[Samba] help on lib/smbldap.c:smbldap_open(1009) smbldap_open:
cannot access LDAP when not root..
Ricardo Dias Campos
rdcampos at rsi.com.br
Thu Apr 19 00:16:36 GMT 2007
Hi, people.
I've sent a message looking for help but I had no answer. I don't know
whether no one could help or there is missing information or this is the
wrong list to post the message.
Can some one give me some help?
Ricardo
On Tue, 17 Apr 2007, Ricardo Dias Campos wrote:
> Hi.
>
> I'm dealing with this "lib/smbldap.c:smbldap_open(1009)" message in the
> log file. I tried to find some hint in the net but I couldn't find
> anything that pointed to a solution.
>
> Below are the surrounding messages in a excerpt of the log file:
>
> [2007/04/02 17:31:10, 3] passdb/lookup_sid.c:fetch_sid_from_uid_cache(918)
> fetch sid from uid cache 1088 -> S-1-5-21-2852544288-689542784-3650984603-3176
> [2007/04/02 17:31:10, 3] passdb/lookup_sid.c:fetch_sid_from_uid_cache(918)
> fetch sid from uid cache 1124 -> S-1-5-21-2852544288-689542784-3650984603-3248
> [2007/04/02 17:31:10, 3] passdb/lookup_sid.c:fetch_sid_from_uid_cache(918)
> fetch sid from uid cache 1144 -> S-1-5-21-2852544288-689542784-3650984603-3288
> [2007/04/02 17:31:10, 3] passdb/lookup_sid.c:fetch_sid_from_uid_cache(918)
> fetch sid from uid cache 1254 -> S-1-5-21-2852544288-689542784-3650984603-3508
> [2007/04/02 17:31:10, 3] passdb/lookup_sid.c:fetch_sid_from_uid_cache(918)
> fetch sid from uid cache 1322 -> S-1-5-21-2852544288-689542784-3650984603-3644
> [2007/04/02 17:31:10, 5] lib/smbldap.c:smbldap_search_ext(1179)
> smbldap_search_ext: base => [ou=grupos,dc=xxxx,dc=yyy,dc=zz], filter => [(&(objectClass=sambaGroupMapping)(gidNumber=0))], scope => [2]
> [2007/04/02 17:31:10, 0] lib/smbldap.c:smbldap_open(1009)
> smbldap_open: cannot access LDAP when not root..
> [2007/04/02 17:31:10, 10] passdb/lookup_sid.c:gid_to_sid(1137)
> gid_to_sid: local 0 -> S-1-22-2-0
> [2007/04/02 17:31:10, 3] passdb/lookup_sid.c:fetch_sid_from_gid_cache(995)
> fetch sid from gid cache 1012 -> S-1-5-21-2852544288-689542784-3650984603-3025
> [2007/04/02 17:31:10, 10] smbd/posix_acls.c:canonicalise_acl(2205)
> canonicalise_acl: Access ace entries before arrange :
> [2007/04/02 17:31:10, 10] smbd/posix_acls.c:canonicalise_acl(2218)
> canon_ace index 0. Type = allow SID = S-1-1-0 other SMB_ACL_OTHER perms ---
> [2007/04/02 17:31:10, 10] smbd/posix_acls.c:canonicalise_acl(2218)
> canon_ace index 1. Type = allow SID = S-1-5-21-2852544288-689542784-3650984603-3025 gid 1012 (ensur) SMB_ACL_GROUP perms rwx
> [2007/04/02 17:31:10, 10] smbd/posix_acls.c:canonicalise_acl(2218)
> canon_ace index 2. Type = allow SID = S-1-22-2-0 gid 0 (0) SMB_ACL_GROUP perms rwx
>
> I could see in the source of smbldap.c the 'offending line' but it didn't
> help this much since the only way I could devise to correct the problem
> was to recompile the program with NO_LDAP_SECURITY, which seemed to me to
> be not what I should do.
>
> I can also read in the log that it looks for a group with 'gidNumber=0'
> (what I have none). I could not see if these two messages are related.
>
> Thanks for any help.
>
> Ricardo
More information about the samba
mailing list