search for: leggett

...lass: top objectClass: person objectClass: uidObject sn: samba_server cn: samba_server userPassword: <hidden> uid: samba_server dn: cn=Domain Admins,ou=group,dc=example,dc=com objectClass: posixGroup objectClass: top objectClass: sambaGroupMapping cn: Domain Admins gidNumber: 1011 memberUid: leggett sambaGroupType: 2 description: Windows Domain Administrators sambaSIDList: S-1-5-21-2230234512-1629394365-1821015051-3002 sambaSID: S-1-5-21-2230234512-1629394365-1821015051-512 dn: cn=Domain Users,ou=group,dc=example,dc=com objectClass: posixGroup objectClass: top objectClass: sambaGroupMapping c...

I have this config: # BL00070 - Disable NFS service {["nfs","nfslock","netfs","portmap"]: ensure => stopped, enable => false, } user {"rpc": ensure => absent, provider => "useradd" } user {"rpcuser": ensure => absent, provider => "useradd" } file

So I have two classes for openvz setup. The first is openvz::setup and it sets up the box for OpenVZ.. then another class (in same .pp file) called openvz::master sets up the config for the main system (as opposed to a VE). The error I see is that the openvz::master class is executed (and fails) becuase it doesn''t seem to load up the setup class? debug: Calling puppetmaster.getconfig

...passwd -r PDC_SERVER >That command update SAMBA password and again it called >/krb5_update_pwd.pl to sync the kerberos password > >I know there are some short comings (password policies for example). But >it's the closer i get :-) > >Hope this can help :-) > > > Ti Leggett wrote: > Let me rephrase a bit. Is there a way to use Samba as a PDC with an LDAP > backend and use pam_smbpass to keep the passwords sync'd between the > Kerberos side and the Samba side? That way the Windows clients join the > domain using only the LDAP information not knowing abo...

I had some questions come up today during the Puppet demo here: 1. Is there any way to apply different intervals to different classes? For example, we might want a security baseline manifest to run once a month, package installation files once/day, etc. Since we''re a brokerage, we also don''t want ANY system changes during trading hours. I guess we could cron killing the

I have a node that has some bad stored configs (namely the wrong ssh host keys) that I''m trying to clear out. Looking around it seems I''m supposed to do: puppet node clean foo.example.com However, that keeps bailing out because it''s trying to open a SQLite3 db where stored configs are normally kept, but my stored configs are kept in puppetdb (http://pastie.org/7814483

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Tue, 11 Mar 2014, Graham Leggett wrote: > On 11 Mar 2014, at 7:32 PM, Graham Leggett <minfrin at sharp.fm> wrote: > >> Giving the different prefix a try on a test account, a mailbox directory is created, but the rest of the maidir directories (new, cur, tmp) aren't created, and the error below is returned. &...

...d party educational software that runs from a samba share which is available for all students. Somehow, I find that CPU is running high in % with server slowing down and winbind users not resolving properly to username from GID. I notice that a lot of these messages are generated: getpwnam ANDREW LEGGETT.VARNDEAN.000 It seems to me there is a peace of coding in the applicaton that run as/by user 'Andrew Leggett' and winbind is complaining it doesn't not exist on the domain which obviously is the case. Can anyone has clue how I can disable getpwnam user 'unknown' to the domain?

I am trying to streamline the current distribution specific setup and creation of VE''s within OpenVZ with puppet. My first attempt has gone horribly wrong as you will see below. Here''s the script I wrote to replace the redhat specific setup that OpenVZ used: [jleggett@lxp6d15m3 scripts]$ cat redhat-add_ip.sh #!/bin/bash # # Debug - take out later set -x LOGFILE=/tmp/add_ip-dbug.log exec >$LOGFILE 2>&1 FACTER_IP_ADDR=$1 FACTER_VENET_DEV=venet0 FACTER_VENET_DEV_CFG=ifcfg-$FACTER_VENET_DEV FACTER_IFNUM=$2 echo "Running puppet-ized version of redhat...

