IRC Networks
Irc Logs Stats
Start date: 2007-09-27 02:48:27
Last update: 2008-10-24 20:19:38
Channels: 41
Logged Lines: 6230436
Size: 1822.46 MB
Powered by
Channel Info
Network: freenodeChannel: #samba |
Search in www.irclog.org
Log from #samba at freenode 2006-07-08
[00:00]<gmmugmj_v>wrong options, or something like that
[00:00]<drgys_>in fact I this is what it displayed
[00:00]<drgys_>(sorry for the flood)
[00:01]<drgys_>yanis@book:~$ smbclient -L server
[00:01]<gmmugmj_v>well, it can be related with a blocked IP in smb.conf as well
[00:01]<drgys_>Password:
[00:01]<drgys_>Domain=[SERVER] OS=[Unix] Server=[Samba 3.0.22]
[00:01]<drgys_> Sharename Type Comment
[00:01]<gmmugmj_v>hmm no
[00:01]<drgys_> --------- ---- -------
[00:01]<drgys_> print$ Disk Printer Drivers
[00:01]<drgys_>Domain=[SERVER] OS=[Unix] Server=[Samba 3.0.22]
[00:01]<drgys_> Server Comment
[00:01]<drgys_> --------- -------
[00:01]<drgys_> Workgroup Master
[00:01]<drgys_> --------- -------
[00:01]<drgys_> MSHOME SERVER
[00:01]<drgys_>so i dosnt share the home folder right?
[00:01]<gmmugmj_v>yes
[00:02]<gmmugmj_v>a home share doesnt exists
[00:05]<drgys_>ok it worsk
[00:06]<drgys_>edmundo_v: thanks for you time
[00:06]<drgys_>you should create a very small how to with all these 3 changes
[00:15]<srxjllr>hi!
[00:16]<gmmugmj_v>hi
[00:16]<srxjllr>just trying to upgrade from 2.2 to 3.0.22
[00:17]<srxjllr>copied all config files from the old server to new
[00:17]<srxjllr>login from my windows client to the DC is working fine
[00:19]<srxjllr>if I go to another windows client and try to login with my user to the DC I get this error message:
[00:19]<srxjllr>net_sam_logon: creds_server_step failed. Rejecting auth request from client UREW-PCSCHOPPA2 machine account UREW-PCSCHOPPA2$
[00:20]<srxjllr> check_ntlm_password: authentication for user [pgeorges] -> [pgeorges] -> [pgeorges] succeeded
[00:20]<srxjllr>there seems something wrong with the machine accounts
[00:21]<gmmugmj_v>did you changed the netbios name of the server? have you verified if the domain SID remains the same?
[00:23]<srxjllr>Server has the same IP, same Server Name, same netbios name, and same sit
[00:24]<srxjllr>the funny thing is that I can login the DC, but only from machines have already logged in with my user
[00:25]<gmmugmj_v>have you copied .tdb files as well?
[00:25]<srxjllr>eg. I can login with my account from my machine and from another machine, but not from a machine, which is also in the Domain, but I did not logged in from before
[00:26]<srxjllr>.tdb files in samba 2.2 ???
[00:26]<gmmugmj_v>yes
[00:26]<srxjllr>ahhhhhhhhhhhh!!!!
[00:27]<srxjllr>:)
[00:27]<srxjllr>ok ok ok !!!!
[00:27]<srxjllr>hu!
[00:28]<srxjllr>which .tdb file form the old server is it?
[00:28]<srxjllr>there are some under /var/run and /var/lib
[00:28]<gmmugmj_v>account_policy.tdb
[00:29]<gmmugmj_v>printer related files (if you use printer drivers)
[00:29]<gmmugmj_v>winbind related files (if you use winbind)
[00:30]<gmmugmj_v>share_info.tdb too
[00:30]<gmmugmj_v>for share ACLs
[00:30]<srxjllr>dont have a account_policy.tdb but a /var/lib/samba/secrets.tdb
[00:30]<gmmugmj_v>I thinks besides account policy, the others arent REALLY needed
[00:30]<2yvvylnz>I noticed something interesting with my samba domain server using ldap for authentication: When I take myself out of a group that has permissions to a folder on the server, I can still go into that folder. If I reset my net connections on my xp machine by dropping to dos and typing "net use /delete *" and I try to go back to that directory, I am correctly denied. Is that how it should be?
