Mbits/sec for 2.2.5 and 32.1 MB/sec for 2.2.7) Has anyone else seen this
problem?
The config files are exactly the same, but 2.2.5 is consistently 20% faster
than 2.2.7
Thank you,
Tom Dickson,
InoStor, Inc.
--
To unsubscribe from this list go to the following URL and read the
instructions
.
Is there anyway to work around this?
If this sounds too convoluted, let me know. I can add smb.conf files and log
files, but I think the problem is samba changing to _ before processing
the login request.
Thank you,
Tom Dickson
--
To unsubscribe from this list go to the following URL
been added to 2.2.8?
http://lists.samba.org/pipermail/samba/2003-March/091967.html
Thank you,
Tom Dickson
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
Is it possible to get a patch for 2.2.5 to fix only the winbind memory leak?
A jump to version 2.2.8 is recommended, I know, but we have to verify every
time we upgrade, and staying with 2.2.5 while we qualify 2.2.8 would be
nice.
Is there anyway to verify that these mails are getting to the
I have a client connected to a share CocaCola:
smbstatus shows:
CocaCola root root 2959 tdickson (10.73.0.109) Wed Mar 26
13:16:16 2003
IPC$ root root 2959 tdickson (10.73.0.109) Wed Mar 26
13:16:09 2003
IPC$ nobody nobody2959 tdickson
You used:
domain\user
Under most normal (i.e., default) winbind setups, you need to replace the \
with a +.
this is in smb.conf as
winbind separator = +
(or something like that).
Bash will take \u as the character u
Hope this helps.
-Tom Dickson
--
To unsubscribe from this list go
Does anyone have any experience (or even know if it is possible) to run
Microsoft SQL and Exchange with the database files stored on a Samba share?
Thank you.
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
In windows 2000 I'm getting:
FAiled to verify incoming ticket!
in log.smbd. wbinfo -a gives me
error code was NT_STATUS_INVALID_PARAMETER
klist seems to work, and smbclient from localhost works, but trying to
access the share from the domain
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
OK. I've done some more research, and here's what I get.
smbd --version
Version 3.0.0
strings libkrb5.so.3.2 | grep BRAND
KRB5_BRAND: krb5-1-3-1-final 1.3.1 20030730
Everything seems to work, but trying to access the Samba server results in:
Gerald (Jerry) Carter wrote:
| Tom Dickson wrote:
| | OK. I've done some more research, and here's what I get.
| |
| | smbd --version
| | Version 3.0.0
| |
| | strings libkrb5.so.3.2 | grep BRAND
| | KRB5_BRAND: krb5-1-3-1-final 1.3.1 20030730
| |
| | Everything seems to work, but trying to access
.3.2 | grep BRAND
| KRB5_BRAND: krb5-1-3-final 1.3 20030708
|
| I'm running Mandrake 9.2
|
| Thank You Samba Team!
| Tim
|
| On Thu, 2003-12-11 at 13:59, Tom Dickson wrote:
|
| -BEGIN PGP SIGNED MESSAGE-
| Hash: SHA1
|
| OK. I've done some more research, and here's what I get.
|
| smbd
for ent_dm.tst and 101.00 for dm.tst on a P4
system with 512 MB RAM.
Any information would be appreciated.
Thank you,
Tom Dickson
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.2-nr2 (Windows 2000)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQE/2jTn2dxAfYNwANIRAqL7AJ9kPk9V
You still need UNIX users and groups, but you don't need to create them
by hand; winbind can take care of that for you.
Other than the buzzword of ADS, there is not much different between ADS
and NT4 style auth (at least to the user, the protocals are different).
I'd look at the winbind
wrote:
| Tom Dickson wrote:
|
| You still need UNIX users and groups, but you don't need to create
| them by hand; winbind can take care of that for you.
|
| Other than the buzzword of ADS, there is not much different between
| ADS and NT4 style auth (at least to the user, the protocals are
| different
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
The IPC$ share and (I think) the ADMIN$ share are used for communication
between windows clients. IPC = inter process communication. Samba sets
them up for you, as they are necessary with newer clients. Try a
smbclient on a windows box and you should
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Samba 3.0.1 + OpenLDAP can emulate many if not all of the functionality
of ADS. Permissions and ACLs definitly work, but may take some research
getting used to.