Hi all, I am using a samba WINS server for my Microsoft network that is split across 5 physical networks. For a long time, everything has worked fine, however recently we have had wierd problems with domain controllers "disappearing". Even with a primary or backup DC on the physical wire, workstations and other NT servers suddenly start complaining "a domain controller for DOMAIN

Hi all, I have some IMAP servers fronted with separate perdition processes, and it would be ideal if I could collapse this down to having dovecot do both the IMAP proxying and the IMAP serving at the same time on the same IP addresses. One of the fields in my LDAP entries contains the canonical name of the server that hosts their mailbox, and if I follow the manual at

Hi all, I need my servers to decide which network they are in (i.e. dmz), and the only clue is the servers IP-address. I was trying to accomplish it like this, but it doesn''t work: case $ipaddress { "10.1.1.*": { $network = "net1" } "10.2.2.*.*": { $network = "net2" } "10.3.3.*": {

I have one module, kibana, that defines a file snippet for the apache module to fulfill (e.g., /etc/https/conf.d/kibana.conf). The apache::params class defines a variable of the path of where this snippet should be placed, $config_d. The snippet uses this variable in its definition. However, it seems that the snippet never resolves the $apache::params::config_d variable, and I''m

OK... I have relaid out my puppet dir as recommended in best practices: [jleggett@binford puppet]$ find . -print | grep -v .svn . ./plugins ./plugins/lines.pp ./files ./files/module ./files/module/SSH ./files/module/SSH/ssh_config ./files/module/SSH/sshd_config ./files/module/INFO ./files/module/INFO/motd ./files/module/INFO/issue ./files/module/NIS ./files/module/NIS/nsswitch.c...

Hi all, I have been trying to investigate traffic shaping in an effort to solve the "unfriendly network apps" problem on a test network. I have a basis by which I''d like to shape traffic, but studying the howto doesn''t uncover and existing qdisc that seems to fit what I would like to do. The problem I would like to address is to prevent an IP address opening 10

Hi all, We are deploying a Linux server and desktops for a customer. We will have the users and groups in LDAP on the server, and files shared via NFS. However, one never knows if Windows desktops will be needed in the future. Is it a good idea to add users with smb-ldap even if samba is not initially used, as adding the samba attributes to an existing LDAP database is painful, and the

Hi all, I have followed the instructions at http://samba.mirror.ac.uk/samba/docs/man/passdb.html in an attempt to set up a Samba v3.0.2 (supplied by Redhat as part of RHEL v3.0) PDC. I have got as far as trying to get a windows 2k box to join this new domain that I have created, however this fails with the error "Logon failure: unknown user name or password". Samba itself logs

Hi all, I want to enable trace debugging for sieve. Most specifically, I want to know what sieve scripts are running, and whether they?re doing anything. I cannot get anything other than dead silence from dovecot with respect to sieve. I have tried the same as asked in this question: https://unix.stackexchange.com/questions/550618/dovecot-sieve-trace-does-not-create-a-log In my case, the

Hi all, I''ve finally gotten around to releasing Facter 1.5. As the version bump implies, this is a relatively significant release (for a 2.3k line program, anyway). Mostly, the biggest change is refactoring the code internally so that all of the functionality is split into separate classes in separate files. Also, the facts are all loaded on-demand, which provides dramatic

It is just a sieve rule. 1. On disk default file .dovecot.sieve 2. I am using roundcube webmail for that. 3. with if false # true # rule:[Out of Office] if true { vacation :days 1 :subject "Test" "test test"; } -----Original Message----- From: Graham Leggett [mailto:minfrin at sharp.fm] Sent: woensdag 23 september 2020 14:03 To: dovecot at dovecot.org Subject: Vacation sieve explained: how does it work? Hi all, I have a legacy system that uses gnarwl to handle vacation messages, most specifically the vacation messages are stored in LDAP. We have a...