[Samba] home directories ask user for password
Hi to all, I have Samba configured as domain member with winbind and kerberos, I can access all share but I have some problem with the home directories because it ask me for password. This is my smb.conf [global] workgroup = domain netbios name = Manufac server string = Server di rete comment = server di rete encrypt passwords = true realm = DOMAIN..LOCAL password server = pdc01.domain.local security = ADS winbind enum users = yes winbind enum groups = yes winbind separator= + idmap uid = 500-1 idmap gid = 500-1 template shell = /bin/true syslog = 0 log file = /var/log/samba/log.%m max log size = 1000 dns proxy = No ldap ssl = no panic action = /usr/share/samba/panic-action %d invalid users = root template homedir = /home/%U [homes] comment = Home Directories browseable = no writable = yes public = no valid users = DOMAIN/%U create mode = 0777 directory mode = 0777 I have the home directory created in /home/ with domain user right Thank you in advance. Bye -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] home directories ask user for password
Perhaps removing the 'valid users' solves your problem. In theory it can only display the homedir of the user connecting. The 'homes' share is translated to the user name. Below if my current config that is working for me. The preexec that I have is creating the homedir if it does not exist (Perhaps that may be another possible cause of your error?). Script is included. Make sure you change $path to your homedir location. For quota uncomment and change the quota function for a given device. Hi Ton, Thank you for the help. I tryed to set your configuration. It creates the home directories but I receive access denied, wathching into the log I found that it looking for username.dll file but I don't know the matter. Below the log ... Bye Massimo [2009/11/23 14:43:05, 0] param/loadparm.c:process_usershare_file(4611) process_usershare_file: stat of /var/lib/samba/usershares/massimo.dll failed. Permission denied [2009/11/23 14:43:07, 0] param/loadparm.c:process_usershare_file(4611) process_usershare_file: stat of /var/lib/samba/usershares/massimo.dll failed. No such file or directory [2009/11/23 14:43:07, 0] smbd/service.c:make_connection(1200) kdgp3fb (10.29.30.1) couldn't find service massimo.dll [2009/11/23 14:43:07, 0] smbd/service.c:set_current_service(184) chdir (/home/massimo) failed [2009/11/23 14:43:07, 0] param/loadparm.c:process_usershare_file(4611) process_usershare_file: stat of /var/lib/samba/usershares/massimo.dll failed. Permission denied [2009/11/23 14:43:09, 0] param/loadparm.c:process_usershare_file(4611) process_usershare_file: stat of /var/lib/samba/usershares/massimo.dll failed. No such file or directory [2009/11/23 14:43:09, 0] smbd/service.c:make_connection(1200) kdgp3fb (10.29.30.1) couldn't find service massimo.dll [2009/11/23 14:43:09, 0] smbd/service.c:set_current_service(184) chdir (/home/massimo) failed [2009/11/23 14:43:09, 0] smbd/service.c:set_current_service(184) chdir (/home/massimo) failed [2009/11/23 14:43:09, 0] smbd/service.c:set_current_service(184) chdir (/home/massimo) failed [2009/11/23 14:43:09, 0] smbd/service.c:set_current_service(184) chdir (/home/massimo) failed -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] getent doesnt't list group - resolved
Thank you very much, it's one week which I was trying to resolve this problem :-) Perhaps use 'winbind' instead of 'windind' :-) Bye Massimo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] getent doesnt't list group - resolved
Perhaps use 'winbind' instead of 'windind' :-) Thank you very much, it's one week which I was trying to resolve this problem :-) Bye Massimo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] getent doesnt't list group
Hi to all, I have installed Samba+winbind+kerberos on a Ubuntu OS, configured authentication to our ads domain as member I can list user and group using wbinfo, if I use getent I have the ADS user but not the ads group (only local group). The problem is that samba does not recognize group in the filesystem and assign a wrong gid to the objects. I tried to change winbind separator to \ or / but with no success My samba and winbind version is 3.028a. my smb.conf: [global] workgroup = domain netbios name = Manufac server string = Server include = /etc/samba/dhcp.conf encrypt passwords = true nbs p; realm = DOMAIN.LOCAL password server = pdc.domain.local security = ADS winbind enum users = yes winbind enum groups = yes winbind separator= + idmap uid = 500-1 idmap gid = 500-1 template homedir = /dev/null template shell = /bin/true syslog = 0 log file = /var/log/samba/log.%m max log size = 1000 dns proxy = No n bsp; ldap ssl = no panic action = /usr/share/samba/panic-action %d invalid users = root [homes] comment = Cartella Personale valid users = %S read only = No inherit acls = Yes hide unreadable = Yes browseable = No [divisioni] comment = Divisioni path = /condivisioni/divisioni/ read only = No create mask = 0777 n bsp; directory mask = 0777 inherit acls = Yes map acl inherit = Yes store dos attributes = Yes hide unreadable = Yes my nssswitch.conf passwd: compat winbind group: compat windind shadow: files hosts: files dns networks: files protocols: db files services: db files ethers: db files rpc: n bsp; db files netgroup: nis Thank you in advance. Bye -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] smbclient: tdb_fetch_uint32 failed
Massimo Maiurana, il 22/08/2008 18:59, scrisse: bug in the fedora package? in this version of samba? in me :)? some more console output from today's session: [EMAIL PROTECTED] samba]# pdbedit -Lv --- Unix username:barbara NT username: Account Flags:[U ] User SID: S-1-5-21-4006416855-825432111-2697360864-2000 Primary Group SID:S-1-5-21-4006416855-825432111-2697360864-513 Full Name:Barbara Home Directory: \\barbara\barbara HomeDir Drive: Logon Script: Profile Path: \\barbara\barbara\profile Domain: BARBARA Account desc: Workstations: Munged dial: Logon time: 0 Logoff time: never Kickoff time: never Password last set:gio, 21 ago 2008 09:40:36 CEST Password can change: gio, 21 ago 2008 09:40:36 CEST Password must change: never Last bad password : 0 Bad password count : 0 Logon hours : FF [EMAIL PROTECTED] samba]# chmod g+w,g+s,o+w /home/barbara/Documenti -R [EMAIL PROTECTED] samba]# smbclient //barbara/ufficio -U barbara Enter barbara's password: session setup failed: NT_STATUS_LOGON_FAILURE [EMAIL PROTECTED] samba]# smbclient //barbara/ufficio Enter barbara's password: Anonymous login successful Domain=[GRECOELEVATORI] OS=[Unix] Server=[Samba 3.2.0-17.fc9] tree connect failed: NT_STATUS_BAD_NETWORK_NAME [EMAIL PROTECTED] samba]# ls -l /var/lib/samba totale 424 -rw--- 1 root root 16384 20 ago 14:12 account_policy.tdb -rw-r--r-- 1 root root 40200 25 ago 11:04 brlock.tdb -rw-r--r-- 1 root root 170 25 ago 11:10 browse.dat -rw-r--r-- 1 root root 90112 25 ago 11:23 connections.tdb -rw-r--r-- 1 root root8192 25 ago 11:22 gencache.tdb -rw-rw-rw- 1 root root 77824 20 ago 14:10 group_mapping.ldb -rw-r--r-- 1 root root 40200 25 ago 11:04 locking.tdb -rw--- 1 root root 696 25 ago 11:04 messages.tdb -rw-r--r-- 1 root root 696 25 ago 11:23 notify.tdb -rw--- 1 root root8192 20 ago 14:10 ntdrivers.tdb -rw--- 1 root root 696 20 ago 14:10 ntforms.tdb -rw--- 1 root root 20480 25 ago 11:04 ntprinters.tdb drwxr-xr-x 2 root root4096 18 ago 15:37 perfmon drwxr-xr-x 2 root root4096 20 ago 15:52 printing drwx-- 2 root root4096 20 ago 15:48 private -rw--- 1 root root 36864 25 ago 11:04 registry.tdb drwxr-xr-x 2 root root4096 1 lug 18:25 scripts -rw-r--r-- 1 root root 696 25 ago 11:04 sessionid.tdb -rw--- 1 root root 16384 20 ago 14:13 share_info.tdb -rw-r--r-- 1 root root 28672 21 ago 09:57 unexpected.tdb drwxr-x--- 2 root wbpriv 4096 1 lug 18:25 winbindd_privileged any idea? -- Massimo Maiurana massimoatragusa.linux.it http://massimo.solira.org GPG keyID #7044D601 Articolo 33 - [...]Enti e privati hanno il diritto di istituire scuole ed istituti di educazione, senza oneri per lo Stato.[...] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] smbclient: tdb_fetch_uint32 failed
hi all, I'm facing a problem with a brand new installation on fedora 9. packages were updated right after the installation, so the samba packages are of the latest available version (3.2.0-17.fc9). at the first run were created all the tree of tdb files under /var/lib/samba. now I create a new user: [EMAIL PROTECTED] Scrivania]# smbpasswd -a barbara New SMB password: Retype new SMB password: Added user barbara. looks like the user was created, but in the log I can see a bunch of lines like this: lib/account_pol.c: account_policy_get(324) account_policy_get: tdb_fetch_uint32 failed for field $n ...where $n is a number between 1 and 10, so basically I get ten of those lines. every attempt to change user's password ends with this: [EMAIL PROTECTED] ~]$ smbpasswd Old SMB password: New SMB password: Retype new SMB password: cli_pipe_validate_current_pdu: RPC fault code DCERPC_FAULT_OP_RNG_ERROR received from remote machine 127.0.0.1 pipe \samr fnum 0x7672! machine 127.0.0.1 rejected the password change: Error was : NT code 0x1c010002. Failed to change password for barbara also, if I try to connect to the server from the same machine this is what I get: [EMAIL PROTECTED] ~]$ smbclient barbara\\Ufficio -U barbara Enter barbara's password: Domain=[BARBARA] OS=[Unix] Server=[Samba 3.2.0-17.fc9] tree connect failed: NT_STATUS_BAD_NETWORK_NAME it would look like the requested share is non-existent, but unfortunately it isn't so: [EMAIL PROTECTED] ~]$ smbclient -L barbara Enter barbara's password: Domain=[BARBARA] OS=[Unix] Server=[Samba 3.2.0-17.fc9] Sharename Type Comment - --- Ufficio Disk Ufficio IPC$IPC IPC Service (Samba Server Version 3.2.0-17.fc9) SCX-4x16_Series Printer Samsung SCX-4x16 Series Domain=[BARBARA] OS=[Unix] Server=[Samba 3.2.0-17.fc9] Server Comment ---- WorkgroupMaster ---- GRECOELEVATORI BARBARA and indeed the shared directory exists: [EMAIL PROTECTED] ~]$ ls -l /home/barbara/Documenti totale 4 drwxr-xr-x 28 barbara barbara 4096 1 ago 10:19 Ufficio in the same lan there is also a win98 client, and neither it is able to access to the public share. using map to guest = Bad User I'm able at least to access the printer but not the share. here is my smb.conf stripped from commented and empty lines: [global] workgroup = grecoelevatori server string = Samba Server Version %v lanman auth = yes client lanman auth = yes ntlm auth = no client ntlmv2 auth = no map to guest = Bad User log file = /var/log/samba/log.%m max log size = 50 security = user passdb backend = tdbsam load printers = yes cups options = raw [printers] comment = All Printers path = /var/spool/samba browseable = no guest ok = yes writable = no printable = yes [Ufficio] comment = Ufficio path = /home/barbara/Documenti/Ufficio public = yes writable = yes printable = no browseable = yes and here is what I see in the log when trying to access the public share, either from localhost and from the win98 client: [2008/08/20 15:56:44, 0] smbd/service.c:make_connection_snum(1152) '/home/barbara/Documenti/Ufficio' does not exist or permission denied when connecting to [Ufficio] Error was Permission denied bug in the fedora package? in this version of samba? in me :)? again, this does happens on an installation from scratch, do not really know if all is fine when there are a previous installation and an existing /var/lib/samba. thanks in advance, and sorry for my english. -- Massimo Maiurana massimoatragusa.linux.it http://massimo.solira.org GPG keyID #7044D601 Articolo 33 - [...]Enti e privati hanno il diritto di istituire scuole ed istituti di educazione, senza oneri per lo Stato.[...] -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba Binary Package 1.9 downloading info
Dear, as system admnistrator of Luxottica's LAN in Italy and in China, I need the information about the existence of a URL for downloading Samba Binary Package 1.9 (I suggest) for HP-UX 9.07 for HP 9000 Series 700. Please can anyone help me ? Thank you Massimo Pilato Luxottica S.r.l. Agordo (BL) - ITALY - This message (including any attachments) is intended exclusively for the use of the individual or entity to which it is addressed and may contain information that is confidential, proprietary, privileged, non-public and exempt from disclosure. If you are not the intended recipient, you are prohibited from any use, dissemination, distribution or copying of the information contained in this message. If you have received this communication by mistake, please notify us and delete this message and its attachments immediately. Thank you. Il presente messaggio (che include gli allegati) e' inviato ad uso esclusivo della parte cui e' indirizzato e puo' contenere informazioni riservate, coperte da segreto professionale o comunque non divulgabili. Qualora Lei non sia il corretto destinatario del messaggio, le e' fatto divieto di qualsiasi uso, divulgazione, copia o riproduzione del medesimo. Se ha ricevuto questo messaggio per errore, la preghiamo di comunicare al mittente l'accaduto e di cancellare dal suo sistema il presente messaggio e gli allegati immediatamente. Grazie. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Samba Binary Package 1.9 downloading info
Dear, as system admnistrator of Luxottica's LAN in Italy and in China, I need the information about the existence of a URL for downloading Samba Binary Package 1.9 (I suggest) for HP-UX 9.07 for HP 9000 Series 700. Please can anyone help me ? Thank you Massimo Pilato Luxottica S.r.l. Agordo (BL) - ITALY - This message (including any attachments) is intended exclusively for the use of the individual or entity to which it is addressed and may contain information that is confidential, proprietary, privileged, non-public and exempt from disclosure. If you are not the intended recipient, you are prohibited from any use, dissemination, distribution or copying of the information contained in this message. If you have received this communication by mistake, please notify us and delete this message and its attachments immediately. Thank you. Il presente messaggio (che include gli allegati) e' inviato ad uso esclusivo della parte cui e' indirizzato e puo' contenere informazioni riservate, coperte da segreto professionale o comunque non divulgabili. Qualora Lei non sia il corretto destinatario del messaggio, le e' fatto divieto di qualsiasi uso, divulgazione, copia o riproduzione del medesimo. Se ha ricevuto questo messaggio per errore, la preghiamo di comunicare al mittente l'accaduto e di cancellare dal suo sistema il presente messaggio e gli allegati immediatamente. Grazie. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Problem joining linux client to active directory
Hello We are trying to join a suse linux 10 client to a W2000 Active Directory but the operation fails generating an event id = 681 into the Domain Controller event viewer , kerberos and samba components seems to be correctly installed, in fact the kinit and browse network are working fine. On Active directory we don't have full administrative privileges but we have enought right to create and join computer accounts in some specific Organizational Unit. Did someone already found a solution about this problem? Is there a way to join linux client to AD without having full Administrative rights ? Thanks M.Benella --- This e-mail is confidential. If you are not the addressee or an authorized recipient of this message, any distribution, copying, publication or use of this information for any purpose is prohibited. Please notify the sender immediately by e-mail and then delete this message. Ce message est confidentiel. Si vous n'etes pas le destinataire designe de ce message ou une personne autorisee a l'utiliser, toute distribution, copie, publication ou usage a quelques fins que ce soit des informations contenues dans ce message sont interdits. Merci d'informer immediatement l'expediteur par messagerie electronique et d'ensuite detruire ce message. --- -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] Re: security
Alexey Lobanov [EMAIL PROTECTED] ha scritto nel messaggio news:[EMAIL PROTECTED] Hi Erik. :~$ mount . /dev/md0 on /home type ext2 (rw,nosuid,nodev,usrquota,acl) ~$ uname -a Linux woody 2.4.21 #2 Thu Aug 21 17:20:40 MSD 2003 i686 unknown oops woody acl samba? sorry if i put myself in the middle of this but i read somewhere that is were not possible to use acl on ext3 (you actually use ext2 but...) and enable them in samba using a debian distro.. My production server is actually a woody stable with recompiled kernel from kernel.org 2.4.22 and samba 2.2.8a from samba.org. Is you server a production server? is stable? i'm using ann IBM xSeries 235 with raid 5 scsi controller and 3 disks... is it auspicable i can obtain acl works in this context? Thank you for your opinion, Massimo Crisantemo -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Re: XP Pro connecting to PDC
Moondance Foxmarnick [EMAIL PROTECTED] ha scritto nel messaggio news:[EMAIL PROTECTED] Did you do the registry hack? They say to do it if you do not get the Welcome to the domain box, but I got that box and then couldn't log in with a user. I applied the hack and re-booted. Logged in without a problem. HKEY_LOCAL_MACHINE - SYSTEM - CurrentControlSet - Services - Netlogon - Parameters - requiresignorseal /change from 1 to 0 At 01:30 PM 9/22/03 -0700, you wrote: hi, i don't know if i have understand correctly the thread but i my exerience to let Xp join a NT domain i have to change few things.. - be sure that netBIOS is enabled in TCP/IP, - second be sure that if DHCP server exists it pass the WINS server addres to the client, look here http://support.microsoft.com/default.aspx?scid=kb;en-us;810497 look here http://support.microsoft.com/default.aspx?scid=kb;EN-US;314366 look here http://support.microsoft.com/default.aspx?scid=kb;en-us;318266 normally the last one is the one that prevent xp to log in a NT domain (and samba 2.2.x). hope this help Massimo -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Re: Printer Driver Support for samba 3.0 rc4
Brian C Otto [EMAIL PROTECTED] ha scritto nel messaggio news:[EMAIL PROTECTED] Anyone have an elegant solution for print driver install/support for windoz workstations on samba? don't know V3 but V2.2.8a and previous support pick'n'print something like windows that have the drivers in the print$ folder and clients pick them from the print/server and them use them... but unfortunately i wrote weeks ago and nobody knows (or it seems) why it doesn't work with some printers.. (read also other thread regarding this). hope this help.. Massimo -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Re: to the list admins: viruses
kurt weiss [EMAIL PROTECTED] ha scritto nel messaggio news:[EMAIL PROTECTED] is it possible to block all .exe|.pif|.reg|... extentions from listside. it's too much traffic here, when a new virus appears... i blocked folder but i think you can block also files... just add in every share definition : veto files = .*exe|.*pif|.*reg but i'mnot so sure, for folder it works. Hope this help. Massimo -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] Re: Samba as a password and file server
Hola! I done it using the option logon home = logon path = this have removed the roaming profiles. hope this help Massimo [EMAIL PROTECTED] ha scritto nel messaggio news:[EMAIL PROTECTED] Hi all. I ve been trying to do the following: i want my Samba 2.8 to act as a PDC but without using roaming profiles. all of the clients are win2000 pro. is it possible? what do i have to do?? thanks in advance sebastian E-mail y acceso a Internet UltraVeloz totalmente GRATIS en Buenos Aires, Rosario, Cordoba, Mendoza, La Plata y Pilar http://www.Argentina.com Nro. de acceso 5078-5000 Usuario: Argentina Password: Argentina -- Obtenga gratis su cuenta @Argentina.com con AntiVirus, 20mb de espacio y acceso libre UltraVeloz en 24 ciudades www.Argentina.com -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
[Samba] 2.2.8a+Debian woody PDC share permission / print$ wizard does not work as it will
Hy every body, I try to read all news in this channel before posting but none answer to my problem... Let show... Debian/Woody + samba 2.2.8a acting as PDC, some WinNT clients, roaming profiles disabled. The users are all with primary group 106, and are members of other group. They can log on correctly, quite everythink work fine but... First, I defined some share with the option valid users = user1, user2 ecc. accordigly with this user1 and user2 con access the share, but when all the other users 'click' on that share a logon window open requiring username and password (i like to obtain an 'acces denied' response istead as WinNT4.0 Server). Is it possible to do? Second, I setted up cups as printer manager and i defined some printers as 'raw' to be visible to the clients, i've also defined a [print$] share to contain the windows drivers, when i log on as a print-admin and i start a wizard to upload the drivers for the printers some time it works others no, currently only if the printer is a laser printer it does work if are ink-jet it doens't. Actually i been able to install the drivers only for HP1100 and HP4050 printers, i need to install them also for some HP500 DesignJet A0 plotters and HP1700D printers and other Ricoh multi pourposes 'metal-plastic assembly'. I do tried to install the drivers with the wizard or manually with the rpcclient command from the linux-box (actually trought putty) but ; if i istall the drivers with the wizard it work quite fine till the end, i try to print the test page and it return a windows that more or less says 'the system call is too small, would you like to consult the help?' or just 'print test failed' , if i try to install manually with the rpcclient command 'install drivers' it return the eeror that the sequence is invalid. In any case the rpcclient 'enumdrivers' show that all seems ok and the drivers are assigned to the right printer, the drivers are in the right sub-folder of print$ (w32x86/2 for 'Windows NT x86 architecture'), but i a client try to print using that printer let's say with Winword it simply crash. please ask me more details if you need to understand the question's Any ideas? Thank you in advance (TIA) Massimo Crisantemo -- To unsubscribe from this list go to the following URL and read the instructions: http://lists.samba.org/mailman/listinfo/samba
quota group
=get_smb_linux_gen_quota(mnt-mnt_fsname, euser_id, D, 'u'); if (r == -1) { - r=get_smb_linux_v2_quota(mnt-mnt_fsname, euser_id, D); + r=get_smb_linux_v2_quota(mnt-mnt_fsname, euser_id, D, 'u'); if (r == -1) - r=get_smb_linux_v1_quota(mnt-mnt_fsname, euser_id, D); + r=get_smb_linux_v1_quota(mnt-mnt_fsname, euser_id, D, 'u'); } } else { - r=get_smb_linux_xfs_quota(mnt-mnt_fsname, euser_id, D); + r=get_smb_linux_xfs_quota(mnt-mnt_fsname, euser_id, D, 'u'); } + + /* Massimo Del Sarto delsarto at inpe.unipi.it */ + /* if no limits try with quota group ad gid of the dir */ + if (r != -1) + if ( (D.softlimit == 0) (D.hardlimit == 0) ) { + if (strcmp(mnt-mnt_type, xfs)) { + r=get_smb_linux_gen_quota(mnt-mnt_fsname, fgrp_id, D, 'g'); + if (r == -1) { + r=get_smb_linux_v2_quota(mnt-mnt_fsname, fgrp_id, D, 'g'); + if (r == -1) + r=get_smb_linux_v1_quota(mnt-mnt_fsname, fgrp_id, D, 'g'); + } + } else { + r=get_smb_linux_xfs_quota(mnt-mnt_fsname, fgrp_id, D, 'g'); + } + } restore_re_uid();
Re: quota group
At 21.55 05/03/2003 +1100, Andrew Bartlett wrote: On Wed, 2003-03-05 at 20:32, Massimo Del Sarto wrote: I use samba on redhat linux (7.1) For default in redhat each user has also his own group. I created a new group for each samba share that I defined so I can control which users can access to the shares, but if I use the user quota I can't control the quota on this shares. Using a group quota I can assign separate quota to each share (the shares are on the same HD partition): - each user has a quota on the home share - each not home share has its own quota The only problem is that I can't see the quota in windows box. So I modified the smbd/quotas.c to read the quota group associated to the group of the file/directory if the user quota result is 0 (zero). I added a parameter to the function get_smb_linux_* to get an user or a group quota. Wouldn't it be better to report the smaller of the two quotas? I forgotten: - All user have umask set to 002; - In (not home) share I sgid the directory with chmod 2770 share dir and assign a group at this directory (chgrp share group share dir). - In the smb.conf I use inherit permissions = Yes in the share definition. So each files that are created are forced to have the same group of the parent directory In the home directory the files have the gid equal to the uid. In not home (share) directory the files have the gid equal to the group that i created for this share. The result of user quota is 0 (zero) because the user quota are set to 0 (No limit in the user quota) so I can't report a value of 0. Only the group quota is set to a value 0 My patch is tested only in rehat 7.1 and work only on linux. A lot of work must done to extended my idea to all the O.S. Can Stefan Metzmacher do this work and insert in on own patch? Massimo I attach the output of the commnad: diff -u -r samba-2.2.7a/source/smbd/quotas.c samba-2.2.7amds/source/smbd/quotas.c --- samba-2.2.7a/source/smbd/quotas.c Wed Dec 11 10:17:40 2002 +++ samba-2.2.7amds/source/smbd/quotas.cTue Mar 4 09:43:05 2003 @@ -66,13 +66,18 @@ Abstract out the XFS Quota Manager quota get call. / -static int get_smb_linux_xfs_quota(char *path, uid_t euser_id, LINUX_SMB_DISK_QUOTA *dp) +static int get_smb_linux_xfs_quota(char *path, uid_t euser_id, LINUX_SMB_DISK_QUOTA *dp, char type ) Make this a BOOL for type 'group_quota' or even better an enum with values 'USER_QUOTA, GROUP_QUOTA'. If you can repatch this against HEAD, and check with metze (Stefan (metze) Metzmacher [EMAIL PROTECTED]) on how this might conflict with his work in this area. In particular, it might work out best that metze picks this up into his patch. (He is working on being able to modify the quota from an Windows client!). Either way, this certainly is a very nice idea! Andrew Bartlett -- Andrew Bartlett [EMAIL PROTECTED] Manager, Authentication Subsystems, Samba Team [EMAIL PROTECTED] Student Network Administrator, Hawker College [EMAIL PROTECTED] http://samba.org http://build.samba.org http://hawkerc.net -- Ing. Massimo Del Sarto Capo Ufficio CED IRCCS Fondazione Stella Marishttp://www.inpe.unipi.it Tel. +39 050 886268Fax. +39 050 32214 --