[samba-tng] msrpc status

Michael Ju. Tokarev mjt at tls.msk.ru
Mon Dec 20 11:10:45 GMT 1999


Oops, yes, 2.4 does not allow me to change permissions on a socket
(it just silently ignores chmod) -- I specially installed 2.4 from
my old achive CD this weekend).  Someone told me that there were a patch
from sun abot this, but I don't remember what/who/where...
But as I can see, 2.6 is ok, 2.7 seemed to be too, and 2.8 is ok too I think.
Yes, it is a reason to have this trick (and particular solaris version
is not an issue -- maybe there are other platforms exists too) -- someday
we may think that there is another socket needed for something so having
all in one dir is a good idea anyway...

---
"Michael H. Warfield" wrote:
> 
> On Sat, Dec 18, 1999 at 08:45:00AM +1100, Luke Kenneth Casson Leighton wrote:
> > are you sure that solarix x86 _has_ a VFS?
> 
>         Doesn't matter...
> 
>         I don't remember which version of which OS it was but...  It was
> either SunOS 4.x or Solaris 2.1, 2.2, 2.3, or 2.4.  I specifically ran
> into the problem where a product I was developing (a voice command
> recognition product) needed to change ownership and permissions of a
> named pipe (socket).  It couldn't and I had to bury several such pipes
> under directories where I could change the permissions.  Now...  Maybe
> things have changed with version and maybe they're merely not testing on
> the right version of the right platform of the right OS.  Other products,
> like ssh, use the same trick of burying the socket under a directory.  There
> is a reason for this.  Unless someone can demonstrate conclusively that
> all versions of all operating systems we are going to run into behave
> properly and allow us to change the attributes of a socket directly, then
> we have to assume that sooner or later we will run into one that won't and
> then we'll be broken and it will be our bug.  It's easier to do right
> the first time and cover all the cases than it is to go back and fix it
> later and try to deal with compatibility issues.
> 
> > On Sat, 18 Dec 1999, Michael Ju. Tokarev wrote:
> >
> > >
> > > Luke Kenneth Casson Leighton wrote:
> > > >
> > > > > > 2) msrpc loop-back interface, aka "ncalrpc" in dce/rpc terminology.
> > > > >
> > > > > > /tmp/.msrpc 0777
> > > > > > /tmp/.msrpc/PIPE_name 0770 (or any other permissions)
> > > > > > /tmp/.msrpc/PIPE_name/socket 1777 - this is the actual unix socket.
> > > > >
> > > > > first off, it should be in /usr/local/samba/var (or equivalent) not
> > > > > /tmp. Secondly, it should be permission 0600 and be a single level
> > > > > (ie. no directory at all).
> > > >
> > > > some unixes do not allow you to chmod sockets, e.g solaris (which has a
> > > > VFS and someone probably forgot to implement chmod for the unix socket
> > > > VFS).
> > >
> > > Oops! I have:
> > >
> > > $ uname -a
> > > SunOS paltus.tls.msk.ru 5.6 Generic_105182-13 i86pc i386 i86pc
> > > $ ls -l
> > > srwxrwx---   1 mjt   staff            0 Nov 30 14:37 socket
> > > $ chmod g-rwx,o+rw socket
> > > $ ls -l
> > > srwx---rw-   1 mjt   staff            0 Nov 30 14:37 socket
> > > $ su someuser
> > > $ cat socket
> > > cat: Permission denied.
> > > $ _
> > >
> > > So you probably mistaked here.
> > >
> 
> --
>  Michael H. Warfield    |  (770) 985-6132   |  mhw at WittsEnd.com
>   (The Mad Wizard)      |  (770) 331-2437   |  http://www.wittsend.com/mhw/
>   NIC whois:  MHW9      |  An optimist believes we live in the best of all
>  PGP Key: 0xDF1DD471    |  possible worlds.  A pessimist is sure of it!


More information about the samba-technical mailing list