I have built a package some time ago with the new patch posted on
bugs.samba.org for utopic
(https://launchpad.net/~saxl/+archive/ubuntu/ppa/+build/6263614),
The 4.1.11+dfsg-1ubuntu1saxl1 build works well on my site. The problem
is that I am also the bug reporter on bugs.samba.org, so maybe
Thanks @msaxl, I'll add this patch to our package.
** Changed in: samba (Ubuntu Utopic)
Status: Incomplete = Triaged
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/1310919
This bug was fixed in the package samba - 2:4.1.11+dfsg-1ubuntu2
---
samba (2:4.1.11+dfsg-1ubuntu2) utopic; urgency=medium
* d/p/krb_zero_cursor.patch - apply proposed-upstream fix for
pam_winbind krb5_ccache_type=FILE failure (LP: #1310919)
-- Serge Hallyn
It looks like the patch was accidentally dropped from series two merges
ago, and in the last merge was dropped for not being in series.
However, the deeper problem is that the patch hasn't made it upstream.
Looking at the upstream bug, in fact, the proposed fix has changed a
bit.
Would someone
well, I have the same problem with 14.10,
to get a working samba 4.1.11 all you need to do is apply the patch in
this bugreport. It has been dropped when syncing with debian.
In my private ppa there is a working samba version for utopic.
As a longterm workaround I have changed from pam_winbind
Guys,
I'm facing this problem with Samba 4.1.11 from Utopic, downgrading to
Samba 4.1.6, it works!
Maybe there is still something wrong with Samba from Utopic...
Regards,
Thiago
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to
BTW, when using Sambas 4.1.11, I need to replace the following smb.conf
line from:
--
kerberos method = secrets and keytab
--
to:
--
kerberos method = secrets only
--
Then, pam_winbind did not crash (core dumped) again...
Cheers!
--
You received this bug notification because you are a
I need to say that I'm trying to use Samba 4.1.11 from Utopic,
backported to Trusty...
My own PPA:
https://launchpad.net/~martinx/+archive/ubuntu/ig
I'm not trying it using Utopic but, I'll test it again next week...
Best!
--
You received this bug notification because you are a member of
This bug was fixed in the package samba - 2:4.1.6+dfsg-1ubuntu2.14.04.1
---
samba (2:4.1.6+dfsg-1ubuntu2.14.04.1) trusty-proposed; urgency=medium
* cherrypick upstream patch 1310919 to fix pam_winbind regression
(LP: #1310919)
-- Serge Hallyn serge.hal...@ubuntu.com Tue, 29
I can confirm that it is fixed in proposed, too. When can we expect the
fix to be pushed to updates repository?
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/1310919
Title:
Thanks everyone, I can confirm that 2:4.1.6+dfsg-1ubuntu2.14.04.1 does
fix my problem.
** Tags removed: verification-needed
** Tags added: verification-done
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in Ubuntu.
** Also affects: samba via
https://bugzilla.samba.org/show_bug.cgi?id=10490
Importance: Unknown
Status: Unknown
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/1310919
Hello styro, or anyone else affected,
Accepted samba into trusty-proposed. The package will build now and be
available at http://launchpad.net/ubuntu/+source/samba/2:4.1.6+dfsg-
1ubuntu2.14.04.1 in a few hours, and then in the -proposed repository.
Please help us by testing this new package.
** Changed in: samba
Status: Unknown = Confirmed
** Changed in: samba
Importance: Unknown = Medium
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/1310919
Title:
This bug was fixed in the package samba - 2:4.1.6+dfsg-1ubuntu3
---
samba (2:4.1.6+dfsg-1ubuntu3) utopic; urgency=medium
* cherrypick upstream patch 1310919 to fix pam_winbind regression
(LP: #1310919)
-- Serge Hallyn serge.hal...@ubuntu.com Tue, 29 Apr 2014 16:05:44 -0500
** Description changed:
+
+ Impact: pam-winbind stops working, preventing AD logins
+ Regression potential: This patch is not accepted upstream so could for
instance be introducing a memory leak in failure paths.
+ Test case: login using pam-winbind
+
** Also affects: samba (Ubuntu Trusty)
Importance: Undecided
Status: New
** Also affects: samba (Ubuntu Utopic)
Importance: High
Assignee: Canonical Server Team (canonical-server)
Status: Confirmed
--
You received this bug notification because you are a member of Ubuntu
** Changed in: samba (Ubuntu)
Assignee: (unassigned) = Canonical Server Team (canonical-server)
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/1310919
Title:
pam_winbind
** Tags added: regression-release
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/1310919
Title:
pam_winbind krb5_ccache_type=FILE stopped working after 14.04 upgrade
To manage
Can anyone confirm whether that fix did in fact fix the bug?
** Changed in: samba (Ubuntu)
Importance: Undecided = High
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in Ubuntu.
https://bugs.launchpad.net/bugs/1310919
I can confirm that this fixes the bug for my installations (two
different domains on multiple 14.04 clients), everywhere using kerberos
method = secrets and keytab
and the keytab access set to root:root 600
just a side note: the bug is not in pam_winbind but in winbindd itself
(as you can read
I have looked at the source and found a potential problem. This patch
should fix it, but of corse needs some testing.
** Patch added: krb5_kt_start_seq.diff
https://bugs.launchpad.net/ubuntu/+source/samba/+bug/1310919/+attachment/4094414/+files/krb5_kt_start_seq.diff
--
You received this
Status changed to 'Confirmed' because the bug affects multiple users.
** Changed in: samba (Ubuntu)
Status: New = Confirmed
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to samba in Ubuntu.
The attachment krb5_kt_start_seq.diff seems to be a patch. If it
isn't, please remove the patch flag from the attachment, remove the
patch tag, and if you are a member of the ~ubuntu-reviewers,
unsubscribe the team.
[This is an automated message performed by a Launchpad user owned by
for those who are also affected by this bug: i've uploaded the a samba
package with this patch on my ppa (ppa:saxl/ppa). Building should start
shortly.
p.s.: I have opened a bugreport upstream
(https://bugzilla.samba.org/show_bug.cgi?id=10490), but since older
versions of samba did not have this
Another data point...
This problem also goes away with a world readable system keytab
(/etc/krb5.keytab). So it isn't just the pam_winbind
'krb5_ccache_type=FILE' setting.
I'll do some more testing to find out whether or not changing the
'kerberos method = secrets and keytab' setting in smb.conf
Some more testing of 'kerberos method' with 'krb5_ccache_type=FILE' and
600 perms on /etc/krb5.keytab
With 'kerberos method = secrets and keytab', winbind logins failed.
With 'kerberos method = system keytab', winbind logins failed.
With 'kerberos method = secrets only', winbind logins started
27 matches
Mail list logo
