf the coonfigure run : checking configure summary** configure: error: summary failure. Aborting config Any idea of what this could be? Not from my own experience. Anyway, Google might be your friend on this one too... Here's sth I found: -- What did I do wrong? maybe you should be root? configure scripts some times really get confused if they aren't running as root. -- Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba-ldap-debian
On Mon, 21 Jul 2003 11:35:50 +0200 Thomas Dewar [EMAIL PROTECTED] wrote: Hi! Run smbpasswd -w $LDAP_BINDPW thanxs for paying attention to my problems but smbpasswd doesn't work : no matter how I change debian/rules by adding --with-ldapsam (or even --with-ldap) I keep on getting the same error which is : -w not available unless configured --with-ldap what have I done wrong? Hmm, don't know exactly but it simply seems your installed Samba does not support LDAP. I can't remember exactly at the moment, but you will most probably need the ldap-development package(s) be installed when compiling Samba. (Otherwise it will probably compile and produce .deb-packages correctly without you noticing that somewhere in the configuration/compilation output it tells you it can't find LDAP and thus will have no support for it.) [0 [EMAIL PROTECTED]:max]$ dpkg -l '*ldap*dev*' [...] hi libldap2-dev 2.0.23-6OpenLDAP development libraries. [...] Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] samba-ldap-debian
On Wed, 16 Jul 2003 17:56:48 +0200 Thomas Dewar [EMAIL PROTECTED] wrote: Hi Thomas! I'm pretty new with all this ... but I know that you can configure samba with the ldap module by doing : ./configure --with-ldap But how do you proceed with apt from Debian as the only module which concerns samba is : apt-get install samba. To be precise: samba is not a module but a package (which depends on other packages such as samba-common itself). it is probably a small silly question but thanx for your help anyway... I'm currently writing a Debian-LDAP-HOWTO (will be available from my homepage within the next weeks or so) with more thorough explanations of how to do what and when - including Samba. Nevertheless, the answer to your question boils down to something like: Samba 2.2 can only one method at a time: keep the users in local flat files (default) or keep them in an LDAP-tree. To change from one to the other you have to recompile. Debian defaults to the default :) in this case. You need to get the Debian source packages for Samba: Add sth. like the following to /etc/apt/sources.list deb-src http://ftp.de.debian.org/debian woody main contrib non-free and run apt-get update mkdir ~/samba-source cd ~/samba-source apt-get source samba cd samba-2.2.3a vi debian/rules -- add --with-ldapsam \ just before --with-msdfs dpkg-buildpackage The last command will either build the packages or complain of some build-dependencies you have to meet. apt-get install these packages (it tells you) and run dpkg-buildpackage again. cd .. dpkg -i samba-common_2.2.3a-12_i386.deb samba_2.2.3a-12_i386.deb You'll probabely also install smbclient, smbfs, samba-doc and whatever else you might find useful. Last but not least: set the packages to HOLD status (so that they won't be replaced by Debian's packaging system with the next upgrade) and _keep track of security issues_ yourself from now on (as the packages won't be upgraded automatically). Here are some add-ons: Include /usr/share/doc/samba-doc/examples/examples/LDAP/samba.schema.gz in your LDAP's configuration. Run smbpasswd -w $LDAP_BINDPW [this password for smb.conf's option ldap admin dn is stored in /var/lib/samba/secrets.tdb] /etc/samba/smb.conf: [global] # LDAP-stuff: ldap admin dn = cn=manager,dc=yourdomain,dc=net ldap server = ldap.yourdomain.net ldap suffix = ou=People,dc=yourdomain,dc=net ldap port = 636 ldap ssl = on # last two options depend on your LDAP-server's capabilities... Please, let me know if it worked (it did for me...), thanks. Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Searching for Doku Samba with LDAP
On Wed, 25 Jun 2003 08:31:53 +0200 Robert Einsle [EMAIL PROTECTED] wrote: Hi! Can anyone send me links about Dokumentation about LDAP and Samba, acting as an PDC. I've found the following documentation to be really great: http://www.mandrakesecure.net/en/docs/ldap-auth2.php http://www.mandrakesecure.net/en/docs/samba-pdc.php Just building a Samba/LDAP-server myself currently, I haven't checked out the second link yet, but AFAICT it covers machine accounts too. Cheers, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Problem logging on to successfully joined domain
Hi! I'm running Debian Sarge's Samba 2.2.3a-14 and already successfully joined the Win2k-client (SP3) to the Samba-PDC-domain. Nevertheless, I can't logon to the domain, getting the error-message: The system cannot log you on to this domain because the system's computer account in its primary domain is missing or the password on that account is incorrect. It seems, the password-fields in smbpasswd the client's machine-account are not changed when joining the domain. (I joined the domain using the Samba-root-user, smbpasswd says it has UID 0.) Restarting nmbd -d 4 and smbd -d 4 and trying to logon (though I don't know what to look for actually): Allowed connection from thistle Null passwords not allowed. authorise_login: ACCEPTED: guest account and guest ok (nobody). A lot of times the following logs: change_to_user: Skipping user change - already user. [...] Found policy hnd[1] [...] free_pipe_context: destroying talloc pool of size 0[...] Ending with thistlew (192.168.0.20) closed connection to service IPC$ Yielding connection to IPC$ [...] receive_smb error (Success) exiting [...] Closing connections Yielding connection to Server exit(normal exit) Any idea what's wrong here? Thanks in advance! Max -- This is no computer, this is my archenemy! O'Brien, The Forsaken, ST DS9 http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ACL permissions with XP problem
