[Samba] preexec close + Win2K

Bertil Glassen bertil_glassen at yahoo.com
Fri Sep 6 19:29:01 GMT 2002


I have Samba 2.2.2 on Solaris 8 acting as a PDC.  I
have written a script that checks to see if a user is
already logged in on the PDC and if so, sends the user
a message (via the SMB message stuff) telling them
they need to log off.  I run this script using
"preexec close" under the netlogon share.  So, the
user authenticates against the PDC, but then gets a
desktop that is mostly useless if they are already
logged in elsewhere.

With NT clients, the client gets four message boxes. 
This works well enough.

However Win2K clients just keep trying and trying, and
the user gets an
endless stream of the message boxes, about one per
second.

Is there anything I can do (either on the Win2K client
or on the server) that
would keep the Win2K client from trying again and
again to mount netlogon?  I
want it to give up, but it won't.

Here's the ol' testparm dump:
[global]
        coding system = 
        client code page = 850
        code page directory =
/opt/samba-2.2.2/lib/codepages
        workgroup = SEUSS
        netbios name = AUTH
        netbios scope = 
        server string = Samba 2.2.2
        interfaces = 
        bind interfaces only = No
        security = USER
        encrypt passwords = Yes
        update encrypted = No
        allow trusted domains = Yes
        hosts equiv = 
        min passwd length = 5
        map to guest = Never
        null passwords = No
        obey pam restrictions = No
        password server = 
        smb passwd file =
/usr/local/samba/private/smbpasswd
        root directory = 
        pam password change = No
        passwd program = /bin/passwd
        passwd chat = *new*password* %n\n
*new*password* %n\n *changed*
        passwd chat debug = No
        username map = 
        password level = 0
        username level = 0
        unix password sync = No
        restrict anonymous = No
        lanman auth = Yes
        use rhosts = No
        log level = 1
        syslog = 1
        syslog only = No
        log file = 
        max log size = 0
        timestamp logs = Yes
        debug hires timestamp = No
        debug pid = No
        debug uid = No
        protocol = NT1
        large readwrite = No
        max protocol = NT1
        min protocol = CORE
        read bmpx = No
        read raw = Yes
        write raw = Yes
        nt smb support = Yes
        nt pipe support = Yes
        announce version = 4.5
        announce as = NT
        max mux = 50
        max xmit = 65535
        name resolve order = lmhosts host wins bcast
        max packet = 65535
        max ttl = 259200
        max wins ttl = 518400
        min wins ttl = 21600
        time server = No
        change notify timeout = 60
        deadtime = 0
        getwd cache = Yes
        keepalive = 300
        lpq cache time = 10
        max smbd processes = 0
        max disk size = 0
        max open files = 10000
        read size = 16384
        socket options = TCP_NODELAY
        stat cache size = 50
        use mmap = Yes
        total print jobs = 0
        load printers = Yes
        printcap name = lpstat
        disable spoolss = No
        enumports command = 
        addprinter command = 
        deleteprinter command = 
        show add printer wizard = Yes
        os2 driver map = 
        strip dot = No
        character set = 
        mangled stack = 50
        stat cache = Yes
        domain admin group = admin
        domain guest group = 
        machine password timeout = 604800
        add user script = 
        delete user script = 
        logon script = applogon.cmd
        logon path = 
        logon drive = 
        logon home = C:\temp
        domain logons = Yes
        os level = 20
        lm announce = Auto
        lm interval = 60
        preferred master = Auto
        local master = Yes
        domain master = Auto
        browse list = Yes
        enhanced browsing = Yes
        dns proxy = Yes
        wins proxy = No
        wins server = 
        wins support = Yes
        wins hook = 
        kernel oplocks = Yes
        oplock break wait time = 0
        add share command = 
        change share command = 
        delete share command = 
        config file = 
        preload = 
        lock dir = /opt/samba-2.2.2/var/locks
        default service = 
        message command = 
        dfree command = 
        valid chars = 
        remote announce = 
        remote browse sync = 
        socket address = 0.0.0.0
        homedir map = 
        time offset = 0
        NIS homedir = No
        source environment = 
        panic action = 
        hide local users = No
        host msdfs = No
        winbind uid = 
        winbind gid = 
        template homedir = /home/%D/%U
        template shell = /bin/false
        winbind separator = \
        winbind cache time = 15
        winbind enum users = Yes
        winbind enum groups = Yes
        comment = 
        path = 
        alternate permissions = No
        username = 
        guest account = nobody
        invalid users = 
        valid users = 
        admin users = 
        read list = 
        write list = 
        printer admin = 
        force user = 
        force group = 
        read only = Yes
        create mask = 0744
        force create mode = 00
        security mask = 0777
        force security mode = 00
        directory mask = 0755
        force directory mode = 00
        directory security mask = 0777
        force directory security mode = 00
        inherit permissions = No
        guest only = No
        guest ok = No
        only user = No
        hosts allow = 192.168.
        hosts deny = 
        status = Yes
        nt acl support = Yes
        max connections = 0
        min print space = 0
        strict allocate = No
        strict sync = No
        sync always = No
        write cache size = 0
        max print jobs = 1000
        printable = No
        postscript = No
        printing = sysv
        print command = lp -c -d%p %s; rm %s
        lpq command = lpstat -o%p
        lprm command = cancel %p-%j
        lppause command = lp -i %p-%j -H hold
        lpresume command = lp -i %p-%j -H resume
        queuepause command = disable %p
        queueresume command = enable %p
        printer name = 
        use client driver = No
        printer driver = 
        printer driver file =
/opt/samba-2.2.2/lib/printers.def
        printer driver location = 
        default case = lower
        case sensitive = No
        preserve case = Yes
        short preserve case = Yes
        mangle case = No
        mangling char = ~
        hide dot files = Yes
        hide unreadable = No
        delete veto files = No
        veto files = 
        hide files = 
        veto oplock files = 
        map system = No
        map hidden = No
        map archive = Yes
        mangled names = Yes
        mangled map = 
        browseable = Yes
        blocking locks = Yes
        fake oplocks = No
        locking = Yes
        oplocks = Yes
        level2 oplocks = Yes
        oplock contention limit = 2
        posix locking = Yes
        strict locking = No
        copy = 
        include = /opt/samba/lib/smbconf.auth
        exec = 
        preexec close = No
        postexec = 
        root preexec = 
        root preexec close = No
        root postexec = 
        available = Yes
        volume = 
        fstype = NTFS
        set directory = No
        wide links = Yes
        follow symlinks = Yes
        dont descend = 
        magic script = 
        magic output = 
        delete readonly = No
        dos filemode = No
        dos filetimes = No
        dos filetime resolution = No
        fake directory create times = No
        vfs object = 
        vfs options = 
        msdfs root = No

[netlogon]
        path = /usr/local/samba/netlogon
        write list = samadm
        root preexec = /usr/local/samba/bin/smackdown
%u %I %m
        root preexec close = Yes

__________________________________________________
Do You Yahoo!?
Yahoo! Finance - Get real-time stock quotes
http://finance.yahoo.com



More information about the samba mailing list