From: Stavr <killkeny@yandex.ru>
To: community@lists.altlinux.org
Subject: Re: [Comm] samba+ads+winbind=проблемы?
Date: Wed, 23 Jan 2008 17:54:50 +0300
Message-ID: <25481201100090@webmail17.yandex.ru> (raw)
In-Reply-To: 1620000000219420762
23.01.08, 17:07, "Владимир Гусев" <vova1971@narod.ru>:
> > Ключевые фразы проблемы:
> > По истечении определенного промежутка времени (в моем случае это около
> > 1 часа) все портится:
> > [..]
> Уточнение - в течение 5-10 минут происходит "авария".. так что полная
> идентичность проблемы..
С такой проблемой не сталкивался. Однако могу предложить убрать параметр password server из smb.conf
С security=ADS он не используется
У меня все работает отлично. Вот мои конфиги
smb.conf
[global]
workgroup = MYDOMAIN
server string = ALT Samba
log file = /var/log/samba/log.%m
max log size = 50
security = ads
realm = MYDOMAIN.LOCAL
encrypt passwords = yes
smb passwd file = /etc/samba/smbpasswd
winbind uid = 10000-20000
winbind gid = 10000-20000
winbind use default domain = yes
template homedir = /home/MYDOMAIN/%U
template shell = /bin/bash
socket options = TCP_NODELAY
dns proxy = no
[public]
comment = Public source
path = /home/samba/public
public = yes
writable = yes
/etc/nsswitch.conf
passwd: files winbind
shadow: tcb files winbind
group: files winbind
hosts: files dns winbind
ethers: files
netmasks: files
networks: files
protocols: files
rpc: files
services: files
automount: files
aliases: files
/etc/krb5.conf
[logging]
default = FILE:/var/log/krb5libs.log
kdc = FILE:/var/log/krb5kdc.log
admin_server = FILE:/var/log/kadmind.log
[libdefaults]
ticket_lifetime = 24000
default_realm = MYDOMAIN.LOCAL
dns_lookup_realm = false
dns_lookup_kdc = false
[realms]
MYDOMAIN.LOCAL = {
kdc = srvinit.mydomain.local:88
admin_server = srvinit.mydomain.local:749
default_domain = mydomain.local
}
[domain_realm]
.mydomain.local = MYDOMAIN.LOCAL
mydomain.local = MYDOMAIN.LOCAL
[kdc]
profile = /var/lib/kerberos/krb5kdc/kdc.conf
[pam]
debug = false
ticket_lifetime = 36000
renew_lifetime = 36000
forwardable = true
krb4_convert = false
next prev parent reply other threads:[~2008-01-23 14:54 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2008-01-23 13:58 Владимир Гусев
2008-01-23 14:07 ` Владимир Гусев
2008-01-23 14:54 ` Stavr [this message]
2008-01-24 12:09 ` Владимир Гусев
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=25481201100090@webmail17.yandex.ru \
--to=killkeny@yandex.ru \
--cc=community@lists.altlinux.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
ALT Linux Community general discussions
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/community/0 community/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 community community/ http://lore.altlinux.org/community \
mandrake-russian@linuxteam.iplabs.ru community@lists.altlinux.org community@lists.altlinux.ru community@lists.altlinux.com
public-inbox-index community
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.community
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git