[Samba] winbind authentication mystery
Hi Chris, Were you able to solve this. Regards, David. Greetings, I'm running Fedora 11 (Samba 3.3.2) and am trying to configure winbind authentication against a Windows 2003 server. I've run kinit and net join successfully, and can wbinfo -u, -g, and -t successfully, as well as getent passwd and getent group successfully. I can even use passwd to change domain user passwords. However, when I try to log in via gdm, ssh, or even su, I do not succeed. I believe am I suffering from one, possibly two separate issues. The first is that all users except the Administrator are told that their password is expiring, which is not true. Here are the logs of this event: Jun 24 15:29:58 history-20 sshd[4656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=localhost.localdomain user=cmthielen Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:auth): [pamh: 0x1f06f48] ENTER: pam_sm_authenticate (flags: 0x0001) Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:auth): getting password (0x0011) Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:auth): pam_get_item returned a password Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:auth): Verify user 'cmthielen' Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:auth): request wbcLogonUser succeeded Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:auth): user 'cmthielen' granted access Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:auth): Password has expired (Password was last set: 1245880658, the policy says it should expire here 1245880657 (now it's: 1245882598)) Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:auth): [pamh: 0x1f06f48] LEAVE: pam_sm_authenticate returning 0 (PAM_SUCCESS) Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:account): [pamh: 0x1f06f48] ENTER: pam_sm_acct_mgmt (flags: 0x) Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:account): pam_sm_acct_mgmt success but PAM_WINBIND_NEW_AUTHTOK_REQD is set Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:account): user 'cmthielen' needs new password Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:account): [pamh: 0x1f06f48] LEAVE: pam_sm_acct_mgmt returning 12 (PAM_NEW_AUTHTOK_REQD) Jun 24 15:29:58 history-20 sshd[4656]: Accepted password for cmthielen from 127.0.0.1 port 36881 ssh2 Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:setcred): [pamh: 0x1f06f48] ENTER: pam_sm_setcred (flags: 0x0002) Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:setcred): PAM_ESTABLISH_CRED not implemented Jun 24 15:29:58 history-20 sshd[4656]: pam_winbind(sshd:setcred): [pamh: 0x1f06f48] LEAVE: pam_sm_setcred returning 0 (PAM_SUCCESS) Jun 24 15:29:58 history-20 sshd[4656]: pam_unix(sshd:session): session opened for user cmthielen by (uid=0) Jun 24 15:29:58 history-20 sshd[4660]: pam_winbind(sshd:setcred): [pamh: 0x1f06f48] ENTER: pam_sm_setcred (flags: 0x0002) Jun 24 15:29:58 history-20 sshd[4660]: pam_winbind(sshd:setcred): PAM_ESTABLISH_CRED not implemented Jun 24 15:29:58 history-20 sshd[4660]: pam_winbind(sshd:setcred): [pamh: 0x1f06f48] LEAVE: pam_sm_setcred returning 0 (PAM_SUCCESS) Jun 24 15:29:58 history-20 passwd: pam_unix(passwd:chauthtok): user cmthielen does not exist in /etc/passwd Jun 24 15:29:58 history-20 passwd: pam_winbind(passwd:chauthtok): getting password (0x0020) Jun 24 15:30:01 history-20 passwd: pam_winbind(passwd:chauthtok): user 'cmthielen' granted access Jun 24 15:30:05 history-20 passwd: pam_unix(passwd:chauthtok): user cmthielen does not exist in /etc/passwd Jun 24 15:30:05 history-20 passwd: pam_winbind(passwd:chauthtok): getting password (0x) Jun 24 15:30:11 history-20 passwd: pam_winbind(passwd:chauthtok): user 'cmthielen' OK Jun 24 15:30:11 history-20 passwd: pam_winbind(passwd:chauthtok): user 'cmthielen' password changed Jun 24 15:30:11 history-20 passwd: pam_winbind(passwd:chauthtok): user 'cmthielen' granted access Jun 24 15:30:11 history-20 passwd: Couldn't access gnome keyring socket: /tmp/keyring-4jRNoE/socket: Permission denied Jun 24 15:30:11 history-20 passwd: gkr-pam: couldn't change password for 'login' keyring: 255 