hi
i'm working with samba3.0rc2
no probs
but i have i question concerning id-mapping
i authenticate all users with ldap, works
but i always need a samba user in ldap, with sid
sid S-1-5-21-1042031166-387543594-2118856591-501
if i don't have it, i get an error during logon with winxp, that the
domain controller could not be found or i have a non-existent account,
which is not correct !!!
so i greped through the logs and found something useful:
samba is first looking for a user with UID501 (i called him "guest")
if it founds it, it is looking for the requested NT user an succeeds
is it because of the IPC$ service?
i hope you understand my question ....
THX
and here the example
my idmap.tdb says something like
SID=S-1-5-21-1042031166-387543594-2118856591-501.UID 65534.BT
for example (see log)
user: gasch
uid: 503
gid: 500
rid: 2006
grid: 2001
=> LOG
make_user_info_map: Mapping user []\[] from workstation [WINXP]
[2003/09/26 21:39:03, 5] auth/auth_util.c:make_user_info(121)
attempting to make a user_info for ()
[2003/09/26 21:39:03, 5] auth/auth_util.c:make_user_info(131)
making strings for 's user_info struct
[2003/09/26 21:39:03, 5] auth/auth_util.c:make_user_info(173)
making blobs for 's user_info struct
[2003/09/26 21:39:03, 10] auth/auth_util.c:make_user_info(182)
made an encrypted user_info for ()
[2003/09/26 21:39:03, 3] auth/auth.c:check_ntlm_password(216)
check_ntlm_password: Checking password for unmapped user
[]\[]@[WINXP] with the new password interface
[2003/09/26 21:39:03, 3] auth/auth.c:check_ntlm_password(219)
check_ntlm_password: mapped user is: [TESTEVAN]\[]@[WINXP]
[2003/09/26 21:39:03, 10] auth/auth.c:check_ntlm_password(228)
check_ntlm_password: auth_context challenge created by random
[2003/09/26 21:39:03, 10] auth/auth.c:check_ntlm_password(230)
challenge is:
[2003/09/26 21:39:03, 5] lib/util.c:dump_data(1887)
[000] 2C 78 E5 FF 6D E6 DB AA ,x..m...
[2003/09/26 21:39:03, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2003/09/26 21:39:03, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2003/09/26 21:39:03, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_nt_user_token(490)
NT user token: (NULL)
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_unix_user_token(509)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2003/09/26 21:39:03, 2] passdb/pdb_ldap.c:ldapsam_search_suffix(685)
ldapsam_search_suffix: searching
for:[(&(sambaSID=S-1-5-21-1042031166-387543594-2118856591-501)(objectclass=sambaSamAccount))]
[2003/09/26 21:39:03, 5] passdb/pdb_ldap.c:ldapsam_open(457)
ldapsam_open: already connected to the LDAP server
[2003/09/26 21:39:03, 2] passdb/pdb_ldap.c:init_sam_from_ldap(1596)
Entry found for user: guest
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_username(577)
pdb_set_username: setting username guest, was
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 11 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_domain(604)
pdb_set_domain: setting domain TESTEVAN, was
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_nt_username(631)
pdb_set_nt_username: setting nt username guest, was
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 14 -> now SET
[2003/09/26 21:39:03, 10]
passdb/pdb_get_set.c:pdb_set_user_sid_from_string(517)
pdb_set_user_sid_from_string: setting user sid
S-1-5-21-1042031166-387543594-2118856591-501
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_user_sid(504)
pdb_set_user_sid: setting user sid
S-1-5-21-1042031166-387543594-2118856591-501
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 17 -> now SET
[2003/09/26 21:39:03, 10]
passdb/pdb_get_set.c:pdb_set_group_sid_from_string(552)
pdb_set_group_sid_from_string: setting group sid
S-1-5-21-1042031166-387543594-2118856591-2001
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_group_sid(540)
pdb_set_group_sid: setting group sid
S-1-5-21-1042031166-387543594-2118856591-2001
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 18 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 20 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaLogonTime] = [<does not exist>]
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaLogoffTime] = [<does not exist>]
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaKickoffTime] = [<does not exist>]
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 8 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 9 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_fullname(658)
pdb_set_full_name: setting full name guest, was
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 12 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaHomeDrive] = [<does not exist>]
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_dir_drive(739)
pdb_set_dir_drive: setting dir drive , was NULL
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaHomePath] = [<does not exist>]
[2003/09/26 21:39:03, 4] lib/substitute.c:automount_server(305)
Home server: linux
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_homedir(766)
pdb_set_homedir: setting home dir \\linux\guest, was
