[Samba] migration of samba 3.22a to Samba 3.23a - 2 possible bugs

Alex Murphy murphy at sgtp.samara.ru
Wed Apr 2 06:03:58 GMT 2003


How do you do !!!
  Pereshel with samba 3.22a on samba 3.23a (for support LDAP mapping group), 
did not change the config file - has installed in the same directory, has 
noticed 2 possible bugs:
1. after performing
    root# pdbedit -i tdbsam -e ldapsam -g
 the groups were orderly exported in LDAP directory, but with full absence 
privelege:

[root at bene bin]# ./smbgroupedit -l
ldapsam_open_connection: connection opened
ldap_connect_system: succesful connection to the LDAP server
ldapsam_setsampwent: 12 entries in the base!
Entry found for group: 1002
Attribute description not found
 ....
System Operators
        SID       : S-1-5-32-549
        Unix group: System Operators
        Group type: Domain group
        Comment   :
        Privilege : No privilege

Replicators
        SID       : S-1-5-32-552
        Unix group: Replicators
        Group type: Domain group
        Comment   :
        Privilege : No privilege

Guests
        SID       : S-1-5-32-546
        Unix group: Guests
        Group type: Domain group
        Comment   :
        Privilege : No privilege

Domain Admins
        SID       : S-1-5-21-1174496667-1382807048-3288504375-512
        Unix group: Domain Admins
        Group type: Domain group
        Comment   :
        Privilege : No privilege

Domain Guests
        SID       : S-1-5-21-1174496667-1382807048-3288504375-514
        Unix group: Domain Guests
        Group type: Domain group
        Comment   :
        Privilege : No privilege

Power Users
        SID       : S-1-5-32-547
        Unix group: Power Users
        Group type: Domain group
        Comment   :
        Privilege : No privilege

Print Operators
        SID       : S-1-5-32-550
        Unix group: Print Operators
        Group type: Domain group
        Comment   :
        Privilege : No privilege

Administrators
        SID       : S-1-5-32-544
        Unix group: Administrators
        Group type: Domain group
        Comment   :
        Privilege : No privilege

Account Operators
        SID       : S-1-5-32-548
        Unix group: Account Operators
        Group type: Domain group
        Comment   :
        Privilege : No privilege

Domain Users
        SID       : S-1-5-21-1174496667-1382807048-3288504375-513
        Unix group: Domain Users
        Group type: Domain group
        Comment   :
        Privilege : No privilege

Backup Operators
        SID       : S-1-5-32-551
        Unix group: Backup Operators
        Group type: Domain group
        Comment   :
        Privilege : No privilege

Users
        SID       : S-1-5-32-545
        Unix group: Users
        Group type: Domain group
        Comment   :
        Privilege : No privilege
As be ? Privelege do not allow to use these groups for conferring user 
authority manager and etc.

2. On samba 3.22a user could remove attribut Read with file or files, now file 
ALWAYS ReadOnly i.e. attribut Read to remove not possible - that to do ?  


More information about the samba mailing list