Jun 24 15:30:13 history-20 sshd[4656]: pam_winbind(sshd:setcred): [pamh: 0x1f06f48] ENTER: pam_sm_setcred (flags: 0x0004) Jun 24 15:30:13 history-20 sshd[4656]: pam_winbind(sshd:setcred): [pamh: 0x1f06f48] ENTER: _pam_delete_cred (flags: 0x0004) However, if I set my computer back two days, the timestamps work out. The time on the Windows server is set correctly, and the box even has it's ntpdate set to use the Windows server. The second, or possibly the same issue, is that it simply won't log in. If I use the administrator account, I am not told my password expires, but my session ends immediately (note: I have use default domain turned on, so the domain is implied here. If I turn it off and add the correct prepend syntax, the issue is the same): [root at history-20
Re: [Samba] samba 3.3 for opensuse 10.2
On Mon, Dec 28, 2009 at 1:09 PM, peter grotz peter.gr...@grotz.org wrote: JM On Mon, Dec 28, 2009 at 5:54 AM, peter grotz peter.gr...@grotz.org wrote: I need the rpm-files of samba 3.3 or later for opensuse 10.2. The repo isn´t available any more, so can anybody help me here? JM You need 3.3 or _later_ ? It shipped with 3.4.2, so that would be JM later. Or do you specifically need 3.3? no, you´re wrong! It´s shipped wigth 3.0.23! I hav here opensuse 10.2 and it´s really 3.0.23!! Hahah, you're right, I read 11.2 rather than 10.2. Sorry about that. Either Lars or I will get you instructions. Do you specifically need 3.3 though? Our 3.4.3 sources are quite readily available. -- Jim McDonough Samba Team SUSE labs jmcd at samba dot org jmcd at themcdonoughs dot org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] Windows 7, http://www.samba.org/samba/ftp/Binary_Packages/SuSE/STABLE/11.2/
On Wed, Dec 30, 2009 at 6:52 AM, Hartje Stendel h.sten...@check-tec.de wrote: I have the typical problem with Windows 7. I loaded the repository from the binaries and installed it. I changed the registry on the client but still can not login. I am a little bit confused about the version numbers. In the repository the version of samba is: samba-3.2.7-11.4.1 - A SMB/CIFS File, Print, and Authentication Server What SUSE product? SLE 11? openSUSE 11.x? _netr_ServerAuthenticate2: netlogon_creds_server_check failed. Rejecting auth request from client GUSTAV machine account GUSTAV$ You can find our 3.4.3 packages if you like at the openSUSE build service network:samba:STABLE repository at http://download.opensuse.org/repositories/network:/samba:/STABLE/ There are repositories for all currently supported products. Please let us know if you need help with those repositories and getting them in your package setup. -- Jim McDonough Samba Team SUSE labs jmcd at samba dot org jmcd at themcdonoughs dot org -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] samba 3.3 for opensuse 10.2
On Mon, Dec 28, 2009 at 11:54:24AM +0100, peter grotz wrote: I need the rpm-files of samba 3.3 or later for opensuse 10.2. The repo isn´t available any more, so can anybody help me here? As the openSUSE Build Service doesn't longer offer to build packages of this discontinued product I suggest to use the build RPM as available for openSUSE. This even works from inside any newer SUSE version. Therefore download the src rpm of 3.4.3 as available from the openSUSE_11.0 or SLE_10 directory at http://download.opensuse.org/repositories/network:/samba:/STABLE/ and extract the content via rpm2cpio rpm2cpio ../srcrpm/samba-3.4.3-11.1.src.rpm | cpio -i Now ls shows : build-source-timestamp samba-vscan-0.3.6b.tar.bz2 ldapsmb-1.34b.tar.bz2 samba-3.4.3.tar.bz2 vendor-files.tar.bz2 patches.tar.bz2 samba.spec Now call: build samba.spec and you get: logging output to /var/tmp/build-root/.build.log... Memory limit set to 10925136KB Using BUILD_ROOT=/var/tmp/build-root Using BUILD_RPMS=/media/dvd/suse Using BUILD_ARCH=x86_64:i686:i586:i486:i386 BUILD_ROOT needs to be a location with enough space to setup a build root environment. This requires aproximately 500 MB. BUILD_RPMS must point to a local copy of the openSUSE package sources. In your case 10.2. BUILD_ARCH is self-explanatory. Setting it to i686:i586:i486:i386 on a x86_64 system leads to 32 bit packages. Lars pgpYycS5LB5BV.pgp Description: PGP signature -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] How to access shares via HTTP (apache2)
