[Samba] Samba 3 by Example - chapter 5 & 6 ( Manager -> sambaadmin)

Gordon Messmer yinyang at eburg.com
Thu Mar 2 07:38:14 GMT 2006

adrian sender wrote:
> I am sticking to the documentation, (samba 3 by example by jht) 
> excellent book!;

Yes, it's an excellent book.  I have a copy, myself.  However, you won't 
get anywhere "sticking to" its LDAP documentation.

The LDAP documentation in "Samba-3 by Example" is BAD.  Very bad.  It 
completely abrogates any discussion of security as a matter that the 
user should be expert enough to handle, and gives example configuration 
files that are completely open to attack.  It would have been better to 
ignore the LDAP server's configuration entirely and explicitly state 
that admins are expected to be able to do it on their own.

Further, "Samba-3 by Example" assumes that you have a working directory, 
to begin with.  Using OpenLDAP, you must create the containers (using 
slapadd, or ldapadd and the "rootdn") before you can bind and populate 
the directory with other tools.  This is covered in the quickstart guide:

I think you should follow Craig's advice, get your hands on a copy of 
"LDAP System Administration", and go through it carefully.  LDAP is a 
wonderful enabling technology, but if you don't understand how it works, 
you'll get terrible performance, and risk exposing private data.

More information about the samba mailing list