Re: [OpenIndiana-discuss] AD Authentication and Samba 4 Active Directory

On 17 Sep 2014, at 16:37, Andrew Martin amar...@xes-inc.com wrote: - Original Message - From: Marc Jakob m...@planet-sun.net To: Discussion list for OpenIndiana openindiana-discuss@openindiana.org Sent: Wednesday, September 17, 2014 6:10:01 AM Subject: Re: [OpenIndiana-discuss] AD

Re: [OpenIndiana-discuss] Problems with dbus / Orbit

Hi Am 07.07.2013 um 12:37 schrieb Udo Grabowski (IMK) udo.grabow...@kit.edu: Openindiana 157a8 hipster, fresh update from a7: I'm totally lost, after a premature Ctrl-C on a pfexec packagemanager, I cannot start it anymore in pfexec mode (local machine, no NFS): ~: pfexec packagemanager

Re: [OpenIndiana-discuss] Odd Samba/winbind issue

Hey James, Am 23.06.2013 um 02:10 schrieb James Relph ja...@themacplace.co.uk: Just been looking into this a bit and I wondered if the was any chance that this group issue could be causing problems (users are in a lot of groups): https://bugzilla.samba.org/process_bug.cgi guess you're

Re: [OpenIndiana-discuss] Funding Martin, was Re: OpenIndiana roadmap

2013/1/29 Dave McGuire mcgu...@neurotica.com: On 01/28/2013 08:18 PM, Reginald Beardsley wrote: I'd like to suggest funding Martin. He's committed and needs the money. Even as little as $50US per site would certainly help him a lot. I'd be happy to pay $100US/year to have him work on OI in a

Re: [OpenIndiana-discuss] HFS+ (Apple file system) read/write support on Illumos -- interest levels?

2012/9/15 Dave Pooser dave...@pooserville.com: At $DAYJOB we have a need to get files from Mac-formatted (HFS+) volumes from video record appliances onto ZFS-based storage towers (because when you're talking about the only video recordings of a major corporate meeting, probably OK filesystems

Re: [OpenIndiana-discuss] Announcing mdbackup, perl scripts for zfs backup servers (was: Current ZFS Backup projects)

There's zrep for (remote) replication: http://www.bolthole.com/solaris/zrep/ -f 2012/9/13 Julius Roberts hooliowobb...@gmail.com: Hi all, I've created https://sourceforge.net/projects/mdbackup/, please have a look if you're interested. I'm very keen on getting feedback/suggestions/help so

Re: [OpenIndiana-discuss] Illumos as a NAS

2012/9/7 Gordon Ross gordon.w.r...@gmail.com: I'd also be curious what are the exact circumstances where you saw idmap change its mapping for some SID to a different ephemeral ID. Note that TTL expiration does not cause a mapping to be destroyed. It only causes it to be re-checked via name

Re: [OpenIndiana-discuss] Illumos as a NAS

2012/9/6 James Relph ja...@themacplace.co.uk: You need to post and/or analyse the errorlog of the smb service. Assuming killed more cats than curiosity ;-) I know, but this had been a bit of a marathon getting to this point alone, and all I needed at the time was AFP. I will have another

Re: [OpenIndiana-discuss] Illumos as a NAS

2012/9/6 Frank Lahm frankl...@gmail.com: 2012/9/6 James Relph ja...@themacplace.co.uk: You need to post and/or analyse the errorlog of the smb service. Assuming killed more cats than curiosity ;-) I know, but this had been a bit of a marathon getting to this point alone, and all I needed

Re: [OpenIndiana-discuss] Illumos as a NAS

Hey James! 2012/9/4 James Relph ja...@themacplace.co.uk: AD issues are going to require someone tenacious, motivated, and a bit masochistic as it's historically been a bit of a moving target. AD seems reasonably stable these days, and in fact the current Illumos strategy works 90% of the

Re: [OpenIndiana-discuss] Illumos as a NAS

2012/9/5 James Relph ja...@themacplace.co.uk: what about using winbind? Works with Netatalk and I guess it will also work with Solaris CIFS. We haven't been able to get supplementary groups working, but I'm pretty sure that could be solved, possibly by installing an updated winbind from

Re: [OpenIndiana-discuss] Solaris privileges and seteuid()

