getting guest connection to "public = no" homes
Sanders, Peter
Peter.Sanders at dsto.defence.gov.au
Wed Mar 10 22:41:50 GMT 1999
Ed Sanborn said:
>Date: Tue, 9 Mar 1999 14:06:46 -0500
>From: "Sanborn, Ed" <esanborn at northc.com>
>To: "Samba List (E-mail)" <samba at samba.anu.edu.au>
>Cc: "Sanborn, Ed" <esanborn at northc.com>
>Subject: Ditch Samba in favor of Exceed!
>Message-ID:
<C1E763AF1EB6D21197170090271E09B202E595 at forge.northc.com>
>That is what I'm thinking of doing if I can't resolve this?
>PLEASE, some kind soul help me on this. I have shares from
>a Solaris 2.6 system running the new Samba 2.02 release.
>Everything runs fine except that every so often (sometimes
>way more often than I like) shared resources convert over to
>the Samba guest account which is setup to go to the default
>account "nobody". Why does Samba do this? Everything seems
>fine for someone and then this happens. If they
>logoff and log back on to their NT systems thing's are
>fine again. I am using server style security.
>Why does this keep happening? I clipped out the top 5 lines.
There
>are actually alot more instances of this but I thought I'd spare
you
>the length.
><root at brigade:/raid5/tools/samba/bin>./smbstatus|grep nobody
>hw_root nobody nobody 231 massacre (192.168.164.115)
Mon Mar 8
>21:00:27 1999
>public nobody nobody 6879 stamp (192.168.164.146)
Tue Mar 9
>10:48:56 1999
>sw_root nobody nobody 6879 stamp (192.168.164.146)
Tue Mar 9
>10:48:56 1999
>IT Softwar nobody nobody 22192 sgt (192.168.164.122)
Mon Mar 8
>21:01:20 1999
>hw_root nobody nobody 22192 sgt (192.168.164.122)
Mon Mar 8
>21:01:21 1999
><root at brigade:/raid5/tools/samba/bin>
I am running Linux 2.0.30 with a few W95.SR2 boxen on an isolated
network. I am also running another Linux 2.0.30 with about 20-40 W95 boxen
on a corporate mixed ipx-Novell/tcpip network behind a firewall. I have
experienced the above with all Samba versions I have used but have only
taken notice since 1.9.18p4. I am now running 2.0.2 (or should that
be 2.0p2). Both of these Linux boxen are using small dead-time
values and I suspect that
the invalid guest access occurs during automatic reconnection.
More worrisome is that I have occasionally had the situation occur
that several non-public
shares would only be connected to as guest, even immediately after a
cold reboot of the
workstation. The cure in these cases was to delete the username.PWL
file (cached passwords) on the workstation; reboot the workstation and
login, typing in passwords as
requested. In a few of the worst cases I have also had to change
access passwords at
the Linux end and/or disconnect the workstation from the shares and
reconnect.
All of the above has led me to assume that the problem is at least
initiated by a W95 bug
or is caused by poor installation. Since someone else has had
similar experiences I am
finally moved to announce it. Here follows a portion of my
smb.conf.
[global]
server string = CPNB's Linux/Samba %v Science Server.
; max disk size = 10
debug level = 1
status = yes
domain master = yes
preferred master = yes
wins support = yes
domain logons = yes
null passwords = yes
Unix password sync = true
passwd program = /usr/bin/passwd.linux
dos filetime resolution = yes
fake directory create times = yes
os level = 64
; os level = 1
workgroup = CPN_BRANCH
encrypt passwords = yes
security = USER
; security = SHARE
; protocol options are CORE, COREPLUS, LANMAN1, LANMAN2, NT1.
Default is NT1
protocol = NT1
hide dot files = yes
load printers = no
printing = BSD
printcap name = /etc/printcap
print command = /usr/bin/lpr -h -r -P %p %s
lpq command = /usr/bin/lpq %p
lprm command = /usr/bin/lprm -P %p %j
lppause command = /usr/bin/lpc down %p Printer %p stopped by
Samba user %U from %m at %T
lpresume command = /usr/bin/lpc up %p; /usr/bin/lpc start %p
mangled names = no
preserve case = yes
short preserve case = yes
; case sensitive = yes
guest account = guest
read size = 1500
lpq cache time = 5
socket options = SO_KEEPALIVE TCP_NODELAY IPTOS_THROUGHPUT
SO_RCVBUF=4096 SO_SNDBUF=4096
deadtime = 3
read prediction = yes
; This next option sets a separate log file for each client. Remove
; it if you want a combined log file.
; log file = /usr/local/samba/var/log.smb.%U
; You will need a world readable lock directory and "share
modes=yes"
; if you want to support the file sharing modes for multiple users
; of the same files
lock directory = /usr/local/samba/locks
share modes = yes
strict locking = yes
; This section makes their home directory available to all account
holders
[homes]
comment = Home Directory
public = no
guest ok = no
browseable = no
writeable = yes
printable = no
veto files =
/.bash_history/.dir_colors/.kermrc/.less/.lessrc/.login/.mc.ini/.mc.tree/.sa
mba.login/.samba.logout/.Xdefaults/
create mode = 0600
oplocks = true
root preexec = /usr/local/samba/lib/login.sh %u
root postexec = /usr/local/samba/lib/logout.sh %u
=====================================
_--_|\ peter.sanders at dsto.defence.gov.au (Business)
/ DSTO \ Combatant Protection & Nutrition Branch, AMRL.
\_.--._/ Defence Science & Technology Organisation
v Fax : 61-3-9626 8410 Voice: 61-3-9626 8411
Peter Sanders
sandersp at melbpc.org.au (Private)
Voice: 61-3-9337-6612
BMW K100RT (Brunnhilde the Blue)
=====================================
More information about the samba
mailing list