On 06/28/2010 09:42 AM, Volker Lendecke wrote:
Hi!
$SUBJECT says it all. Why am I asking? A few times in the
recent past I've stumbled across this module when trying to
make changes in the winbind infrastructure that would
involve changes to idmap_adex.
The problem here is that I have no
Hey Volker,
On 06/28/2010 10:07 AM, Volker Lendecke wrote:
Part of what I want to test is possible changes to for
example the routine _nss_adex_get_info(). This has code like
{
NTSTATUS nt_status;
struct likewise_cell *cell;
nt_status = _idmap_adex_init(NULL,
On 06/28/2010 10:13 AM, simo wrote:
There's some confusion here. The idmap_adex() doesn't have
anything to do with Likewise Cells. It's just an rfc2307
idmap module with support for domain trusts. The comments
in the code are misleading only because it was derived from
my original code at
(sorry...I keep sending from my work address which is not
subscribed to the lists)
Hey Simo,
On 06/28/2010 10:29 AM, simo wrote:
Ok, for some reason I thought information was maintained
on your side of the trust using the cells.
Sort of correct. But these are specific OU cells and not
a
On 06/28/2010 10:51 AM, Volker Lendecke wrote:
On Mon, Jun 28, 2010 at 10:37:28AM -0500, Gerald Carter wrote:
Sort of correct. But these are specific OU cells and not
a forest wide cell. At the risk of digressing into a Likewise
specific thing, an OU cell stores the meta data for objects
Nathan Lager wrote:
Afternoon!
I have a samba server, which shares out an NFS mounted share. It seems
that everything works rather well, except that i get some lag when
modifying a file. If i share a directory which is local to the samba
server, no lag, everything works perfectly. However,
Hey Nick,
Nick wrote:
Is it possible for the uid/gid numbers that are generated by the
idmap_rid and idmap_hash to collide if there are a large number of
users or groups? I cannot seem to find any documentation on the
limitations of these plugins. Before using I want to make absolutely
Nick,
Gerald Carter wrote:
Hey Nick,
Nick wrote:
Is it possible for the uid/gid numbers that are generated by the
idmap_rid and idmap_hash to collide if there are a large number of
users or groups? I cannot seem to find any documentation on the
limitations of these plugins. Before using
Robert LeBlanc wrote:
There's a slide or two outlining the algorithm in this slide deck
from LInuxWorld SF '08
http://archives.likewiseopen.org/%7Egcarter/presentations/likewise_open_first_class_citizen_lwsf08.pdf
How does this compare with idmap hash?
It's the same thing algorithm. I
Robert LeBlanc wrote:
So if I understand right, hash does not hash the SID, it does the
same as rid and takes the last section directly from the SID
and uses that withou modification (rid adds that number to the
lower range number).
idmap_hash *does* the SID.
cheers, jerry
Robert,
Robert LeBlanc wrote:
I was looking through the change log of 3.3.0 and noticed that a new
idmap_hash was introduced that seems to play well with trusted domains. What
means are available to convert all my rids to this new hash so I can update
file permissions?
You mean updating the
Hey Ryan,
The samba host is a domain member server (security=ADS)
with winbind for user accounts. Where is this user rights
database stored and what is the tool to assign admin privileges?
Use 'net sam' to add the user in question to the BUILTIN\Administrators
group on your Samba host.
Ryan Suarez wrote:
Thanks, it worked for me! Looks like the local BUILTIN\Administrators
has all those rpc rights granted by default.
Correct. Glad things are working now.
cheers, jerry
signature.asc
Description: OpenPGP digital signature
--
To unsubscribe from this list go to the
Hey Adam,
Use 'net sam' to add the user in question to the BUILTIN\Administrators
group on your Samba host.
# /usr/local/samba/bin/net rpc rights grant testpc1
SePrintOperatorPrivilege -U testpc1
Failed to grant privileges for testpc1 (NT_STATUS_ACCESS_DENIED)
Oh, so does 'net rpc' in
Ryan,
hmm, the best option for me is to ask the AD administrator to grant the
samba SePrintOperatorPrivilege directly to the user object in Active
Directory. Where is this added in AD and what is this privilege called?
The user rights database is maintained in Samba's passdb. If
you are
John H Terpstra - Samba Team wrote:
On 08/17/2009 12:53 PM, Matthew Dempsky wrote:
I'm trying to make some DNS server software aware of NetBIOS names on
the local network. Is there an easy and efficient way using Samba to
keep track of what NetBIOS names are present?
