samba - Oct 2015 - Make a share owned by a service account available to members of an AD group

On 13/10/15 20:47, Tovey, Mark wrote:
>      I downloaded the source code for Samba 4.0.0, the same as is
distributed with my OS.  I applied the patch as described in Bug 9862, compiled
and installed the code, and now it works as expected.  Having the user account
in AD only is sufficient, I no longer have to have the account also in the Linux
server's passwd file.  So indeed, it appears that I have encountered the
"map to guest = Bad Uid" bug as outlined in bug 9862.
>      I will open a ticket with the OS vendor and request that they update
their distribution.  This will likely ripple upstream through all the rest of
the OS vendors and into the Samba base.
>      -Mark
>
>
>
You might want to point out to oracle that Samba 4.0 is now EOL, also 
the ripple goes the other way, from Samba down to distros. I also don't 
think that 4.0 will ever get this patch.

Rowland

Yeah, I thought they were a bit behind the curve by supplying 4.0 with the OS,
but then the OS itself is several years old too.  Maybe this will help make them
push out an updated version of Samba.  They have Samba 4.1 in the OEL7 release,
which is still a bit behind, but better.  Perhaps they will make that available
to OEL6 too.
    -Mark

________________________________________________________________
Mark Tovey - UNIX Engineer | Service Strategy & Design
UTi | 400 SW Sixth Ave, Suite 1100 | Portland | Oregon | 97204 | USA
MTovey at go2uti.com | O / C +1 503 953-1389

-----Original Message-----
From: samba [mailto:samba-bounces at lists.samba.org] On Behalf Of Rowland Penny
Sent: Tuesday, October 13, 2015 12:58 PM
To: samba at lists.samba.org
Subject: Re: [Samba] Make a share owned by a service account available to
members of an AD group

On 13/10/15 20:47, Tovey, Mark wrote:
>      I downloaded the source code for Samba 4.0.0, the same as is
distributed with my OS.  I applied the patch as described in Bug 9862, compiled
and installed the code, and now it works as expected.  Having the user account
in AD only is sufficient, I no longer have to have the account also in the Linux
server's passwd file.  So indeed, it appears that I have encountered the
"map to guest = Bad Uid" bug as outlined in bug 9862.
>      I will open a ticket with the OS vendor and request that they update
their distribution.  This will likely ripple upstream through all the rest of
the OS vendors and into the Samba base.
>      -Mark
>
>
>
You might want to point out to oracle that Samba 4.0 is now EOL, also the ripple
goes the other way, from Samba down to distros. I also don't think that 4.0
will ever get this patch.

Rowland

--
To unsubscribe from this list go to the following URL and read the
instructions:  https://lists.samba.org/mailman/options/samba

On 13/10/15 21:27, Tovey, Mark wrote:
>      Yeah, I thought they were a bit behind the curve by supplying 4.0 with
the OS, but then the OS itself is several years old too.  Maybe this will help
make them push out an updated version of Samba.  They have Samba 4.1 in the OEL7
release, which is still a bit behind, but better.  Perhaps they will make that
available to OEL6 too.
>      -Mark
>
>
I sort of doubt it, you do know that OEL is based on RHEL (as is Centos) 
and it will probably only ever have the packages and versions that RHEL 
has. This is one of the problems of using a so called 'Enterprise OS', 
they are 'Enterprise' because they only have old well tested packages. 
This leads to less bugs because most have already been found.

Rowland