2012/8/21 Gordon Ross gordon.w.r...@gmail.com: On Fri, Aug 17, 2012 at 5:44 AM, Frank Lahm frankl...@gmail.com wrote: 2012/8/17 James Relph ja...@themacplace.co.uk: [...] Thanks very much for that confirmation, really doesn't seem obvious in a lot of the documentation! I don't have

Re: [OpenIndiana-discuss] Solaris privileges and seteuid()

2012/8/17 James Relph ja...@themacplace.co.uk: Yes, ephemeral IDs are temporary representations of Security Identifiers (SIDs). The idmapd(1m) daemon maintains these in a cache, with time-to-live (TTL) based expiration. There's a library API for turning an ephemeral ID back into a SID

Re: [OpenIndiana-discuss] Solaris privileges and seteuid()

2012/8/16 Mohamed Khalfella khalfe...@gmail.com: First of all, I am not expert in Openindiana but if I were you I would try using dtrace to show which function get called in response to fchown syscall (I assume you are not running a highly loaded production system yet so we can enable fbt

Re: [OpenIndiana-discuss] Solaris privileges and seteuid()

Hi James, 2012/8/16 James Relph ja...@themacplace.co.uk: ... To prevent aliasing problems, all file systems, archive and backup formats, and protocols must store SIDs or map all UIDs and GIDs in the 2^31 to 2^32 - 2 range to the nobody user and group. ... I

[OpenIndiana-discuss] Solaris privileges and seteuid()

Hi all, I'm having difficulties with Solaris privileges and seteuid(). I have a forking daemon process running as root. The process is afpd from the Netatalk (OS AFP fileserver). The main afpd process accepts network connections, authenticates users (through PAM) and, forks and runs

Re: [OpenIndiana-discuss] Compile nss_ldap

2012/8/14 Ram Chander ramqu...@gmail.com: The Ldap server is hosted on linux and couldnt find any ldap client that is compiled already for OI. Any other way to get client working is fine. Pls advice. http://docs.oracle.com/cd/E19963-01/html/821-1455/clientsetup-1.html -f

Re: [OpenIndiana-discuss] ActiveDirectory UID mapping (netatalk)

2012/8/13 Günther Alka a...@hfg-gmuend.de: with SAMBA and winbind you may loose: - snaps via Windows previous version - Windows compatible ntfs4 ACL (only Posix ACL ?) - SMB as a ZFS property - interoperability with NFS4 - movable pools that keep ACL intact - performance, kernel based CIFS

Re: [OpenIndiana-discuss] ActiveDirectory UID mapping (netatalk)

2012/8/11 Gea a...@hfg-gmuend.de: Frank Lahm franklahm at gmail.com writes: 2012/8/10 Gordon Ross gordon.w.ross at gmail.com: On Thu, Aug 9, 2012 at 11:56 PM, Frank Lahm franklahm at gmail.com wrote: 2012/8/10 Gordon Ross gordon.w.ross at gmail.com: [...] If you setup idmap to use

Re: [OpenIndiana-discuss] ActiveDirectory UID mapping (netatalk)

2012/8/10 Gordon Ross gordon.w.r...@gmail.com: On Tue, Aug 7, 2012 at 9:25 AM, James Relph ja...@themacplace.co.uk wrote: I've got a server hooked up to a 2003 AD and CIFS and netatalk are both allowing AD users to login (netatalk 3 via PAM). One thing that's a bit puzzling is that the afpd

Re: [OpenIndiana-discuss] ActiveDirectory UID mapping (netatalk)

2012/8/10 Gordon Ross gordon.w.r...@gmail.com: On Thu, Aug 9, 2012 at 11:56 PM, Frank Lahm frankl...@gmail.com wrote: 2012/8/10 Gordon Ross gordon.w.r...@gmail.com: [...] If you setup idmap to use IDMU, then you'll get the UID/GID values provided by AD, which are presumably the same values

Re: [OpenIndiana-discuss] realpath(3C)

2011/6/25 Alan Coopersmith alan.coopersm...@oracle.com: On 06/25/11 04:33 AM, Frank Lahm wrote: Hi, on latest Opensolaris snv134b realpath doesn't take NULL as second arg. On Solaris 11 Express it does, giving the semantics described in `man realpath`: ... DESCRIPTION      The realpath

[OpenIndiana-discuss] realpath(3C)

Hi, on latest Opensolaris snv134b realpath doesn't take NULL as second arg. On Solaris 11 Express it does, giving the semantics described in `man realpath`: ... DESCRIPTION The realpath() function derives, from the pathname pointed to by file_name, an absolute pathname that