Thanks.
Use the
Nikhil,
I looked at the enabling kernel oplocks in the samba configuration file and
I have enabled kernel oplocks = yes in the [global] section on both of
Linux-2.6.18-92 and Linux-2.4.21-47.0.1.ELsmp kernel machines running the
samba and I notice that the behaviour is not as what is said. I
I've installed new certs on the mailman and bugzilla servers.
Both are signed by the Samba CA
http://us1.samba.org/samba/ftp/Samba_CA.crt
cheers, jerry
--
=
http://www.plainjoe.org/
What man is a man who does not make the
Hey Jeremy,
On Thu, May 28, 2009 at 12:05:00PM -0500, Gerald Carter wrote:
I've installed new certs on the mailman and bugzilla servers.
Both are signed by the Samba CA
http://us1.samba.org/samba/ftp/Samba_CA.crt
Thanks a *lot* for this !
Sorry it took me a couple of weeks to get
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hey Ray,
would it make sense to for the developers to pull in some
code from the wine or winelib projects to take care of
device mode issues. I've replaced a few printers recently
with ones for which I can't set up point and print with samba
Fyi
The bugzilla cert expired today. Will be issuing a new one
in the next 24 hours.
cheers, jerry
signature.asc
Description: OpenPGP digital signature
--
To unsubscribe from this list go to the following URL and read the
instructions: https://lists.samba.org/mailman/options/samba
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jorgen,
\\host\share and file://host/share don't seem to work, and has nowhere
for the username part to be included.
You can encode the username as an arg in the
net use * \\host\share /user:DOMAIN\username
cheers, jerry
- --
://www.drouillard.biz/TipsTricks/Samba/Oplocks.htm
--
Regards
--
Gerald Drouillard
Technology Architect
Drouillard Associates, Inc.
http://www.Drouillard.ca
--
To unsubscribe from this list go to the following URL and read the
instructions: https
any pattern it's driving my users crazy.
Below is the smb.conf any help and or suggestions would be
greatly appreciated thanks!
Look at:
http://www.drouillard.biz/TipsTricks/Samba/Oplocks.htm
--
Regards
--
Gerald Drouillard
Technology Architect
Drouillard
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dorrian, William M wrote:
Anyone have any input? I think I'm just missing
something simple here...
-Original Message-
From: samba-bounces+william.m.dorrian=usace.army@lists.samba.org
Sorry about the dumb question:
Are the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hey Ross,
I'm having problems getting the new idmap_adex module to work.
Sorry about that.
When using the idmap_adex plugin I get the following:
# wbinfo -n administrator
S-1-5-21-X-XX-XX-500 User (1)
# wbinfo -i
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hey Andrea,
do map hidden parameter works only for files and not
for directories?
Correct. Look at store dos attributes for complete attribute
support for both files and directories. Much better solution.
cheers, jerry
- --
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Folks,
Apologies for the short notice. I had sent a message to the
rest of the team earlier this week but forgot to post here.
The server providing git, wiki bugzilla for samba.org
will be offline for maintenance until 17:00 GMT -5 today.
Thanks
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Gerald (Jerry) Carter wrote:
Folks,
Apologies for the short notice. I had sent a message to the
rest of the team earlier this week but forgot to post here.
The server providing git, wiki bugzilla for samba.org
will be offline
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Linux Addict wrote:
winbind offline logon = Yes
idmap config DOMAIN1:range = 20 - 29
idmap config DOMAIN1:backend = rid
idmap config DOMAIN2:range = 10 - 19
idmap config DOMAIN2:backend = rid
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Troy Heidner wrote:
Hello everyone,
I'm a new member here at Samba lists. I've been a lightweight Samba user
for several years, but now I am investigating replacing our Active Directory
domain with a pure Samba domain. I already have a few
073e9f42f0c5f5de5d736ec7843d80a274c891ce
Author: Gerald (Jerry) Carter je...@samba.org
Date: Fri Jan 16 12:06:49 2009 -0600
ads_connect: Return immediately on a failed GC connection.
ads_connect_gc() feeds an explicit server to ads_connect(). However, if the
resulting
-
commit 2d0fd7543d0543ce59cb84db64afb99aa1f304b4
Author: Gerald (Jerry) Carter je...@samba.org
Date: Fri Jan 16 12:06:49 2009 -0600
ads_connect: Return immediately on a failed GC connection.
ads_connect_gc() feeds an explicit server to ads_connect(). However, if the
resulting
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Carsten Witt wrote:
Where can I find a howto configure using UPN for Winbind?
