Re: [Samba] Can Samba + (OpenLDAP Kerberos) completely replace ActiveDirectory?
On Mon, Jan 9, 2012 at 4:47 PM, mikel king mikel.k...@olivent.com wrote: I am sure this pops up on the list ever once in a while. I have inherited a LAN that have a large amount of Mac OS X, FreeBSD, Linux and of course because bean counters have to use financial apps that only run on Windows. My long term goal is to install some sort of central management system and really feel that AD is not in my best interest considering that 90% of the 300+ computers are not Windows based. Unfortunately the 20 or so Windows machines are running mostly Win7 and there are some 2k8r2 servers in the mix somewhere. for the unix side of things I would recommend ipa from redhat (you can read about it in http://freeipa.org). It accomplishes for linux/unix most of what AD does for Windows. For the Windows side, use samba4. To get best of both worlds, use a kerberos trust between both realms. IPA is also available out of the box for the redhat clones, obviously. As this is not a topic for the samba list, I will leave it at that, but not before saying that it really rocks. -- natxo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Failed join operations
On Fri, Aug 19, 2011 at 4:58 PM, John Huong jahu...@gmail.com wrote: Ok it works. However I find it strange that Windows 7 does not automatically allow the Domain Admins group to run administrative tasks although I can see Domain Admins is listed under the Administrators group of the Windows 7 PC. UAC? If you disable it, does it work? -- natxo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Needs to run smbldap-useradd as non-root user
On Tue, Jun 28, 2011 at 5:29 PM, Nathan Mahu nm...@cyanide-studio.com wrote: Finally, is smbldap-tools really intended to be used by non-root users...? you could use sudo ... -- natxo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Default Keyboard Layout changed to english.
On Thu, Mar 10, 2011 at 12:45 PM, Kalev Riivik kal...@iisaku.edu.ee wrote: Hi, second week and still not a single response I would really appriciate it, if someone would actually answer (even to ask for more info or suggest something at least). PS: Since i didn't do anything to windows machines it has to be samba (or linux) related. It goes even that far, that users can't run some adobe apps (Soundbooth, Elements Premiere) while logged in with roaming profiles (it was ok before). the keyboard layout is a client setting, so I find it very hard to believe that whatever happened to your samba pdc has made that change. Apparently it is saved in the xp hosts in: HKEY_CURRENT_USER\Keyboard Layout\ You could set a user manually the way it should be, take a look in that key and export the values. Then with a login script import them to the other users. It most certainly is not a samba problem, though. -- natxo PS: nowadays, with free (as in free beer) virtualization techniques, not having a test environment does not have any excuse. You should have tested the upgrade before running it in your production environment. Not doing is your fault, not ours. Do not pretend this is samba's fault when it really is a question of bad planning and implementation on your part. If you had read the changelogs, (yes, those pesky things you should read before upgrading anything), you should have seen what had happened to smbpasswd and pdbedit. Tip: the info in a debian system is in /usr/share/doc/samba/NEWS.Debian.gz -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] problem joining WinXP machine to samba PDC+LDAP environment
On Mon, Feb 21, 2011 at 10:14 PM, Jon Detert jdet...@infinityhealthcare.com wrote: I assume that the 'group not found' log entries are not significant, and that '9' was the return code from smbldap-useradd. Anyone know what return code 9 means? Anyone have ideas how to remedy this problem? according to http://leto.net/docs/ldap_error_code.php, it means 'reserved', which may, or may not, shed more light into this. HTH, -- natxo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] modify the windws registry as administrator
On Tue, Feb 8, 2011 at 7:27 PM, sisu . npil...@hotmail.com wrote: Hi all, I am making my PDC up and I have a quick questions. I did an script to modify some windows registry keys, I execute it through netlogon and on windows xp box there is not any problem, but when it is executed on windows 7 the system reclaim the user approval to execute it. Is there any way to execute it through samba without any user approval? this has nothing to do with samba. This is a windows 'problem': UAC. -- natxo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows XP Profile-Samba 3
On Fri, Dec 10, 2010 at 11:43 AM, hemanth kumar hemant...@gmail.com wrote: Hi, We are setting up a samba PDC with rhcl 5.I made some restrictions in XP box using GPEDIT like restricting the access to control panel,desktop properties, registry and etc. ,then i copied the DEFAULT USER folder frm that XP box to netlogon share of samba server.(thought it would act as baseprofile for all users and this profile policy will be copied to all new users).But what ever the policy i have set is only active in that XP box only ,if a user logs on from any other system its not taking the policy frm the base profile.Am i following the right way? or how can we setup the profile for xp users when copying the default user's profile, did you grant permission to 'everyone' to use the profile? Otherwise it does not work. See: http://support.microsoft.com/kb/168475 -- natxo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba4 samba3 installed and running
On Mon, Sep 6, 2010 at 4:59 AM, Eric e...@bootz.us wrote: Bind won't start after implementing: Step 8 Configure DNS --from-- http://wiki.samba.org/index.php/Samba4/HOWTO Here are my System Logs: Sep 5 22:27:12 saturn named[4068]: loading configuration from '/etc/bind/named.conf' Sep 5 22:27:12 saturn named[4068]: /usr/local/samba/private/named.conf:14: open: /usr/local/samba/private/named.conf.update: permission denied ^ ^^ Sep 5 22:27:12 saturn named[4068]: loading configuration: permission denied ^ ^^ Sep 5 22:27:12 saturn named[4068]: exiting (due to fatal error) I would check the permissions on that file :-). You are using ubuntu, In debian named runs under the user 'bind', so maybe allowing this user to at least read the file would make it work (untested). -- natxo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] how to set samba to not download the whole roaming profiles ?
