4.9.4 regression : 12164
L.P.H. van Belle
belle at bazuin.nl
Thu Dec 20 10:57:30 UTC 2018
Basilcy its the detection of these 2 whats the problem.
SID: S-1-5-18
Name: Local System
Description: A service account that is used by the operating system.
SID: S-1-5-19
Name: NT Authority
Description: Local Service
But now in a Standalone setup.
Do you guys want a extra level 10 log in 12164 or use the logs from 13697
These show the same info.
Greetz,
Louis
> -----Oorspronkelijk bericht-----
> Van: samba-technical
> [mailto:samba-technical-bounces at lists.samba.org] Namens
> L.P.H. van Belle via samba-technical
> Verzonden: donderdag 20 december 2018 11:52
> Aan: samba-technical at lists.samba.org
> Onderwerp: 4.9.4 regression : 12164
>
> Hai,
>
> I've just builded and tested my 4.9.4 packages.
> Bug : https://bugzilla.samba.org/show_bug.cgi?id=12164
> It now works for a domain member yes, but not when you
> install as standalone server.
>
> https://bugzilla.samba.org/show_bug.cgi?id=13697 is in my
> option related to the above.
>
> They all have the same problem. The detection of settings
> with standalone servers is faulty.
>
> smbd -V
> Version 4.9.4-Debian
>
> wbinfo --name-to-sid 'NT AUTHORITY\System'
> S-1-5-18 SID_WKN_GROUP (5)
>
> wbinfo --name-to-sid S-1-5-18
> failed to call wbcLookupName: WBC_ERR_DOMAIN_NOT_FOUND
> Could not lookup name S-1-5-18
>
> With a standard install, config uses was the default from debian.
>
> I've tested it with and without the idmap * lines enabled.
>
>
> [global]
>
> log level = 10
> workgroup = WORKGROUP
> ; interfaces = 127.0.0.0/8 eth0
> ; bind interfaces only = yes
> log file = /var/log/samba/log.%m
> max log size = 1000
> logging = file
> panic action = /usr/share/samba/panic-action %d
> server role = standalone server
> obey pam restrictions = yes
> unix password sync = yes
> passwd program = /usr/bin/passwd %u
> passwd chat = *Enter\snew\s*\spassword:* %n\n
> *Retype\snew\s*\spassword:* %n\n *password\supdated\ssuccessfully* .
> pam password change = yes
> map to guest = bad user
> ; logon path = \\%N\profiles\%U
> ; logon drive = H:
> ; logon script = logon.cmd
> ; add user script = /usr/sbin/adduser --quiet
> --disabled-password --gecos "" %u
> ; add machine script = /usr/sbin/useradd -g machines -c "%u
> machine account" -d /var/lib/samba -s /bin/false %u
> ; add group script = /usr/sbin/addgroup --force-badname %g
> ; include = /home/samba/etc/smb.conf.%m
> ; idmap config * : backend = tdb
> ; idmap config * : range = 3000-7999
> ; idmap config DOMHERE : backend = tdb
> ; idmap config DOMHERE : range = 100000-999999
> ; template shell = /bin/bash
> usershare allow guests = yes
>
> [homes]
> comment = Home Directories
> browseable = no
> read only = yes
> create mask = 0700
> directory mask = 0700
> valid users = %S
>
> ;[netlogon]
> ; comment = Network Logon Service
> ; path = /home/samba/netlogon
> ; guest ok = yes
> ; read only = yes
>
> ;[profiles]
> ; comment = Users profiles
> ; path = /home/samba/profiles
> ; guest ok = no
> ; browseable = no
> ; create mask = 0600
> ; directory mask = 0700
>
> [printers]
> comment = All Printers
> browseable = no
> path = /var/spool/samba
> printable = yes
> guest ok = no
> read only = yes
> create mask = 0700
>
> [print$]
> comment = Printer Drivers
> path = /var/lib/samba/printers
> browseable = yes
> read only = yes
> guest ok = no
> ; write list = root, @lpadmin
>
>
>
>
> Greetz,
>
> Louis
>
>
>
>
More information about the samba-technical
mailing list