You don't need to do anything special for getent passwd u...@realm
to work (and hence user logins via pam_winbind as well.
But this is only supported in a native mode AD
iD8DBQFJT5kgIR7qMdg1EfYRAoZSAKDbR45MTOWwhuOcsTOJ4weMdfv9owCfUioL
bF4kwk9p/PjerzN8+il46p8=
=7fGD
-END PGP SIGNATURE-
From 695addd1eb9324d50ef87bc8c8ed5b8eb351fb19 Mon Sep 17 00:00:00 2001
From: Gerald (Jerry) Carter je...@samba.org
Date: Mon, 22 Dec 2008 07:40:04 -0600
Subject: [PATCH] Winbind: Honor the allow trusted domains option when
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Michael Adam wrote:
Hey Jerry,
I just checked, these changes are in none of the branches
master, v3-3-test, v3-2-test. Do you want to push them or
do you want me to do it? I think this definitely should
be in!
Either way is fine. I just
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Frank Burleigh wrote:
This simple and often-suggested command to test Samba:
getent passwd
reproducibly upsets winbindd on my SLES 10 SP1 machine.
[global]
...
winbind enum users = Yes
winbind enum groups = Yes
Don't
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Alex,
3.0.28 and 3.0.32 - Native OS version shipped by Novell(Linux) and
Sun(Solaris)
Failing is the right thing to do in an MS-DNS/AD-Integrated
environment, however for non-MS DNS environments disabling is
going to be cleaner.
Failing is
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Alex Green wrote:
Looks fine... :)... chances this makes it into the main stream
for vendor adoption?
Yeah. I don't do anything that doesn't go upstream. Unless it is
really ugly.
cheers, jerry
-BEGIN PGP SIGNATURE-
Version: GnuPG
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Alex Green wrote:
:)... so command-line or config option do'able?
Yeah. I'll see what I can do. Command line option probably.
$ net ads join --disable-dns-update
Look ok ? If so, I'll see if I can find some time real soon now.
cheers,
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Alex Green wrote:
Cross-wires (.)
AD record update (SPN or DNS) failing absolutely the right thing to do ... no
question.
DDNS Fail - disable option would be good ... only
talking about this... not the AD bit...
Ahh..ok. gotcha.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Alex Green wrote:
Found the issue:
Validate Write for DNS and SPN were not set.
However it now fails on DNS Update; I'm presuming
this is because we're not using AD Integrated DNS (MS-DNS).
Could this not be an option flag to disable DNS
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Alex Green wrote:
Hey Jerry,
I'm aware of that. Due the restrictions placed within our AD
environment, even users who have access to create computer
objects don't have access to update the SPN or the
host DNS name (AD record).
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Alex Green wrote:
:)... it's this non-fatal error that our uses are getting
confused about and it's this that I was asking for the cli
option for...
For the DDNS update we can add a disable run time option.
For setting the attributes, failing is
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Eric Diven wrote:
You might want to use the latest git checkout of 3-0-test,
for example available via
http://repo.or.cz/w/Samba.git?a=snapshot;h=af33c8b3521564c;sf=tgz
as there have been fixes for the server affinity cache during join.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Derek Harkness wrote:
Hello All,
I'm integrating an existing unix environment into an exist AD
environment. I'm thinking of switching from nssldap to nss_winbind but
have one problem. My user's home directories are in the format of
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Eric Diven wrote:
I hate to drag this one up again, but I'm having issues with that
snapshot of 3-0-test (smbd crashing, can't pin it to
anything). Are
the fixes actually in 3.0.33, or do I need to get a more recent
version of 3-0-test?
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Volker Lendecke wrote:
On Tue, Dec 02, 2008 at 11:07:15AM -0600, Gerald (Jerry) Carter wrote:
This is the commit
http://gitweb.samba.org/?p=samba.git;a=commitdiff;h=af33c8b3521564c229091f197341ba33a7d6f162
I expect it was only a regression
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Derek Harkness wrote:
I am attempting to set the SePrintOperatorPrivilege right on my RHEL 5.2
samba server and need some guidance. The samba box is currently joined
to an AD forest in which I have a delegated OU, I do not have a Domain
Admin
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hey Derek,
Derek Harkness wrote:
net sam addmember gives me Adding local group member failed with
NT_STATUS_NO_SUCH_ALIAS.
$ net sam createbuiltingroup Administrators
You will need to configure a valid 'idmap alloc backend'
for this.
