[Samba] Very strange: Samba is unable to access one of its own files

Luis Peromarta lperoma at icloud.com
Tue Nov 12 08:48:00 UTC 2024


It looks good to me, but also looks like winbind has not been started by samba-ad-dc ?

What’s the output of:

samba-tool ntacl sysvolcheck

?

I regularly do:

if ! samba-tool ntacl sysvolcheck; then samba-tool ntacl sysvolreset; fi

What’s the content of smb.conf ?
On Nov 11, 2024 at 23:40 +0100, John R. Graham via samba <samba at lists.samba.org>, wrote:
> Got these log messages on Samba startup just now on my AD/DC (including
> the preamble to show the version I'm running):
>
> Nov 11 17:05:18 ceres samba[31981]: [2024/11/11 17:05:18.209145, 0]
> ../../source4/samba/server.c:633(binary_smbd_main)
> Nov 11 17:05:18 ceres samba[31981]:   samba version 4.19.7 started.
> Nov 11 17:05:18 ceres samba[31981]:   Copyright Andrew Tridgell and the
> Samba Team 1992-2023
> Nov 11 17:05:18 ceres smbd[31996]: [2024/11/11 17:05:18.534058, 0]
> ../../source3/smbd/server.c:1746(main)
> Nov 11 17:05:18 ceres smbd[31996]:   smbd version 4.19.7 started.
> Nov 11 17:05:18 ceres smbd[31996]:   Copyright Andrew Tridgell and the
> Samba Team 1992-2023
> Nov 11 17:05:18 ceres winbindd[32025]: [2024/11/11 17:05:18.623651,  0]
> ../../source3/winbindd/winbindd.c:1441(main)
> Nov 11 17:05:18 ceres winbindd[32025]:   winbindd version 4.19.7 started.
> Nov 11 17:05:18 ceres winbindd[32025]:   Copyright Andrew Tridgell and
> the Samba Team 1992-2023
> Nov 11 17:05:30 ceres smbd[32069]:   chdir_current_service:
> vfs_ChDir(/var/lib/samba/sysvol) failed: Permission denied. Current
> token: uid=3000021, gid=3000016, 9 groups: 3000021 3000016 3000019
> 3000020 3000010 3000011 3000013 3000006 3000014
> Nov 11 17:05:40 ceres smbd[32069]: [2024/11/11 17:05:40.355505, 0]
> ../../source3/smbd/smb2_service.c:117(chdir_current_service)
> Nov 11 17:05:40 ceres smbd[32069]:   chdir_current_service:
> vfs_ChDir(/var/lib/samba/sysvol) failed: Permission denied. Current
> token: uid=3000021, gid=3000016, 9 groups: 3000021 3000016 3000019
> 3000020 3000010 3000011 3000013 3000006 3000014
>
> Looking at the directory in question, there's an odd-looking (at least
> to me) group ID associated with that directory:
>
> ceres /var/lib/samba/sysvol # ls -la /var/lib/samba/sysvol
> total 36
> drwxrwx---+ 3 root 3000000  3 Apr 18  2023 .
> drwxr-xr-x  7 root root    11 Nov 11 17:05 ..
> drwxrwx---+ 4 root 3000000  4 Apr 18  2023 samdom.example.com
>
> (Note: domain name anonymized above.)
>
> Should I be concerned?
>
> - John
>
>
>
> --
> To unsubscribe from this list go to the following URL and read the
> instructions: https://lists.samba.org/mailman/options/samba


More information about the samba mailing list