[Samba] can't authenticate after upgrade to 3.0.23a

Michael W. Holdeman lists at ptfd.org
Thu Jul 27 23:10:45 GMT 2006


On Thursday 27 July 2006 16:35, Jeremy Allison wrote:
> On Thu, Jul 27, 2006 at 04:46:30PM -0400, Michael W. Holdeman wrote:
> > I just switched to share security because I can not get any
> > authentication with user anymore. It asks for my ID and password but will
> > not authenticate. I have rerun smbpasswd -a mike
> > then the password, but it will not authenticate.
> > If I rebuild 3.0.22-r2 it will work sometimes. I would prefer user level
> > security but can't get it to work.
>
> User level security is infinately preferable. Post logs from smbd
> with smbclient failing to connect when you have added user mike
> in user level security.
>
> Jeremy.
OK here goes. This is a laptop I use for work, I use it on 2 LAN's at 2 
different jobs I have. Both access points are set up for 192.168.14.102 to 
lease to teh laptop as an IP. The laptop is running Gentoo, and samba is for 
access by VMWare and XP-pro for some legacy apps for Fire Department record 
keeping and reporting. The vm needs access to teh shares so teh data can be 
accessible to teh linux side for reporting and analysis.

Kernel is 2.6.17-ck2,

smb.conf is here.


[global]
log file = /var/log/samba/log.%m
restrict anonymous = no
ldap ssl = No
socket options = TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192 
force directory mode = 1777
hosts deny = 0.0.0.0/0
force group = samba
interfaces = 192.168.14.102 127.0.0.1
domain master = yes
preferred master = yes
os level = 99
name resolve order = wins lmhosts bcast
guest ok = yes
hosts allow = 127.0.0.1 192.168.14.0/24 192.168.0.0/24 192.168.111.0/24
wins support = true
max protocol = NT
server string = Samba Server %v
remote announce = 192.168.14.255/PTFD
workgroup = PTFD
force create mode = 1777
server signing = Auto
force user = mike
preload = global firehouse qb data homes itfe
max log size = 50
#bind interfaces only = yes
remote browse sync = 192.168.111.255 192.168.14.102 192.168.14.107 
192.168.14.108
acl compatibility = winnt
security = user

[homes]
browseable = no
read only = no
write list = %u
path = /home/%u
force user = %u
comment = Home directory for %S
valid users = %u


[firehouse]
read only = no
valid users = mike,guest
read list = guest
username = mike,guest, at users, at wheel, at samba
write list = mike
case sensitive = no
msdfs proxy = no
path = /home/mike/mydata/data/fh5/FH6

[itfe]
read only = no
valid users = mike,guest
read list = guest
username = mike,guest, at users, at wheel, at samba
write list = mike
case sensitive = no
msdfs proxy = no
path = /home/mike/mydata/data/itfe

[qb]
read only = no
valid users = mike,guest
read list = guest
username = mike,guest, at users, at wheel, at samba
write list = mike
case sensitive = no
msdfs proxy = no
path = /home/mike/mydata/data/qb/

[public]
comment = shared
path = /mnt/public


Error from smb4k:

params.c:OpenConfFile() - Unable to open configuration 
file "/etc/samba/smb.conf":
Permission denied
Can't load /etc/samba/smb.conf - run testparm to debug it
Anonymous login successful
28295: tree connect failed: ERRDOS - ERRnosuchshare (You specified an invalid 
share name)
SMB connection failed

(it mounts [public] fine)

log.smbd:

[2006/07/27 11:15:57, 0] printing/print_cups.c:cups_cache_reload(85)
  Unable to connect to CUPS server localhost - Connection refused
[2006/07/27 11:15:57, 0] printing/print_cups.c:cups_cache_reload(85)
  Unable to connect to CUPS server localhost - Connection refused
[2006/07/27 11:20:36, 0] smbd/server.c:main(847)
  smbd version 3.0.23a started.
  Copyright Andrew Tridgell and the Samba Team 1992-2006
[2006/07/27 11:45:24, 0] smbd/server.c:main(847)
  smbd version 3.0.23a started.
  Copyright Andrew Tridgell and the Samba Team 1992-2006
[2006/07/27 11:47:34, 0] smbd/server.c:main(847)
  smbd version 3.0.23a started.
  Copyright Andrew Tridgell and the Samba Team 1992-2006
[2006/07/27 19:00:18, 0] smbd/server.c:main(847)
  smbd version 3.0.23a started.
  Copyright Andrew Tridgell and the Samba Team 1992-2006