Hello, I configured samba fileserver as a member of samba domain. PDC and fileserver are different machines. It works great using windows sharing. Now, I need to set up apache to serve my shares, but I am having problem with permissions. Apache runs as www-user, and doesn't see content in shares. So I would like to ask, what is the proper way to use apache (or another http server) to serve files on file server. Using Ubuntu 9.10 and Samba 3.4.0-3ubuntu5.1. Thanks for help, Martin Right now, my configuration is: smb.conf [global] workgroup = DOMAIN.EU netbios name = share2 server string = %h server (Samba, Ubuntu) log file = /var/log/samba/log.%m max log size = 1000 syslog = 0 panic action = /usr/share/samba/panic-action %d winbind separator = + idmap uid = 1-2 idmap gid = 1-2 winbind enum users = yes winbind enum groups = yes security = domain password server = * [software] comment = Shared software path = /srv/fileserver/software force group = DOMAIN.EU+domain users create mask = 0660 directory mask = 0770 writable = yes /etc/nsswitch.conf: passwd: compat winbind group: compat winbind # ls -la /srv/fileserver/software/ total 20 drwxrwxrwx 5 root root 4096 2009-12-31 12:12 . drwxr-xr-x 3 root root 4096 2009-12-31 00:08 .. drwxrwx--- 2 DOMAIN.EU+martin DOMAIN.EU+domain users 4096 2009-12-31 00:24 test2 drwxrwx--- 2 DOMAIN.EU+martin DOMAIN.EU+domain users 4096 2009-12-31 12:11 test3 drwxrwx--- 2 DOMAIN.EU+martin DOMAIN.EU+domain users 4096 2009-12-31 12:12 test4 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] authentication issues
I have a belkin N+ wirless router with usb port. I have a 1TB hard drive connected to the usb port. This hard drive is shared without needing authentication (no user/ pass) Its the equivalent of have a windows machine with an unprotected share that ANYONE can access WITHOUT authentication. Using samba 3.4.3 I cannot access this share, because it asks for a username and password.. (that doesn't exist). My windows machine accesses it just fine (no user or pass). Samba wants a user and password, give one get the system complaining of wrong user/pass. (even via command line). I've been using fstab as a work around by adding the following. //192.168.2.1/default_a1 /media/smb cifs defaults,noatime,auto,username=guest,password=foo 0 0 with this, I am able to mount the share and access it by mounting it via command-line, but I cannot mount it with smb4k, dolphin, etc. Once mounted I can access it via any filemanager, but this is still a pain... what am i doing wrong? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] authentication issues
How have you defined the share (service) in smb.conf? From what you've posted, it looks to me like you've only mounted the drive such that it is visible to the machine hosting Samba, but not shared *through* Samba as a service. As a result, no one would be able to see it, because Samba isn't serving it up as a fileshare. Hope that makes some sense. On Thu, Dec 31, 2009 at 1:53 AM, Cloud Strife piroisl...@yahoo.com wrote: I have a belkin N+ wirless router with usb port. I have a 1TB hard drive connected to the usb port. This hard drive is shared without needing authentication (no user/ pass) Its the equivalent of have a windows machine with an unprotected share that ANYONE can access WITHOUT authentication. Using samba 3.4.3 I cannot access this share, because it asks for a username and password.. (that doesn't exist). My windows machine accesses it just fine (no user or pass). Samba wants a user and password, give one get the system complaining of wrong user/pass. (even via command line). I've been using fstab as a work around by adding the following. //192.168.2.1/default_a1 /media/smb cifs defaults,noatime,auto,username=guest,password=foo 0 0 with this, I am able to mount the share and access it by mounting it via command-line, but I cannot mount it with smb4k, dolphin, etc. Once mounted I can access it via any filemanager, but this is still a pain... what am i doing wrong? -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] windows XP cant browse network