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaLogonScript] = [<does not exist>]
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_logon_script(685)
pdb_set_logon_script: setting logon script , was
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaProfilePath] = [<does not exist>]
[2003/09/26 21:39:03, 4] lib/substitute.c:automount_server(305)
Home server: linux
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_profile_path(712)
pdb_set_profile_path: setting profile path \\linux\guest\profile, was
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [description] = [<does not exist>]
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaUserWorkstations] = [<does not exist>]
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 30 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 31 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 19 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 15 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 16 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 25 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 26 -> now SET
[2003/09/26 21:39:03, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_uid(219)
sid_to_uid: sid = [S-1-5-21-1042031166-387543594-2118856591-501]
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_uid(231)
sid_to_uid: uid = [65534]
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_gid(277)
sid_to_gid: sid = [S-1-5-21-1042031166-387543594-2118856591-2001]
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_gid(289)
sid_to_gid: gid = [500]
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_uid(219)
sid_to_uid: sid = [S-1-5-21-1042031166-387543594-2118856591-501]
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_uid(231)
sid_to_uid: uid = [65534]
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_gid(277)
sid_to_gid: sid = [S-1-5-21-1042031166-387543594-2118856591-2001]
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_gid(289)
sid_to_gid: gid = [500]
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_unix_user_token(509)
UNIX token of user 65534
Primary group is 500 and contains 1 supplementary groups
Group[ 0]: 500
[2003/09/26 21:39:03, 10] sam/idmap_util.c:gid_to_sid(181)
gid_to_sid: gid = [500]
[2003/09/26 21:39:03, 10] auth/auth_util.c:debug_nt_user_token(495)
NT user token of user S-1-5-21-1042031166-387543594-2118856591-501
contains 5 SIDs
SID[ 0]: S-1-5-21-1042031166-387543594-2118856591-501
SID[ 1]: S-1-5-21-1042031166-387543594-2118856591-2001
SID[ 2]: S-1-1-0
SID[ 3]: S-1-5-2
SID[ 4]: S-1-5-32-546
[2003/09/26 21:39:03, 5] auth/auth_util.c:make_server_info_sam(792)
make_server_info_sam: made server info for user guest
[2003/09/26 21:39:03, 3] auth/auth.c:check_ntlm_password(253)
check_ntlm_password: guest authentication for user [] suceeded
[2003/09/26 21:39:03, 5] auth/auth.c:check_ntlm_password(288)
check_ntlm_password: guest authentication for user [] -> [] ->
[guest] suceeded
[2003/09/26 21:39:03, 5] auth/auth_util.c:free_user_info(1086)
attempting to free (and zero) a user_info structure
[2003/09/26 21:39:03, 10] auth/auth_util.c:free_user_info(1089)
structure was created for
[2003/09/26 21:39:03, 10] smbd/password.c:register_vuid(138)
register_vuid: allocated vuid = 104
[2003/09/26 21:39:03, 10] smbd/password.c:register_vuid(199)
register_vuid: (65534,500) guest TESTEVAN guest=1
[2003/09/26 21:39:03, 3] smbd/password.c:register_vuid(201)
User name: guest Real name: guest
[2003/09/26 21:39:03, 3] smbd/password.c:register_vuid(219)
UNIX uid 65534 is UNIX user guest, and will be vuid 104
[2003/09/26 21:39:03, 6] lib/util_sock.c:write_socket(407)
write_socket(19,118)
[2003/09/26 21:39:03, 6] lib/util_sock.c:write_socket(410)
write_socket(19,118) wrote 118
[2003/09/26 21:39:03, 10]
lib/util_sock.c:read_smb_length_return_keepalive(463)
got smb length of 41
[2003/09/26 21:39:03, 6] smbd/process.c:process_smb(881)
got message type 0x0 of len 0x29
[2003/09/26 21:39:03, 3] smbd/process.c:process_smb(882)
Transaction 455 of length 45
[2003/09/26 21:39:03, 5] lib/util.c:show_msg(456)
[2003/09/26 21:39:03, 5] lib/util.c:show_msg(466)
size=41
smb_com=0x4
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=24
smb_flg2=51207
smb_tid=1
smb_pid=65279
smb_uid=100
smb_mid=29056
smt_wct=3
smb_vwv[ 0]=29098 (0x71AA)
smb_vwv[ 1]=65535 (0xFFFF)
smb_vwv[ 2]=65535 (0xFFFF)
smb_bcc=0
[2003/09/26 21:39:03, 3] smbd/process.c:switch_message(676)
switch message SMBclose (pid 1051)
[2003/09/26 21:39:03, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (65534, 500) - sec_ctx_stack_ndx = 0
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_nt_user_token(495)
NT user token of user S-1-5-21-1042031166-387543594-2118856591-501
contains 5 SIDs
SID[ 0]: S-1-5-21-1042031166-387543594-2118856591-501
SID[ 1]: S-1-5-21-1042031166-387543594-2118856591-2001
SID[ 2]: S-1-1-0
SID[ 3]: S-1-5-2
SID[ 4]: S-1-5-32-546
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_unix_user_token(509)
UNIX token of user 65534
