Jerry said:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dwight Tovey wrote:
The problem is that one of our testers has discovered that if he is
logged in as somebody who is a member of the Domain Admin
group, he can access all user's home directories by using
Window's Network
Jerry said:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dwight Tovey wrote:
set an invalid users line in [global]
invalid users = daemon bin lpd mail .
Well, not quite. As I understand the smb.conf man page,
Did you actually test it? Or just read the man page. This use
Hello all -
I'm having a bit of a problem that I'm sure is being caused by my missing
some trivial detail. But I haven't been able to find it, and I'm not even
sure how I would construct the search to find relevant info in the
archives.
Here is the setup. I have Samba 3.0.20a running as a PDC
Dwight Tovey said:
Yesterday I posted that I got my add machine script working, only to
run into a new problem:
However, Windows is still not completely happy. Now on the first
attempt to join a domain, while Samba appears to succesfuly create the
account and populate the sambaSamAccount
Yesterday I posted that I got my add machine script working, only to run
into a new problem:
However, Windows is still not completely happy. Now on the first
attempt to join a domain, while Samba appears to succesfuly create the
account and populate the sambaSamAccount info, Windows comes
Jerry said:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dwight Tovey wrote
:
| So the next step was to configure Samba to use
| the script directly by pointing the add machine script
| parameter in smb.conf to the script:
|
| add machine script = /usr/local/bin/samba-addmachine %u
Jeremy Allison said:
On Tue, Oct 11, 2005 at 12:13:32PM -0600, Dwight Tovey wrote:
Thanks. So if the domain name is changed, we can just declare that
this is an entirely new setup. In that case, should I delete all the
tdb's? I can probably delete the machine accounts from LDAP to force
All -
I am in the process of writing my own add machine script to use with
Samba 3.0.20a and our OpenLDAP setup. For the most part it seems to work
fine. If I run the script from the command line, I can see that the entry
has been added to LDAP. If I then go to the Windows machine and tell it
Jerry said:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Henrik Zagerholm wrote:
| Hi all!
|
| Is there a way to get the physical path of a win share?
|
| I.e I want to get C:\Data\Foldername from MyShare.
rpcclient -c 'getsharegetinfo share1'
We really should migrate some of
Jerry said:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Henrik Zagerholm wrote:
| Jeremy: I couldn't get your 'getsharegetinfo' command to work.
| Maybe a spelling error?
yeah. (me not jeremy). It should be
$ rpc client . -c 'netsharegetinfo public'
Thank you for that. It
Hello all.
What are the implications of changing the domain name for a PDC? If I
understand correctly, the SID is based on the domain name, so if the
domain name (workgroup) setting in smb.conf is changed, will that mean
that a new SID will be generated? If so, then I assume that all
user/group
Jeremy Allison said:
On Tue, Oct 11, 2005 at 11:51:32AM -0600, Dwight Tovey wrote:
Hello all.
What are the implications of changing the domain name for a PDC? If I
understand correctly, the SID is based on the domain name, so if the
domain name (workgroup) setting in smb.conf is changed
Chris Petrell said:
So I have a freebsd machine setup, and it has 2 nick's in it. One is a
REAL IP, and pulls in internet, the other is a a nat'ed nick, with samba
running on it for the machines behind the firewall. Anyone know what to
toss into my smb.conf to not let my outside nick xmit
Taolizhong said:
Hello --
Our existing Unix system has more than 500 users. The system currently
uses OpenLDAP to authenticate users. We just added dozens of PCs running
Windows to the network. We are going to set up the existing Unix server
as a samba PDC server such that the users can
Eric Hines said:
Yes, I am--or at least I think so; the daemon is running, and it's
configured according the the Chapt 3 example. The /etc/resolv.conf file
says it's written by /etc/dhclient-script, so I disabled that file,
adjusted the resolv and tried again. No effect. Also, during
Dwight Tovey said:
Eric Hines said:
Yes, I am--or at least I think so; the daemon is running, and it's
configured according the the Chapt 3 example. The /etc/resolv.conf
file
says it's written by /etc/dhclient-script, so I disabled that file,
adjusted the resolv and tried again
We have a customer system running Slackware Linux (kernel 2.4.25) and
Samba. The customer was running Samba 2.2.8 but we recently upgraded them
to
Samba 3.0.13.
The customer has a FileMaker database on a public share. Before the
upgrade, the customer was able to have multiple concurrent access
Robert Adkins said:
Samba utilizes the UNIX File permissions for telling Windows machines
who can do what with a file. Due to this, you have a decent User and
Group set of controls you can place on the files/directories that you
choose to share with Samba.
Without having users in the
Hello all
I'm trying once again to get a Samba server set up on a Slackware Linux
system for a small office (much less than 100 users). There will be
multiple domains on this system (say foo.com, bar.com, ...) with the users
scattered between these domains. We want to use LDAP to authenticate
I'm working on upgrading a Samba server from Version 2.2.8a to Version
3.0.4. One of the things I've noticed is that the samba.schema has
changed. I'll admit that I haven't done an exhaustive search yet, but in
looking over the documentation I haven't seen any mention of anything that
needs to
Erik Holst Trans said:
Hi,
I have noticed that the SambaAccount have changed to SambaSamAcount.
Take a the documetation directory under examples/LDAP there should be a
script convertSambaAccount to convert you entries.
Thanks. We have multiple domains in our LDAP and that convert script
I'd like a bit of a Sanity Check to make sure I understand the process.
We are setting up filesharing on a Linux server via Samba (3.0.2). We
would like to give the users personal space (home directories), but we
don't want to add them as Linux users (no entries in /etc/passwd). The
users are
22 matches
Mail list logo