Administering SWAT using userid's other than root...
Andrew Bartlett
abartlet at pcug.org.au
Fri Jul 7 10:47:43 GMT 2000
Just remember that with the ability to change 'root preexec' entries
that you might not want to give access to swat to anybody without root
priviliges already. (I can't answer your real question, but I thought
this might be worthwile noting).
Andrew Bartlett
abartlet at pcug.org.au
Will Kim wrote:
>
> Hmm... Well, I just finished trying the following with no luck either...
>
> wkim at hume [~]> id wkim
> uid=95(wkim) gid=90(swat) groups=90(swat)
> wkim at hume [~]> groups
> swat
>
> i.e. I removed myself from all groups but 'swat', and set that as my GID.
> Yet it still doesn't work... sigh...
>
> I even tried adding my entry in the local /etc/passwd file to override NIS,
> but it didn't seem to make a difference.... I'm going to lose all my hair
> over this... :)
>
> Do you have any other suggestions?
>
> Cheers,
> Will
>
> -----Original Message-----
> From: Werner Maes [mailto:werner.maes at cc.kuleuven.ac.be]
> Sent: July 11, 2000 5:18 PM
> To: Will Kim
> Cc: samba at samba.org
> Subject: Re: Administering SWAT using userid's other than root...
>
> In my case the gid is the same as the group.
> I mean when I do "id pcoperator" I get:
> uid=505(pcoperator) gid=20611(operator) groups=20611(operator)
>
> The "pcoperator" user can use SWAT just like root.
> smb.conf ==> root:operator 660
>
> In your case it's rather weird since your gid is not included in groups
> which is
> necessary in my opinion. With primary group I mean the GID !!!
>
> Werner Maes
> KULeuven
>
> Will Kim wrote:
>
> > Hi Werner,
> >
> > Thanks for the input!
> >
> > This is what I have:
> >
> > wkim at hume [~/bin]> id wkim
> > uid=95(wkim) gid=20(console) groups=0(root),90(swat)
> > wkim at hume [~/bin]> groups
> > console swat
> >
> > So when you say "primary group", do you mean my gid, or the first group?
> (My
> > gid is kind of messed because of NIS+ and inconsistent group id mappings
> for
> > non-relevant groups).
> >
> > Cheers,
> > Will
> > -----Original Message-----
> > From: Werner Maes [mailto:werner.maes at cc.kuleuven.ac.be]
> > Sent: July 11, 2000 3:56 PM
> > To: Will Kim; samba at samba.org
> > Subject: Administering SWAT using userid's other than root...
> >
> > Well,
> >
> > Is the group "swat" your primary group or a secondary?
> > Do "id username" to see what's your primary group.
> >
> > smb.conf: root:swat 664
> > You need to have as a primary group the group that has write access to
> > smb.conf.
> > This works for me.
> >
> > Werner Maes
> > KULeuven
> >
> > ------------------------------
> >
> > Date: Tue, 11 Jul 2000 12:10:54 -0400
> > From: Will Kim <wkim at rim.net>
> > To: "Samba (E-mail)" <samba at samba.org>
> > Subject: Administering SWAT using userid's other than root...
> > Message-ID: <D5CF9A5F84E9D311829E00508BCF235801B7B036 at fire.rim.net>
> > MIME-Version: 1.0
> > Content-Type: multipart/mixed;
> > boundary="----_=_NextPart_000_01BFEB52.96EF816C"
> >
> > This message is in MIME format. Since your mail reader does not
> > understand
> > this format, some or all of this message may not be legible.
> >
> > ------_=_NextPart_000_01BFEB52.96EF816C
> > Content-Type: text/plain;
> > charset="iso-8859-1"
> >
> > Hi all...
> >
> > Has anyone got SWAT administration working from other userid's other
> > than
> > root?
> >
> > I've got a rh6.2 box running Samba 2.0.7. I have myself (wkim) in the
> > "domain admin users" and the "admin users". Both the smb.conf file and
> > the
> > swat binarary are owned by root:swat. I'm a part of group "swat". (I'm
> > also
> > a part of group "root" just to test, but it didn't make a difference).
> > the
> > conf file has permissions 664 and the swat binary has permissions 775.
> >
> > Any ideas why it won't let me do anything besides view the
> > configuration?
> >
> > Cheers,
> > Will
--
Andrew Bartlett
abartlet at pcug.org.au
More information about the samba
mailing list