I recently migrated from Fedora Core 10 to fedora core 12. smbd -V Version 3.4.2-47.fc12 I had this configurations file [global] # --- Netwrok Related Options workgroup = CHIPSDOMAIN server string = Samba Server Version %v ; netbios name = MYSERVER interfaces = lo wlan1 hosts allow = 127.0.0.1 10.0.0.0/255.255.255.0 null passwords = yes # --- Logging Options --- # # Log File let you specify where to put logs and how to split them up. # # Max Log Size let you specify the max size log files should reach # logs split per machine log file = /var/log/samba/log.%m # max 50KB per log file, then rotate max log size = 50 log level = 5 # --- Standalone Server Options # # Scurity can be set to user, share(deprecated) or server(deprecated) # # Backend to store user information in. New installations should # use either tdbsam or ldapsam. smbpasswd is available for backwards # compatibility. tdbsam requires no further configuration. security = user passdb backend = tdbsam # --- Printing Options - # ; load printers = yes cups options = raw printcap name = cups # printcap name = /etc/printcap #obtain list of printers automatically on SystemV printing = cups [homes] comment = Home Directories ; browseable = yes writable = yes valid users = rcblach benb colette invalid users = mysql jetty root path = /home/%S [printers] comment = All Printers path = /var/spool/samba browseable = no # to allow user 'guest account' to print. guest ok = yes writable = no printable = yes create mode = 0700 The smbusers is set to pcguest = guest pcguest smbguest administrator rcblach = rcblach There is an account pcguest and the smbpasswd command has been used to set its password to NO PASSWORD What I have discovered is that my XP machine can no no longer browse the Samba machine and see the printers. The log file log.smbd continually shows this error. [2009/12/30 17:37:41, 3] auth/token_util.c:433(create_local_nt_token) Failed to fetch domain sid for CHIPSDOMAIN What I am doing wrong. Shouldnt my xp machine be able to brows the Samba Machine. Thanks Chip -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] How to access shares via HTTP (apache2)
On Thu, Dec 31, 2009 at 7:35 AM, Martin Balint martin.bal...@gmail.comwrote: Hello, I configured samba fileserver as a member of samba domain. PDC and fileserver are different machines. It works great using windows sharing. Now, I need to set up apache to serve my shares, but I am having problem with permissions. Apache runs as www-user, and doesn't see content in shares. So I would like to ask, what is the proper way to use apache (or another http server) to serve files on file server. Using Ubuntu 9.10 and Samba 3.4.0-3ubuntu5.1. Thanks for help, Martin Right now, my configuration is: smb.conf [global] workgroup = DOMAIN.EU netbios name = share2 server string = %h server (Samba, Ubuntu) log file = /var/log/samba/log.%m max log size = 1000 syslog = 0 panic action = /usr/share/samba/panic-action %d winbind separator = + idmap uid = 1-2 idmap gid = 1-2 winbind enum users = yes winbind enum groups = yes security = domain password server = * [software] comment = Shared software path = /srv/fileserver/software force group = DOMAIN.EU+domain users create mask = 0660 directory mask = 0770 writable = yes /etc/nsswitch.conf: passwd: compat winbind group: compat winbind # ls -la /srv/fileserver/software/ total 20 drwxrwxrwx 5 root root 4096 2009-12-31 12:12 . drwxr-xr-x 3 root root 4096 2009-12-31 00:08 .. drwxrwx--- 2 DOMAIN.EU+martin DOMAIN.EU+domain users 4096 2009-12-31 00:24 test2 drwxrwx--- 2 DOMAIN.EU+martin DOMAIN.EU+domain users 4096 2009-12-31 12:11 test3 drwxrwx--- 2 DOMAIN.EU+martin DOMAIN.EU+domain users 4096 2009-12-31 12:12 test4 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba I guess you are trying to do this with wedav. I've looked and have not found a good Linux solution. To use Apache, you would have to write a listener