Primary group is 500 and contains 1 supplementary groups
Group[ 0]: 500
[2003/09/26 21:39:03, 5] smbd/uid.c:change_to_user(203)
change_to_user uid=(0,65534) gid=(0,500)
[2003/09/26 21:39:03, 4] smbd/vfs.c:vfs_ChDir(611)
vfs_ChDir to /tmp
[2003/09/26 21:39:03, 4] rpc_server/srv_pipe_hnd.c:get_rpc_pipe(1149)
search for pipe pnum=71aa
[2003/09/26 21:39:03, 5] rpc_server/srv_pipe_hnd.c:get_rpc_pipe(1153)
pipe name NETLOGON pnum=71aa (pipes_open=1)
[2003/09/26 21:39:03, 5] smbd/pipes.c:reply_pipe_close(258)
reply_pipe_close: pnum:71aa
[2003/09/26 21:39:03, 10] rpc_server/srv_lsa_hnd.c:close_policy_by_pipe(235)
close_policy_by_pipe: deleted handle list for pipe NETLOGON
[2003/09/26 21:39:03, 4] rpc_server/srv_pipe_hnd.c:close_rpc_pipe_hnd(1081)
closed pipe name NETLOGON pnum=71aa (pipes_open=0)
[2003/09/26 21:39:03, 5] lib/util.c:show_msg(456)
[2003/09/26 21:39:03, 5] lib/util.c:show_msg(466)
size=35
smb_com=0x4
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=51201
smb_tid=1
smb_pid=65279
smb_uid=100
smb_mid=29056
smt_wct=0
smb_bcc=0
[2003/09/26 21:39:03, 6] lib/util_sock.c:write_socket(407)
write_socket(19,39)
[2003/09/26 21:39:03, 6] lib/util_sock.c:write_socket(410)
write_socket(19,39) wrote 39
[2003/09/26 21:39:03, 10]
lib/util_sock.c:read_smb_length_return_keepalive(463)
got smb length of 76
[2003/09/26 21:39:03, 6] smbd/process.c:process_smb(881)
got message type 0x0 of len 0x4c
[2003/09/26 21:39:03, 3] smbd/process.c:process_smb(882)
Transaction 456 of length 80
[2003/09/26 21:39:03, 5] lib/util.c:show_msg(456)
[2003/09/26 21:39:03, 5] lib/util.c:show_msg(466)
size=76
smb_com=0x75
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=24
smb_flg2=51207
smb_tid=0
smb_pid=65279
smb_uid=104
smb_mid=29121
smt_wct=4
smb_vwv[ 0]= 255 (0xFF)
smb_vwv[ 1]= 76 (0x4C)
smb_vwv[ 2]= 8 (0x8)
smb_vwv[ 3]= 1 (0x1)
smb_bcc=33
[2003/09/26 21:39:03, 10] lib/util.c:dump_data(1887)
[000] 00 5C 00 5C 00 4C 00 49 00 4E 00 55 00 58 00 5C .\.\.L.I .N.U.X.\
[010] 00 49 00 50 00 43 00 24 00 00 00 3F 3F 3F 3F 3F .I.P.C.$ ...?????
[020] 00 .
[2003/09/26 21:39:03, 3] smbd/process.c:switch_message(676)
switch message SMBtconX (pid 1051)
[2003/09/26 21:39:03, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_nt_user_token(490)
NT user token: (NULL)
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_unix_user_token(509)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2003/09/26 21:39:03, 5] smbd/uid.c:change_to_root_user(218)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2003/09/26 21:39:03, 4] smbd/reply.c:reply_tcon_and_X(260)
Client requested device type [?????] for share [IPC$]
[2003/09/26 21:39:03, 5] smbd/service.c:make_connection(853)
making a connection to 'normal' service ipc$
[2003/09/26 21:39:03, 5] lib/username.c:Get_Pwnam(288)
Finding user guest
[2003/09/26 21:39:03, 5] lib/username.c:Get_Pwnam_internals(223)
Trying _Get_Pwnam(), username as lowercase is guest
[2003/09/26 21:39:03, 5] lib/username.c:Get_Pwnam_internals(239)
Trying _Get_Pwnam(), username as uppercase is GUEST
[2003/09/26 21:39:03, 5] lib/username.c:Get_Pwnam_internals(247)
Checking combinations of 0 uppercase letters in guest
[2003/09/26 21:39:03, 5] lib/username.c:Get_Pwnam_internals(251)
Get_Pwnam_internals didn't find user [guest]!
[2003/09/26 21:39:03, 3] smbd/service.c:make_connection_snum(534)
Connect path is '/tmp' for service [IPC$]
[2003/09/26 21:39:03, 4] rpc_server/srv_srvsvc_nt.c:get_share_security(217)
get_share_security: using default secdesc for IPC$
[2003/09/26 21:39:03, 10] lib/util_seaccess.c:se_map_generic(192)
se_map_generic(): mapped mask 0x10000000 to 0x001f01ff
[2003/09/26 21:39:03, 10] lib/util_seaccess.c:se_access_check(250)
se_access_check: requested access 0x00000002, for NT token with 5
entries and first sid S-1-5-21-1042031166-387543594-2118856591-501.
[2003/09/26 21:39:03, 3] lib/util_seaccess.c:se_access_check(267)
[2003/09/26 21:39:03, 3] lib/util_seaccess.c:se_access_check(268)
se_access_check: user sid is S-1-5-21-1042031166-387543594-2118856591-501
se_access_check: also S-1-5-21-1042031166-387543594-2118856591-2001
se_access_check: also S-1-1-0
se_access_check: also S-1-5-2
se_access_check: also S-1-5-32-546
se_access_check: ACE 0: type 0, flags = 0x00, SID = S-1-1-0 mask =
101f01ff, current desired = 2
[2003/09/26 21:39:03, 5] lib/util_seaccess.c:se_access_check(325)
se_access_check: access (2) granted.
[2003/09/26 21:39:03, 3] smbd/vfs.c:vfs_init_default(201)
Initialising default vfs hooks
[2003/09/26 21:39:03, 5] smbd/connection.c:claim_connection(170)
claiming IPC$ 0
[2003/09/26 21:39:03, 4] rpc_server/srv_srvsvc_nt.c:get_share_security(217)
get_share_security: using default secdesc for IPC$
[2003/09/26 21:39:03, 10] lib/util_seaccess.c:se_map_generic(192)
se_map_generic(): mapped mask 0x10000000 to 0x001f01ff
[2003/09/26 21:39:03, 10] lib/util_seaccess.c:se_access_check(250)
se_access_check: requested access 0x00000001, for NT token with 5
entries and first sid S-1-5-21-1042031166-387543594-2118856591-501.
