NAVIGATION
CATEGORIES
REFERRENCE
LINKS
3.0.20 -> 3.0.23 SID/group error? Won't connect.
22 answers - 2859 bytes -
Gerry, all:
HELP! mandriva, I compiled samba from source and got it running, but
I cannot connect from windows. (see my post from earlier "[Samba] Compiling
and Configuring Samba for Mandrival")
I think this relates to the group/SID changes discussed in the release
notes. However, I'm not smart enough to figure it out. The tarball compiled
and installed fine. It appears to run fine, it just wont take the
lookup_name: Unix Group\ochiltree =Unix Group (domain), ochiltree (name)
handshake for some reason. The samba tests work fine until:
querying __SAMBA__ on 192.168.7.15
192.168.7.15 __SAMBA__<00>
david@rankin-xp:~nmblookup -B rankin-p35 '*'
querying * on 192.168.7.98
name_query failed to find name *
david@rankin-xp:~nmblookup -d 2 '*'
added interface ip=192.168.7.90 bcast=192.168.7.255 nmask=255.255.255.0
querying * on 192.168.7.255
Got a positive name query response from 192.168.7.15 ( 192.168.7.15 )
192.168.7.15 *<00>
david@rankin-xp:~smbclient //bonza/office
Password:
Domain=[RB_LAW] S=[Unix] Server=[Samba 3.0.23b]
tree connect failed: NT_STATUS_ACCESS_DENIED
I have attached a level 10 debug if that will help. This is a standalone
server.
Right now I am running on 3.0.20 after saving myself with a "make
revert" Gotta love it
What should I do/check/read to find out how to get 3.0.23 to allow my
clients to connect? Any help is appreciated
I think the problems come in at this point:
[2006/08/10 10:11:26, 5] (296)
check_ntlm_password: PAM Account for user [david] succeeded
[2006/08/10 10:11:26, 2] (309)
check_ntlm_password: authentication for user [david] -[david] -
[david] succeeded
[2006/08/10 10:11:26, 5] (1816)
attempting to free (and zero) a user_info structure
[2006/08/10 10:11:26, 10] (1820)
structure was created for david
[2006/08/10 10:11:26, 3] (261)
get_privileges: No privileges assigned to SID
[]
[2006/08/10 10:11:26, 3] (261)
get_privileges: No privileges assigned to SID
[]
[2006/08/10 10:11:26, 5] (459)
get_privileges_for_sids: sid = S-1-1-0
Privilege set:
SE_PRIV 0x0 0x0 0x0 0x0
(snip)
[2006/08/10 10:11:26, 10] (65)
lookup_name: Unix Group\ochiltree =Unix Group (domain), ochiltree (name)
[2006/08/10 10:11:26, 10] (208)
User david not in 'valid users'
[2006/08/10 10:11:26, 2] (571)
user 'david' (from session setup) not permitted to access this share
(office)
[2006/08/10 10:11:26, 3] smbd/error.c:error_packet(146)
error packet at smbd/reply.c(676) cmd=117 (SMBtconX)
NT_STATUS_ACCESS_DENIED
I am certainly a member of group 'ochiltree', so I'm not sure where to go
from here. Help?No.1 | | 1051 bytes |
| 
PGP SIGNED MESSAGE
Hash: SHA1
david,
HELP! mandriva, I compiled samba from source
and got it running, but I cannot connect from windows.
(see my post from earlier "[Samba] Compiling and
Configuring Samba for Mandrival")
david@rankin-xp:~smbclient //bonza/office
Password:
Domain=[RB_LAW] S=[Unix] Server=[Samba 3.0.23b]
tree connect failed: NT_STATUS_ACCESS_DENIED
I have attached a level 10 debug if that will help.
This is a standalone server.
Attachments get stripped from the list. I need
your smb.conf, a level 10 debug log from smbd,
and output from the following tow commands
* pdbedit -L -w | cut -d: -f1
* net groupmap list | cut -d\( -f1
cheers, jerry
Samba http://www.samba.org
Centeris http://www.centeris.com
"What man is a man who does not make the world better?"
PGP SIGNATURE
Version: GnuPG v1.4.4 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
G/dFUy92rL2FdHw3eJ0z104=
=wDgQ
PGP SIGNATURENo.2 | | 19350 bytes |
| Jerry!
Note, I just upgraded my SuSE 10 home server with the binaries from the
Samba site and the same thing is happening. So, something happened between
3.0.23a and 3.0.23b. Here is the requested info (from the SuSE 10 box). I'll
get you the mandriva output later this evening. Thanks for your help:
nemesis:/home/david/Documents # testparm -s
Load smb config files from /etc/samba/smb.conf
Processing section "[homes]"
Processing section "[config]"
Processing section "[samba]"
Processing section "[law]"
Processing section "[skyline]"
Processing section "[media]"
Processing section "[computer]"
Processing section "[storage]"
Processing section "[printers]"
Processing section "[print$]"
Processing section "[pdf-gen]"
Global parameter printcap name found in service section!
Loaded services file K.
Server role: RLE_STANDALNE
[global]
workgroup = RB_LAW
server string = Samba %v
map to guest = Bad User
log level = 10
log file = /var/log/samba/log.%m
max log size = 50
name resolve order = wins lmhosts bcast
time server = Yes
socket options = TCP_NDELAY SRCVBUF=8192 SSNDBUF=8192
printcap name = cups
show add printer wizard = No
os level = 60
preferred master = Yes
domain master = Yes
dns proxy = No
wins support = Yes
hosts allow = 192.168.7., 192.168.6., 127., 66.76.63.60
[homes]
comment = Home Directories
read only = No
browseable = No
[config]
comment = Admin Config Share
path = /
valid users = david
admin users = david
force user = root
force group = root
read only = No
browseable = No
[samba]
comment = Base Samba Share
path = /home/samba
valid users = david
admin users = david
force user = david
force group = skyline
read only = No
inherit permissions = Yes
browseable = No
[law]
comment = Rankin Law Firm PLLC
path = /home/samba/law
valid users = @rankin
admin users = david
force group = rankin
read only = No
inherit permissions = Yes
[skyline]
comment = Skyline Share
path = /home/samba/skyline
valid users = @skyline
admin users = david
force group = skyline
read only = No
inherit permissions = Yes
[media]
comment = Pictures Video Music
path = /data/media
valid users = @skyline
admin users = david
force group = skyline
read only = No
inherit permissions = Yes
[computer]
comment = Computer Software and Drivers
path = /home/samba/computer
valid users = @skyline
admin users = david
force group = skyline
read only = No
inherit permissions = Yes
[storage]
comment = Computer Drivers and Software
path = /data/storage
valid users = @skyline
admin users = david
force group = skyline
read only = No
inherit permissions = Yes
[printers]
comment = All Printers
path = /var/spool/samba
create mask = 0700
guest ok = Yes
printable = Yes
use client driver = Yes
browseable = No
[print$]
path = /var/lib/samba/printers
write list = @adm, root
inherit permissions = Yes
guest ok = Yes
[pdf-gen]
comment = PDF Generator (only valid users)
path = /var/tmp
printable = Yes
printing = bsd
print command = / "%s" "%H/pdf"
"//%L/%u" "%m" "%I" "%J" &
lpq command = /bin/true
lprm command = lprm -P'%p' %j
nemesis:/home/david/Documents # cat log.dcrlaptop
Primary group is 0 and contains 0 supplementary groups
[2006/08/10 18:56:44, 3] smbd/sec_ctx.c:pop_sec_ctx(339)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2006/08/10 18:56:44, 10] (65)
lookup_name: Unix Group\skyline =Unix Group (domain), skyline (name)
[2006/08/10 18:56:44, 10] (208)
User david not in 'valid users'
[2006/08/10 18:56:44, 2] (571)
user 'david' (from session setup) not permitted to access this share
(computer)
[2006/08/10 18:56:44, 3] smbd/error.c:error_packet(162)
error packet at smbd/reply.c(676) cmd=117 (SMBtconX) eclass=1 ecode=5
[2006/08/10 18:56:44, 5] lib/util.c:show_msg(478)
[2006/08/10 18:56:44, 5] lib/util.c:show_msg(488)
size=35
smb_com=0x75
smb_rcls=1
smb_reh=0
smb_err=5
smb_flg=128
smb_flg2=1
smb_tid=65535
smb_pid=5059
smb_uid=100
smb_mid=13057
smt_wct=0
smb_bcc=0
[2006/08/10 18:56:44, 10] (1284)
change_notify_timeout: -1
[2006/08/10 18:56:50, 10]
(623)
got smb length of 69
[2006/08/10 18:56:50, 6] smbd/process.c:process_smb(1109)
got message type 0x0 of len 0x45
[2006/08/10 18:56:50, 3] smbd/process.c:process_smb(1110)
Transaction 60 of length 73
[2006/08/10 18:56:50, 5] lib/util.c:show_msg(478)
[2006/08/10 18:56:50, 5] lib/util.c:show_msg(488)
size=69
smb_com=0x75
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=0
smb_flg2=4096
smb_tid=0
smb_pid=5059
smb_uid=100
smb_mid=13185
smt_wct=4
smb_vwv[ 0]= 255 (0xFF)
smb_vwv[ 1]= 0 (0x0)
smb_vwv[ 2]= 2 (0x2)
smb_vwv[ 3]= 1 (0x1)
smb_bcc=26
[2006/08/10 18:56:50, 10] lib/util.c:dump_data(2215)
[000] 00 5C 5C 4E 45 4D 45 53 49 53 5C 43 4F 4D 50 55 .\\NEMES IS\CMPU
[010] 54 45 52 00 3F 3F 3F 3F 3F 00 TER.? ?.
[2006/08/10 18:56:50, 3] smbd/process.c:switch_message(914)
switch message SMBtconX (pid 10632) conn 0x0
[2006/08/10 18:56:50, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2006/08/10 18:56:50, 5] (448)
NT user token: (NULL)
[2006/08/10 18:56:50, 5] (474)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2006/08/10 18:56:50, 5] smbd/uid.c:change_to_root_user(275)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2006/08/10 18:56:50, 4] smbd/reply.c:reply_tcon_and_X(668)
Client requested device type [??] for share [CMPUTER]
[2006/08/10 18:56:50, 5] smbd/service.c:make_connection(1116)
making a connection to 'normal' service computer
[2006/08/10 18:56:50, 3] lib/access.c:check_access(313)
check_access: no hostnames in host allow/deny list.
[2006/08/10 18:56:50, 2] lib/access.c:check_access(324)
Allowed connection from (192.168.6.97)
[2006/08/10 18:56:50, 3] lib/util_sid.c:string_to_sid(223)
string_to_sid: Sid @skyline does not start with 'S-'.