that forks an Apache process as the user. That is expensive and there is no pre-built solution out there. We finally gave up and used Windows 2008 with IIS 7 which can do this natively. We set-up a web site who's root is our samba share (we only have one share and specify all permissions through ACLs). This preserves permissions and owners so that quotas are not thrown off. We initially did some nasty group member things to get it to work with Apache, but the management overhead was a nightmare and went with the Windows solution even though we wanted to go Linux. Robert LeBlanc Life Sciences Undergraduate Education Computer Support Brigham Young University -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] data corruption in samba 3.4.3 ?
Hello, I am using Citrix XenServer for my VM environment. I found that If I am using samba 3.4.3 and dump a vm from a Citrix xen node the resulting image is not importable(ie corrupt) into xenCenter. If I am using samba-3.3.9 and perform the same operation everything works great. To dump the vm's from Xen I mount a samba share from the domU OS. I use the following xen commands to dump the vm mount -t cifs //172.27.1.100/xenBackups /mnt -o username=sdrinkwater,pass=somepass,dom=ad.pa-ucl.com xe vm-snapshot vm=guest_name new-name-label=backup_vm xe template-param-set is-a-template=false uuid=snapshotUUID xe vm-export vm=snapshotUUID filename=exportfilename.xva xe vm-uninstall uuid=snapshotUUID force=true umount /mnt Has anyone else experienced this ?? My info is as follows XenServer mount.cifs version -- mount.cifs version: 1.10 My two test samba servers where build from source with the following config ./configure --with-winbind --with-pam --with-aio-support My smb.conf from the 3.3.9 server [global] netbios name = medusa netbios aliases = insuranceSrv wellnessSrv accountingSrv backupSrv lisSrv personnelSrv hercules copathImagesSrv security = ADS realm = AD.PA-UCL.COM enable privileges = yes large readwrite = yes encrypt passwords = yes workgroup = ad-pa-ucl server string = central file server domain master = no local master = no map to guest = bad user name resolve order = wins bcast host preferred master = no log file = /var/log/samba/%m.log socket options = TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192 wins server = 172.27.1.28 #===Winbindd Stuff == password server = * winbind uid = 1-2 winbind gid = 1-2 winbind separator = + template shell = /bin/bash template homedir = /home/%D/%U winbind cache time = 60 winbind enum users = yes winbind enum groups = yes winbind use default domain = yes allow trusted domains = Yes [netBackups] path = /home/samba/netBackups writable = yes create mask = 0777 directory mask = 0777 valid users = AD-PA-UCL+Administrator,AD-PA-UCL+sdrinkwater write list = AD-PA-UCL+Administrator,AD-PA-UCL+sdrinkwater My smb.conf from the 3.4.3 server #=== Global Settings = netbios name = virtualtest workgroup = ad-pa-ucl security = ADS realm = AD.PA-UCL.COM enable privileges = yes encrypt passwords = yes local master = no preferred master = no map to guest = bad user log file = /var/log/samba/%m.log large readwrite = yes socket options = TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192 # Winbind stuff = winbind separator = + winbind enum users = yes winbind enum groups = yes winbind use default domain = Yes idmap uid = 1-2 idmap gid = 1-2 template shell = /bin/bash template homedir = /home/%D/%U [xenBackups] path = /home/samba/backups/xenbackups writable = yes create mask = 0777 directory mask = 0777 valid users = AD-PA-UCL+Administrator,AD-PA-UCL+sdrinkwater write list = AD-PA-UCL+Administrator,AD-PA-UCL+sdrinkwater NOTICE: This email may contain legally privileged information. The information is for the use of only the intended recipient(s) even if addressed incorrectly. If you are not the intended recipient, please notify the sender that you have received it in error and then delete it along with any attachments. Thank you. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] How to access shares via HTTP (apache2)