I added
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Michael Adam wrote:
The branch, master has been updated
via 6a4957d35d50e6508917aca62b282ae4904187c8 (commit)
via afbfbd7f4c656fa4ed036314837024be8cd634c9 (commit)
via bf04324592695fd6e711ba25a89d47e1b61fa33e (commit)
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Marc Muehlfeld wrote:
Hi,
I have 5 of 140 Windows XP SP2/SP3 machines that make problems when
printing. The client open the printer dialog and it takes a long time
(up to 1 minute) before it appears. Printing is slow, too. Meanwhile I
see the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Dragan Lukic wrote:
So, 18 days and 375 posts later. no answer to my question?
Looks like I just want impossible: simple share with no limits, but with
local
user permissions for remote users. And NO I do not wish to use user level
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
vishesh kumar wrote:
Does NT hashes require even if we use kerberos for authentication?.
I don't understand the context of this question. A Samba 3 DC
does not support kerb5 auth. So you can only use the NTLM
authentication (which requires the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Robinson, Eric wrote:
I've been struggling for almost 2 weeks to get Samba working on two new
servers.
When I try to open a Samba share from a Windows 2003 computer, I always
get a logon challenge. I always get the following lot message
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi Eric,
Robinson, Eric wrote:
QUESTION: It looks to me as though this function is designed to
convert a string such as MYDOMAIN\user into a SID starting with S-.
No. it is to convert a SID char * string (S-1-) to a binary
SID
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
degbert degbert wrote:
I'm having a problem with kadmin not doing what klist says should work.
klist will show my keytab file (with minus k), but when I try and use
a principal in that keytab with kinit, I get an error:
kinit(v5): Client not
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Sagar Borikar wrote:
Hi All,
We are currently caught up in a weird situation while using samba
3.0.28. There is a requirement from the customer that we should support
ADS with 64000 objects. When we implemented the feature, we found
couple of
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
john darnell wrote:
I need to find a source for discussing known bugs in Samba. Is this a
good place, or should I go elsewhere?
This is the best place.
cheers, jerry
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.6 (GNU/Linux)
Comment:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jarrod Hyder wrote:
Here is the debug output of net ads dns register -P -d 10. I can't really
make heads or tails of it, but I also don't see either of the IP addresses
that are getting registered on the domain. If you could take a look at it I
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Michael Adam wrote:
If I am not completely wrong, this had been decided as well
as follows: A release will reach EOL when the next release
goes into maintenance mode, i.e. when the second next release
comes out. With the aimed release cycle of 6
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Andreas Ladanyi wrote:
Is samba 3.2 development stopped and all concentration
given to Samba 3.3 ? Because there isnt any further release
note available for 3.2, but instead there are some notes for 3.3 ?
Any future Samba 3.2.x release will be
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
William Jojo wrote:
I love that releases are moving very quickly now. My only
concern is keeping up with and determining what is appropriate
as I continue to maintain AIX binaries on my web page.
Presently I have already dropped the 3.0
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Taylor, Marc wrote:
Hello All,
I was wondering if anyone knows why a print server needs to talk back on
the submitting client's ports 139 or 445?
It's Microsoft's async print change notification protocol. Jeremy
had talked about adding a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ryan Novosielski wrote:
I didn't really mean is there a benefit to supporting this, I meant
more that if my clients are currently blocking the traffic coming back
from the server, is there a tangible benefit I could expect from getting
that fixed
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Marco Senft wrote:
Hello all.
I've set up a testing environment with two Windows DCs. The first,
called DCA, is serving the domain DOMA and is running Windows 2003. The
second is called DCB and serves DOMB on Windows 2008.
What version of Samba
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Tobias Skytte wrote:
Hi,
I have set up samba to join a windows domain (and everything works
great, domain users can authenticate on the linux box, it even creates
their home dirs and so on) but it seems to require joining to the domain
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
John H Terpstra wrote:
On Thursday 09 October 2008 11:27:10 David Mathog wrote:
When I attempt to contact the server for this list
https://lists.samba.org/
with Seamonkey or Mozilla it refuses and puts up a message:
!
You have requested
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
David Mathog wrote:
No. Not a self-signed cert. We run our own CA. but the reason
for the mesg is that the brower has an old expired cert from
a samba.org addess left around.