[2006/08/10 18:56:50, 5] (428)
looking for user david of domain in netgroup skyline
[2006/08/10 18:56:50, 5] (444)
looking for user david of domain in netgroup skyline
[2006/08/10 18:56:50, 10] (65)
lookup_name: NEMESIS\skyline =NEMESIS (domain), skyline (name)
[2006/08/10 18:56:50, 3] smbd/sec_ctx.c:push_sec_ctx(208)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2006/08/10 18:56:50, 3] smbd/uid.c:push_conn_ctx(345)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2006/08/10 18:56:50, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2006/08/10 18:56:50, 5] (448)
NT user token: (NULL)
[2006/08/10 18:56:50, 5] (474)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2006/08/10 18:56:50, 3] smbd/sec_ctx.c:pop_sec_ctx(339)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2006/08/10 18:56:50, 10] (65)
lookup_name: Unix Group\skyline =Unix Group (domain), skyline (name)
[2006/08/10 18:56:50, 10] (208)
User david not in 'valid users'
[2006/08/10 18:56:50, 2] (571)
user 'david' (from session setup) not permitted to access this share
(computer)
[2006/08/10 18:56:50, 3] smbd/error.c:error_packet(162)
error packet at smbd/reply.c(676) cmd=117 (SMBtconX) eclass=1 ecode=5
[2006/08/10 18:56:50, 5] lib/util.c:show_msg(478)
[2006/08/10 18:56:50, 5] lib/util.c:show_msg(488)
size=35
smb_com=0x75
smb_rcls=1
smb_reh=0
smb_err=5
smb_flg=128
smb_flg2=1
smb_tid=0
smb_pid=5059
smb_uid=100
smb_mid=13185
smt_wct=0
smb_bcc=0
[2006/08/10 18:56:50, 10] (1284)
change_notify_timeout: -1
[2006/08/10 18:57:50, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2006/08/10 18:57:50, 5] (448)
NT user token: (NULL)
[2006/08/10 18:57:50, 5] (474)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2006/08/10 18:57:50, 5] smbd/uid.c:change_to_root_user(275)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2006/08/10 18:57:50, 6] (2998)
lp_file_list_changed()
file /etc/samba/smb.conf -/etc/samba/smb.conf last mod_time: Thu Aug 10
18:51:08 2006
[2006/08/10 18:57:50, 3] smbd/process.c:check_reload(1340)
Printcap cache time expired.
[2006/08/10 18:57:50, 3] (117)
reloading printcap cache
[2006/08/10 18:57:50, 5] (71)
reloading cups printcap cache
[2006/08/10 18:57:50, 10] (51)
cups server left to default localhost
[2006/08/10 18:57:51, 3] (223)
reload status: ok
[2006/08/10 18:57:51, 10] (1284)
change_notify_timeout: -1
[2006/08/10 18:58:51, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2006/08/10 18:58:51, 5] (448)
NT user token: (NULL)
[2006/08/10 18:58:51, 5] (474)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2006/08/10 18:58:51, 5] smbd/uid.c:change_to_root_user(275)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2006/08/10 18:58:51, 10] (1284)
change_notify_timeout: -1
[2006/08/10 18:59:15, 10]
(623)
got smb length of 35
[2006/08/10 18:59:15, 6] smbd/process.c:process_smb(1109)
got message type 0x0 of len 0x23
[2006/08/10 18:59:15, 3] smbd/process.c:process_smb(1110)
Transaction 61 of length 39
[2006/08/10 18:59:15, 5] lib/util.c:show_msg(478)
[2006/08/10 18:59:15, 5] lib/util.c:show_msg(488)
size=35
smb_com=0x71
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=0
smb_flg2=36864
smb_tid=2
smb_pid=0
smb_uid=100
smb_mid=24962
smt_wct=0
smb_bcc=0
[2006/08/10 18:59:15, 3] smbd/process.c:switch_message(914)
switch message SMBtdis (pid 10632) conn 0x8040a490
[2006/08/10 18:59:15, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2006/08/10 18:59:15, 5] (448)
NT user token: (NULL)
[2006/08/10 18:59:15, 5] (474)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2006/08/10 18:59:15, 5] smbd/uid.c:change_to_root_user(275)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2006/08/10 18:59:15, 4] smbd/vfs.c:vfs_ChDir(741)
vfs_ChDir to /home/david
[2006/08/10 18:59:15, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2006/08/10 18:59:15, 5] (448)
NT user token: (NULL)
[2006/08/10 18:59:15, 5] (474)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2006/08/10 18:59:15, 5] smbd/uid.c:change_to_root_user(275)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2006/08/10 18:59:15, 1] smbd/service.c:close_cnum(1141)
dcrlaptop (192.168.6.97) closed connection to service david
[2006/08/10 18:59:15, 3] (69)
Yielding connection to david
[2006/08/10 18:59:15, 4] smbd/vfs.c:vfs_ChDir(741)
vfs_ChDir to /
[2006/08/10 18:59:15, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2006/08/10 18:59:15, 5] (448)
NT user token: (NULL)
[2006/08/10 18:59:15, 5] (474)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2006/08/10 18:59:15, 5] smbd/uid.c:change_to_root_user(275)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2006/08/10 18:59:15, 5] lib/util.c:show_msg(478)
[2006/08/10 18:59:15, 5] lib/util.c:show_msg(488)
size=35
smb_com=0x71
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=128
smb_flg2=32769
smb_tid=2
smb_pid=0
smb_uid=100
smb_mid=24962
smt_wct=0
smb_bcc=0
[2006/08/10 18:59:15, 10] (1284)
change_notify_timeout: -1
[2006/08/10 19:00:15, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2006/08/10 19:00:15, 5] (448)
NT user token: (NULL)
[2006/08/10 19:00:15, 5] (474)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2006/08/10 19:00:15, 5] smbd/uid.c:change_to_root_user(275)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2006/08/10 19:00:15, 10] (1284)
change_notify_timeout: -1
[2006/08/10 19:01:15, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2006/08/10 19:01:15, 5] (448)
NT user token: (NULL)
[2006/08/10 19:01:15, 5] (474)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2006/08/10 19:01:15, 5] smbd/uid.c:change_to_root_user(275)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2006/08/10 19:01:15, 6] (2998)
lp_file_list_changed()
file /etc/samba/smb.conf -/etc/samba/smb.conf last mod_time: Thu Aug 10
18:51:08 2006
[2006/08/10 19:01:15, 10] (1284)
change_notify_timeout: -1
[2006/08/10 19:02:15, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2006/08/10 19:02:15, 5] (448)
NT user token: (NULL)
[2006/08/10 19:02:15, 5] (474)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2006/08/10 19:02:15, 5] smbd/uid.c:change_to_root_user(275)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2006/08/10 19:02:15, 10] (1284)
change_notify_timeout: -1
[2006/08/10 19:03:15, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2006/08/10 19:03:15, 5] (448)
NT user token: (NULL)
[2006/08/10 19:03:15, 5] (474)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2006/08/10 19:03:15, 5] smbd/uid.c:change_to_root_user(275)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2006/08/10 19:03:15, 10] (1284)
change_notify_timeout: -1
nemesis:/home/david/Documents #
nemesis:/home/david/Documents # pdbedit -L -w | cut -d: -f1
INF
all
tdb
printdrivers
lanman
smb
rpc_parse
rpc_srv
rpc_cli
passdb
sam
auth
winbind
vfs
idmap
quota
acls
locking
msdfs
dmapi
doing parameter time server = yes
doing parameter hosts allow = 192.168.7. 192.168.6. 127. 66.76.63.60
doing parameter map to guest = bad user
doing parameter security = user
doing parameter encrypt passwords = yes
doing parameter smb passwd file = /etc/samba/smbpasswd
doing parameter socket options = TCP_NDELAY SRCVBUF=8192 SSNDBUF=8192
doing parameter os level = 60
doing parameter domain master = yes
doing parameter preferred master = yes
doing parameter name resolve order = wins lmhosts bcast
doing parameter wins support = yes
doing parameter dns proxy = no
pm_process() returned Yes
lp_servicenumber
set_server_role
Attempting to register new charset UCS-2LE
Registered charset UCS-2LE
Attempting to register new charset UTF-16LE
Registered charset UTF-16LE
Attempting to register new charset UCS-2BE
Registered charset UCS-2BE
Attempting to register new charset UTF-16BE
Registered charset UTF-16BE
Attempting to register new charset UTF8
Registered charset UTF8
Attempting to register new charset UTF-8
Registered charset UTF-8
Attempting to register new charset ASCII
Registered charset ASCII
Attempting to register new charset 646
Registered charset 646
Attempting to register new charset IS
Registered charset IS
Attempting to register new charset UCS2-HEX
Registered charset UCS2-HEX
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Substituting charset 'UTF-8' for LCALE
Attempting to register passdb backend ldapsam
Successfully added passdb backend 'ldapsam'
Attempting to register passdb backend ldapsam_compat
Successfully added passdb backend 'ldapsam_compat'
Attempting to register passdb backend NDS_ldapsam
Successfully added passdb backend 'NDS_ldapsam'
Attempting to register passdb backend NDS_ldapsam_compat
Successfully added passdb backend 'NDS_ldapsam_compat'
Attempting to register passdb backend smbpasswd
Successfully added passdb backend 'smbpasswd'
Attempting to register passdb backend tdbsam
Successfully added passdb backend 'tdbsam'
Attempting to find an passdb backend to match smbpasswd (smbpasswd)
Found pdb backend smbpasswd
pdb backend smbpasswd has a valid init
Netbios name list
my_netbios_names[0]="NEMESIS"
Attempting to find an passdb backend to match smbpasswd (smbpasswd)
Found pdb backend smbpasswd
pdb backend smbpasswd has a valid init
startsmbfilepwent_internal
pdb_getsampwent
getsmbfilepwent
getsmbfilepwent
getsmbfilepwent
getsmbfilepwent
getsmbfilepwent
getsmbfilepwent
getsmbfilepwent
pdb_set_username
pdb_set_full_name
pdb_set_domain
gid_to_sid
store_gid_sid_cache
fetch gid from cache 100 -
pdb_set_group_sid
Home server
pdb_set_profile_path
Home server
pdb_set_homedir
pdb_set_dir_drive
pdb_set_logon_script
pdb_set_user_sid
pdb_set_user_sid_from_rid
setting user sid from
rid 3000
getsampwent (smbpasswd)
Got david from pwnam_cache
pdb_getsampwent
getsmbfilepwent
pdb_set_username
pdb_set_full_name
pdb_set_domain
fetch sid from gid cache 100 ->
fetch gid from cache 100 -
pdb_set_group_sid
Home server
pdb_set_profile_path
Home server
pdb_set_homedir
pdb_set_dir_drive
pdb_set_logon_script
pdb_set_user_sid
pdb_set_user_sid_from_rid
setting user sid from
rid 3002
getsampwent (smbpasswd)
Got deborah from pwnam_cache
pdb_getsampwent
getsmbfilepwent
endsmbfilepwent_internal
david
deborah
nemesis:/home/david/Documents # net groupmap list | cut -d\( -f1
nemesis:/home/david/Documents #No.3 | | 37031 bytes |
| , I sent log.dcrlaptop, here is the log.smbd:
0064 mask: 000f01ff
[2006/08/10 18:51:21, 8] (84)
000068 smb_io_dom_sid trustee
[2006/08/10 18:51:21, 5] (615)
0068 sid_rev_num: 01
[2006/08/10 18:51:21, 5] (615)
0069 num_auths : 02
[2006/08/10 18:51:21, 5] (615)
006a id_auth[0] : 00
[2006/08/10 18:51:21, 5] (615)
006b id_auth[1] : 00
[2006/08/10 18:51:21, 5] (615)
006c id_auth[2] : 00
[2006/08/10 18:51:21, 5] (615)
006d id_auth[3] : 00
[2006/08/10 18:51:21, 5] (615)
006e id_auth[4] : 00
[2006/08/10 18:51:21, 5] (615)
006f id_auth[5] : 05
[2006/08/10 18:51:21, 5] (991)
0070 sub_auths : 00000020 00000220
[2006/08/10 18:51:21, 5] (675)
0062 size : 0018
[2006/08/10 18:51:21, 5] (675)
0016 size : 0064
[2006/08/10 18:51:21, 10] (593)
regdb_store_values: Looking for value of key
[HKLM\SYSTEM\CurrentControlSet\Services\RemoteRegis try\Security]
[2006/08/10 18:51:21, 10] registry/reg_db.c:regdb_close(279)
regdb_close: decrementing refcount (2)
[2006/08/10 18:51:21, 10] registry/reg_db.c:regdb_open(248)
regdb_open: incrementing refcount (2)
[2006/08/10 18:51:21, 7] (359)
regkey_open_internal: name = [HKLM\SYSTEM\CurrentControlSet\Services\WINS]
[2006/08/10 18:51:21, 10] (95)
reghook_cache_find: Searching for keyname
[/]
[2006/08/10 18:51:21, 10] lib/adt_tree.c:pathtree_find(341)
pathtree_find: Enter [/]
[2006/08/10 18:51:21, 10] lib/adt_tree.c:pathtree_find(413)
pathtree_find: Exit
[2006/08/10 18:51:21, 5] (59)
registry_access_check: using root's token
[2006/08/10 18:51:21, 10] (233)
se_access_check: requested access 0x000f003f, for NT token with 5 entries
and first sid
[2006/08/10 18:51:21, 3] (250)
[2006/08/10 18:51:21, 3] (251)
se_access_check: user sid is
se_access_check: also S-1-5-32-544
se_access_check: also S-1-1-0
se_access_check: also S-1-5-2
se_access_check: also S-1-5-11
se_access_check: ACE 0: type 0, flags = 0x00, SID = S-1-1-0 mask = 20019,
current desired = f003f
se_access_check: ACE 1: type 0, flags = 0x00, SID = S-1-5-32-544 mask =
f003f, current desired = d0026
[2006/08/10 18:51:21, 5] (308)
se_access_check: access (f003f) granted.