Martin Balint wrote: Hello, I configured samba fileserver as a member of samba domain. PDC and fileserver are different machines. It works great using windows sharing. Now, I need to set up apache to serve my shares, but I am having problem with permissions. Apache runs as www-user, and doesn't see content in shares. So I would like to ask, what is the proper way to use apache (or another http server) to serve files on file server. Using Ubuntu 9.10 and Samba 3.4.0-3ubuntu5.1. See thread just a few days back... smbwebclient is a simple PHP script that will run under apache to give web based access to file shares (via smbclient, permissions work flawlessly), Davenport is a Java based WebDAV server if you want the full WebDav thing (I could never get that to work but apparently others have)! -- Steve Rippl Technology Director Woodland Public Schools 360 225 9451 x326 -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Re: [Samba] gidNumber of the Domain Admins group with LDAP
What shoul be the gidNumber of the domain admins group : 0, 512 ou somewhat else ? Looking in log files it seems that samba looks for a gidNumber of 0 but smbldap-populate fill it with 512 ? Any idea ? TIA 512 is correct on the samba side. 0 is the unix group for root. http://www.samba.org/samba/docs/man/Samba-HOWTO-Collection/groupmapping.html John -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] smbd/nfsd interaction, slowness and increasing performance questions
Hello, I am looking for some more information on how to make smbd and nfsd play nicely together in regards to file locking as well as some help understanding the mechanics of the smbd process and how to clean up stale connections. Setup: centos 5, newest smbd and nfsd available, XFS filesystems (for nice Windows ACL usage) Certain shares must be shared to both user bases, cifs cannot be used widely across UNIX environment due to some very old Solaris systems needing access Symptoms: Every so often (2 weeks or so) the NFS users will see a definite lag in performance. The smbd users also see a lag but it's quite less. By lag, a good example would be a simple ls taking upwards of 45 seconds to complete. The smbd users might see a fraction of that, perhaps 8 or 9 seconds but certainly not as long as the nfs users. My theory is that there is some locking going on based on the above information. I'm sure plenty of you all run both of these together so I was looking for any advice on how to make this interaction more smooth. I can add hardware at will if needed, change filesystem types to one with better file locking support, etc. Anything to make this phantom lag go away as it's very crucial that no slowness is observed. An interesting note and here is where I would like some insight into how the smbd process works. There are listener processes out there owned by root that get used up as a connection is made and then the PID owner changes to the samba user. Once complete, they are returned back to the system and await new connection attempts. I am noticing that some of these processes are held open for quite some time (the problem comes up after about a week) and whatever the user is doing is sending keep alives; samba is working as intended. However, if the user ran a search in Windows for example but neglected to close the search window, that process is held open indefinitely until he closes that or logs out. The problem I am seeing is after awhile, these processes come 'back to life' if you will, out of nowhere, they will start to chew up 30% of the CPU and a heap of memory despite doing absolutely nothing. I am not entirely comfortable attributing my overall slowness issues to this but it's an interesting phenomenon. Is there a way for Samba to reclaim these threads without potentially impacting a user? (Case in point, I don't care about the user's search window but I do care about a user who is reading files off a mapped drive.. how to make that distinction is where I'm looking for clarification). It may be that nothing can be done but it's worth noting. From a performance standpoint, are there recommended tuning settings that you all would suggest? Increasing listeners, etc? I'd love to get to the bottom of what is causing this random slowness but I am betting that it's not going to be possible due to the vast array of variables at play here. If there's anything I can do to make this work with maximum performance I would love some insight. If there's anything I can clarify please let me know Thanks. -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] nfs vs. cifs based on my usage profile