On Wed, Jul 21, 2010 at 10:03 AM, Hubert Choma hubert...@wp.pl wrote: How to set up roaming profiles that samba doesn't download whole profiles, only necessary files ntuser.ini ntuser.dat eg. end rest of registry settings? I would like to setup profiles running (downloading) fast from server when clients login. you could try folder redirection. Check the samba book: Samba 3 by example, http://samba.org/samba/docs/man/Samba3-ByExample/happy.html#redirfold . -- natxo asenjo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Long delays when launching programs for the first time in my Windows 7 Profile (Samba 3.4.3 as PDC)
On Wed, Jun 30, 2010 at 5:10 PM, Tom H. Lautenbacher mailingli...@lautenbacher.biz wrote: I do not think that it is neither intended by MS nor normal to take so long. I am using roaming profiles in a network with Vista64Business clients. Although the users (mainly image processing work on a professional level) tend to have rather huge user profiles (100MB-2 GB is normal, the max what I had seen was 32GB), those login/logouts are actually speedy compared to the Win7-64-pro userprofile that I have just freshly created and that is only a few kilobytes in size. A second thing is that the problem concerns only the initial creation of the Win7 profile; it takes approx. 40 minutes). All subsequent logins/logouts are very fast and take approx. only 10-20 seconds. The comparison of those values shows that it is more but just an delay because of the creation of some kilobytes of files. The third thing is that I am having the same problem with programs that I start. Programs that are installed locally on the client! When I am starting them for the first time, I am having a delay of 5-10 Minutes until the program starts. The subsequent times I start the program, it starts instantly. I am guessing that the problem has something to do with DNS or other network-layer issues. Or maybe it is the Client searching for something on the Samba server that is not existing?? It seems like the workstation Is sending some query to samba and then waits ages for a timeout or something. There is almost no network traffic the time that I am waiting with xp/2003 you could turn on the userenv.log, but apparently this does not work with windows 7 (http://social.technet.microsoft.com/Forums/en/winserverGP/thread/a9b36648-aa9f-4ff7-b23f-c1123b7984e9); so check the event log of the client and/or use process monitor from sysinternals to get a log of what is going on it. See this http://blogs.technet.com/b/markrussinovich/archive/2010/01/13/3305263.aspx for inspiration. good luck! -- natxo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Samba PDC and big files
On Thu, Jun 24, 2010 at 2:04 PM, Pedro Rafael Alves Simoes pedro.a.sim...@gmail.com wrote: Hello, I'm trying to setup a PDC with Samba, but I have the known problem of the roaming profiles: big files. I think it's difficult to guarantee that a inexperienced user will copy is downloaded files, documents, or whatever, to a H:\ share instead of is handy desktop. Other problem is the files of Outlook or Thunderbird that can get big. The goal is to avoid email configuration each time the user changes to another workstation, so I can't configure the email client to store the files locally on the workstation. 1. Do not store mail locally, you will lose mail if you do. Use a central imap server for instance, it's also much easier for backups; 2. I set the user's desktop to readonly with cacls in the logon scripts, problem solved (get yourself management's approval before you try this, explain why it is necessary). If they do not want to listen to you then ... 3. use folder redirection. This is harder to do in a pure samba 3 environment than in AD, but it is certainly doable. Soon, with samba 4 we will have all the group policy goodies :-) -- natxo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] know who is writing on this moment.