[2006/08/10 18:51:21, 10] (593)
regdb_store_values: Looking for value of key
[HKLM\SYSTEM\CurrentControlSet\Services\WINS]
[2006/08/10 18:51:21, 10] registry/reg_db.c:regdb_close(279)
regdb_close: decrementing refcount (2)
[2006/08/10 18:51:21, 10] registry/reg_db.c:regdb_open(248)
regdb_open: incrementing refcount (2)
[2006/08/10 18:51:21, 7] (359)
regkey_open_internal: name =
[HKLM\SYSTEM\CurrentControlSet\Services\WINS\Securi ty]
[2006/08/10 18:51:21, 10] (95)
reghook_cache_find: Searching for keyname
[/]
[2006/08/10 18:51:21, 10] lib/adt_tree.c:pathtree_find(341)
pathtree_find: Enter
[/]
[2006/08/10 18:51:21, 10] lib/adt_tree.c:pathtree_find(413)
pathtree_find: Exit
[2006/08/10 18:51:21, 5] (59)
registry_access_check: using root's token
[2006/08/10 18:51:21, 10] (233)
se_access_check: requested access 0x000f003f, for NT token with 5 entries
and first sid
[2006/08/10 18:51:21, 3] (250)
[2006/08/10 18:51:21, 3] (251)
se_access_check: user sid is
se_access_check: also S-1-5-32-544
se_access_check: also S-1-1-0
se_access_check: also S-1-5-2
se_access_check: also S-1-5-11
se_access_check: ACE 0: type 0, flags = 0x00, SID = S-1-1-0 mask = 20019,
current desired = f003f
se_access_check: ACE 1: type 0, flags = 0x00, SID = S-1-5-32-544 mask =
f003f, current desired = d0026
[2006/08/10 18:51:21, 5] (308)
se_access_check: access (f003f) granted.
[2006/08/10 18:51:21, 5] (84)
000000 sec_io_desc sec_desc
[2006/08/10 18:51:21, 5] (675)
0000 revision : 0001
[2006/08/10 18:51:21, 5] (675)
0002 type : 8004
[2006/08/10 18:51:21, 5] (704)
0004 off_owner_sid: 00000000
[2006/08/10 18:51:21, 5] (704)
0008 off_grp_sid : 00000000
[2006/08/10 18:51:21, 5] (704)
000c off_sacl : 00000000
[2006/08/10 18:51:21, 5] (704)
0010 off_dacl : 00000014
[2006/08/10 18:51:21, 6] (84)
000014 sec_io_acl dacl
[2006/08/10 18:51:21, 5] (675)
0014 revision: 0002
[2006/08/10 18:51:21, 5] (704)
0018 num_aces : 00000004
[2006/08/10 18:51:21, 7] (84)
00001c sec_io_ace ace_list[00]:
[2006/08/10 18:51:21, 5] (615)
001c type : 00
[2006/08/10 18:51:21, 5] (615)
001d flags: 00
[2006/08/10 18:51:21, 8] (84)
000020 sec_io_access info
[2006/08/10 18:51:21, 5] (704)
0020 mask: 0002018d
[2006/08/10 18:51:21, 8] (84)
000024 smb_io_dom_sid trustee
[2006/08/10 18:51:21, 5] (615)
0024 sid_rev_num: 01
[2006/08/10 18:51:21, 5] (615)
0025 num_auths : 01
[2006/08/10 18:51:21, 5] (615)
0026 id_auth[0] : 00
[2006/08/10 18:51:21, 5] (615)
0027 id_auth[1] : 00
[2006/08/10 18:51:21, 5] (615)
0028 id_auth[2] : 00
[2006/08/10 18:51:21, 5] (615)
0029 id_auth[3] : 00
[2006/08/10 18:51:21, 5] (615)
002a id_auth[4] : 00
[2006/08/10 18:51:21, 5] (615)
002b id_auth[5] : 01
[2006/08/10 18:51:21, 5] (991)
002c sub_auths : 00000000
[2006/08/10 18:51:21, 5] (675)
001e size : 0014
[2006/08/10 18:51:21, 7] (84)
000030 sec_io_ace ace_list[01]:
[2006/08/10 18:51:21, 5] (615)
0030 type : 00
[2006/08/10 18:51:21, 5] (615)
0031 flags: 00
[2006/08/10 18:51:21, 8] (84)
000034 sec_io_access info
[2006/08/10 18:51:21, 5] (704)
0034 mask: 000201fd
[2006/08/10 18:51:21, 8] (84)
000038 smb_io_dom_sid trustee
[2006/08/10 18:51:21, 5] (615)
0038 sid_rev_num: 01
[2006/08/10 18:51:21, 5] (615)
0039 num_auths : 02
[2006/08/10 18:51:21, 5] (615)
003a id_auth[0] : 00
[2006/08/10 18:51:21, 5] (615)
003b id_auth[1] : 00
[2006/08/10 18:51:21, 5] (615)
003c id_auth[2] : 00
[2006/08/10 18:51:21, 5] (615)
003d id_auth[3] : 00
[2006/08/10 18:51:21, 5] (615)
003e id_auth[4] : 00
[2006/08/10 18:51:21, 5] (615)
003f id_auth[5] : 05
[2006/08/10 18:51:21, 5] (991)
0040 sub_auths : 00000020 00000223
[2006/08/10 18:51:21, 5] (675)
0032 size : 0018
[2006/08/10 18:51:21, 7] (84)
000048 sec_io_ace ace_list[02]:
[2006/08/10 18:51:21, 5] (615)
0048 type : 00
[2006/08/10 18:51:21, 5] (615)
0049 flags: 00
[2006/08/10 18:51:21, 8] (84)
00004c sec_io_access info
[2006/08/10 18:51:21, 5] (704)
004c mask: 000f01ff
[2006/08/10 18:51:21, 8] (84)
000050 smb_io_dom_sid trustee
[2006/08/10 18:51:21, 5] (615)
0050 sid_rev_num: 01
[2006/08/10 18:51:21, 5] (615)
0051 num_auths : 02
[2006/08/10 18:51:21, 5] (615)
0052 id_auth[0] : 00
[2006/08/10 18:51:21, 5] (615)
0053 id_auth[1] : 00
[2006/08/10 18:51:21, 5] (615)
0054 id_auth[2] : 00
[2006/08/10 18:51:21, 5] (615)
0055 id_auth[3] : 00
[2006/08/10 18:51:21, 5] (615)
0056 id_auth[4] : 00
[2006/08/10 18:51:21, 5] (615)
0057 id_auth[5] : 05
[2006/08/10 18:51:21, 5] (991)
0058 sub_auths : 00000020 00000225
[2006/08/10 18:51:21, 5] (675)
004a size : 0018
[2006/08/10 18:51:21, 7] (84)
000060 sec_io_ace ace_list[03]:
[2006/08/10 18:51:21, 5] (615)
0060 type : 00
[2006/08/10 18:51:21, 5] (615)
0061 flags: 00
[2006/08/10 18:51:21, 8] (84)
000064 sec_io_access info
[2006/08/10 18:51:21, 5] (704)
0064 mask: 000f01ff
[2006/08/10 18:51:21, 8] (84)
000068 smb_io_dom_sid trustee
[2006/08/10 18:51:21, 5] (615)
0068 sid_rev_num: 01
[2006/08/10 18:51:21, 5] (615)
0069 num_auths : 02
[2006/08/10 18:51:21, 5] (615)
006a id_auth[0] : 00
[2006/08/10 18:51:21, 5] (615)
006b id_auth[1] : 00
[2006/08/10 18:51:21, 5] (615)
006c id_auth[2] : 00
[2006/08/10 18:51:21, 5] (615)
006d id_auth[3] : 00
[2006/08/10 18:51:21, 5] (615)
006e id_auth[4] : 00
[2006/08/10 18:51:21, 5] (615)
006f id_auth[5] : 05
[2006/08/10 18:51:21, 5] (991)
0070 sub_auths : 00000020 00000220
[2006/08/10 18:51:21, 5] (675)
0062 size : 0018
[2006/08/10 18:51:21, 5] (675)
0016 size : 0064
[2006/08/10 18:51:21, 10] (593)
regdb_store_values: Looking for value of key
[HKLM\SYSTEM\CurrentControlSet\Services\WINS\Securi ty]
[2006/08/10 18:51:21, 10] registry/reg_db.c:regdb_close(279)
regdb_close: decrementing refcount (2)
[2006/08/10 18:51:21, 10] registry/reg_db.c:regdb_close(279)
regdb_close: decrementing refcount (1)
[2006/08/10 18:51:21, 10] registry/reg_db.c:regdb_close(279)
regdb_close: decrementing refcount (0)
[2006/08/10 18:51:21, 10] (710)
update_c_setprinter: c_setprinter = 0
[2006/08/10 18:51:21, 3] smbd/sec_ctx.c:push_sec_ctx(208)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2006/08/10 18:51:21, 3] smbd/uid.c:push_conn_ctx(345)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2006/08/10 18:51:21, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2006/08/10 18:51:21, 5] (448)
NT user token: (NULL)
[2006/08/10 18:51:21, 5] (474)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2006/08/10 18:51:21, 6] (320)
pdb_getsampwsid: Building guest account
[2006/08/10 18:51:21, 10] (534)
pdb_set_username: setting username nobody, was
[2006/08/10 18:51:21, 10] (603)
pdb_set_full_name: setting full name nobody, was
[2006/08/10 18:51:21, 10] (557)
pdb_set_domain: setting domain NEMESIS, was
[2006/08/10 18:51:21, 10] passdb/lookup_sid.c:gid_to_sid(1196)
gid_to_sid: local 65533 ->
[2006/08/10 18:51:21, 3] (1107)
store_gid_sid_cache: gid 65533 in cache ->
[2006/08/10 18:51:21, 3] (1068)
fetch gid from cache 65533 ->
[2006/08/10 18:51:21, 10] (521)
pdb_set_group_sid: setting group sid
[2006/08/10 18:51:21, 10] (463)
pdb_set_user_sid: setting user sid
[2006/08/10 18:51:21, 10] (73)
pdb_set_user_sid_from_rid:
setting user sid from rid
501
[2006/08/10 18:51:21, 3] smbd/sec_ctx.c:pop_sec_ctx(339)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2006/08/10 18:51:21, 10] lib/util_pw.c:getpwnam_alloc(76)
Got nobody from pwnam_cache
[2006/08/10 18:51:21, 10] lib/util_pw.c:getpwnam_alloc(76)
Got nobody from pwnam_cache
[2006/08/10 18:51:21, 10] (125)
sys_getgrouplist: user [nobody]
[2006/08/10 18:51:21, 3] smbd/sec_ctx.c:push_sec_ctx(208)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2006/08/10 18:51:21, 3] smbd/uid.c:push_conn_ctx(345)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2006/08/10 18:51:21, 3] smbd/sec_ctx.c:set_sec_ctx(241)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2006/08/10 18:51:21, 5] (448)
NT user token: (NULL)
[2006/08/10 18:51:21, 5] (474)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2006/08/10 18:51:21, 3] smbd/sec_ctx.c:pop_sec_ctx(339)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2006/08/10 18:51:21, 3] (1048)
fetch sid from gid cache 65533 ->
[2006/08/10 18:51:21, 10] passdb/lookup_sid.c:gid_to_sid(1196)
gid_to_sid: local 65534 ->
[2006/08/10 18:51:21, 3] (1107)
store_gid_sid_cache: gid 65534 in cache ->
[2006/08/10 18:51:21, 5] (602)
make_server_info_sam: made server info for user nobody -nobody
[2006/08/10 18:51:21, 3] (261)
get_privileges: No privileges assigned to SID
[]
[2006/08/10 18:51:21, 3] (261)
get_privileges: No privileges assigned to SID
[]
[2006/08/10 18:51:21, 5] (459)
get_privileges_for_sids: sid = S-1-1-0
Privilege set:
SE_PRIV 0x0 0x0 0x0 0x0
[2006/08/10 18:51:21, 3] (261)
get_privileges: No privileges assigned to SID [S-1-5-2]
[2006/08/10 18:51:21, 3] (261)
get_privileges: No privileges assigned to SID [S-1-5-32-546]
[2006/08/10 18:51:21, 3] (261)
get_privileges: No privileges assigned to SID
[]
[2006/08/10 18:51:21, 3] (1068)
fetch gid from cache 65533 ->
[2006/08/10 18:51:21, 10] (1000)
Could not convert SID S-1-1-0 to gid, ignoring it
[2006/08/10 18:51:21, 10] (1000)
Could not convert SID S-1-5-2 to gid, ignoring it
[2006/08/10 18:51:21, 10] (1000)
Could not convert SID S-1-5-32-546 to gid, ignoring it
[2006/08/10 18:51:21, 3] (1068)
fetch gid from cache 65534 ->
[2006/08/10 18:51:21, 10] (454)
NT user token of user
contains 6 SIDs
SID[ 0]:
SID[ 1]:
SID[ 2]: S-1-1-0
SID[ 3]: S-1-5-2
SID[ 4]: S-1-5-32-546
SID[ 5]:
SE_PRIV 0x0 0x0 0x0 0x0
[2006/08/10 18:51:21, 5] (170)
claiming 0
[2006/08/10 18:51:21, 3] (1386)
start_background_queue: Starting background LPQ thread
[2006/08/10 18:51:21, 5] (1396)
start_background_queue: background LPQ thread started
[2006/08/10 18:51:21, 5] (170)
claiming smbd lpq backend 0
[2006/08/10 18:51:21, 5] (1407)
start_background_queue: background LPQ thread waiting for messages
[2006/08/10 18:51:21, 10] lib/util_sock.c:open_socket_in(839)
bind succeeded on port 445
[2006/08/10 18:51:21, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 18:51:21, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 18:51:21, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 18:51:21, 5] (206)
socket option TCP_NDELAY = 0
[2006/08/10 18:51:21, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 18:51:21, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 18:51:21, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 18:51:21, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 18:51:21, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 18:51:21, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 18:51:21, 5] (206)
socket option SRCVBUF = 87380
[2006/08/10 18:51:21, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 18:51:21, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 18:51:21, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 18:51:21, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 18:51:21, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 18:51:21, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 18:51:21, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 18:51:21, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 18:51:21, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 18:51:21, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 18:51:21, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 18:51:21, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 18:51:21, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 18:51:21, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 18:51:21, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 18:51:21, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 18:51:21, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 18:51:21, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 18:51:21, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 18:51:21, 10] lib/util_sock.c:open_socket_in(839)
bind succeeded on port 139
[2006/08/10 18:51:21, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 18:51:21, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 18:51:21, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 18:51:21, 5] (206)
socket option TCP_NDELAY = 0
[2006/08/10 18:51:21, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 18:51:21, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 18:51:21, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 18:51:21, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 18:51:21, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 18:51:21, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 18:51:21, 5] (206)
socket option SRCVBUF = 87380
[2006/08/10 18:51:21, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 18:51:21, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 18:51:21, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 18:51:21, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 18:51:21, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 18:51:21, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 18:51:21, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 18:51:21, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 18:51:21, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 18:51:21, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 18:51:21, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 18:51:21, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 18:51:21, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 18:51:21, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 18:51:21, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 18:51:21, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 18:51:21, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 18:51:21, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 18:51:21, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 18:51:21, 2] (384)
waiting for a connection
[2006/08/10 18:54:43, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 18:54:43, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 18:54:43, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 18:54:43, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 18:54:43, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 18:54:43, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 18:54:43, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 18:54:43, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 18:54:43, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 18:54:43, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 18:54:43, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 18:54:43, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 18:54:43, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 18:54:43, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 18:54:43, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 18:54:43, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 18:54:43, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 18:54:43, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 18:54:43, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 18:54:43, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 18:54:43, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 18:54:43, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 18:54:43, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 18:54:43, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 18:54:43, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 18:54:43, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 18:54:43, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 18:54:43, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 18:54:43, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 18:54:43, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 18:57:25, 3] smbd/process.c:check_reload(1340)