[2003/09/26 21:39:03, 3] lib/util_seaccess.c:se_access_check(267)
[2003/09/26 21:39:03, 3] lib/util_seaccess.c:se_access_check(268)
se_access_check: user sid is S-1-5-21-1042031166-387543594-2118856591-501
se_access_check: also S-1-5-21-1042031166-387543594-2118856591-2001
se_access_check: also S-1-1-0
se_access_check: also S-1-5-2
se_access_check: also S-1-5-32-546
se_access_check: ACE 0: type 0, flags = 0x00, SID = S-1-1-0 mask =
101f01ff, current desired = 1
[2003/09/26 21:39:03, 5] lib/util_seaccess.c:se_access_check(325)
se_access_check: access (1) granted.
[2003/09/26 21:39:03, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (65534, 500) - sec_ctx_stack_ndx = 0
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_nt_user_token(495)
NT user token of user S-1-5-21-1042031166-387543594-2118856591-501
contains 5 SIDs
SID[ 0]: S-1-5-21-1042031166-387543594-2118856591-501
SID[ 1]: S-1-5-21-1042031166-387543594-2118856591-2001
SID[ 2]: S-1-1-0
SID[ 3]: S-1-5-2
SID[ 4]: S-1-5-32-546
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_unix_user_token(509)
UNIX token of user 65534
Primary group is 500 and contains 1 supplementary groups
Group[ 0]: 500
[2003/09/26 21:39:03, 5] smbd/uid.c:change_to_user(203)
change_to_user uid=(0,65534) gid=(0,500)
[2003/09/26 21:39:03, 3] smbd/service.c:make_connection_snum(690)
winxp (10.0.0.128) connect to service IPC$ initially as user guest
(uid=65534, gid=500) (pid 1051)
[2003/09/26 21:39:03, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_nt_user_token(490)
NT user token: (NULL)
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_unix_user_token(509)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2003/09/26 21:39:03, 5] smbd/uid.c:change_to_root_user(218)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2003/09/26 21:39:03, 3] smbd/reply.c:reply_tcon_and_X(308)
tconX service=IPC$
[2003/09/26 21:39:03, 5] lib/util.c:show_msg(456)
[2003/09/26 21:39:03, 5] lib/util.c:show_msg(466)
size=48
smb_com=0x75
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=136
smb_flg2=51201
smb_tid=2
smb_pid=65279
smb_uid=104
smb_mid=29121
smt_wct=3
smb_vwv[ 0]= 255 (0xFF)
smb_vwv[ 1]= 0 (0x0)
smb_vwv[ 2]= 1 (0x1)
smb_bcc=7
[2003/09/26 21:39:03, 10] lib/util.c:dump_data(1887)
[000] 49 50 43 00 00 00 00 IPC....
[2003/09/26 21:39:03, 6] lib/util_sock.c:write_socket(407)
write_socket(19,52)
[2003/09/26 21:39:03, 6] lib/util_sock.c:write_socket(410)
write_socket(19,52) wrote 52
[2003/09/26 21:39:03, 10]
lib/util_sock.c:read_smb_length_return_keepalive(463)
got smb length of 240
[2003/09/26 21:39:03, 6] smbd/process.c:process_smb(881)
got message type 0x0 of len 0xf0
[2003/09/26 21:39:03, 3] smbd/process.c:process_smb(882)
Transaction 457 of length 244
[2003/09/26 21:39:03, 5] lib/util.c:show_msg(456)
[2003/09/26 21:39:03, 5] lib/util.c:show_msg(466)
size=240
smb_com=0x73
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=24
smb_flg2=51207
smb_tid=0
smb_pid=65279
smb_uid=0
smb_mid=29185
smt_wct=12
smb_vwv[ 0]= 255 (0xFF)
smb_vwv[ 1]= 240 (0xF0)
smb_vwv[ 2]=16644 (0x4104)
smb_vwv[ 3]= 50 (0x32)
smb_vwv[ 4]= 1 (0x1)
smb_vwv[ 5]= 0 (0x0)
smb_vwv[ 6]= 0 (0x0)
smb_vwv[ 7]= 79 (0x4F)
smb_vwv[ 8]= 0 (0x0)
smb_vwv[ 9]= 0 (0x0)
smb_vwv[10]= 212 (0xD4)
smb_vwv[11]=40960 (0xA000)
smb_bcc=181
[2003/09/26 21:39:03, 10] lib/util.c:dump_data(1887)
[000] 60 4D 06 06 2B 06 01 05 05 02 A0 43 30 41 A0 0E `M..+... ...C0A..
[010] 30 0C 06 0A 2B 06 01 04 01 82 37 02 02 0A A2 2F 0...+... ..7..../
[020] 04 2D 4E 54 4C 4D 53 53 50 00 01 00 00 00 97 B2 .-NTLMSS P.......
[030] 08 E0 08 00 08 00 25 00 00 00 05 00 05 00 20 00 ......%. ...... .
[040] 00 00 57 49 4E 58 50 54 45 53 54 45 56 41 4E 57 ..WINXPT ESTEVANW
[050] 00 69 00 6E 00 64 00 6F 00 77 00 73 00 20 00 32 .i.n.d.o .w.s. .2
[060] 00 30 00 30 00 32 00 20 00 32 00 36 00 30 00 30 .0.0.2. .2.6.0.0
[070] 00 20 00 53 00 65 00 72 00 76 00 69 00 63 00 65 . .S.e.r .v.i.c.e
[080] 00 20 00 50 00 61 00 63 00 6B 00 20 00 31 00 00 . .P.a.c .k. .1..
[090] 00 57 00 69 00 6E 00 64 00 6F 00 77 00 73 00 20 .W.i.n.d .o.w.s.
[0A0] 00 32 00 30 00 30 00 32 00 20 00 35 00 2E 00 31 .2.0.0.2 . .5...1
[0B0] 00 00 00 00 00 .....
[2003/09/26 21:39:03, 3] smbd/process.c:switch_message(676)
switch message SMBsesssetupX (pid 1051)
[2003/09/26 21:39:03, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_nt_user_token(490)
NT user token: (NULL)
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_unix_user_token(509)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2003/09/26 21:39:03, 5] smbd/uid.c:change_to_root_user(218)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2003/09/26 21:39:03, 3] smbd/sesssetup.c:reply_sesssetup_and_X(547)
wct=12 flg2=0xc807
[2003/09/26 21:39:03, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(445)
Doing spnego session setup
[2003/09/26 21:39:03, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(469)
NativeOS=[Windows 2002 2600 Service Pack 1] NativeLanMan=[Windows
2002 5.1]
[2003/09/26 21:39:03, 3] smbd/sesssetup.c:reply_spnego_negotiate(350)
Got OID 1 3 6 1 4 1 311 2 2 10
[2003/09/26 21:39:03, 3] smbd/sesssetup.c:reply_spnego_negotiate(357)
Got secblob of size 45
[2003/09/26 21:39:03, 5] auth/auth.c:make_auth_context_subsystem(448)
Making default auth method list for security=user, encrypt passwords
= yes
[2003/09/26 21:39:03, 5] auth/auth.c:load_auth_module(356)
load_auth_module: Attempting to find an auth method to match guest
[2003/09/26 21:39:03, 5] auth/auth.c:load_auth_module(381)
load_auth_module: auth method guest has a valid init
[2003/09/26 21:39:03, 5] auth/auth.c:load_auth_module(356)
load_auth_module: Attempting to find an auth method to match sam
[2003/09/26 21:39:03, 5] auth/auth.c:load_auth_module(381)
load_auth_module: auth method sam has a valid init
[2003/09/26 21:39:03, 3] libsmb/ntlmssp.c:debug_ntlmssp_flags(33)
Got NTLMSSP neg_flags=0xe008b297
NTLMSSP_NEGOTIATE_UNICODE
NTLMSSP_NEGOTIATE_OEM
NTLMSSP_REQUEST_TARGET
NTLMSSP_NEGOTIATE_SIGN
NTLMSSP_NEGOTIATE_LM_KEY
NTLMSSP_NEGOTIATE_NTLM
NTLMSSP_NEGOTIATE_DOMAIN_SUPPLIED
NTLMSSP_NEGOTIATE_WORKSTATION_SUPPLIED
NTLMSSP_NEGOTIATE_ALWAYS_SIGN
NTLMSSP_NEGOTIATE_NTLM2
NTLMSSP_NEGOTIATE_128
NTLMSSP_NEGOTIATE_KEY_EXCH
[2003/09/26 21:39:03, 5] auth/auth.c:get_ntlm_challenge(93)
auth_get_challenge: module guest did not want to specify a challenge
[2003/09/26 21:39:03, 5] auth/auth.c:get_ntlm_challenge(93)
auth_get_challenge: module sam did not want to specify a challenge
[2003/09/26 21:39:03, 5] auth/auth.c:get_ntlm_challenge(132)
auth_context challenge created by random
[2003/09/26 21:39:03, 5] auth/auth.c:get_ntlm_challenge(133)
challenge is:
[2003/09/26 21:39:03, 5] lib/util.c:dump_data(1887)
[000] 05 E6 76 31 C4 E7 8F 58 ..v1...X
[2003/09/26 21:39:03, 6] lib/util_sock.c:write_socket(407)
write_socket(19,282)
[2003/09/26 21:39:03, 6] lib/util_sock.c:write_socket(410)
write_socket(19,282) wrote 282
[2003/09/26 21:39:03, 10]
lib/util_sock.c:read_smb_length_return_keepalive(463)
got smb length of 322
[2003/09/26 21:39:03, 6] smbd/process.c:process_smb(881)
got message type 0x0 of len 0x142
[2003/09/26 21:39:03, 3] smbd/process.c:process_smb(882)
Transaction 458 of length 326
[2003/09/26 21:39:03, 5] lib/util.c:show_msg(456)
[2003/09/26 21:39:03, 5] lib/util.c:show_msg(466)
size=322
smb_com=0x73
smb_rcls=0
smb_reh=0
smb_err=0
smb_flg=24
smb_flg2=51207
smb_tid=0
smb_pid=65279
smb_uid=0
smb_mid=29249
smt_wct=12
smb_vwv[ 0]= 255 (0xFF)
smb_vwv[ 1]= 322 (0x142)
smb_vwv[ 2]=16644 (0x4104)
smb_vwv[ 3]= 50 (0x32)
smb_vwv[ 4]= 1 (0x1)
smb_vwv[ 5]= 0 (0x0)
smb_vwv[ 6]= 0 (0x0)
smb_vwv[ 7]= 160 (0xA0)
smb_vwv[ 8]= 0 (0x0)
smb_vwv[ 9]= 0 (0x0)
smb_vwv[10]= 212 (0xD4)
smb_vwv[11]=40960 (0xA000)
smb_bcc=263
[2003/09/26 21:39:03, 10] lib/util.c:dump_data(1887)
[000] A1 81 9D 30 81 9A A2 81 97 04 81 94 4E 54 4C 4D ...0.... ....NTLM
[010] 53 53 50 00 03 00 00 00 18 00 18 00 64 00 00 00 SSP..... ....d...
[020] 18 00 18 00 7C 00 00 00 10 00 10 00 40 00 00 00 ....|... ....@...
[030] 0A 00 0A 00 50 00 00 00 0A 00 0A 00 5A 00 00 00 ....P... ....Z...
[040] 00 00 00 00 94 00 00 00 15 02 80 20 54 00 45 00 ........ ... T.E.
[050] 53 00 54 00 45 00 56 00 41 00 4E 00 67 00 61 00 S.T.E.V. A.N.g.a.
[060] 73 00 63 00 68 00 57 00 49 00 4E 00 58 00 50 00 s.c.h.W. I.N.X.P.
[070] D2 99 5A 19 40 AE 52 4F 5E E0 96 7A 17 39 69 F3 ..Z.@.RO ^..z.9i.
[080] 8E ED 4C BC 58 9A 07 8A F3 28 2D 5E C4 17 D6 EB ..L.X... .(-^....
[090] D3 C4 9D 52 86 70 11 20 BD 56 E2 6F BF 47 1C F6 ...R.p. .V.o.G..
[0A0] 00 57 00 69 00 6E 00 64 00 6F 00 77 00 73 00 20 .W.i.n.d .o.w.s.
[0B0] 00 32 00 30 00 30 00 32 00 20 00 32 00 36 00 30 .2.0.0.2 . .2.6.0
[0C0] 00 30 00 20 00 53 00 65 00 72 00 76 00 69 00 63 .0. .S.e .r.v.i.c
[0D0] 00 65 00 20 00 50 00 61 00 63 00 6B 00 20 00 31 .e. .P.a .c.k. .1
[0E0] 00 00 00 57 00 69 00 6E 00 64 00 6F 00 77 00 73 ...W.i.n .d.o.w.s
[0F0] 00 20 00 32 00 30 00 30 00 32 00 20 00 35 00 2E . .2.0.0 .2. .5..
[100] 00 31 00 00 00 00 00 .1.....
[2003/09/26 21:39:03, 3] smbd/process.c:switch_message(676)
switch message SMBsesssetupX (pid 1051)
[2003/09/26 21:39:03, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_nt_user_token(490)
NT user token: (NULL)
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_unix_user_token(509)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2003/09/26 21:39:03, 5] smbd/uid.c:change_to_root_user(218)
change_to_root_user: now uid=(0,0) gid=(0,0)
[2003/09/26 21:39:03, 3] smbd/sesssetup.c:reply_sesssetup_and_X(547)
wct=12 flg2=0xc807
[2003/09/26 21:39:03, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(445)
Doing spnego session setup
[2003/09/26 21:39:03, 3] smbd/sesssetup.c:reply_sesssetup_and_X_spnego(469)
NativeOS=[Windows 2002 2600 Service Pack 1] NativeLanMan=[Windows
2002 5.1]
[2003/09/26 21:39:03, 3] libsmb/ntlmssp.c:ntlmssp_server_auth(284)
Got user=[gasch] domain=[TESTEVAN] workstation=[WINXP] len1=24 len2=24
[2003/09/26 21:39:03, 6] param/loadparm.c:lp_file_list_changed(2612)
lp_file_list_changed()
file /etc/samba/smb.conf -> /etc/samba/smb.conf last mod_time: Thu
Sep 4 19:43:33 2003
[2003/09/26 21:39:03, 5] auth/auth_util.c:make_user_info_map(205)
make_user_info_map: Mapping user [TESTEVAN]\[gasch] from workstation
[WINXP]
[2003/09/26 21:39:03, 2] passdb/pdb_ldap.c:ldapsam_search_suffix(685)
ldapsam_search_suffix: searching
for:[(&(&(objectclass=sambaSamAccount)(uid=gasch))(objectclass=sambaSamAccount))]
[2003/09/26 21:39:03, 5] passdb/pdb_ldap.c:ldapsam_open(457)
ldapsam_open: already connected to the LDAP server
[2003/09/26 21:39:03, 2] passdb/pdb_ldap.c:init_sam_from_ldap(1596)
Entry found for user: gasch
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_username(577)
pdb_set_username: setting username gasch, was
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 11 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_domain(604)
pdb_set_domain: setting domain TESTEVAN, was
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_nt_username(631)
pdb_set_nt_username: setting nt username gasch, was
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 14 -> now SET
[2003/09/26 21:39:03, 10]
passdb/pdb_get_set.c:pdb_set_user_sid_from_string(517)
pdb_set_user_sid_from_string: setting user sid
S-1-5-21-1042031166-387543594-2118856591-2006
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_user_sid(504)
pdb_set_user_sid: setting user sid
S-1-5-21-1042031166-387543594-2118856591-2006
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 17 -> now SET
[2003/09/26 21:39:03, 10]
passdb/pdb_get_set.c:pdb_set_group_sid_from_string(552)
pdb_set_group_sid_from_string: setting group sid
S-1-5-21-1042031166-387543594-2118856591-2001
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_group_sid(540)
pdb_set_group_sid: setting group sid
S-1-5-21-1042031166-387543594-2118856591-2001
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 18 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 20 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaLogonTime] = [<does not exist>]
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaLogoffTime] = [<does not exist>]
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaKickoffTime] = [<does not exist>]
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 8 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 9 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_fullname(658)
pdb_set_full_name: setting full name gasch, was
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 12 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaHomeDrive] = [<does not exist>]
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_dir_drive(739)
pdb_set_dir_drive: setting dir drive , was NULL
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaHomePath] = [<does not exist>]
[2003/09/26 21:39:03, 4] lib/substitute.c:automount_server(305)
Home server: linux
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_homedir(766)
pdb_set_homedir: setting home dir \\linux\gasch, was
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaLogonScript] = [<does not exist>]
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_logon_script(685)
pdb_set_logon_script: setting logon script , was
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaProfilePath] = [<does not exist>]
[2003/09/26 21:39:03, 4] lib/substitute.c:automount_server(305)
Home server: linux
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_profile_path(712)
pdb_set_profile_path: setting profile path \\linux\gasch\profile, was