Please see the Samba HOWTO, which is very detailed:
http://us1.samba.org/samba/docs/man/
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
smbd -b
- -Tom
Hai Wu wrote:
| How can I tell if option with-acl-support is compiled in Solaris smbd?
|
| Here's the output using ldd:
| bash-2.05$ ldd /usr/local/samba/sbin/smbd
| libldap.so.2 = /usr/lib/libldap.so.2
| liblber.so.2
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I don't see WITH_ACL so I'm going to guess no.
Hai Wu wrote:
| Thanks. I am still not sure whether option with-acl-support has been
compiled in the smbd.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.3 (GNU/Linux)
Comment: Using GnuPG with Mozilla
compile Samba with-acl-support?
|
| Thanks, Hai
|
|
|Tom Dickson [EMAIL PROTECTED] 12/24/03 21:49 PM
|
| I don't see WITH_ACL so I'm going to guess no.
|
| Hai Wu wrote:
| | Thanks. I am still not sure whether option with-acl-support has been
| compiled in the smbd.
-BEGIN PGP SIGNATURE
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Have you given it time for the WINS cache to activate (Can take up to 15
mins)?
Is nmbd running?
- -Tom
[EMAIL PROTECTED] wrote:
| Hi all,
|
|
| I am using samba 3.0.1 LDAP PDC on suse 8.2. smbclinet command is not
| listing domain ( work group
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
The only way to debug this is to bump the samba log level up to 5 or 10
and then see what the clients are sending on the wire.
- -Tom
Thiago Lima wrote:
|
| I'm using samba 3.0.1 as a file server, with no domain.
|
| All my users are
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
If WINS is running, I can do nmblookup -S controller.
But if WINS is not running, I can do a nmap of the machine and see
kerberos, ldap, ldaps, and kpasswd running. Which of these would be a
good test to see if a machine is an ADS controller?
- -Tom
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
After about a day of running samba 3.0.0, I get the following problem:
bash-2.05a# smbclient //192.168.1.23/data -U UseRNaMe
Password:
session setup failed: NT_STATUS_NO_LOGON_SERVERS
If I restart winbind, it starts working for 24 hours more.
This is
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
It is easy to script creation of unix users; does anyone know an easy
way to script the creation of windows 2000 active directory users?
Thank you,
- -Tom
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.3 (GNU/Linux)
Comment: Using GnuPG with
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I have a test unit that has the following network configuration:
eth0 inet addr:10.73.0.105 Bcast:10.73.255.255 Mask:255.255.0.0
eth1 inet addr:10.111.0.1 Bcast:10.255.255.255 Mask:255.0.0.0
with the following routes:
Kernel IP
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Is this something to worry about:
[2004/09/27 01:15:56, 0] lib/util_sock.c:get_peer_addr(952)
~ getpeername failed. Error was Transport endpoint is not connected
[2004/09/27 01:22:45, 0] lib/util_sock.c:get_peer_addr(952)
~ getpeername failed. Error
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
~ /usr/bin/net ads join -Udennisb
dennisb password:
[2004/11/02 17:31:56, 0] libads/ldap.c:ads_add_machine_acct(1006)
~ Host account for if-srv-hos1 already exists - modifying old account
[2004/11/02 17:31:56, 0] libads/ldap.c:ads_join_realm(1342)
~
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I have 104,000 users, some of which are in the OU:
ad.network.local\AD\People\IFAS\Hort
Is there an easy way to find all the users in this OU and grant them
access to a share?
Or do I have to list each user individually?
And if so, can I use net user
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
They are in a 2000 ADS OU.
- -Tom
Matt Perkins wrote:
| Do the users exist in an OPENLDAP database or Windows Active Directory?
|
| On Thu, 2004-11-04 at 10:47, Tom Dickson wrote:
|
| I have 104,000 users, some of which are in the OU
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I have a machine that is successfully joined to a ADS domain with 104,000
users. However, when I go to look at the ACLs for a file in a share, I
cannot select the domain when adding users, so that I only see the
default setup. Is there anything I need
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
We had 3.0.2a which worked fine. If you tried to open a file that the
ACLs wouldn't let you, you'd get access denied. We had follow
symlinks=no in smb.conf
Now with 3.0.8, and no other changes, we get a message about The file
has moved or otherwise
2097152. 56176 blocks available
smb: \B\
I'm trying it again with direct users in the ACLs instead of groups.
- -Tom
Jeremy Allison wrote:
| On Tue, Nov 16, 2004 at 04:07:15PM -0800, Tom Dickson wrote:
|
|-BEGIN PGP SIGNED MESSAGE-
|Hash: SHA1
|
|We had 3.0.2a which worked fine. If you tried
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Does the Samba Netatalk VFS module in 3.0.8 work with the new version of
Netatalk (2.0.1)?