Printcap cache time expired.
[2006/08/10 18:57:25, 3] (117)
reloading printcap cache
[2006/08/10 18:57:25, 5] (71)
reloading cups printcap cache
[2006/08/10 18:57:25, 10] (51)
cups server left to default localhost
[2006/08/10 18:57:26, 3] (223)
reload status: ok
[2006/08/10 18:57:26, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 18:57:26, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 18:57:26, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 18:57:26, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 18:57:26, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 18:57:26, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 18:57:26, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 18:57:26, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 18:57:26, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 18:57:26, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 18:57:26, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 18:57:26, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 18:57:26, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 18:57:26, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 18:57:26, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 18:57:26, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 18:57:26, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 18:57:26, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 18:57:26, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 18:57:26, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 18:57:26, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 18:57:26, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 18:57:26, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 18:57:26, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 18:57:26, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 18:57:26, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 18:57:26, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 18:57:26, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 18:57:26, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 18:57:26, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 18:57:26, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 18:57:26, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 18:57:26, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 18:57:26, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 18:57:26, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 18:57:26, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 18:57:26, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 18:57:26, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 18:57:26, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 18:57:26, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 18:57:26, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 18:57:26, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 18:57:26, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 18:57:26, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 18:57:26, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 18:57:26, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 18:57:26, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 18:57:26, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 18:57:26, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 18:57:26, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 18:57:26, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 18:57:26, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 18:57:26, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 18:57:26, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 18:57:26, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 18:57:26, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 18:57:26, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 18:57:26, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 18:57:26, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 18:57:26, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 20:09:34, 6] (2998)
lp_file_list_changed()
file /etc/samba/smb.conf -/etc/samba/smb.conf last mod_time: Thu Aug 10
18:51:08 2006
[2006/08/10 20:09:34, 3] smbd/process.c:check_reload(1340)
Printcap cache time expired.
[2006/08/10 20:09:34, 3] (117)
reloading printcap cache
[2006/08/10 20:09:34, 5] (71)
reloading cups printcap cache
[2006/08/10 20:09:34, 10] (51)
cups server left to default localhost
[2006/08/10 20:09:34, 3] (223)
reload status: ok
[2006/08/10 20:09:34, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 20:09:34, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 20:09:34, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 20:09:34, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 20:09:34, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 20:09:34, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 20:09:34, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 20:09:34, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 20:09:34, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 20:09:34, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 20:09:34, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 20:09:34, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 20:09:34, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 20:09:34, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 20:09:34, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 20:09:34, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 20:09:34, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 20:09:34, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 20:09:34, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 20:09:34, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 20:09:34, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 20:09:34, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 20:09:34, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 20:09:34, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 20:09:34, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 20:09:34, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 20:09:34, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 20:09:34, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 20:09:34, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 20:09:34, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 20:09:34, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 20:09:34, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 20:09:34, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 20:09:34, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 20:09:34, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 20:09:34, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 20:09:34, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 20:09:34, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 20:09:34, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 20:09:34, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 20:09:34, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 20:09:34, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 20:09:34, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 20:09:34, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 20:09:34, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 20:09:34, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 20:09:34, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 20:09:34, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 20:09:34, 0] lib/util_sock.c:get_peer_addr(1229)
getpeername failed. Error was Transport endpoint is not connected
[2006/08/10 20:09:34, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 20:09:34, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 20:09:34, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 20:09:34, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 20:09:34, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 20:09:34, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 20:09:34, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 20:09:34, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 20:09:34, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 20:09:34, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 20:09:34, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 20:09:34, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 20:09:34, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 20:09:34, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 20:09:34, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 20:09:34, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 20:09:34, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 20:09:34, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 20:09:34, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 20:09:34, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 20:09:34, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 20:09:34, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 20:09:34, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 20:09:34, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 20:09:34, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 20:11:33, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 20:11:33, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 20:11:33, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 20:11:33, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 20:11:33, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 20:11:33, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 20:11:33, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 20:11:33, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 20:11:33, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 20:11:33, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 20:11:33, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 20:11:33, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 20:11:33, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 20:11:33, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 20:11:33, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 20:11:33, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 20:11:33, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 20:11:33, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 20:11:33, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 20:11:33, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 20:11:33, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 20:11:33, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 20:11:33, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 20:11:33, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 20:11:33, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 20:11:33, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 20:11:33, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 20:11:33, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 20:11:33, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 20:11:33, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 20:11:33, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 20:11:33, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 20:11:33, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 20:11:33, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 20:11:33, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 20:11:33, 0] lib/util_sock.c:get_peer_addr(1229)
getpeername failed. Error was Transport endpoint is not connected
[2006/08/10 20:11:33, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 20:11:33, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 20:11:33, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 20:11:33, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 20:11:33, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 20:11:33, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 20:11:33, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 20:11:33, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 20:11:33, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 20:11:33, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 20:11:33, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 20:11:33, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 20:11:33, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 20:11:33, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 20:11:33, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 20:11:33, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 20:11:33, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 20:11:33, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 20:11:33, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 20:11:33, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 20:11:34, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 20:11:34, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 20:11:34, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 20:11:34, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 20:11:34, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 20:11:34, 0] lib/util_sock.c:get_peer_addr(1229)
getpeername failed. Error was Transport endpoint is not connected
[2006/08/10 20:11:33, 5] (206)
socket option SRCVTIME = 0
[2006/08/10 20:11:34, 5] (206)
socket option SKEEPALIVE = 1
[2006/08/10 20:11:34, 5] (206)
socket option SREUSEADDR = 1
[2006/08/10 20:11:34, 5] (206)
socket option SBRADCAST = 0
[2006/08/10 20:11:34, 5] (206)
socket option TCP_NDELAY = 1
[2006/08/10 20:11:34, 5] (206)
socket option TCP_KEEPCNT = 9
[2006/08/10 20:11:34, 5] (206)
socket option TCP_KEEPIDLE = 7200
[2006/08/10 20:11:34, 5] (206)
socket option TCP_KEEPINTVL = 75
[2006/08/10 20:11:34, 5] (206)
socket option IPTS_LWDELAY = 0
[2006/08/10 20:11:34, 5] (206)
socket option IPTS_THRUGHPUT = 0
[2006/08/10 20:11:34, 5] (206)
socket option SSNDBUF = 16384
[2006/08/10 20:11:34, 5] (206)
socket option SRCVBUF = 16384
[2006/08/10 20:11:34, 5] (206)
socket option SSNDLWAT = 1
[2006/08/10 20:11:34, 5] (206)
socket option SRCVLWAT = 1
[2006/08/10 20:11:34, 5] (206)
socket option SSNDTIME = 0
[2006/08/10 20:11:34, 5] (206)
socket option SRCVTIME = 0No.4 | | 2791 bytes |
| >From: "Gerald (Jerry) Carter" <jerry (AT) samba (DOT) org>
PGP SIGNED MESSAGE
Hash: SHA1
david,
HELP! mandriva, I compiled samba from source
and got it running, but I cannot connect from windows.