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [description] = [<does not exist>]
[2003/09/26 21:39:03, 10] passdb/pdb_ldap.c:get_single_attribute(817)
get_single_attribute: [sambaUserWorkstations] = [<does not exist>]
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 30 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 31 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 19 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 15 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 16 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 25 -> now SET
[2003/09/26 21:39:03, 10] passdb/pdb_get_set.c:pdb_set_init_flags(477)
element 26 -> now SET
[2003/09/26 21:39:03, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/09/26 21:39:03, 4] auth/auth_sam.c:sam_password_ok(217)
sam_password_ok: Checking NT MD4 password
[2003/09/26 21:39:03, 4] auth/auth_sam.c:sam_account_ok(323)
sam_account_ok: Checking SMB password for user gasch
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_uid(219)
sid_to_uid: sid = [S-1-5-21-1042031166-387543594-2118856591-2006]
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_uid(231)
sid_to_uid: uid = [503]
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_gid(277)
sid_to_gid: sid = [S-1-5-21-1042031166-387543594-2118856591-2001]
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_gid(289)
sid_to_gid: gid = [500]
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_uid(219)
sid_to_uid: sid = [S-1-5-21-1042031166-387543594-2118856591-2006]
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_uid(231)
sid_to_uid: uid = [503]
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_gid(277)
sid_to_gid: sid = [S-1-5-21-1042031166-387543594-2118856591-2001]
[2003/09/26 21:39:03, 10] sam/idmap_util.c:sid_to_gid(289)
sid_to_gid: gid = [500]
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_unix_user_token(509)
UNIX token of user 503
Primary group is 500 and contains 1 supplementary groups
Group[ 0]: 500
[2003/09/26 21:39:03, 10] sam/idmap_util.c:gid_to_sid(181)
gid_to_sid: gid = [500]
[2003/09/26 21:39:03, 10] auth/auth_util.c:debug_nt_user_token(495)
NT user token of user S-1-5-21-1042031166-387543594-2118856591-2006
contains 5 SIDs
SID[ 0]: S-1-5-21-1042031166-387543594-2118856591-2006
SID[ 1]: S-1-5-21-1042031166-387543594-2118856591-2001
SID[ 2]: S-1-1-0
SID[ 3]: S-1-5-2
SID[ 4]: S-1-5-11
[2003/09/26 21:39:03, 5] auth/auth_util.c:make_server_info_sam(792)
make_server_info_sam: made server info for user gasch
[2003/09/26 21:39:03, 3] auth/auth.c:check_ntlm_password(253)
check_ntlm_password: sam authentication for user [gasch] suceeded
[2003/09/26 21:39:03, 3] smbd/sec_ctx.c:push_sec_ctx(256)
push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2003/09/26 21:39:03, 3] smbd/uid.c:push_conn_ctx(287)
push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2003/09/26 21:39:03, 3] smbd/sec_ctx.c:set_sec_ctx(288)
setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_nt_user_token(490)
NT user token: (NULL)
[2003/09/26 21:39:03, 5] auth/auth_util.c:debug_unix_user_token(509)
UNIX token of user 0
Primary group is 0 and contains 0 supplementary groups
[2003/09/26 21:39:03, 3] smbd/sec_ctx.c:pop_sec_ctx(386)
pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2003/09/26 21:39:03, 5] auth/auth.c:check_ntlm_password(275)
check_ntlm_password: PAM Account for user [gasch] suceeded
[2003/09/26 21:39:03, 2] auth/auth.c:check_ntlm_password(288)
check_ntlm_password: authentication for user [gasch] -> [gasch] ->
[gasch] suceeded
##################################################
smb.conf
# This is the main Samba configuration file. You should read the
# smb.conf(5) manual page in order to understand the options listed
# here. Samba has a huge number of configurable options (perhaps too
# many!) most of which are not shown in this example
#
# For a step to step guide on installing, configuring and using samba,
# read the Samba HOWTO Collection.
#
# Any line which starts with a ; (semi-colon) or a # (hash)
# is a comment and is ignored. In this example we will use a #
# for commentry and a ; for parts of the config file that you
# may wish to enable
#
# NOTE: Whenever you modify this file you should run the command
"testparm"
# to check that you have not made any basic syntactic errors.
#
#======================= Global Settings
====================================[global]
# workgroup = NT-Domain-Name or Workgroup-Name, eg: REDHAT4
workgroup = testevan
netbios name = linux
# server string is the equivalent of the NT Description field
server string = Samba Server
log level = 10
passdb backend = ldapsam:ldap://localhost:389
ldap suffix = dc=eva,dc=mpg,dc=de
ldap admin dn = cn=manager,dc=eva,dc=mpg,dc=de
ldap filter = (&(objectclass=sambaSamAccount)(uid=%u))
ldap machine suffix = ou=machines
ldap user suffix = ou=users
idmap backend = winbind
ldap idmap suffix = ou=idmap,dc=eva,dc=mpg,dc=de
# default=1000
# algorithmic rid base = 1000
idmap uid = 1000-5000
idmap gid = 1000-5000
# now alias for idmap
# winbind uid = 1000-5000
# winbind gid = 1000-5000
# winbind separator = +
# username map = /etc/samba/username.map
interfaces = eth0 lo
bind interfaces only = yes
# guest ok = no
# This option is important for security. It allows you to restrict
# connections to machines which are on your local network. The
# following example restricts access to two C class networks and
# the "loopback" interface. For more examples of the syntax see
# the smb.conf man page
; hosts allow = 192.168.1. 192.168.2. 127.
# If you want to automatically load your printer list rather
# than setting them up individually then you'll need this
load printers = yes
# you may wish to override the location of the printcap file
; printcap name = /etc/printcap
# on SystemV system setting printcap name to lpstat should allow
# you to automatically obtain a printer list from the SystemV spool
# system
; printcap name = lpstat
# It should not be necessary to specify the print system type unless
# it is non-standard. Currently supported print systems include:
# bsd, sysv, plp, lprng, aix, hpux, qnx, cups
; printing = bsd
# Uncomment this if you want a guest account, you must add this to
/etc/passwd
# otherwise the user "nobody" is used
; guest account = pcguest
# this tells Samba to use a separate log file for each machine
# that connects
log file = /var/lib/samba/log.%m
# Put a capping on the size of the log files (in Kb).
max log size = 50
# Security mode. Most people will want user level security. See
# security_level.txt for details.
security = user
# Use password server option only with security = server
# The argument list may include:
# password server = My_PDC_Name [My_BDC_Name] [My_Next_BDC_Name]
# or to auto-locate the domain controller/s
# password server = *
# password server = evanpdc
# Note: Do NOT use the now deprecated option of "domain controller"
# This option is no longer implemented.
# You may wish to use password encryption. Please read
# the 'User database' chapter in the Samba HOWTO Collection
# Do not enable this option unless you have read those documents
encrypt passwords = yes
# Using the following line enables you to customise your configuration
# on a per machine basis. The %m gets replaced with the netbios name
# of the machine that is connecting.
# Note: Consider carefully the location in the configuration file of
# this line. The included file is read at that point.
; include = /usr/local/samba/lib/smb.conf.%m
# Most people will find that this option gives better performance.
# See the chapter 'Samba performance issues' in the Samba HOWTO
Collection
# and the manual pages for details.
# You may want to add the following on a Linux system:
# SO_RCVBUF=8192 SO_SNDBUF=8192
socket options = SO_KEEPALIVE IPTOS_LOWDELAY TCP_NODELAY
# Configure Samba to use multiple interfaces
# If you have multiple network interfaces then you must list them
# here. See the man page for details.
; interfaces = 192.168.12.2/24 192.168.13.2/24
# Browser Control Options:
# set local master to no if you don't want Samba to become a master
# browser on your network. Otherwise the normal election rules apply
local master = yes
# OS Level determines the precedence of this server in master browser
# elections. The default value should be reasonable
os level = 33
# Domain Master specifies Samba to be the Domain Master Browser. This
# allows Samba to collate browse lists between subnets. Don't use this
# if you already have a Windows NT domain controller doing this job
domain master = yes
# Preferred Master causes Samba to force a local browser election on startup
# and gives it a slightly higher chance of winning the election
; preferred master = yes
# Enable this if you want Samba to be a domain logon server for
# Windows95 workstations.
domain logons = yes
# if you enable domain logons then you may want a per-machine or
# per user logon script
# run a specific logon batch file per workstation (machine)
; logon script = %m.bat
# run a specific logon batch file per username
; logon script = %U.bat
# Where to store roving profiles (only for Win95 and WinNT)
# %L substitutes for this servers netbios name, %U is username
# You must uncomment the [Profiles] share below
; logon path = \\%L\Profiles\%U
# Windows Internet Name Serving Support Section:
# WINS Support - Tells the NMBD component of Samba to enable it's WINS
Server
wins support = yes
# WINS Server - Tells the NMBD components of Samba to be a WINS Client
# Note: Samba can be either a WINS Server, or a WINS Client, but NOT both
# wins server = 10.0.0.1
# WINS Proxy - Tells Samba to answer name resolution queries on
# behalf of a non WINS capable client, for this to work there must be
# at least one WINS Server on the network. The default is NO.
; wins proxy = yes
# DNS Proxy - tells Samba whether or not to try to resolve NetBIOS names
# via DNS nslookups. The built-in default for versions 1.9.17 is yes,
# this has been changed in version 1.9.18 to no.
dns proxy = no
#============================ Share Definitions
=============================[homes]
browsable = no
writeable = yes
[IPC$]
path = /tmp
#[foedisch]
# comment = Home Directories
# browseable =yes
# valid users = foedisch
# writable = yes
# path = /home/foedisch
#[root]
# path = /root
# Un-comment the following and create the netlogon directory for Domain
Logons
[netlogon]
comment = Network Logon Service
path = /var/lib/samba/netlogon
guest ok = yes
writable = no
share modes = no
# Un-comment the following to provide a specific roving profile share
# the default is to use the user's home directory
;[Profiles]
; path = /usr/local/samba/profiles
; browseable = no
; guest ok = yes
# NOTE: If you have a BSD-style print system there is no need to
# specifically define each individual printer
[printers]
comment = All Printers
path = /usr/spool/samba
browseable = no
# Set public = yes to allow user 'guest account' to print
guest ok = no
writable = no
printable = yes
--
"Matrix - more than a vision"
**************************************************
Michael Gasch
Max Planck Institute for Evolutionary Anthropology
Deutscher Platz 6
04103 Leipzig
Germany
**************************************************