Thanks.
- -Tom
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Upgrading from 3.0.2a to 3.0.10 gives us a version of samba that joins the
domain
properly (2000 mixed mode, type ADS), and will list the users, but the following
message is repeated over and over in /var/log/samba/log.winbindd:
[2005/01/13 11:28:59,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Joining a mixed 2000 domain worked correctly for Samba 3.0.2a.
After upgrading to either samba 3.0.9 or 3.0.10, the net ads join command
completes successfully, and wbinfo -u returns a list of users, but any attempt
to
actually authenticate those
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
O.k. I've nailed the change down to the upgrade from 3.0.2a to 3.0.3. I'm going
to
try and figure out what changed there.
Tom Dickson wrote:
| Joining a mixed 2000 domain worked correctly for Samba 3.0.2a.
|
| After upgrading to either samba 3.0.9
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Is this command secure?
net ads password [EMAIL PROTECTED] [EMAIL PROTECTED]
You must supply an administrator username/password
I don't want to put my administrator password on the command line; but it won't
prompt me for it. Is there another way to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ah, tracked it down to the same problem I had last year:
http://lists.samba.org/archive/samba/2004-May/085624.html
Was using --set-auth-user with the wrong user. Perhaps some message could be
added; I'm emailing this to provide closure for google.
Tom
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
The net commands work: net ads testjoin, net ads user (after a ticket is
created).
However, winbindd refuses to run correctly. It has an --set-auth-user
configured,
but the following commands don't work:
[EMAIL PROTECTED] samba]# wbinfo -p
Ping
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
For example,
smbclient //sambaserv/share -U administrator
Password:
smb aclmod booog
or something like that?
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
My users are complaining that to remove Everyone permissions from a
folder's ACL they have to Deny all permissions. This causes a Windows
warning to appear: You have denied everyone access to New Folder. No
one will be able to access New Folder and
cosmetic debuging with samba
| about that but you will see another kind of problem will come up *g
| So i wouldnt invest to much time in debugging a feature which is simply
| rubbish from the creators of win and makes trouble in purly win networks
| too
| Best Regards
|
|
| Tom Dickson schrieb
Then you are in violation of section 3 of the GPL as printed at
http://oss.snapappliance.com/license.html
Samba is licensed under the GPL, and the version in SNAP is modified. I'd
like the modifications.
The modifications available at oss.snapappliance.com are old.
-Tom
Hi Tom,
I am
On Fri, Jul 16, 2004 at 11:07:00AM -0700, Tom Dickson wrote:
Then you are in violation of section 3 of the GPL as printed at
http://oss.snapappliance.com/license.html
Samba is licensed under the GPL, and the version in SNAP is modified.
I'd
like the modifications.
The modifications
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
We're power failing a unit before it goes into production, and we've
noticed that every time we fail it during a data transfer, smbd loses
the domain connection. I've traced it down to the secrets.tdb file.
After a power failure, tdbdump secrets.tdb
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Tom Dickson wrote:
| We're power failing a unit before it goes into production, and we've
| noticed that every time we fail it during a data transfer, smbd loses
| the domain connection. I've traced it down to the secrets.tdb file.
| After a power
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I'm looking at the source code from
http://oss.snapappliance.com/3.1/Opus3.1.079.tgz which has a number of
improvements to the ACL handling code in Samba. However, the patches are
against Samba 3.0.0. Is anyone working on integrating them?
Otherwise,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Try a share setup like this:
[%U]
path=/home/%U/homedir
write list=%D+%U
read only=no
Note that if you're not in a Windows 2k PDC situtation, you'll want
write list=%U.
- -Tom
Raymond wrote:
| Installed Samba 3.0RC4 on a RH80 box.
|
| Need [homes]
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
You're using an invalid IP address (it's a public one, and begins with a
zero which may confuse things). I'd recommend you set the linux box to
10.0.0.1 and the Windows box to 10.0.0.2, both with a netmask of
255.0.0.0 and a broadcast of 10.255.255.255
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
This may be an artifact of the way Windows/UNIX differ in file deletion.
In UNIX, you can delete a file that is open, and the file will remain
readable by the process, but the moment that process closes the file, it
is deleted. Deleting the directory
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Be sure that you have it setup to run passwd/smbpasswd as root to change
the password.
See the HOWTO at
http://us1.samba.org/samba/devel/docs/html/Samba-HOWTO-Collection.html
If you're not using 3.0, try
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
What version of Samba are you using? 3.0.0rc2 had some issues with macro
expansion; you may have found another one.