On Fri, Apr 16, 2010 at 5:25 PM, etor...@dap.es wrote: I do not understand it very well. I have a samba server of 100 users online. I have 2 repositories / opt/data1 and / opt/data2. At 10:00 / opt/data1 had 70GB free and at 11:00 had 2Gb free. just look for files modified between 10 en 11:00. Or use du to see what folders are now really full in /opt/data, then you will find the user who has done that. -- natxo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba, ldap, kerberos
On Mon, Feb 15, 2010 at 7:27 AM, Pramathesh Ambasta pramathesh.amba...@gmail.com wrote: Though I am not new to samba, I am new to this so will really appreciate guidance. If I want to implement a single sign on scheme using openldap and kerberos on a linux server, how can samba be integrated into this scheme? As far as I can understand from the docs, the discussions on samba and kerberos deal with samba integration into an active directory domain. Does that mean that what I am talking about cannot be done? take a look at samba 4. Check the installation instructions on the wiki: wiki.samba.org. As they state, it is not production ready (yet) but I find it quite stable. natxo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] SAMBA and Windows 2008 TSE licence Server
On Fri, Feb 12, 2010 at 3:40 PM, Mercier julien.merc...@pays-saint-marcellin.fr wrote: I can't use the TSE licence server in Windows 2008 server. This Server is member of my Samba Domain. My TSE licence server is actived and my licences added, but when i want configure the TSE service and launch the Licence diagnostic the diagnostic failed. I think my problem is due to my Windows Server is not an Active Directory controller. What are the solutions : quit the domain? Activate AD on the server with an other domain? I would like my licence diagnostic work when my server join my Samba Domain. you would have the same problem in an AD with a windows 2003 license server. You need a 2008 license server. At least, this happened to us, the 2008 TS would not use the 2003 license server and the event log message was quite clear about why. It's been a while so I no longer have the details handy, but upgrading to 2008 really means 'upgrade'. -- natxo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Given up on Fedora Ubuntu is 1000-folder simpler
On Fri, Jan 15, 2010 at 12:31 AM, Peter Olcott peteolc...@gmail.com wrote: I spent several days (at least 20 hours) tying to get Fedora 11 Samba server going. I consulted every resource that I knew including this list. When I discovered that Fedora 11 Samba could be browsed immediately upon installation, and a simple reboot disabled this, I gave up. I decided to try Ubuntu. After intallation it took only five minutes of editing the smb.conf file to make my share fully operational. In terms of total cost of ownership Fedora and Red Hat have become big losers. while distro wars are kind of funny, I would rather you specified what went wrong than just troll about Fedora. There are lots of people using samba and fedora without any hassle at all. At the end of the day, it's just about editing a text file, smb.conf on both platforms. -- natxo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] heimdal and windows compatibility up-to-date informations
On Fri, Oct 10, 2008 at 2:03 PM, Pascal Levy [EMAIL PROTECTED] wrote: I have (since long) to write a complete documentation for all this things. for now, i only have a very partial one, about the trust between realms and user mapping. It's in french, i'm sorry for the list but i guess that it can be ok for you, and prehaps better than my vey bad english (sorry for that too). i would really like to take a look at those docs (my French is a bit rusty but I think I can manage :-) ) -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Problems running samba in vmware
On Thu, Mar 6, 2008 at 10:13 PM, Adam Zimmer [EMAIL PROTECTED] wrote: I have used samba for nearly 9 years with no problems and we have about 20 users. In the past we have had a dedicated samba server. We have recently virtualized this server to a quad core Q6600 using vmware virtual server 1.0.4 on a 64 bit host running ubuntu 7.10. bad idea. Vmware server is not meant for production servers. Don't try to save a buck and buy a copy of esx. It will save you all this trouble and time is money. If you really want to go along the free road, get yourself xen, linux runs perfectly with the opensource 'free as in free beer' xensource. Vmware server is a great testing tool, not a production one. -- Groeten, J.Asenjo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] irritating log warnings
