Alex Murphy
2003-Apr-02 06:03 UTC
[Samba] migration of samba 3.22a to Samba 3.23a - 2 possible bugs
How do you do !!! Pereshel with samba 3.22a on samba 3.23a (for support LDAP mapping group), did not change the config file - has installed in the same directory, has noticed 2 possible bugs: 1. after performing root# pdbedit -i tdbsam -e ldapsam -g the groups were orderly exported in LDAP directory, but with full absence privelege: [root@bene bin]# ./smbgroupedit -l ldapsam_open_connection: connection opened ldap_connect_system: succesful connection to the LDAP server ldapsam_setsampwent: 12 entries in the base! Entry found for group: 1002 Attribute description not found .... System Operators SID : S-1-5-32-549 Unix group: System Operators Group type: Domain group Comment : Privilege : No privilege Replicators SID : S-1-5-32-552 Unix group: Replicators Group type: Domain group Comment : Privilege : No privilege Guests SID : S-1-5-32-546 Unix group: Guests Group type: Domain group Comment : Privilege : No privilege Domain Admins SID : S-1-5-21-1174496667-1382807048-3288504375-512 Unix group: Domain Admins Group type: Domain group Comment : Privilege : No privilege Domain Guests SID : S-1-5-21-1174496667-1382807048-3288504375-514 Unix group: Domain Guests Group type: Domain group Comment : Privilege : No privilege Power Users SID : S-1-5-32-547 Unix group: Power Users Group type: Domain group Comment : Privilege : No privilege Print Operators SID : S-1-5-32-550 Unix group: Print Operators Group type: Domain group Comment : Privilege : No privilege Administrators SID : S-1-5-32-544 Unix group: Administrators Group type: Domain group Comment : Privilege : No privilege Account Operators SID : S-1-5-32-548 Unix group: Account Operators Group type: Domain group Comment : Privilege : No privilege Domain Users SID : S-1-5-21-1174496667-1382807048-3288504375-513 Unix group: Domain Users Group type: Domain group Comment : Privilege : No privilege Backup Operators SID : S-1-5-32-551 Unix group: Backup Operators Group type: Domain group Comment : Privilege : No privilege Users SID : S-1-5-32-545 Unix group: Users Group type: Domain group Comment : Privilege : No privilege As be ? Privelege do not allow to use these groups for conferring user authority manager and etc. 2. On samba 3.22a user could remove attribut Read with file or files, now file ALWAYS ReadOnly i.e. attribut Read to remove not possible - that to do ?