On Thu, 27 Feb 2003 09:47:53 -0600 Brad Sagowitz [EMAIL PROTECTED] wrote: RedHat 7.3 with XFS (using the XFS install disk) After installation I'd downloaded 2.2.7 src rpm from redhat and rebuilt it with the --with-acl-support option in the samba.spec file Did you have acl-dev installed when compiling Samba? Of not, the configure-process will kick ACL-support but continue compiling although you specified --with-acl-support. Make sure your smbd has ACL-support built in: ldd /usr/sbin/smbd The output should contain something like libacl.so.1 = /lib/libacl.so.1 So long, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Redhat ACL support
On Wed, 5 Feb 2003 09:09:41 -0500 David Gibbins [EMAIL PROTECTED] wrote: What files do I need and from where, to install ACL support for RedHat 8? In contrast to the approach with EXT3 already explained in another posting, you can use XFS as your filesystem which already has ACL-support built in. I wrote a description here http://homex.subnet.at/~max/comp-12_xfs.php using a Debian system, nevertheless you should be able to easily transform it for use with RedHat. So long, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Re: Re: SMB+LDAP Question ...
On Fri, 17 Jan 2003 19:31:46 +0100 Thomas Nilsen [EMAIL PROTECTED] wrote: I think I'll sit down and write a complete howto on getting all of this working together. Most existing howto's seems to only include bits of the puzzle. That'd be ++great! :)) If you really do, could you post the link here, please? Thx in advance! Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Has anybody got ACL to work w/ debian, winbindd in a w2k mixed domain?
On Sun, 08 Dec 2002 23:06:45 + Jacob Malmberg [EMAIL PROTECTED] wrote: Ppl also tell me this is because of some bug in debian. So, as the subject says, anybody got acl to work w/ debian 3, winbindd in a domain? I wrote down my process of getting XFS and Samba-with-ACL working with Debian 3 here: http://homex.subnet.at/~max/comp-12_xfs.php Mind: I did not play 'round with winbindd. So long, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Another Samba+ACLs thread
On Wed, 27 Nov 2002 11:22:19 +0800 Andrew Furey [EMAIL PROTECTED] wrote: On further investigation, it appears that I _can_ modify existing ACLs, and I can even remove them (users, at least); but I can't add users to the ACL, which is what I really need. Your w2k-client has to join the Windows-Domain. I only tried this once with the Samba-Server being the domain's PDC and a w2k-client being directly connected to it. As long as the client had not joined the domain, I could not add users which were generally known to the server but only change ACLs of users which were already attached to the file. So long, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ACLs with samba
On Mon, 25 Nov 2002 19:56:49 -0500 Tom Hallewell [EMAIL PROTECTED] wrote: Hi! The problem now is that once we got acl-dev installed, samba won't compile at all. Is there anyone out there using ACLs under Debian Woody and if so, would you please tell us what versions of the various ACL/ATTR/fileutils packages you are using? [...] got a bunch of ugly stuff like this: include/vfs.h:111: parse error before acl_t [...] Any input would be greatly appreciated-we have tried both samba 2.2.6 and 2.2.7 and are running out of ideas... Hmmm... Sorry, I'll probabely be of little help on this one. I used Woody as it is (all packages including the Samba source package (Samba version 2.2.3a) which compiled and worked flawlessly). Here is what I did to get XFS and Samba with ACLs working: http://homex.subnet.at/~max/comp-12_xfs.php So long, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] ACLs with samba
On Thu, 21 Nov 2002 16:07:08 -0500 Tom Hallewell [EMAIL PROTECTED] wrote: 1. I am unable to alter permissions from Win2K clients using the Properties-Security interface. Is this normal? I get the Unable to save Permission Changes on new Folder. Access is denied. message. This occurs with all accounts, both privileged and unprivileged. Are you sure you compiled Samba with ACL support? `ldd /path-to-your/smbd` should show libacl.so.1 in it's list. Even when giving the option --with-acl it's possible it didn't compile with ACL support due to the perhaps not installed dev-package acl-dev (which is available as DEB-package). So long, Max -- The first time any man's freedom is trodden on, we're all damaged. Cpt. Picard, The Drumhead, StarTrek TNG http://homex.subnet.at/~max/ -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Joining A Windows Domain
On Tue, 14 May 2002 10:05:55 -0500 Jim Hale [EMAIL PROTECTED] wrote: I must have had a brain-fart since the last time I tried this but what is the command line to join a Linux machine to a Windows domain? lynx /usr/share/doc/samba-doc/htmldocs/DOMAIN_MEMBER.html So long, Max -- An expert is someone who can tell you exactly afterwards, why his prognosis was not correct. Winston Churchill -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba