Error in accessing Accounting Software

Anthony aslan at ispdr.net.au
Mon Mar 19 14:13:56 GMT 2001 

Hi Matt,
         Unfortunately I cannot offer a solution to your problem. However, 
the reason I am responding to your query is to tell you that I have a 
customer who is also using the HandiSoft software, and I have set them up 
with 3 Win98SE workstations and a RedHat 6.2 server running Samba 2.0.6. 
The only problem they've reported in the past 4 months is that at one stage 
a user was unable to delete a client. When she called the HandiSoft 
support, they told her to restart the server. I restarted smbd and nmbd 
(samba restart) and it all came good.
         As far as your smb.conf file is concerned, I would strongly 
discourage forcing samba operations to be performed as root. What I did on 
the 2.0.6 server was to create a group which was in the admin uid range 
(below 500 from memory), and add the users as part of that group. I then 
forced all operations on the HandiSoft shares to be performed as that 
group, not as any particular user. This works fine, and as I said above, 
has been working almost flawlessly for the past 4 months.
         I hope this information can be of use to you.

Anthony


At 04:30 a 19/03/01, Matt wrote:
>We are running Samba 2.0.7 on a Redhat 7.0 Server in an Accounting 
>Practice.  When one of our users trys to open Handy Ledger which is stored 
>on out JDAData Share.  When he trys to connect I get the following 
>messages in the logs.
>
>[2001/03/19 16:22:43, 0] smbd/nttrans.c:map_share_mode(443)
>   map_share_mode: Incorrect value 0 for desired_access to file \
>[2001/03/19 16:22:43, 0] smbd/nttrans.c:map_share_mode(443)
>   map_share_mode: Incorrect value 0 for desired_access to file \
>[2001/03/19 16:22:43, 0] smbd/nttrans.c:map_share_mode(443)
>   map_share_mode: Incorrect value 0 for desired_access to file \
>[2001/03/19 16:22:43, 0] smbd/nttrans.c:map_share_mode(443)
>   map_share_mode: Incorrect value 0 for desired_access to file \
>[2001/03/19 16:22:43, 0] smbd/nttrans.c:map_share_mode(443)
>   map_share_mode: Incorrect value 0 for desired_access to file \
>[2001/03/19 16:22:43, 0] smbd/nttrans.c:map_share_mode(443)
>   map_share_mode: Incorrect value 0 for desired_access to file \
>[2001/03/19 16:22:43, 0] smbd/nttrans.c:map_share_mode(443)
>   map_share_mode: Incorrect value 0 for desired_access to file \
>[2001/03/19 16:24:00, 1] smbd/service.c:close_cnum(583)
>   john1 (10.0.2.29) closed connection to service HPIIID
>[2001/03/19 16:24:00, 1] smbd/service.c:close_cnum(583)
>   john1 (10.0.2.29) closed connection to service CanonBJC
>[2001/03/19 16:24:00, 1] smbd/service.c:close_cnum(583)
>   john1 (10.0.2.29) closed connection to service CanonLBP
>[2001/03/19 16:24:00, 1] smbd/service.c:close_cnum(583)
>   john1 (10.0.2.29) closed connection to service data
>[2001/03/19 16:24:00, 1] smbd/service.c:close_cnum(583)
>   john1 (10.0.2.29) closed connection to service old_email
>[2001/03/19 16:24:00, 1] smbd/service.c:close_cnum(583)
>   john1 (10.0.2.29) closed connection to service jdadata
>[2001/03/19 16:24:00, 1] smbd/service.c:close_cnum(583)
>   john1 (10.0.2.29) closed connection to service john
>[2001/03/19 16:24:00, 1] smbd/service.c:close_cnum(583)
>   john1 (10.0.2.29) closed connection to service netlogon
>[2001/03/19 16:24:00, 1] smbd/service.c:close_cnum(583)
>   john1 (10.0.2.29) closed connection to service profile
>[2001/03/19 16:25:01, 1] smbd/service.c:make_connection(550)
>   john1 (10.0.2.29) connect to service jdadata as user root (uid=0, 
> gid=0) (pid 2710)
>[2001/03/19 16:25:01, 0] smbd/nttrans.c:call_nt_transact_ioctl(2516)
>   call_nt_transact_ioctl: Currently not implemented.
>[2001/03/19 16:25:25, 1] smbd/service.c:make_connection(550)
>   john1 (10.0.2.29) connect to service john as user john (uid=502, 
> gid=502) (pid 2710)
>
>
>I can see that his machine is dropping all connections to the 
>domain.  Could someone help me figure this one out....  Here is the 