(I'm not worried about the cups error right now, it works...

log.nmbd:

Samba server CHIEFNB is now a domain master browser for workgroup PTFD on 
subnet UNICAST_SUBNET
  
  *****
[2006/07/27 19:00:19, 0] 
nmbd/nmbd_become_dmb.c:become_domain_master_browser_bcast(290)
  become_domain_master_browser_bcast:
  Attempting to become domain master browser on workgroup PTFD on subnet 
192.168.14.102
[2006/07/27 19:00:19, 0] 
nmbd/nmbd_become_dmb.c:become_domain_master_browser_bcast(303)
  become_domain_master_browser_bcast: querying subnet 192.168.14.102 for 
domain master browser on workgroup PTFD
[2006/07/27 19:00:19, 0] 
nmbd/nmbd_become_dmb.c:become_domain_master_query_success(233)
  become_domain_master_query_success:
  There is already a domain master browser at IP 192.168.14.14 for workgroup 
PTFD registered on subnet 192.168.14.102.

I don't understand why I dont see any errors regarding the refused connection.

Access attempts from Konqueror just tells me:

The file or folder smb://chiefnb/qb does not exist.

This is after browsing to teh share? I don't even try from xp untill I can get 
there from linux...

smbstatus:
chiefnb ~ # smbstatus

Samba version 3.0.23a
PID     Username      Group         Machine
-------------------------------------------------------------------
29064   mike          mike          chiefnb      (192.168.14.102)

Service      pid     machine       Connected at
-------------------------------------------------------
public       29108   chiefnb       Thu Jul 27 19:04:45 2006
IPC$         29064   chiefnb       Thu Jul 27 19:04:32 2006


testparm:
chiefnb samba # testparm
Load smb config files from /etc/samba/smb.conf
Processing section "[homes]"
Processing section "[firehouse]"
Processing section "[itfe]"
Processing section "[qb]"
Processing section "[public]"
Loaded services file OK.
Server role: ROLE_STANDALONE
Press enter to see a dump of your service definitions

[global]
        workgroup = PTFD
        server string = Samba Server %v
        interfaces = 192.168.14.102, 127.0.0.1
        log file = /var/log/samba/log.%m
        max log size = 50
        acl compatibility = winnt
        name resolve order = wins lmhosts bcast
        server signing = auto
        socket options = TCP_NODELAY SO_SNDBUF=8192 SO_RCVBUF=8192
        os level = 99
        preferred master = Yes
        domain master = Yes
        wins support = Yes
        ldap ssl = no
        preload = global firehouse qb data homes itfe
        remote announce = 192.168.14.255/PTFD
        remote browse sync = 192.168.111.255 192.168.14.102 192.168.14.107 
192.168.14.108
        force user = mike
        force group = samba
        force create mode = 01777
        force directory mode = 01777
        guest ok = Yes
        hosts allow = 127.0.0.1, 192.168.14.0/24, 192.168.0.0/24, 
192.168.111.0/24
        hosts deny = 0.0.0.0/0

[homes]
        comment = Home directory for %S
        path = /home/%u
        valid users = %u
        write list = %u
        force user = %u
        read only = No
        browseable = No

[firehouse]
        path = /home/mike/mydata/data/fh5/FH6
        username = mike,guest, at users, at wheel, at samba
        valid users = mike, guest
        read list = guest
        write list = mike
        read only = No
        case sensitive = No
        msdfs proxy = no

[itfe]
        path = /home/mike/mydata/data/itfe
        username = mike,guest, at users, at wheel, at samba
        valid users = mike, guest
        read list = guest
        write list = mike
        read only = No
        msdfs proxy = no

[qb]
        path = /home/mike/mydata/data/qb/
        username = mike,guest, at users, at wheel, at samba
        valid users = mike, guest
        read list = guest
        write list = mike
        read only = No
        case sensitive = No
        msdfs proxy = no

[public]
        comment = shared
        path = /mnt/public


I think I must be too stupid to get this to work!! I have been a Linux user 
since kernel, well I don't remember, got suse, and caldera a long time ago, 
so I am not "totally" clueless, at least I thought!

Mike
-- 
 
Michael W. Holdeman


________________________________________
Powered by Gentoo Linux www.gentoo.org  |
Kernel 2.6.15-ck2                       |
VMWare Workstation 5.5.1 vmware.com     |
Win4LinPro 6.1.1-03 win4lin.com         |
________________________________________|


More information about the samba mailing list