I think rc4 removed some of the parameters (%G %U) from some lines.
If %S works, I'd use it. You could also try:
read only = no
valid
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Try upgrading to 3.0.0rc4 (It fixed an issue with Valid Users line.)
If it still occurs, I'd enter a bug.
- -Tom
SerpentMage (Christian Gross) wrote:
| Tom Dickson wrote:
|
| -BEGIN PGP SIGNED MESSAGE-
| Hash: SHA1
|
| What version of Samba
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
You need to be the wins server for both subnets.
See the browsing chapter at
http://us2.samba.org/samba/devel/docs/html/Samba-HOWTO-Collection.html
Hope this helps.
- -Tom
Jeevan wrote:
| Hi all,
| I am new to Samba world.
| May be I am asking the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
First off, %U doesn't work in rc2 and earlier.
Secondly, if you're running samba 3 rc4, try:
valid users = %D+%U
Because if you're using winbind, your UNIX name is DOMAIN+UserName, and
%D is domain.
If that fails, try:
write list = %D+%U
which
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Look at the
include =
line.
If you did:
include = /home/%u/.smb.conf
then I think you'd have what you need.
- -Tom
LeVA wrote:
| Hello!
|
| I need a user defined config file for samba. I mean there must be a file
| called ~/.samba.conf or
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
No. Samba will check (and reload if necessary) your smb.conf once a
minute, I think.
- -Tom
LeVA wrote:
| Tom Dickson wrote:
|
| -BEGIN PGP SIGNED MESSAGE-
| Hash: SHA1
|
| Look at the
|
| include =
|
| line.
|
| If you did:
|
| include
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Try doing smbclient -l //servername -U username%password
then you should see a share named [username]
Other than that, I don't know.
Windows network neighborhood will not see all the shares, as some are
hidden. They will only see theirs, as [homes]
your work!
- -Tom Dickson
InoStor, Inc.
http://www.inostor.com
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.2-nr2 (Windows 2000)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQE/hYgO2dxAfYNwANIRAoU6AJ42+yCinDbicCYNYJMHVscKpzj0hQCeMQ0y
XpTkme6CCzxaUKPrWWqDdKY=
=lLx8
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Here is the issue, and why the Samba list is basically unable to do
anything:
If you send a message to the Samba list, it gets resent to everyone on
the list. This message will contain a FROM: line, showing an email address.
There are people on this
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
You need a period after your hosts allow for 192.168.0.
- -Tom
wrote:
| After I had installed samba,I can used smbclient -L 127.0.0.1to view
my share resource,but when I type
| stevens# smbclient -L 192.168.0.19 --This is my ip
| added interface
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
The share permissions override everything else.
You can manage the share permissions through the MMC (not sure how to do
this; check the HOWTO).
So, you'll have to add terry to the share list first.
This is the same as sharing a folder under Windows;
support, will
winbind correctly continue to use the same Windows Username to Linux UID
mapping so that ACLs don't have to be redone?
Thank you.
- -Tom Dickson
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.2-nr2 (Windows 2000)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQE
:
This is to make it easier to script wbinfo for nas appliances using
expect to allow passwords with characters that bash doesn't like: '!*\,%
etc. This also prevents the password from being seen by ps auwx which
some may consider to be a security risk.
- -Tom Dickson
InoStor Corporation
13000 Gregg
it'll be rpm dependecy hell
- -Tom Dickson
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.2-nr2 (Windows 2000)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQE/lcS32dxAfYNwANIRAvzPAJ9+bXPtj+nd5GhKilhh8+Bcyzr1kQCfY2FE
K22TwZUjUUB+H8q2d5bKbRw=
=6xaG
-END PGP SIGNATURE
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Well, ze work is done, sir. It went up on slashdot at 3 AM saturday, at
http://slashdot.org/article.pl?sid=03/10/24/224227
Initial response seems to be good, many comments similar to yours, Kurt.
Thank you for the notice!
- -Tom
Kurt Pfeifle
in the release or is something
misconfigured?
- -Tom Dickson
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.2-nr2 (Windows 2000)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQE/nqaT2dxAfYNwANIRAiD3AJ9Tp27fMq1BSeGA77kgRFujYd1zjQCfe0OT
CKAhhZhir43giBZRg9x0INQ=
=K59a
-END PGP
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
knorr smbd[5439]: [2003/10/31 10:27:02, 0]
lib/util_sock.c:get_socket_addr(919)
knorr smbd[5439]: getpeername failed. Error was Transport endpoint is
not connected
knorr smbd[5439]: [2003/10/31 10:27:02, 0]
lib/util_sock.c:write_socket_data(388)
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
net ads join doesn't say anything sometimes.