(see my post from earlier "[Samba] Compiling and
Configuring Samba for Mandrival")
david@rankin-xp:~smbclient //bonza/office
Password:
Domain=[RB_LAW] S=[Unix] Server=[Samba 3.0.23b]
tree connect failed: NT_STATUS_ACCESS_DENIED
I have attached a level 10 debug if that will help.
This is a standalone server.
Attachments get stripped from the list. I need
your smb.conf, a level 10 debug log from smbd,
and output from the following tow commands
* pdbedit -L -w | cut -d: -f1
* net groupmap list | cut -d\( -f1
Jerry,
There is definately something amiss with 3.0.23b. After I installed the
3.0.23b binaries on SuSE 10 at home, and I could not connect to any share
except my home share. (I had deleted the 3.0.23a binaries before the 3.0.23b
install -- never again) This was the same problem I saw with 3.0.23b on
mandriva 2005le at work -- that initially started this thread. Anyway, in a
panic, I simple got the 3.0.23a tarball and compiled it as a test on the
SuSE 10 box to see if the problem was really the 3.0.23b release. It was!
This is a problem unique to 3.0.23b. 3.0.23a compiled and installed without
a hitch. Now all my shares are accessable again! I didn't even have to
reboot the windows clients, they just started connecting and playing nicely
with samba again.
I've already sent you my level 10 debug, smb.conf and the output you
requested above from my SuSE 10 box. Let me know if I can send you anything
else to help with this problem. If you need the mandriva info, just let me
know. I can just hear the screams going out across the corporate world as
23b gets installed -- at least on standalone servers.
Both my mandriva and suse systems are presently such that I can install
23b with a simple 'make install' and get back to a working config with 'make
revert' so let me know if you want me to send anything else.
I'm not smart enough to know what the difference between 23a and 23b is
or why it is causing a problem, but I can confirm the problem. I have
installed 23a from rpm and compiled it by hand and it works great. I have
installed 23b from rpm and compiled it by hand and I can only connect to my
home share -- all other shares fail miserably.
Good luck, just put another pot of coffee on Don't worry, I'm
sure it's just a stray comma, semicolon, typo or typecast somewhere in the
middle of 764,532 lines of sourceNo.5 | | 2689 bytes |
| >From: "Gerald (Jerry) Carter" <jerry (AT) samba (DOT) org>
david,
HELP! mandriva, I compiled samba from source
and got it running, but I cannot connect from windows.
(see my post from earlier "[Samba] Compiling and
Configuring Samba for Mandrival")
david@rankin-xp:~smbclient //bonza/office
Password:
Domain=[RB_LAW] S=[Unix] Server=[Samba 3.0.23b]
tree connect failed: NT_STATUS_ACCESS_DENIED
I have attached a level 10 debug if that will help.
This is a standalone server.
Attachments get stripped from the list. I need
your smb.conf, a level 10 debug log from smbd,
and output from the following tow commands
* pdbedit -L -w | cut -d: -f1
* net groupmap list | cut -d\( -f1
Jerry,
I went back and compiled 23a from source on my Mandriva 2005le box at
work. I have now confirmed on the Mandriva box that 23a works great!, 23b
give me the problems described above.
[david@bonza source]$ smbclient -U% -L localhost
Domain=[RB_LAW] S=[Unix] Server=[Samba 3.0.23a]
Sharename Type Comment
office Disk Shared Files
rankin Disk Rankin Law Firm PLLC
allen Disk T Stefan Allen
bertin Disk Darren Bertin
guillory Disk David Guillory
jointcases Disk Joint Client Files
lawtools Disk Case Development - Summation
forms Disk Shared Forms and Briefs
computer Disk Computer Drivers and Software
closed Disk Closed Case Files
print$ Disk
pdf-gen Printer PDF Generator (only valid users)
IPC$ IPC IPC Service (Samba Server 3.0.23a)
Domain=[RB_LAW] S=[Unix] Server=[Samba 3.0.23a]
Server Comment
BNZA Samba Server 3.0.23a
CW-DESK cynthia desktop
DARREN-XP Darren-XP
LISHA Lisha
RANKIN-P35 P35-S629 Laptop
RECEPTIN Dell 2400 2.6 GHz
SECRETARY Front
TSA-LAPTP stefan laptop
Workgroup Master
RB_LAW BNZA
[david@bonza source]$ smbclient //bonza/rankin
Password:
Domain=[BNZA] S=[Unix] Server=[Samba 3.0.23a]
smb: \dir
. D 0 Thu Aug 10 12:28:31 2006
D 0 Mon Jul 17 16:49:17 2006
accounting D 0 Thu Aug 10 16:46:30 2006
clients D 0 Tue Aug 8 15:23:00 2006
investigation D 0 Thu Mar 9 14:53:13 2006
LLC D 0 Thu Feb 16 12:03:40 2006
office D 0 Tue Jun 6 15:07:08 2006
pllc.doc A 6364 Thu Feb 5 12:02:48 2004
tbpe D 0 Wed 12 12:28:08 2005
FAA Letter.doc A 38912 Tue Nov 1 19:34:47 2005
clients_rejected D 0 Fri Mar 3 09:17:06 2006
clients_potential D 0 Mon Jun 12 10:05:32 2006
54209 blocks of size 2097152. 41776 blocks available
3.0.23b won't let me do this Back for another cup of coffeeNo.6 | | 1696 bytes |
| At 00:44 11.08.2006, Gerald (Jerry) Carter wrote:
PGP SIGNED MESSAGE
>Hash: SHA1
>
>david,
>
HELP! mandriva, I compiled samba from source
and got it running, but I cannot connect from windows.
(see my post from earlier "[Samba] Compiling and
Configuring Samba for Mandrival")
david@rankin-xp:~smbclient //bonza/office
Password:
Domain=[RB_LAW] S=[Unix] Server=[Samba 3.0.23b]
tree connect failed: NT_STATUS_ACCESS_DENIED
I have attached a level 10 debug if that will help.
This is a standalone server.
>
>Attachments get stripped from the list. I need
>your smb.conf, a level 10 debug log from smbd,
>and output from the following tow commands
>
>* pdbedit -L -w | cut -d: -f1
>* net groupmap list | cut -d\( -f1
Hi,
I have the same problem with a simple security = user, non-LDAP,
non-windbindd etc. setup. I can workaround this for
gid=100/groupname=users with:
valid users =
My net getlocalsid:
SID for domain HSTNAME is:
These didn't work:
valid users = +users
valid users = +HSTNAME\users
valid users = +BUILTIN\users
valid users = +"Unix Group\users"
valid users = S-1-22-2-100
This seems also to be related on which versions of samba were working
before on a machine (seems to depend on the contents of the .tdb),
but so far I could always reproduce it when I delete most of the
tdb's except printer related and secrets.tdb.
Maybe some "net groupmap" statements are now necessary for simple
setups as well?
bye,
Franz.No.7 | | 940 bytes |
| PGP SIGNED MESSAGE
Hash: SHA1
Franz Sirl wrote:
I have the same problem with a simple security = user,
non-LDAP, non-windbindd etc. setup. I can workaround
this for gid=100/groupname=users with:
valid users =
My net getlocalsid:
SID for domain HSTNAME is:
These didn't work:
valid users = +users
valid users = +HSTNAME\users
valid users = +BUILTIN\users
valid users = +"Unix Group\users"
valid users = S-1-22-2-100
ok. Found the problem. It's smbpasswd. If you use tdbsam
everything is fine. Patch forthcoming shortly. Sorry.
cheers, jerry
Samba http://www.samba.org
Centeris http://www.centeris.com
"What man is a man who does not make the world better?"
PGP SIGNATURE
Version: GnuPG v1.4.4 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
fiP3Ihqaeu+zHUfltU8CbJE=
=YTCJ
PGP SIGNATURENo.8 | | 1068 bytes |
| PGP SIGNED MESSAGE
Hash: SHA1
David Rankin wrote:
>From: "Gerald (Jerry) Carter" <jerry (AT) samba (DOT) org>
>>
>ok. Found the problem. It's smbpasswd. If you use tdbsam
>everything is fine. Patch forthcoming shortly. Sorry.
>>
Aahah!
I knew the coffee would help ; - )
Hey folks,
Please try the attached patch ().
It passes very basic testing for standalone servers
using smbpasswd. And still has some discussion
to go through before it will go into the tree for
3.0.23c.
Also available at http://www.samba.org/~jerry/patches/
if the attachment gets messed up.
cheers, jerry
Samba http://www.samba.org
Centeris http://www.centeris.com
"What man is a man who does not make the world better?"
PGP SIGNATURE
Version: GnuPG v1.4.4 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
DAeSWNSGj5q6I=
=LfCs
PGP SIGNATURENo.9 | | 9641 bytes |
| PGP SIGNED MESSAGE
Hash: SHA1
Gerald (Jerry) Carter wrote:
Hey folks,
Please try the attached patch ().
more with feeling (and the attachment)
jerry
Samba http://www.samba.org
Centeris http://www.centeris.com
"What man is a man who does not make the world better?"
