profile not found in Samba-tng-alpha-2.5.3
Michael.Keightley at quadstone.com
Michael.Keightley at quadstone.com
Mon May 29 15:55:09 GMT 2000
Hi,
I've installed Samba-tng-alpha-2.5.3 on a machine running Solaris 7.
I managed to get a NT 4.0 (SP6a) machine to join the domain. I've also added a
test user. The user can login but a roaming profile isn't found and no network
drives can be mapped. What am I doing wrong?
I get this error in log.browser when Samba is started:
*** Please someone examine create_pipe_socket and fix it ***
*** if used other than for exclusive root access ***
*** (see perms, which should be 0700 and 0600) ***
*** there is a race condition to be exploited. ***
remove on /home/samba_ruby/var/locks/.msrpc/browser failed
Similarly in log.lsarpc;
*** Please someone examine create_pipe_socket and fix it ***
*** if used other than for exclusive root access ***
*** (see perms, which should be 0700 and 0600) ***
*** there is a race condition to be exploited. ***
remove on /home/samba_ruby/var/locks/.msrpc/lsarpc failed
_lsa_open_secret: couldn't open secret_db. Possible attack?
And log.netlogin:
*** Please someone examine create_pipe_socket and fix it ***
*** if used other than for exclusive root access ***
*** (see perms, which should be 0700 and 0600) ***
*** there is a race condition to be exploited. ***
remove on /home/samba_ruby/var/locks/.msrpc/netlogon failed
Here is my smb.conf:
[global]
#NetBIOS name isn't needed if it's the same as the hostname
netbios name = RUBY
workgroup = EDINBURGH
server string = Quadstone SAMBA Server %h
hosts allow = 194.80.190. 192.168.191. 192.168.193. 127.
interfaces = 194.80.190.62/255.255.255.128 192.168.193.62/255.255.255.0
#flat files that map Unix groups to NT type groups.
#these files take the form unix_group = `Windows NT group''
domain group map = /home/samba_ruby/private/domaingroup.map
domain alias map = /home/samba_ruby/private/domainalias.map
#Domain controllers use user security and we need encrypted
#passwords (see ENCRYPTION.txt)
security = user
domain logons = yes
encrypt passwords = yes
#And in order for us to be *sure* to win browser elections
os level = 65
domain master = yes
preferred master = yes
local master = yes
#WINS is the equivalent of DNS for NetBIOS.
wins support = yes
time server = yes
#the next lines are equivalent to the various profile details
#found in NT's User Manager
logon script = login.bat
logon drive = q:
logon home = \\RUBY\%U
logon path = \\RUBY\profile\%U
#share all home directories
[homes]
browseable = no
writable = yes
comment = Home Directories
#set up netlogon share for system policies and login scripts
[netlogon]
path = /home/samba_ruby/netlogon
writable = no
guest ok = no
comment = PDC netlogon share
#the profiles share
#to create automatic subdirs for the different users
#chmod 1777 /opt/samba-tng/profile
[profile]
path = /home/samba_ruby/profile
writeable = yes
[printers]
printing = SYSV
lprm command = /usr/ucb/lprm -P%p %j
path = /home/samba_pearl/var/spool/public
public = yes
writable = no
printable = yes
[software]
comment = PC software
path = /home/PC
writeable = yes
browseable = yes
guest ok = no
--
Michael Keightley <Michael.Keightley at quadstone.com> Tel: +44 131 220 4491
Systems Manager, Quadstone Limited, Fax: +44 131 220 4492
16 Chester Street, Edinburgh EH3 7RA, Scotland http://www.quadstone.com
More information about the samba-ntdom
mailing list