Does kinit [EMAIL PROTECTED] work correctly?
If it does, try bumping up the log level to 5 or 10 and try again.
Also, you should be able to ping the FQDN of the ADS server, etc.
Also, you may want to try
http://samba.org/~jht/HOWTO/Samba-HOWTO-Collection.pdf for more
information on MS-DFS
- -Tom Dickson
Hello!
I recently upgraded my samba system with samba 3, and now I'm starting
to use the recycle vfs, that I was not using in my previous
instalations. My problem is the following:
I have normaly
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Why doesn't anyone tell us about these book signings?
Will you be in San Diego anytime? We've two copies and would love to get
a signed one.
- -Tom Dickson
InoStor, Inc.
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.2.2-nr2 (Windows 2000)
Comment
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello all!
I get this warning message when running:
rpm -Uvh samba-3.0.1pre3-1.src.rpm
rpmbuild -bb samba3.spec
Compiling smbd/trans2.c
In file included from include/sysquotas.h:32,
~ from include/smb.h:421,
~ from
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
If you run net join ads and it works, then there should be a new
computer in the Computers container in ADS, and if winbind is working
correctly,
wbinfo -u
wbinfo -g
wbinfo -a will then see if you can get authenticated.
Also, klist should show
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I was running a netbench performance test against Samba 3.0.11, and the test has
not been able to complete fully.
The samba logs contain lines such as this:
[2005/02/28 11:35:23, 1] smbd/service.c:make_connection_snum(645)
~ slave16 (192.168.133.116)
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
O.K. I'm going to run this test again with logging up around 10 somewhere on a
clean install; hopefully that'll allow me to track it down.
I should have more information later today.
Jeremy Allison wrote:
| On Mon, Feb 28, 2005 at 12:56:47PM -0800, Tom
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I've winbindd running on Samba 3.0.11, and everything seems basically correct,
however, when I run getent group, the group DOMAIN+domain users has no members
listed.
But if I do id CORP+nastest I get this:
uid=10112(CORP+nastest) gid=10011(CORP+domain
I'm running Samba 2.2.5 on Redhat 7.3.
The issue I'm seeing (besides Domain Local Groups not being seen by winbind)
is that winbind is not getting new users from the Domain Controller (windows
2000 native mode).
For example:
wbinfo --sequence(gives 43)
Add user on the DC (user is bob, so
Does winbind support (in samba 2) retrieving Domain Local Users and Groups
from a Windows 2000 server in Native mode?
My setup has winbind seeing the Global users, but not the Universal or Local
ones.
My guess is that Samba 3 is what I need here, but I was wondering if there
are any quick hacks
I'm using Samba 2.2.8a with winbind on a Red hat System
(kernel 2.4.20 + acl) within a W2K Domain compiled
with the good options (I hope)
Winbind can authentify users when the user is a Global
User but not when he's in an Organization Unit.
I need that winbind is able to authentify OU's
Where does one find information on Antivirus w/Samba? Is there
a FAQ/HOWTO somewhere?
I'd be interested in on-access scanning.
Thank you.
i've been looking around for antivirus tools for samba.
most seem to use the VFS system built into 2.2.x/3.0
only problem with that is 2.2.x does not
I've read in previous messages that Samba 3.0 is supposed to work out of the
box with Win2k3. Is that still planned, or will registry hacks have to be
used?
Also, will Samba 3.0 be able to use a win 2003 server as a Active Directory
server? (I.E., join the domain?)
Thank you,
Tom
--
To
Hello all,
I want to make a Samba server act as much like an 2000 machine as possible.
I've successfully got winbindd running, and also have compiled ACLs into the
kernel and the XFS filesystem.
What settings to I want to use in the smb.conf file to make it as close to
2000 as possible? I want
Do you have ACL support enabled in the filesystem?
You may want to see http://acl.bestbits.at/
-Tom
*
My apologies for the incomplete info !!!
I repeat the e-mail so you do not get confused.
More questions! :)
By setting create mask = 0700 directory mask = 0700 directory security mask
= 0700 I get a sort-of-work around to the issue, but then I can't add the
Everyone group back in! The Everyone group will turn into CREATOR OWNER the
moment I hit Apply. This creates the following
Is it possible to copy ACLs from a Windows 2000 box to a Samba share and
preserve the ACLs? Right now with Samba 2.2.8 I get an error.