I should really get around to fixing this
In the meantime, how
-
commit e8f3a35193bcbdf69c5eebdac532cfaa7b44edc2
Author: Gerald (Jerry) Carter [EMAIL PROTECTED]
Date: Mon Oct 6 11:34:45 2008 -0500
idmap_adex: Add log messages to dc_add_domain for easier debugging.
Part of continue work on BUG 5806
-
commit 46627792a69fd6d5a24f4ca69ad26c1f9e2213ff
Author: Gerald (Jerry) Carter [EMAIL PROTECTED]
Date: Mon Oct 6 11:47:57 2008 -0500
idmap_adex: Add more debugging to the basic search function.
Log the dn of all located entries in order to verify search results
-
commit 2a35985283be45adbba63b5d7ced8499bcb64f59
Author: Gerald (Jerry) Carter [EMAIL PROTECTED]
Date: Mon Oct 6 11:47:57 2008 -0500
idmap_adex: Add more debugging to the basic search function.
Log the dn of all located entries
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jake Carroll wrote:
Hi Remy,
Thanks for the reply. This was just a trivial example, but yes - I have
it set up as nge1, as it stands, as this is the particular interface I
use for filesharing tasks.
I've also tried specifying an IP address
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ryan Bair wrote:
This seems to be related to this entry on the list in 2004-2005. As
far as I see, the issue was never fixed. This is a pretty big issue if
it is indeed the same bug as it effectively stops *nix clients from
using Kerberos
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jim Shanks wrote:
Hi All,
Just a quick question: Will 3.3.x replace 3.2.x as the production use
branch? We're still using 3.0.28 and up on our systems and just want to
know if evaluating 3.2 is the right step, or wait for 3.3.
We are moving
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jim Shanks wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jim Shanks wrote:
Hi All,
Just a quick question: Will 3.3.x replace 3.2.x as the production use
branch? We're still using 3.0.28 and up on our systems and just want to
know if
-
commit c7625979ceb350d90d87d2add6ed7156440072c3
Author: Gerald (Jerry) Carter [EMAIL PROTECTED]
Date: Fri Oct 3 10:51:54 2008 -0500
net_dns: Make lwinet ads dns register honor the interfaces parameter.
This is helpful
-
commit 17c9f8810598d8117befc896d12a597a52b0ac3b
Author: Gerald (Jerry) Carter [EMAIL PROTECTED]
Date: Fri Oct 3 10:51:54 2008 -0500
net_dns: Make lwinet ads dns register honor the interfaces parameter.
This is helpful
-
commit 2fb742e127f725b56f308538852d7b10b86f29c1
Author: Gerald (Jerry) Carter [EMAIL PROTECTED]
Date: Fri Oct 3 10:51:54 2008 -0500
net_dns: Make lwinet ads dns register honor the interfaces parameter.
This is helpful
-
commit a089b3bb99a226e8f99884867a677672cc028f1c
Author: Gerald W. Carter [EMAIL PROTECTED]
Date: Tue Sep 23 11:43:05 2008 -0700
Document the new hash and adex idmap/nss_info plugins.
(cherry picked from commit
-
commit 77bc0be0536bcd6a3ce8283a708828bebbbffee3
Author: Gerald W. Carter [EMAIL PROTECTED]
Date: Tue Sep 23 11:43:05 2008 -0700
Document the new hash and adex idmap/nss_info plugins.
commit 6dc81eb85b11851794619a1f2769d68cd9a54fb6
571f23c03cc443e88029be3a020faa499f1e10cb
Author: Gerald W. Carter [EMAIL PROTECTED]
Date: Thu Sep 25 09:14:58 2008 -0700
idmap_adex: Fix the nss_info install link.
---
Summary of changes:
source3/Makefile.in |1 +
1
e9e0e9a401f581286ed8d3f1f9f277e134478ade
Author: Gerald W. Carter [EMAIL PROTECTED]
Date: Thu Sep 25 09:41:49 2008 -0700
idmap_hash: Fix the nss_info link during make install
---
Summary of changes:
source3/Makefile.in
-
commit 701b9f34c986283fdead9ddd42147dd49d5e481e
Author: Gerald W. Carter [EMAIL PROTECTED]
Date: Thu Sep 25 09:41:49 2008 -0700
idmap_hash: Fix the nss_info link during make install
commit ba2c14e8474a20a9aabb07486a3c4e322980f96a
-
commit 89fa178011c44dc5c4bcfafc6643234e01b2d536
Author: Gerald W. Carter [EMAIL PROTECTED]
Date: Thu Sep 25 10:43:56 2008 -0700
idmap: Fix typo is gid2sid() that was caching using
idmap_cache_set_sid2uid()
commit
6f46002ff6b153730635bfd4a8380792a815ce6b
Author: Gerald W. Carter [EMAIL PROTECTED]
Date: Thu Sep 25 10:43:56 2008 -0700
idmap: Fix typo is gid2sid() that was caching using
idmap_cache_set_sid2uid()
---
Summary of changes
7d5fb989ac9942a6f3394853f6930d34ef6adf7b
Author: Gerald (Jerry) Carter [EMAIL PROTECTED]
Date: Fri Sep 19 12:27:15 2008 -0500
idmap_adex: Add new idmap plugin for support RFC2307 enabled AD forests.