FWIW, here is the solution. in wins.dat (in debian you find it in /var/lib/samba/wins.dat) the old network was still present. I stopped samba, deleted the file and restarted samba. Done. -- Groeten, J.Asenjo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] irritating log warnings
hi, At home I used to have a multihomed server. Now it only has 1 nic. Since I removed the physical card and its configuration entry from for the OS, I have this kind of warnings in the logfiles: Dec 23 16:47:44 etch nmbd[5715]: [2007/12/23 16:47:44, 0] nmbd/nmbd_browsesync.c:get_domain_master_name_node_status_fail(486) Dec 23 16:47:44 etch nmbd[5715]: get_domain_master_name_node_status_fail: Dec 23 16:47:44 etch nmbd[5715]: Doing a node status request to the domain master browser at IP 10.0.0.150 failed. Dec 23 16:47:44 etch nmbd[5715]: Cannot get workgroup name. the ip 10.0.0.150 was the old ip for the removed nic. My [global] in smb.conf [global] workgroup = COPON netbios name = TUX passdb backend = ldapsam:ldap://127.0.0.1 smb ports = 139 svcctl list = apache2, dhcpd add user script = /usr/local/sbin/smbldap-useradd -a -m %u delete user script = /usr/local/sbin/smbldap-userdel %u add group script = /usr/local/sbin/smbldap-groupadd -p %g delete group script = /usr/local/sbin/smbldap-groupdel %g add user to group script = /usr/local/sbin/smbldap-groupmod -m %u %g delete user from group script = /usr/local/sbin/smbldap-groupmod -x %u %g set primary group script = /usr/local/sbin/smbldap-usermod -g %g %u add machine script = /usr/local/sbin/smbldap-useradd -w %u logon script = login.bat domain logons = Yes os level = 35 preferred master = Yes domain master = Yes wins support = Yes ldap admin dn = cn=user,dc=domain,dc=tld ldap delete dn = Yes ldap group suffix = ou=groups ldap idmap suffix = ou=idmap ldap machine suffix = ou=workstations ldap passwd sync = Yes ldap suffix = dc=domain,dc=tld ldap user suffix = ou=users utmp directory = /var/log/samba/utmp wtmp directory = /va/log/samba/wtmp utmp = Yes panic action = /usr/share/samba/panic-action %d idmap backend = ldap:ldap://tux idmap uid = 15000-2 idmap gid = 15000-2 winbind enum users = Yes winbind enum groups = Yes inherit acls = Yes hosts allow = 127.0.0.1/8, 192.168.0., 192.168.9. hosts deny = all map acl inherit = Yes printing = cups print command = lpq command = %p lprm command = any idea as to why this is happening (every 10 minutes I see this in the log file) and how to stop it? tia -- Groeten, J.Asenjo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] irritating log warnings
On Dec 23, 2007 6:41 PM, Doug Gack [EMAIL PROTECTED] wrote: First question: Are you using a hosts file, and is the (now removed) nic still present in it? Just a thought, as the system seems to still be trying to find that address. no, nothing special about network 10.0.0.0 in my hosts file. I use a local dns server. -- Groeten, J.Asenjo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Custom Windows Welcome message
On 7/5/07, Ralf Wiegand [EMAIL PROTECTED] wrote: Hello - I running Samba as a PDC on FC6 with roaming profiles. I need to setup a custom Windows logon/welcome message... to tell users want they can expect using this domain. I am sorry to ask you to stfw: http://www.google.nl/search?q=windows%20welcome%20message the first result is spot on. Is it also possible to place different PDF files on the users desktop when he or she logs on, but only referencing one source file, so I don't have a copy for each user? What is the best approach? use a login script or a mandatory desktop. These 2 questions have nothing to do with samba, though ;), they are normal windows networking in action. -- Groeten, J.Asenjo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Custom Windows Welcome message
On 7/5/07, Ralf Wiegand [EMAIL PROTECTED] wrote: Thanks for the tip. In a windows AD domain, this is accomplished by using a group policy... so how do you do this in samba. I don't want to added each XP box. with the old nt policy editor. If it is done via a logon script, do you have an example? the script would be to copy the pdf files to the desktop of the user, not for the welcome stuff because you cannot modify hklm keys as a normal user. And no, I do not have an example handy, but come on ..., are you a windows admin or what ? ;) -- Groeten, J.Asenjo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] More than one user with SID xxx
hi, I do not know how this has happened, but 2 of my users in ldapsam have the same sid. Can I just modify the sambasid attribute by hand or should I delete and recreate one of the user accounts? -- Groeten, J.Asenjo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba v3.0.23a BROKE my network
On 1/24/07, Chris Hall [EMAIL PROTECTED] wrote: I run Samba as a PDC for a small network. I used to use smbpassword and went through the pain of changing up to tdbsam. I have just upgraded from v3.0.14a to v3.0.23a. I have just (today!) done nearly exactly this same thing. I went from the sarge samba to the sernet-release, from 3.0.14a to 3.0.23d The only difference, I guess, was that I have a ldap backend (and had it already back with 3.0.14a). The upgrade has been painless. I already had the group mappings and all that. YMMV. --- Groeten, J.Asenjo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Using users from another samba server
On 1/19/07, Diego Lima [EMAIL PROTECTED] wrote: Hello, I currently have a samba server set up as my network PDC (using LDAP as passdb), and I'm trying to set up another linux file server on the network. This file server should allow users to log in based on their passwords on the PDC, however it doesn't need (nor would be appropriate) to be a BDC. you should join the linux server to your domain, that's it. check the docs on how to do that. -- Groeten, J.Asenjo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Samba 3 by Example - chapter 5 6 ( Manager - sambaadmin)
On 3/4/06, John H Terpstra [EMAIL PROTECTED] wrote: I'd be delighted if someone steps forward with an offer to take over responsibility for maintenance and improvement of the documentation. Its about time for a more capable and more enthusiastic person to have a go. Please allow me rush to step aside. :-) for what it's worth: THANKS!!! for all your efforts with this documentation. I bought the book, I know of lots of people who have working samba domains thanks to your work. Will you write such a piece for the new samba version? I truly hope so, although if you do not I will certainly understand and respect your decision. And again: thanks a lot for your work. -- Groeten, J.Asenjo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Multiple Login scripts
Hi, jep it can be done , use ifmember.exe from the resource kit, and install printers by group membership like this #defautllogin.bat @echo off ifmember /v /l YOURDOMAINNAME\teachers if errorlevel 1 call teachers.bat this is fine but for the fact that you need to install the ifmember.exe in *all* the computers. We use the poorman's version of it which works fine and needs nothing at the client(1): net group /domain groupname | find /i %username% if errorlevel 0 call teachers.bat (1)win 2000 or newer only. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] same sambaSID
Hi, samba 3.14 with ldapsam, working fine. I tried this usrmngr.exe thingie because one of our admins is very gui-oriented, wanted to see if it worked fine. For most users, it is. I can change details, logon hours, groups, passwords. But for 3 of them I get this message: ldapsam_getsampwsid: More than one user with SID [S-1-5-21-3707708495-1570892323-1667890705-3076]. Failing. count=3 I check in a dump of the ldap database, and indeed, they do have the same sid. To my knowledg they were added with the smbldap-tools which work fine, in fact I just tested it, new user, different sid. How can i fix this? Removing the users and recreating them? Thanks in advance. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] same sambaSID
How can i fix this? Removing the users and recreating them? That is the easy way to do it. The other way is to change the UID of one of them, but the specifics of that method depends on what passdb backend you are using. ok, for now I will take the easy way out, but I still would like to know the specifics regarding ldapsam with openldap. thanks! -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Windows interacting with SAMBA share
On 10/21/05, Jeremy Hatter - BIA [EMAIL PROTECTED] wrote: Hi, My company has a Samba [3.0] share on a Debian Linux 3.0 [Kernel 2.6] machine and we are trying to copy a large file [2GB] from a Windows machine to the Samba share. When we try to do this, it only copies 2GB of the information. We were previously having a similar issue when Is the filesystem of the samba server ext2 by any chance? IIRC 2GB was the limit of it. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] invalid permissions on socket directory /var/lib/samba/winbindd_privileged