[00:31]<srxjllr>/var/lib/samba/secrets.tdb
[00:31]<srxjllr>/var/lib/samba/ntdrivers.tdb
[00:31]<srxjllr>/var/lib/samba/ntprinters.tdb
[00:31]<srxjllr>/var/lib/samba/ntforms.tdb
[00:31]<srxjllr>/var/lib/samba/share_info.tdb
[00:31]<srxjllr>/var/cache/samba/printing.tdb
[00:31]<srxjllr>/var/run/samba/messages.tdb
[00:31]<srxjllr>/var/run/samba/connections.tdb
[00:31]<srxjllr>/var/run/samba/brlock.tdb
[00:31]<srxjllr>/var/run/samba/locking.tdb
[00:31]<srxjllr>/var/run/samba/sessionid.tdb
[00:31]<srxjllr>/var/run/samba/unexpected.tdb
[00:31]<srxjllr>thats what I have
[00:31]<srxjllr>on the old machine
[00:33]<gmmugmj_v>schoppa, locate doesnt find any file like account(something).tdb?
[00:33]<srxjllr>edmundo_v: I used find / name *.tdb
[00:33]<gmmugmj_v>bitviper, samba maps the rights on logon, its right, its not readed again
[00:36]<srxjllr>the old server is a samba 2.2.3a-15 (debian woody)
[00:37]<||aw>bitviper: because windows caches and samba does not hook to the auth backend to reverify all connections for every change
[00:37]<2yvvylnz>->edmundo_v: Are you saying that any permission changes to a file directory are not seen by an xp workstation until after it reboots?
[00:37]<||aw>bitviper: however, if you remover file permissions, those are checked on the fly
[00:37]<gmmugmj_v>schoppa, should exist a file that holds the accounts SIDS
[00:38]<2yvvylnz>-> ||cw interesting
[00:38]<2yvvylnz>I reinstalled samba 3 times because I didn't know that :)
[00:38]<gmmugmj_v>bitviper, no, changes in accounts are not seen until it logout and logon again
[00:39]<srxjllr>Okay, If I find that file, where do I have to copy it on the new server and what name?
[00:40]<gmmugmj_v>schoppa, the samba howto have chapters on migration that shows that file
[00:40]<gmmugmj_v>it should be in the same place
[00:40]<gmmugmj_v>I dont remeber where it should be, I dont use samba 2 by years
[00:42]<gmmugmj_v>schoppa, in /var/lib/samba on the old server, theres any other files?
[00:43]<srxjllr>no just the above files
[00:44]<gmmugmj_v>which backend is beeing used?
[00:44]<2yvvylnz>Do I have to mount a partition with the acl option to do all the directory permissions from xp?
[00:44]<srxjllr>what to you mean by backend, sorry don t understand
[00:45]<srxjllr>btw: where do I put the machine SID?
[00:46]<srxjllr>ist still a file MACHINE.SID in /etc/samba/
[00:47]<gmmugmj_v>you can use smbpasswd or ldap as backends
[00:47]<gmmugmj_v>MACHINE.SID?
[00:47]<srxjllr>I use smbpasswd
[00:48]<srxjllr>and my MACHINE SID is stored in /etc/samba/MACHINE.SID
[00:50]<gmmugmj_v>for a pdv machine sid = domain sid
[00:50]<gmmugmj_v>pdc
[00:52]<srxjllr>so I do not need a file /etc/samba/MACHINE.SID with content like S-1-5-21-3587448769-1491850085-4204879603
[00:52]<zrprnf-na>I just use smbldap-installer so use samba with ldap for authentication.
[00:52]<zrprnf-na>When I run a command like smbpassword I get this error:
[00:52]<zrprnf-na>Got too many (2) domain info entries for domain UIOGALARZA
[00:57]<||aw>ew, that's not good