PGP SIGNATURE
Version: GnuPG v1.4.4 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
H0ug4P2fgBPHZYDG3dgh9WI=
=XCBZ
PGP SIGNATURE
diff -urN /
2006-08-07 11:46:33.000000000 -0500
2006-08-11 10:03:44.000000000 -0500
@@ -1052,9 +1052,8 @@
return NT_STATUS_NMEMRY;
}
-if (!lookup_name_smbconf(tmp_ctx, username, LKUP_NAME_ALL,
- NULL, NULL, &user_sid, &type)) {
-DEBUG(1, ("lookup_name_smbconf for %s failed\n", username));
+if (!lookup_user_smbconf(tmp_ctx, username, &user_sid, &type)) {
+DEBUG(1, ("lookup_user_smbconf(%s) failed\n", username));
goto done;
}
diff -urN /
2006-07-10 11:27:52.000000000 -0500
2006-08-11 10:03:44.000000000 -0500
@@ -272,7 +272,7 @@
#define LKUP_NAME_REMTE 2 /* Ask others */
#define LKUP_NAME_ALL (LKUP_NAME_ISLATED|LKUP_NAME_REMTE)
-#define LKUP_NAME_GRUP 4 /* This is a NASTY hack for valid users = @foo
+#define LKUP_NAME_GRUP 4 /* (unused) This is a NASTY hack for valid users = @foo
* where foo also exists in as user. */
/**
diff -urN /
2006-08-07 11:46:33.000000000 -0500
2006-08-11 10:03:44.000000000 -0500
@@ -120,63 +120,6 @@
goto failed;
}
-/*
- * Nasty hack necessary for too common scenarios:
- *
- * For 'valid users = +users' we know "users" is most probably not
- * BUILTIN\users but the unix group users. This hack requires the
- * admin to explicitly qualify BUILTIN if BUILTIN\users is meant.
- *
- * Please note that LKUP_NAME_GRUP can not be requested via for
- * example lsa_lookupnames, it only comes into this routine via
- * the expansion of group names coming in from smb.conf
- */
-
-if ((flags & LKUP_NAME_GRUP) && ((grp = getgrnam(name)) != NULL)) {
-
-GRUP_MAP map;
-
-if (pdb_getgrgid(&map, grp->gr_gid)) {
-/* The hack gets worse. Handle the case where we have
- * 'force group = +unixgroup' but "unixgroup" has a
- * group mapping */
-
-if (sid_check_is_in_builtin(&map.sid)) {
-domain = talloc_strdup(
-tmp_ctx, builtin_domain_name());
-} else {
-domain = talloc_strdup(
-tmp_ctx, get_global_sam_name());
-}
-
-sid_copy(&sid, &map.sid);
-type = map.sid_name_use;
-goto ok;
-}
-
-/* If we are using the smbpasswd backend, we need to use the
- * algorithmic mapping for the unix group we find. This is
- * necessary because when creating the NT token from the unix
- * gid list we got from initgroups() we use gid_to_sid() that
- * uses algorithmic mapping if pdb_rid_algorithm() is true. */
-
-if (pdb_rid_algorithm() &&
- (grp->gr_gid < max_algorithmic_gid())) {
-domain = talloc_strdup(tmp_ctx, get_global_sam_name());
-sid_compose(&sid, get_global_sam_sid(),
- pdb_gid_to_group_rid(grp->gr_gid));
-type = SID_NAME_DM_GRP;
-goto ok;
-}
-
-if (lookup_unix_group_name(name, &sid)) {
-domain = talloc_strdup(tmp_ctx,
- unix_groups_domain_name());
-type = SID_NAME_DM_GRP;
-goto ok;
-}
-}
-
/* Now the guesswork begins, we haven't been given an explicit
* domain. Try the sequence as documented on
*
@@ -357,71 +300,56 @@
}
/
- Names from smb.conf can be unqualified. eg. valid users = foo
- These names should never map to a remote name. Try global_sam_name()\foo,
- and then "Unix Users"\foo (or "Unix Groups"\foo).
/
-BL lookup_name_smbconf(TALLC_CTX *mem_ctx,
- const char *full_name, int flags,
- const char **ret_domain, const char **ret_name,
- DM_SID *ret_sid, enum SID_NAME_USE *ret_type)
+BL lookup_user_smbconf( TALLC_CTX *mem_ctx, const char *full_name,
+ DM_SID *ret_sid, enum SID_NAME_USE *ret_type)
{
-char *qualified_name;
-const char *p;
-
-/* NB. No winbindd_separator here as lookup_name needs \\' */
-if ((p = strchr_m(full_name, *lp_winbind_separator())) != NULL) {
-
-/* The name is already qualified with a domain. */
-
-if (*lp_winbind_separator() != '\\') {
-char *tmp;
-
-/* lookup_name() needs '\\' as a separator */
+struct passwd *pw;
-tmp = talloc_strdup(mem_ctx, full_name);
-if (!tmp) {
-return False;
-}
-tmp[p - full_name] = '\\';
-full_name = tmp;
-}
-
-return lookup_name(mem_ctx, full_name, flags,
-ret_domain, ret_name,
-ret_sid, ret_type);
+if ( (pw = sys_getpwnam( full_name ) ) == NULL ) {
+DEBUG(5,("lookup_user_smbconf: Failed to convert %s to a uid.\n",
+full_name));
+return False;
}
-
-/* Try with our own SAM name. */
-qualified_name = talloc_asprintf(mem_ctx, "%s\\%s",
-get_global_sam_name(),
-full_name );
-if (!qualified_name) {
+
+uid_to_sid( ret_sid, pw->pw_uid );
+
+if ( !lookup_sid( mem_ctx, ret_sid, NULL, NULL, ret_type ) ) {
+DEBUG(0,("lookup_user_smbconf: lookup_sid() failed! This should not happen!\n"));
return False;
}
+
+return True;
+}
-if (lookup_name(mem_ctx, qualified_name, flags,
-ret_domain, ret_name,
-ret_sid, ret_type)) {
-return True;
-}
+/
/
-/* Finally try with "Unix Users" or "Unix Group" */
-qualified_name = talloc_asprintf(mem_ctx, "%s\\%s",
-flags & LKUP_NAME_GRUP ?
-unix_groups_domain_name() :
-unix_users_domain_name(),
-full_name );
-if (!qualified_name) {
+BL lookup_group_smbconf( TALLC_CTX *mem_ctx, const char *full_name,
+ DM_SID *ret_sid, enum SID_NAME_USE *ret_type)
+{
+struct group *grp;
+
+if ( (grp = sys_getgrnam( full_name ) ) == NULL ) {
+DEBUG(5,("lookup_group_smbconf: Failed to convert %s to a gid.\n",
+full_name));
return False;
}
-
-return lookup_name(mem_ctx, qualified_name, flags,
-ret_domain, ret_name,
-ret_sid, ret_type);
+
+gid_to_sid( ret_sid, grp->gr_gid );
+
+if ( !lookup_sid( mem_ctx, ret_sid, NULL, NULL, ret_type ) ) {
+DEBUG(0,("lookup_group_smbconf: lookup_sid() failed! This should not happen!\n"));
+return False;
+}
+
+return True;
}
+/
/
+
static BL winbind_lookup_rids(TALLC_CTX *mem_ctx,
const DM_SID *domain_sid,
int num_rids, uint32 *rids,
diff -urN /
2006-07-21 11:22:57.000000000 -0500
2006-08-11 10:03:44.000000000 -0500
@@ -1532,20 +1532,53 @@
return True;
}
-
-/* Windows will always map RID 513 to something. a non-domain
- controller, this gets mapped to SERVER\None. */
-if ( unix_id ) {
-DEBUG(5, ("Can't find a unix id for an unmapped group\n"));
-return False;
+/* if we don't need a bvalid uid or gid, just see if
+ we can resolve the name. Windows will always map
+ RID 513 to something. a non-domain controller,
+ this gets mapped to SERVER\None. */
+
+if ( !unix_id && rid == DMAIN_GRUP_RID_USERS ) {
+*name = talloc_strdup(mem_ctx, "None" );
+*psid_name_use = SID_NAME_DM_GRP;
+
+return True;
}
-if ( rid == DMAIN_GRUP_RID_USERS ) {
-*name = talloc_strdup(mem_ctx, "None" );
+/* we haven't resolved the RID at this point. But
+ if the passdb is using a RID algorithm, we should
+ just apply the invese function */
+
+if ( pdb_rid_algorithm() ) {
+uid_t uid;
+gid_t gid;
+struct passwd *pw;
+struct group *grp;
+
+/* Is it is a user? */
+
+if ( algorithmic_pdb_rid_is_user(rid) ) {
+uid = ( rid );
+if ( (pw = sys_getpwuid(uid) ) == NULL ) {
+return False;
+}
+*name = talloc_strdup(mem_ctx, pw->pw_name );
+*psid_name_use = SID_NAME_USER;
+
+return True;
+}
+
+/* else it's a group */
+
+gid = pdb_group_rid_to_gid( rid );
+if ( (grp = getgrgid( gid )) == NULL ) {
+return False;
+}
+*name = talloc_strdup(mem_ctx, grp->gr_name );
*psid_name_use = SID_NAME_DM_GRP;
return True;
+
}
return False;
diff -urN /
2006-08-07 11:46:33.000000000 -0500
2006-08-11 10:03:44.000000000 -0500
@@ -443,11 +443,8 @@
groupname = talloc_string_sub(mem_ctx, groupname,
"%S", lp_servicename(snum));
-if (!lookup_name_smbconf(mem_ctx, groupname,
- LKUP_NAME_ALL|LKUP_NAME_GRUP,
- NULL, NULL, &group_sid, &type)) {
-DEBUG(10, ("lookup_name_smbconf(%s) failed\n",
- groupname));
+if (!lookup_group_smbconf(mem_ctx, groupname, &group_sid, &type)) {
+DEBUG(10, ("lookup_group_smbconf(%s) failed\n", groupname));
goto done;
}
diff -urN /
2006-08-07 11:46:33.000000000 -0500
2006-08-11 10:03:44.000000000 -0500
@@ -94,8 +94,7 @@
}
if (!do_group_checks(&name, &prefix)) {
-if (!lookup_name_smbconf(mem_ctx, name, LKUP_NAME_ALL,
- NULL, NULL, &sid, &type)) {
+if (!lookup_user_smbconf(mem_ctx, name, &sid, &type)) {
DEBUG(5, ("lookup_name %s failed\n", name));
return False;
}
@@ -109,9 +108,7 @@
for (/* initialized above */ ; *prefix != '\0'; prefix++) {
if (*prefix == '+') {
-if (!lookup_name_smbconf(mem_ctx, name,
- LKUP_NAME_ALL|LKUP_NAME_GRUP,
- NULL, NULL, &sid, &type)) {
+if (!lookup_group_smbconf(mem_ctx, name, &sid, &type)) {
DEBUG(5, ("lookup_name %s failed\n", name));
return False;
}No.10 | | 1464 bytes |
| At 17:08 11.08.2006, Gerald (Jerry) Carter wrote:
PGP SIGNED MESSAGE
>Hash: SHA1
>
>David Rankin wrote:
>From: "Gerald (Jerry) Carter" <jerry (AT) samba (DOT) org>
>>
>ok. Found the problem. It's smbpasswd. If you use tdbsam
>everything is fine. Patch forthcoming shortly. Sorry.
>>
>
Aahah!
I knew the coffee would help ; - )
>
>Hey folks,
>
>Please try the attached patch ().
>It passes very basic testing for standalone servers
>using smbpasswd. And still has some discussion
>to go through before it will go into the tree for
>3.0.23c.
>
>Also available at http://www.samba.org/~jerry/patches/
>if the attachment gets messed up.