hi, Nearly there, not just yet. I am setting up a suse 9.3 samba file server in a windows 2k3 AD environment. my /etc/samba/smb.conf: [global] workgroup = PASSADE netbios name = BROEKSTR01 realm = PASSADE.LOCAL security = ads encrypt passwords = yes password server = broekstr01.passade.local winbind separator = / idmap uid = 1-2 idmap gid = 1-2 winbind enum users = yes winbind enum groups = yes I just joined the realm with net ads join -U administrator. If I try to list the directory users, this is what I get: [2005/10/03 09:50:13, 1] nsswitch/winbindd.c:main(864) winbindd version 3.0.12-5-SUSE started. Copyright The Samba Team 2000-2004 [2005/10/03 09:50:17, 0] libsmb/smb_signing.c:signing_good(240) signing_good: BAD SIG: seq 1 [2005/10/03 09:50:17, 0] libsmb/clientgen.c:cli_receive_smb(121) SMB Signature verification failed on incoming packet! [2005/10/03 09:50:20, 0] libsmb/smb_signing.c:signing_good(240) signing_good: BAD SIG: seq 1 [2005/10/03 09:50:20, 0] libsmb/clientgen.c:cli_receive_smb(121) SMB Signature verification failed on incoming packet! [2005/10/03 09:50:23, 0] libsmb/smb_signing.c:signing_good(240) signing_good: BAD SIG: seq 1 [2005/10/03 09:50:23, 0] libsmb/clientgen.c:cli_receive_smb(121) SMB Signature verification failed on incoming packet! [2005/10/03 09:50:26, 1] nsswitch/winbindd_ads.c:ads_cached_connection(81) ads_connect for domain PASSADE failed: Invalid credentials [2005/10/03 09:50:29, 0] libsmb/smb_signing.c:signing_good(240) signing_good: BAD SIG: seq 1 [2005/10/03 09:50:29, 0] libsmb/clientgen.c:cli_receive_smb(121) SMB Signature verification failed on incoming packet! [2005/10/03 09:50:33, 0] libsmb/smb_signing.c:signing_good(240) signing_good: BAD SIG: seq 1 [2005/10/03 09:50:33, 0] libsmb/clientgen.c:cli_receive_smb(121) SMB Signature verification failed on incoming packet! [2005/10/03 09:50:36, 0] libsmb/smb_signing.c:signing_good(240) signing_good: BAD SIG: seq 1 [2005/10/03 09:50:36, 0] libsmb/clientgen.c:cli_receive_smb(121) SMB Signature verification failed on incoming packet! [2005/10/03 09:50:39, 0] libsmb/smb_signing.c:signing_good(240) signing_good: BAD SIG: seq 1 [2005/10/03 09:50:39, 0] libsmb/clientgen.c:cli_receive_smb(121) SMB Signature verification failed on incoming packet! [2005/10/03 09:50:42, 0] libsmb/smb_signing.c:signing_good(240) signing_good: BAD SIG: seq 1 [2005/10/03 09:50:42, 0] libsmb/clientgen.c:cli_receive_smb(121) SMB Signature verification failed on incoming packet! [2005/10/03 09:50:45, 0] libsmb/smb_signing.c:signing_good(240) signing_good: BAD SIG: seq 1 [2005/10/03 09:50:45, 0] libsmb/clientgen.c:cli_receive_smb(121) SMB Signature verification failed on incoming packet! [2005/10/03 09:50:45, 0] lib/util_sock.c:create_pipe_sock(1206) invalid permissions on socket directory /var/lib/samba/winbindd_privileged open_winbind_socket: No such file or directory So the permissions of /var/lib/samba/winbindd_privileged are wrong. They are now: drwxr-xr-x 2 root root 72 Sep 30 11:26 winbindd_privileged and inside the directory I have this: srwxrwxrwx 1 root root 0 Sep 30 11:26 pipe In google I found nothing abouth this (well, yes, references to samba 3 by example, a hardcopy of which is here next to me). I am stuck. Any ideas? Thanks in advance, J.Asenjo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
Re: [Samba] Roaming profile : taking forever to login /log off
On 9/15/05, Lorenzo Cerini [EMAIL PROTECTED] wrote: Unlucky you need to use gpedit.msc on every client. well, that's why god invented disc-images. Just make an xp isntallation you are happy with, and deploy its image on the rest of workstations :) regards, J.I.Asenjo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba
[Samba] su broken after ldap auth
hi, first of all, thanks to all the samba team for your great work and documentation. Well done! I have followed the 'By Example' guide, everything is working fine, except one thing. As indicated on chapter 5, point 14 of Configuration of smbldap-tools, when I try: # getent passwd | grep root I have 2 results, both id 0 root:x:0:0:root:/root:/bin/bash root:x:0:512:Netbios Domain Administrator:/root:/bin/bash The problem arises when, as root, I try su-ing to another user. It asks me for a password! Which is quite embarrassing if the account you try to su to has none (like the account for the fetchmail daemon, for instance). This all on a debian sarge, samba 3.0.14a, openldap 2.2.23.8. My /etc/pam.d/su is this: #%PAM-1.0 auth sufficient /lib/security/pam_ldap.so authrequisite pam_wheel.so group=wheel debug auth required /lib/security/pam_unix_auth.so use_first_pass accountsufficient/lib/security/pam_ldap.so accountrequired /lib/security/pam_unix_acct.so password required /lib/security/pam_ldap.so use_first_pass use_authtok sessionrequired /lib/security/pam_unix_session.so thanks in advance, N.Asenjo -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/listinfo/samba