still having problems with folder access

Aaron Solochek aarons-samba at aberrant.org
Sun Sep 5 15:48:56 MDT 2010 

My setup:

samba4 from git on ubuntu 10.4.


smb.conf:

[globals]
        netbios name    = CAMBRIDGE
        workgroup       = FOO
        realm           = FOO.COM
        server role     = domain controller
        server string   = FOO Domain Controller
        browseable = yes
        socket address = 10.1.10.10
        dcerpc endpoint servers = epmapper, srvsvc, wkssvc, rpcecho, samr,
netlogon, lsarpc, spoolss, drsuapi, winreg, dssetup, unixinfo
        server services = smb, rpc, nbt, wrepl, ldap, kdc, cldap, winbind,
ntp_signd, drepl
#       server max protocol = SMB2
#       client max protocol = SMB2
        unicode = yes
        name resolve order = wins, host, bcast
        unix extensions = Yes
        preferred master = Auto
        template homedir = /home/%ACCOUNTNAME%
        prefork children:smb = 4
        ntvfs handler = unixuid, default
        case insensitive filesystem = no
        wins config database = wins_config.ldb
        wins database = wins.ldb
        log file = /var/log/samba/samba.log
        host msdfs = yes

[sysvol]
        path = /var/lib/samba/sysvol
        read only = no
        browseable = no

[test]
        path = /var/lib/samba/testshare
        read only = no
        browseable = no

---------------------------------------

cambridge:/var/lib/samba# ls -la
...
drwxr-xr-x  3 root adm     4.0K 2010-09-04 16:23 sysvol/
drwxr-xr-x  2 root adm     4.0K 2010-09-05 16:48 testshare/

cambridge:/var/lib/samba#getfacl sysvol/
# file: sysvol/
# owner: root
# group: adm
user::rwx
group::r-x
other::r-x

cambridge:/var/lib/samba#getfacl testshare/
# file: testshare/
# owner: root
# group: adm
user::rwx
group::r-x
other::r-x

cambridge:/var/lib/samba#getfattr -d testshare/
cambridge:/var/lib/samba#getfattr -d sysvol/

Other information:
the samba4 server has two interfaces, an internal 10.1.10.10 and an external.
It is running split-brain bind, internally resolving foo.com,
cambridge.bar.foo.com, and cambridge.foo.com to 10.1.10.10.  It reverses to
cambridge.bar.foo.com.

I do not have bind getting updates from samba, as I was concerned about
interactions with the updates it's getting from dhcpd, but I have manually added
all the automatically generated records to both the internal foo.com zone and
the bar.foo.com zone.

More information about the samba-technical mailing list