Hi Jerry,
the patch fixes the valid users problem for me. , to come back to
the list of different syntaxes, these work:
valid users = +users
valid users =
These didn't work:
valid users = +"Unix Group\users"
valid users = +HSTNAME\users
valid users = +BUILTIN\users
valid users = S-1-22-2-100
Thanks for the patch!
a side note, 3.0.23 series fixed the "long delay/hang when
accessing a samba share in explorer after a long pause" nuisance for
me, thanks for this as well!
bye,
Franz.No.11 | | 1035 bytes |
| PGP SIGNED MESSAGE
Hash: SHA1
Franz Sirl wrote:
the patch fixes the valid users problem for me. , to
come back to the list of different syntaxes, these work:
valid users = +users
valid users =
These didn't work:
valid users = +"Unix Group\users"
valid users = +HSTNAME\users
valid users = +BUILTIN\users
valid users = S-1-22-2-100
Thanks for the patch!
I understand why now these don't work now. Second round of
patches on the way.
a side note, 3.0.23 series fixed the "long delay/hang
when accessing a samba share in explorer after a long
pause" nuisance for me, thanks for this as well!
Good news :-) Thanks.
cheers, jerry
Samba http://www.samba.org
Centeris http://www.centeris.com
"What man is a man who does not make the world better?"
PGP SIGNATURE
Version: GnuPG v1.4.4 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
51IPK1dQIkUJqTVIf4k=
=IhPQ
PGP SIGNATURENo.12 | | 7861 bytes |
| PGP SIGNED MESSAGE
Hash: SHA1
Franz Sirl wrote:
the patch fixes the valid users problem for me. ,
to come back to the list of different syntaxes,
these work:
valid users = +users
valid users =
These didn't work:
valid users = +"Unix Group\users"
valid users = +HSTNAME\users
valid users = +BUILTIN\users
valid users = S-1-22-2-100
Please test the patch. Supersedes the previous one.
Also available from http://www.samba.org/~jerry/patches/
It's semi-ok that syntax you list doesn't work. You
should really only worry about +users for local group names.
cheers, jerry
Samba http://www.samba.org
Centeris http://www.centeris.com
"What man is a man who does not make the world better?"
PGP SIGNATURE
Version: GnuPG v1.4.4 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
nngKKBmiJcVXVi60MoQk4w=
=e+/6
PGP SIGNATURE
Index: groupdb/mapping.c
groupdb/mapping.c(revision 17493)
groupdb/mapping.c(working copy)
@@ -195,7 +195,7 @@
fstrcpy(map.nt_name, grpname);
if (pdb_rid_algorithm()) {
-rid = pdb_gid_to_group_rid( grp->gr_gid );
+rid = ( grp->gr_gid );
} else {
if (!pdb_new_rid(&rid)) {
DEBUG(3, ("Could not get a new RID for %s\n",
Index: passdb/util_unixsids.c
passdb/util_unixsids.c(revision 17493)
passdb/util_unixsids.c(working copy)
@@ -42,6 +42,12 @@
return sid_append_rid(sid, uid);
}
+BL uid_to_unix_groups_sid(gid_t gid, DM_SID *sid)
+{
+sid_copy(sid, &global_sid_Unix_Groups);
+return sid_append_rid(sid, gid);
+}
+
const char *unix_users_domain_name(void)
{
return "Unix User";
Index: passdb/lookup_sid.c
passdb/lookup_sid.c(revision 17493)
passdb/lookup_sid.c(working copy)
@@ -43,7 +43,6 @@
DM_SID sid;
enum SID_NAME_USE type;
TALLC_CTX *tmp_ctx = talloc_new(mem_ctx);
-struct group *grp;
if (tmp_ctx == NULL) {
DEBUG(0, ("talloc_new failed\n"));
@@ -120,63 +119,6 @@
goto failed;
}
-/*
- * Nasty hack necessary for too common scenarios:
- *
- * For 'valid users = +users' we know "users" is most probably not
- * BUILTIN\users but the unix group users. This hack requires the
- * admin to explicitly qualify BUILTIN if BUILTIN\users is meant.
- *
- * Please note that LKUP_NAME_GRUP can not be requested via for
- * example lsa_lookupnames, it only comes into this routine via
- * the expansion of group names coming in from smb.conf
- */
-
-if ((flags & LKUP_NAME_GRUP) && ((grp = getgrnam(name)) != NULL)) {
-
-GRUP_MAP map;
-
-if (pdb_getgrgid(&map, grp->gr_gid)) {
-/* The hack gets worse. Handle the case where we have
- * 'force group = +unixgroup' but "unixgroup" has a
- * group mapping */
-
-if (sid_check_is_in_builtin(&map.sid)) {
-domain = talloc_strdup(
-tmp_ctx, builtin_domain_name());
-} else {
-domain = talloc_strdup(
-tmp_ctx, get_global_sam_name());
-}
-
-sid_copy(&sid, &map.sid);
-type = map.sid_name_use;
-goto ok;
-}
-
-/* If we are using the smbpasswd backend, we need to use the
- * algorithmic mapping for the unix group we find. This is
- * necessary because when creating the NT token from the unix
- * gid list we got from initgroups() we use gid_to_sid() that
- * uses algorithmic mapping if pdb_rid_algorithm() is true. */
-
-if (pdb_rid_algorithm() &&
- (grp->gr_gid < max_algorithmic_gid())) {
-domain = talloc_strdup(tmp_ctx, get_global_sam_name());
-sid_compose(&sid, get_global_sam_sid(),
- pdb_gid_to_group_rid(grp->gr_gid));
-type = SID_NAME_DM_GRP;
-goto ok;
-}
-
-if (lookup_unix_group_name(name, &sid)) {
-domain = talloc_strdup(tmp_ctx,
- unix_groups_domain_name());
-type = SID_NAME_DM_GRP;
-goto ok;
-}
-}
-
/* Now the guesswork begins, we haven't been given an explicit
* domain. Try the sequence as documented on
*
@@ -1138,15 +1080,10 @@
goto done;
}
-if (pdb_rid_algorithm() && (uid < max_algorithmic_uid())) {
-sid_copy(psid, get_global_sam_sid());
-sid_append_rid(psid, (uid));
-goto done;
-} else {
-uid_to_unix_users_sid(uid, psid);
-goto done;
-}
+/* This is an unmapped user */
+uid_to_unix_users_sid(uid, psid);
+
done:
DEBUG(10,("uid_to_sid: local %u -%s\n", (unsigned int)uid,
sid_string_static(psid)));
@@ -1180,16 +1117,10 @@
/* This is a mapped group */
goto done;
}
+
+/* This is an unmapped group */
-if (pdb_rid_algorithm() && (gid < max_algorithmic_gid())) {
-sid_copy(psid, get_global_sam_sid());
-sid_append_rid(psid, pdb_gid_to_group_rid(gid));
-goto done;
-} else {
-sid_copy(psid, &global_sid_Unix_Groups);
-sid_append_rid(psid, gid);
-goto done;
-}
+uid_to_unix_groups_sid(gid, psid);
done:
DEBUG(10,("gid_to_sid: local %u -%s\n", (unsigned int)gid,
@@ -1235,14 +1166,9 @@
*puid = id.uid;
goto done;
}
-if (pdb_rid_algorithm() &&
- algorithmic_pdb_rid_is_user(rid)) {
-*puid = (rid);
-goto done;
-}
-/* This was ours, but it was neither mapped nor
- * algorithmic. Fail */
+/* This was ours, but it was not mapped. Fail */
+
return False;
}
@@ -1323,14 +1249,9 @@
*pgid = id.gid;
goto done;
}
-if (pdb_rid_algorithm() &&
- !algorithmic_pdb_rid_is_user(rid)) {
-/* This must be a group, presented as alias */
-*pgid = pdb_group_rid_to_gid(rid);
-goto done;
-}
-/* This was ours, but it was neither mapped nor
- * algorithmic. Fail. */
+
+/* This was ours, but it was not mapped. Fail */
+
return False;
}
Index: passdb/passdb.c
passdb/passdb.c(revision 17493)
passdb/passdb.c(working copy)
@@ -505,7 +505,7 @@
there is not anymore a direct link between the gid and the rid.
/
-uint32 pdb_gid_to_group_rid(gid_t gid)
+uint32 (gid_t gid)
{
int rid_offset = algorithmic_rid_base();
return (((((uint32)gid)*RID_MULTIPLIER) + rid_offset) | GRUP_RID_TYPE);
Index: passdb/pdb_interface.c
passdb/pdb_interface.c(revision 17493)
passdb/pdb_interface.c(working copy)
@@ -595,7 +595,7 @@
}
if (pdb_rid_algorithm()) {
-*rid = pdb_gid_to_group_rid( grp->gr_gid );
+*rid = ( grp->gr_gid );
} else {
if (!pdb_new_rid(rid)) {
return NT_STATUS_ACCESS_DENIED;
Index: include/smb.h
include/smb.h(revision 17493)
include/smb.h(working copy)
@@ -272,7 +272,7 @@
#define LKUP_NAME_REMTE 2 /* Ask others */
#define LKUP_NAME_ALL (LKUP_NAME_ISLATED|LKUP_NAME_REMTE)
-#define LKUP_NAME_GRUP 4 /* This is a NASTY hack for valid users = @foo
+#define LKUP_NAME_GRUP 4 /* (unused) This is a NASTY hack for valid users = @foo
* where foo also exists in as user. */
/**
Index: utils/net_groupmap.c
utils/net_groupmap.c(revision 17493)
utils/net_groupmap.c(working copy)
@@ -275,7 +275,7 @@
if ( (rid == 0) && (string_sid[0] == '\0') ) {
d_printf("No rid or sid specified, choosing a RID\n");
if (pdb_rid_algorithm()) {
-rid = pdb_gid_to_group_rid(gid);
+rid = (gid);
} else {
if (!pdb_new_rid(&rid)) {
d_printf("Could not get new RID\n");
@@ -555,7 +555,14 @@
map.gid = grp->gr_gid;
if (opt_rid == 0) {
-opt_rid = pdb_gid_to_group_rid(map.gid);
+if ( pdb_rid_algorithm() )
+opt_rid = (map.gid);
+else {
+if ( !pdb_new_rid((uint32*)&opt_rid) ) {
+d_fprintf( stderr, "Could not allocate new RID\n");
+return -1;
+}
+}
}
sid_copy(&map.sid, get_global_sam_sid());No.13 | | 1643 bytes |
| >From: "Gerald (Jerry) Carter" <jerry (AT) samba (DOT) org>
Please test the patch. Supersedes the previous one.
Also available from http://www.samba.org/~jerry/patches/
It's semi-ok that syntax you list doesn't work. You
should really only worry about +users for local group names.
>
>
>
K, Help, what am I doing wrong with the patch? How do is get the patch
installed? Here is what I did that didn't work
[root@bonza src]# ll
total 36072
drwxr-xr-x 9 david david 4096 Jul 21 11:26 samba-3.0.23a/
-rw-rw-r-- 1 david david 17683518 Jul 21 11:30 samba-3.0.23a.tar.gz
drwxr-xr-x 9 david david 4096 Aug 11 15:08 samba-3.0.23b/
-rwxr 1 david david 11033 Aug 11 12:11
*
-rw-r 1 root root 17686227 Aug 8 07:50 samba-3.0.23b.tar.gz
[root@bonza src]# patch -p0 <
patching file
Hunk #1 FAILED at 1052.