>smb.conf file:
>
>----------------------------------------------------------Start smb.conf 
>--------------------------------------------------------[global]
>
>#NetBIOS name isn't needed if it's the same as the hostname
>netbios name = JDALNXS01
>workgroup = JDAA
>
>#flat files that map Unix groups to NT type groups.
>#these files take the form unix_group = `Windows NT group''
>#domain group map = /home/samba/private/domaingroup.map
>#domain alias map = /home/samba/private/domainalias.map
>
>#Domain controllers use user security and we need encrypted
>#passwords (see ENCRYPTION.txt)
>#security = share
>security = user
>#security = server
>#security = domain
>domain logons = yes
>encrypt passwords = yes
>#share modes = no
>
>#?????????????????????????????????????????????
>#status = yes
>#?????????????????????????????????????????????
>
>#And in order for us to be *sure* to win browser elections
>os level = 65
>domain master = yes
>preferred master = yes
>local master = yes
>
>##WINS is the equivalent of DNS for NetBIOS.
>#wins support = yes
>time server = yes
>
>#printers
>printcap name = /etc/printcap
>load printers = no
>printing = lprng
>print command = /usr/bin/lpr -r -P%p %s
>lpq command = /usr/bin/lpq -P%p %s
>lprm command = /usr/bin/lprm -P%p %j
>#queuepause command = /usr/bin/lpc -P%p stop
>#queueresume command = /usr/bin/lpc -P%p start
>
>#the next lines are equivalent to the various profile details
>#found in NT's User Manager
>logon script = login.bat
>#logon drive = U:
>#logon home = \\FACOM\%U
>logon path = \\jdalnxs01\profile\%U
>
>
># For the Domain Admins
>#domain admin group = @adm
>#add user script = /usr/sbin/adduser -n -g machines -c Machine -d 
>/dev/null -s /bin/false %m$
>
>#share all home directories
>[homes]
>         browseable = no
>         writable = yes
>         comment = Users home directories
>         create mask = 0700
>         directory mask = 0700
>#       oplocks = false
>#       locking = no
>         read only = no
>         guest ok = no
>
>#set up netlogon share for system policies and login scripts
>[netlogon]
>         path = /home/samba/netlogon
>         writable = no
>         guest ok = no
>         comment = PDC netlogon share
>
>#the profiles share
>#to create automatic subdirs for the different users
>#chmod 1777 /home/samba/profile
>[profile]
>         path = /home/samba/profile
>         writeable = yes
>
>[data]
>         path = /jdadata/data
>         browseable = yes
>         writable = yes
>         public = yes
>         force user = root
>         force group = root
>
>[jdadata]
>         path = /jdadata/jdadata
>         browseable = yes
>         writable = yes
>         public = yes
>         force user = root
>         force group = root
>
>[old_email]
>         path = /jdadata/old_email
>         browseable = yes
>         writable = yes
>         public = yes
>         force user = root
>         force group = root
>
>[tmp]
>         path = /tmp
>         browsable = yes
>         writable = yes
>         public = yes
>         guest ok = yes
>         comment = Temport Directory /tmp/
>
>[HPIIID]
>         path = /var/spool/lpd/lj
>         force user = lp
>         force group = lp
>         printer name = laserjetiiid
>         writable = yes
>         public = yes
>         printable = yes
>
>[CanonBJC]
>         path = /var/spool/lpd/lp1
>         force user = lp
>         force group = lp
>         printer name = lp1
>         writable = yes
>         public = yes
>         printable = yes
>
>[CanonLBP]
>         path = /var/spool/lpd/lp2
>         force user = lp
>         force group = lp
>         printer name = lp2
>         writable = yes
>         public = yes
>         printable = yes
>
>----------------------------------------------------------End smb.conf 
>--------------------------------------------------------
>
>Thanks in advance for any help...
>
>Matt Dormer.

More information about the samba mailing list