The adex idmap/nss_info plugin is an adapation of the Likewise
Enterprise plugin
-
commit 62785b8e2aa862b7eb85e20a11f7a29e1e8b2825
Author: Gerald (Jerry) Carter [EMAIL PROTECTED]
Date: Fri Sep 19 12:27:15 2008 -0500
idmap_adex: Add new idmap plugin for support RFC2307 enabled AD forests.
The adex idmap/nss_info plugin is an adapation of the Likewise
Enterprise
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
[EMAIL PROTECTED] wrote:
Dear list,
I just stumbled over a configuration issue that I seem to remember
not to be there in 3.0.20 (when I built up my configuration).
The pid file name is built including a suffix specifying the
configuration
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
[EMAIL PROTECTED] wrote:
This was a patch specifically added by request IIRC.
commit e8bf421c018ed829b9dba7c0872693080b77d49d
Author: Jeremy Allison [EMAIL PROTECTED]
Date: Thu Nov 2 09:37:52 2006 +
r19533: Add a suffix to the
7d391c09eea0197d6ea298afff66ae13d6398fdb
Author: Gerald (Jerry) Carter [EMAIL PROTECTED]
Date: Thu Sep 18 14:49:46 2008 -0500
idmap: Increment the interface number after Volker's rewrite.
---
Summary of changes:
source3
-
commit 387deb2ece6f4374990ab34a4682c773ee85943a
Author: Gerald (Jerry) Carter [EMAIL PROTECTED]
Date: Thu Sep 18 14:49:46 2008 -0500
idmap: Increment the interface number after Volker's rewrite.
---
Summary of changes
-
commit 30a660ea41faa3b84afa8819c7673b3fe334e79b
Author: Gerald W. Carter [EMAIL PROTECTED]
Date: Mon Sep 15 12:38:36 2008 -0500
idmap_ad: Fix a segfault when calling nss_get_info() with a NULL ads
structure.
---
Summary
-
commit cc6d1c9a9fb4d97278af4d676f260c479b338638
Author: Gerald W. Carter [EMAIL PROTECTED]
Date: Mon Sep 15 12:38:36 2008 -0500
idmap_ad: Fix a segfault when calling nss_get_info() with a NULL ads
structure.
---
Summary
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Ephi Dror wrote:
Hello,
Pam based authentication is failing for trusted
domain users when the trust was set to one way.
One way trust support for Winbind was introduced
in Samba 3.2.0 What version are you running ?
cheers, jerry
- --
depending on your switches and network cards.
For more look at a discussion at:
http://www.readynas.com/forum/viewtopic.php?f=21t=8462st=0sk=tsd=ahilit=samba+vista+performancestart=165
--
Regards
--
Gerald Drouillard
Technology Architect
Drouillard Associates, Inc
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
[EMAIL PROTECTED] wrote:
Hello !
regarding that issue where reloading of smb.conf
causing high system load due to high number of share
definitions and smbd processes - does that still
apply like being reported in 2005 ?
Should be long fixed.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Sven Anders wrote:
Gerald (Jerry) Carter schrieb:
Sven,
Does winbind work with a Global Catalog?
Winbind does not rely upon global catalog. I added
some search APi recently for GC support but there are
not currently being used.
What does
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Andreas Ladanyi wrote:
Hi,
with NIS the compat Mode in /etc/nsswitch.conf was
available. So you could exclude user/group from login to
the host. I read this mechanism is not possible
with winbind.
If you are using pam_winbind, look at the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Jason Haar wrote:
Hi there
I've just upgraded to 3.2.2 and it still looks like nested group support
isn't finished?
e.g. if I have domain1/user1 in group domain2/group1 and that in
turn is in domain3/group2 (i.e. domain1/user1 is in
1 - 100 of 4792 matches
Mail list logo