Hello, I have an interesting architecture consisting of a 3 RHEL 5.3 NFS nodes that mounts about 30 TB worth of iscsi disk and presents them as 6 different NFS shares. It is an active-active-active cluster with each node presenting a couple of shares. It works pretty well. I am doubting my decision to use NFS and am wondering if CIFS would be a better route. Here are the NFS stats: getattr lookup access readwrite readdirplus 20% 16% 7% 44% 9% 1% Each NFS node pushes about 65 MB/s so they are pretty busy. It is a backup/recovery application so I would describe the I/O as lots of small reads/writes. Any thoughts? Thanks, Terry -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
[Samba] Windows 7 .vhd The version does not support this version of the file format error
I searched the archives for this particular error message, and only found one match from a user doing backups from Windows Server 2008 R2. I'm running FreeBSD 7.2 with (initially) SAMBA 3.3.9 from the FreeBSD Ports Collection. I have a very simple config (included below). The client is Windows 7 Ultimate x64 (RTM version w/ all Windows updates applied). I can create a Virtual Hard Disk (.vhd file) on a SAMBA share from within Windows' Computer Management / Disk Management and then use the .vhd file with no problems. However, if I then detach the VHD (or reboot), any at- tempt to re-attach the VHD results in the rather cryptic Windows error mes- sage The version does not support this version of the file format. I have tried it with both the drive spec and the UNC spec with the same result. If I copy the VHD file to the local hard drive on the Windows machine, I can mount it with no problem, so the file itself isn't corrupted. Thinking that this might be either something odd w/ the FreeBSD port vers- ion or a new/corrected feature in the latest SAMBA, I downloaded 3.5.0pre2 and built it from source (all configure options defaulted except the file paths). Running that version (confirmed with smbclient from another FreeBSD box) didn't change the behavior. I added the max protocol = smb2 config file line, restarted SAMBA, and rebooted the Windows 7 PC. The problem per- sists. Looking in the SAMBA logs, I don't see anything unusual. Is this a known issue? Are there any configuration or debugging steps I could take to help the SAMBA developers with this? Here is my smb.conf file (3.5.0pre2 version): [global] server string = fileserver log file = /var/log/samba/log.%m max log size = 50 dns proxy = No max protocol = smb2 hosts allow = 192.168.0., 127. [homes] comment = Home Directories read only = No browseable = No [printers] comment = All Printers path = /var/spool/samba printable = Yes browseable = No [data0] path = /data0 read only = No Terry Kennedy http://www.tmk.com te...@tmk.com New York, NY USA -- To unsubscribe from this list go to the following URL and read the instructions: https://lists.samba.org/mailman/options/samba
Build status as of Fri Jan 1 07:00:02 2010
URL: http://build.samba.org/ --- /home/build/master/cache/broken_results.txt.old 2009-12-31 00:00:03.0 -0700 +++ /home/build/master/cache/broken_results.txt 2010-01-01 00:00:03.0 -0700 @@ -1,22 +1,22 @@ -Build status as of Thu Dec 31 07:00:02 2009 +Build status as of Fri Jan 1 07:00:02 2010 Build counts: Tree Total Broken Panic build_farm 0 0 0 ccache 2 1 0 distcc 0 0 0 -ldb 16 16 0 +ldb 31 31 0 libreplace 1 1 0 lorikeet 0 0 0 pidl 1 1 0 ppp 0 0 0 -rsync30 12 0 +rsync31 12 0 samba-docs 0 0 0 samba-web0 0 0 samba_3_current 15 14 0 samba_3_master 28 28 4 samba_3_next 28 27 2 -samba_4_0_test 30 30 1 +samba_4_0_test 31 29 1 talloc 1 1 0 -tdb 2 2 0 +tdb 3 3 0