1 out of 1 hunk FAILED -- saving rejects to file
patching file
Hunk #1 FAILED at 272.
1 out of 1 hunk FAILED -- saving rejects to file
patching file
Hunk #1 FAILED at 120.
Hunk #2 FAILED at 300.
2 out of 2 hunks FAILED -- saving rejects to file
patching file
Hunk #1 FAILED at 1532.
1 out of 1 hunk FAILED -- saving rejects to file
patching file
Hunk #1 FAILED at 443.
1 out of 1 hunk FAILED -- saving rejects to file
patching file
Hunk #1 FAILED at 94.
Hunk #2 FAILED at 108.
2 out of 2 hunks FAILED -- saving rejects to file
I know this is basic, but I haven't done it before and 'man patch' is
not that helpfulNo.14 | | 1056 bytes |
| PGP SIGNED MESSAGE
Hash: SHA1
david rankin wrote:
K, Help, what am I doing wrong with the patch? How do is
get the patch installed? Here is what I did that didn't work
[root@bonza src]# ll
total 36072
drwxr-xr-x 9 david david 4096 Jul 21 11:26 samba-3.0.23a/
-rw-rw-r-- 1 david david 17683518 Jul 21 11:30 samba-3.0.23a.tar.gz
drwxr-xr-x 9 david david 4096 Aug 11 15:08 samba-3.0.23b/
-rwxr 1 david david 11033 Aug 11 12:11
*
-rw-r 1 root root 17686227 Aug 8 07:50 samba-3.0.23b.tar.gz
run the following commands
$ wget \
http://www.samba.org/~
$ tar zxvf samba-3.0.23b.tar.gz
$ cd samba-3.0.23b
$ patch -p1 <
$ cd source
$ make proto
$ make
cheers, jerry
Samba http://www.samba.org
Centeris http://www.centeris.com
"What man is a man who does not make the world better?"
PGP SIGNATURE
Version: GnuPG v1.4.4 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
UHEnR8Nz3CACkxbGsP=
=HJuv
PGP SIGNATURENo.15 | | 1624 bytes |
| >From: "Gerald (Jerry) Carter" <jerry (AT) samba (DOT) org>
david rankin wrote:
>
>K, Help, what am I doing wrong with the patch? How do is
>get the patch installed? Here is what I did that didn't work
>>
>
run the following commands
$ wget \
http://www.samba.org/~
$ tar zxvf samba-3.0.23b.tar.gz
$ cd samba-3.0.23b
All done, that's how I compiled it from source the first time
$ patch -p1 <
$ cd source
$ make proto
$ make
I must be having a really really bad day
[root@bonza samba-3.0.23b]# patch -p1 <
patching file source/auth/auth_util.c
Hunk #1 FAILED at 1052.
1 out of 1 hunk FAILED -- saving rejects to file source/auth/auth_util.c.rej
patching file source/include/smb.h
Hunk #1 FAILED at 272.
1 out of 1 hunk FAILED -- saving rejects to file source/include/smb.h.rej
patching file source/passdb/lookup_sid.c
Hunk #1 FAILED at 120.
Hunk #2 FAILED at 300.
2 out of 2 hunks FAILED -- saving rejects to file
source/passdb/lookup_sid.c.rej
patching file source/passdb/pdb_interface.c
Hunk #1 FAILED at 1532.
1 out of 1 hunk FAILED -- saving rejects to file
patching file source/smbd/service.c
Hunk #1 FAILED at 443.
1 out of 1 hunk FAILED -- saving rejects to file source/smbd/service.c.rej
patching file source/smbd/share_access.c
Hunk #1 FAILED at 94.
Hunk #2 FAILED at 108.
2 out of 2 hunks FAILED -- saving rejects to file
source/smbd/share_access.c.rej
Go Figure?No.16 | | 509 bytes |
| PGP SIGNED MESSAGE
Hash: SHA1
david rankin wrote:
[root@bonza samba-3.0.23b]# patch -p1 <
patching file source/auth/auth_util.c
Hunk #1 FAILED at 1052.
1 out of 1 hunk FAILED -- saving rejects to file
No idea. I double checked the patch to make
sure it applies cleanly.
jerry6
PGP SIGNATURE
Version: GnuPG v1.4.4 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
yaRNb4QimA/JAxbNpI5Ayfc=
=vkbr
PGP SIGNATURENo.17 | | 810 bytes |
| Friday 11 August 2006 18:04, david rankin wrote:
>From: "Gerald (Jerry) Carter" <jerry (AT) samba (DOT) org>
>
david rankin wrote:
>K, Help, what am I doing wrong with the patch? How do is
>get the patch installed? Here is what I did that didn't work
>
run the following commands
$ wget \
http://www.samba.org/~
>patch $ tar zxvf samba-3.0.23b.tar.gz
$ cd samba-3.0.23b
All done, that's how I compiled it from source the first time
$ patch -p1 <
$ cd source
$ make proto
$ make
I must be having a really really bad day
[root@bonza samba-3.0.23b]# patch -p1 <
Notice you are still using v1: the patch ends in v2No.18 | | 1494 bytes |
| Gerald (Jerry) Carter schrieb:
PGP SIGNED MESSAGE
Hash: SHA1
Franz Sirl wrote:
>the patch fixes the valid users problem for me. ,
>to come back to the list of different syntaxes,
>these work:
>>
>valid users = +users
>valid users =
>>
>These didn't work:
>>
>valid users = +"Unix Group\users"
>valid users = +HSTNAME\users
>valid users = +BUILTIN\users
>valid users = S-1-22-2-100
Please test the patch. Supersedes the previous one.
Also available from http://www.samba.org/~jerry/patches/
It's semi-ok that syntax you list doesn't work. You
should really only worry about +users for local group names.
Hi Jerry,
v2 of the patch still works fine, but the list of working syntaxes
changed. These work:
valid users = +users
valid users = +"Unix Group\users"
valid users = S-1-22-2-100
These didn't work:
valid users = +HSTNAME\users
valid users = +BUILTIN\users
valid users =
And it's not that I expect all of these to work, it's more that I tried
about any combo that I saw in the logs :-). Though I believe that the
+"Unix Group\users" is nice to have in case I switch to PDC, cause
personally I like to be explicit in configuration files.
Thanks,
Franz.No.19 | | 2015 bytes |
| PGP SIGNED MESSAGE
Hash: SHA1
Franz Sirl wrote:
v2 of the patch still works fine, but the list
of working syntaxes changed. These work:
valid users = +users
valid users = +"Unix Group\users"
valid users = S-1-22-2-100
These didn't work:
valid users = +HSTNAME\users
valid users = +BUILTIN\users
valid users =
This is to be expected. All unmapped users will
possess a SID in the S-1-22-1 domain and all unmapped
groups will be in the S-1-22-2 domain.
HSTNAME\users would work for a mapped group.
BUILTIN\users would work if you have local builtin group
called users (e.g. "net sam createbuiltin Users")
And it's not that I expect all of these to work, it's
more that I tried about any combo that I saw in the
logs :-). Though I believe that the +"Unix Group\users"
is nice to have in case I switch to PDC, cause
personally I like to be explicit in configuration files.
There problem is that if you create a group map entry
for HSTNAME\users, "unix Group\users" will resolve to
a different SID and hence anyone actually in the users
group from /etc/group will have the HSTNAME\users SID in
their token.
At this time we are *not* recommending that anyone qualify
names with HSTNAME or "Unix XXX". Samba will handle
the steps necessary to resolve the name, giving precedence
to mapped users and groups over unmapped ones. You only
have to qualify domain names and groups in the BUILTIN domain.
I've got a long mail that explains we made this change
and we had a hard time with 3.0.23. I'll try to send
it out next week.
cheers, jerry
Samba http://www.samba.org
Centeris http://www.centeris.com
"What man is a man who does not make the world better?"
PGP SIGNATURE
Version: GnuPG v1.4.4 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
jVl0lWeAB0JQtsUreRW0xzs=
=
PGP SIGNATURENo.20 | | 284 bytes |
| I've got a long mail that explains we made this change
and we had a hard time with 3.0.23. I'll try to send
it out next week.
that's very good news!
i was about to ask the list about these changes because they horribly
confused me :)
thx!
michaNo.21 | | 1895 bytes |
| >From: "Gerald (Jerry) Carter" <jerry (AT) samba (DOT) org>
This is to be expected. All unmapped users will
possess a SID in the S-1-22-1 domain and all unmapped
groups will be in the S-1-22-2 domain.
HSTNAME\users would work for a mapped group.
BUILTIN\users would work if you have local builtin group
called users (e.g. "net sam createbuiltin Users")
>
>And it's not that I expect all of these to work, it's
>more that I tried about any combo that I saw in the
>logs :-). Though I believe that the +"Unix Group\users"
>is nice to have in case I switch to PDC, cause
>personally I like to be explicit in configuration files.
>
There problem is that if you create a group map entry
for HSTNAME\users, "unix Group\users" will resolve to
a different SID and hence anyone actually in the users
group from /etc/group will have the HSTNAME\users SID in
their token.
At this time we are *not* recommending that anyone qualify
names with HSTNAME or "Unix XXX". Samba will handle
the steps necessary to resolve the name, giving precedence
to mapped users and groups over unmapped ones. You only
have to qualify domain names and groups in the BUILTIN domain.
I've got a long mail that explains we made this change
and we had a hard time with 3.0.23. I'll try to send
it out next week.
Jerry,
Any headway on incorporating the patches into a 3.0.23c release that will
help all of us that are running stand-along, no-winbind, simple smbpasswd
setups? I was never able to get the patches to apply properly and my manual
compile messed up my ability to print with cups. (yes I compiled
with ) I have dropped back to the 3.0.20-SuSE rpms and it is
working, but I would like to help get 3.0.23b fixed. Any word?No.22 | | 781 bytes |
| PGP SIGNED MESSAGE
Hash: SHA1
david rankin wrote:
Any headway on incorporating the patches into a 3.0.23c release that
will help all of us that are running stand-along, no-winbind, simple
smbpasswd setups? I was never able to get the patches to apply properly
and my manual compile messed up my ability to print with cups. (yes I
compiled with ) I have dropped back to the 3.0.20-SuSE rpms
and it is working, but I would like to help get 3.0.23b fixed. Any word?
Early next week ? Linuxworld has been going on at San Francisco
so that has eaten some time.
jerry
PGP SIGNATURE
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org
LN0pvExJi9+c+a0zBMQkM=
=bT/
PGP SIGNATURE
QUESTION ON "Samba"
- Samba locks system up when coping data from Windows 98 clients
- winbind nsswitch problem
- RPM reporting running two versions of Samba at the sametime
- group changes?
- LDAP Account Manager 1.0.4 released
- FW: HELP -- Problem with access list on samba 3.0.23b butnot on 3.0.20c PDC
- RPM reporting running two versions of Samba at the same time
- Query path info on folders beyond DFS links ...
- Help: smbd & nmbd normal states
- samba throughput decreases to 50% when using linux bonding device
- talloc_asprintf dumping the length?
- samba pdc and notebook in domain
- This list is a black hole.
- POLL: Does anyone actually use multiple passdbbackends on the same server?
- disabling roaming profiles for some networks only
- OS/2 client crash on "Find Close2"
- Identically named users and groups
- SOC Progress on "User Manager for SWAT (Samba 4)"
- Valid users & SAMBA_3_0_23
- valid users problem with 3.0.23a