Is there anyway to get the ACLs to Samba in some other way, and/or does
Samba 3.0 support this?
Sorry for all the questions.
-Tom
--
To unsubscribe from this
According to testparm, this line (force unknown acl user = yes) has no
affect on the configuration. Testparm always returns
force unknown acl user = 00
Is this config option only for Samba 3.0? (I have 2.2.8a).
I'm wondering because it sounds like it fixes a problem I'm having:
(from man 5
With Samba 3.0 in PDC mode, I see no groups in the Add... windows under
windows 2000 security dialog.
The users are present, but no groups are listed.
Samba 2.2.8 would display Unix groups (in fact it would display them all.)
I can't find any information as to whether or not the smbgroups is
Would it be possible to add a
suppress empty permissions = yes
option that would cause Samba to not send an ACL group if the group has 0
UNIX permissions.
For example; if a file has rwx--, then samba could return only the owner
in the Windows Security dialog for the file. Right now it will
it,
which is why I'm wondering if there is a utility to move from a codepage to
Unicode.
Thank you!
-Tom Dickson
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
By logging into a smbd server with the username HAENGINEERS\KMR, we are
able to cause a smbd panic every time. Other usernames
(HAENGINEERS\_TestME) work.
The stack trace is below, full logs and smb.conf are available on request
(don't want to saturate the list.)
I can't post to bugzilla as I
It would be very helpful if wbinfo could take a password on STDIN in a
manner similar to the way smbpasswd -s works.
Is this feasible? Otherwise it is very hard to get a script to pass a
password like @bobbob *! to wbinfo [EMAIL PROTECTED]bob *!
Thank you.
-Tom
--
To unsubscribe from this
On Wed, 27 Aug 2003, Tom Dickson wrote:
It would be very helpful if wbinfo could take a password on STDIN in a
manner similar to the way smbpasswd -s works.
Is this feasible? Otherwise it is very hard to get a script to pass a
password like @bobbob *! to wbinfo [EMAIL PROTECTED]bob
Did they get compiled statically?
on Linux a
ldd `which smbd`
will tell you what external libs it needs; if there are none, then you've
got samba with all libraries compiled it.
Hope this helps,
-Tom
Hi list
I just compiled 3.0rc1 on Solaris 9 (UltraSparc IIe) with gcc
Does Samba 3.0 have support for Domain Local Groups when using NT auth?
-Tom
--
To unsubscribe from this list go to the following URL and read the
instructions: http://lists.samba.org/mailman/listinfo/samba
+DomainLocalGroup
which should allow
MAIN+bob and MAIN+tom to write to the share.
Thank you!
-Tom
-Original Message-
From: Gerald (Jerry) Carter [mailto:[EMAIL PROTECTED]
Sent: Thursday, August 28, 2003 10:47 PM
To: Tom Dickson
Cc: samba mailing list
Subject: Re: [Samba] Domain Local Groups
Hello,
Is it possible to put %U or %S in the valid users line?
I'm trying:
valid users = %D+%U
for a certain homedir setup (automagically creates if non-existent), but the
level 10 logs show that
it always tries: checking |MIXEDDOMAIN+dl| against |%D+%U|, and does not
expand the macro. This is
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I'd check out Paul's unofficial howto at
http://www.bluelightning.org/linux/samba_acl_howto
Hope this helps.
- -Tom
Collen wrote:
| G'day just haveing some probs regarding the acl.
|
| I have installed the acl from bestbite at my linux box.
| in a
machine (Win2k, for example).
- -Tom Dickson
Failed Access wrote:
| Have you added the line
| domain logons = yes
|
| to your smb.conf file?
|
| Rogério Oliveira Naressi wrote:
|
| I have Samba 2.2.3a-12.3 for Debian how PDC in network
| with 4 subnets. This runing how Wins Server too and my
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Do you have winbind running correctly?
These commands should all work if everything is set up right:
wbinfo -u (shows all users)
wbinfo -g (shows all groups)
getent passwd (shows that nsswitch is working, should show UNIX NT
users in an /etc/passwd
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I believe Jerry put up a new Binary RPM just recently; you may want
to try that.
See
http://us1.samba.org/samba/ftp/Binary_Packages/RedHat/RPMS/i386/9.0/samba-3.0.0rc2-2_rh9.i386.rpm
Long one there! :)
N H wrote:
| Hello group,
| I have downloaded
1 - 100 of 137 matches
Mail list logo