LINUX.ORG.RU
ФорумAdmin

samba 3.5.6

 , ,


0

1

Значит ситуевина такая: Работала себе samba+ zimbra 7, шары работали как надо, и вдруг резко начала просить пароль для некоторых шар, при этом если изменить имя шары то запрос пароля пропадает, курю данную тему уже 2 недели, никак не получается. При этом домен админ спокойно ходит в ту-же директорию без паролей.

Лог обычного смертного при доступе к директории

[2017/11/28 09:33:38.980371, 3] smbd/process.c:1485(process_smb) Transaction 782 of length 78 (0 toread)
[2017/11/28 09:33:38.980416, 3] smbd/process.c:1294(switch_message) switch message SMBtconX (pid 9177) conn 0x0
[2017/11/28 09:33:38.980438, 3] smbd/sec_ctx.c:310(set_sec_ctx) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2017/11/28 09:33:38.980603, 3] smbd/sec_ctx.c:210(push_sec_ctx) push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2017/11/28 09:33:38.980629, 3] smbd/uid.c:429(push_conn_ctx) push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2017/11/28 09:33:38.980649, 3] smbd/sec_ctx.c:310(set_sec_ctx) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2017/11/28 09:33:38.980701, 3] smbd/sec_ctx.c:418(pop_sec_ctx) pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2017/11/28 09:33:38.980750, 3] smbd/sec_ctx.c:210(push_sec_ctx) push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2017/11/28 09:33:38.980772, 3] smbd/uid.c:429(push_conn_ctx) push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2017/11/28 09:33:38.980790, 3] smbd/sec_ctx.c:310(set_sec_ctx) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2017/11/28 09:33:38.980830, 3] smbd/sec_ctx.c:418(pop_sec_ctx) pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2017/11/28 09:33:38.980889, 3] smbd/service.c:807(make_connection_snum) Connect path is '/tmp' for service [IPC$]
[2017/11/28 09:33:38.980937, 3] smbd/vfs.c:97(vfs_init_default) Initialising default vfs hooks
[2017/11/28 09:33:38.980958, 3] smbd/vfs.c:122(vfs_init_custom) Initialising custom vfs hooks from [/[Default VFS]/]
[2017/11/28 09:33:38.981050, 3] smbd/sec_ctx.c:210(push_sec_ctx) push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2017/11/28 09:33:38.981076, 3] smbd/uid.c:429(push_conn_ctx) push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2017/11/28 09:33:38.981095, 3] smbd/sec_ctx.c:310(set_sec_ctx) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2017/11/28 09:33:38.981135, 3] smbd/sec_ctx.c:418(pop_sec_ctx) pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2017/11/28 09:33:38.981175, 3] smbd/sec_ctx.c:210(push_sec_ctx) push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2017/11/28 09:33:38.981196, 3] smbd/uid.c:429(push_conn_ctx) push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2017/11/28 09:33:38.981235, 3] smbd/sec_ctx.c:310(set_sec_ctx) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2017/11/28 09:33:38.981276, 3] smbd/sec_ctx.c:418(pop_sec_ctx) pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2017/11/28 09:33:38.981319, 3] smbd/sec_ctx.c:310(set_sec_ctx) setting sec ctx (11171, 11171) - sec_ctx_stack_ndx = 0
[2017/11/28 09:33:38.981366, 3] smbd/service.c:1070(make_connection_snum) host-6111111 (::ffff:172.16.10.174) connect to service IPC$ initially as user cov (uid=11171, gid=11171) (pid 9177)
[2017/11/28 09:33:38.981397, 3] smbd/sec_ctx.c:310(set_sec_ctx) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0
[2017/11/28 09:33:38.981431, 3] smbd/reply.c:865(reply_tcon_and_X) tconX service=IPC$
[2017/11/28 09:33:38.981943, 3] smbd/process.c:1485(process_smb) Transaction 783 of length 110 (0 toread)
[2017/11/28 09:33:38.981977, 3] smbd/process.c:1294(switch_message) switch message SMBtrans2 (pid 9177) conn 0x2b8395ff83a0
[2017/11/28 09:33:38.982000, 3] smbd/sec_ctx.c:310(set_sec_ctx) setting sec ctx (11171, 11171) - sec_ctx_stack_ndx = 0
[2017/11/28 09:33:38.982137, 3] smbd/msdfs.c:848(get_referred_path) get_referred_path: |Бухгалтерия| in dfs path \cent\Бухгалтерия is not a dfs root.
[2017/11/28 09:33:38.982171, 3] smbd/error.c:80(error_packet_set) error packet at smbd/trans2.c(8018) cmd=50 (SMBtrans2) NT_STATUS_NOT_FOUND
[2017/11/28 09:33:38.983311, 3] smbd/process.c:1485(process_smb) Transaction 784 of length 92 (0 toread)
[2017/11/28 09:33:38.983342, 3] smbd/process.c:1294(switch_message) switch message SMBtconX (pid 9177) conn 0x0
[2017/11/28 09:33:38.983363, 3] smbd/sec_ctx.c:310(set_sec_ctx) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 0 [2017/11/28 09:33:38.983518, 3] smbd/sec_ctx.c:210(push_sec_ctx) push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2017/11/28 09:33:38.983545, 3] smbd/uid.c:429(push_conn_ctx) push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2017/11/28 09:33:38.983565, 3] smbd/sec_ctx.c:310(set_sec_ctx) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2017/11/28 09:33:38.983607, 3] smbd/sec_ctx.c:418(pop_sec_ctx) pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2017/11/28 09:33:38.983648, 3] smbd/sec_ctx.c:210(push_sec_ctx) push_sec_ctx(0, 0) : sec_ctx_stack_ndx = 1
[2017/11/28 09:33:38.983670, 3] smbd/uid.c:429(push_conn_ctx) push_conn_ctx(0) : conn_ctx_stack_ndx = 0
[2017/11/28 09:33:38.983688, 3] smbd/sec_ctx.c:310(set_sec_ctx) setting sec ctx (0, 0) - sec_ctx_stack_ndx = 1
[2017/11/28 09:33:38.983739, 3] smbd/sec_ctx.c:418(pop_sec_ctx) pop_sec_ctx (0, 0) - sec_ctx_stack_ndx = 0
[2017/11/28 09:33:38.983792, 3] smbd/service.c:807(make_connection_snum)

Лог домен админа

[2017/11/28 10:35:08.740024, 3] smbd/process.c:1485(process_smb) Transaction 232 of length 90 (0 toread)
[2017/11/28 10:35:08.740091, 3] smbd/process.c:1294(switch_message) switch message SMBntcreateX (pid 18303) conn 0x2b48b31d7470
[2017/11/28 10:35:08.740139, 3] smbd/vfs.c:851(check_reduced_name) check_reduced_name [.] [/fs1/Бухгалтерия1]
[2017/11/28 10:35:08.740172, 3] smbd/vfs.c:1008(check_reduced_name) check_reduced_name: . reduced to /fs1/Бухгалтерия1
[2017/11/28 10:35:08.740194, 3] smbd/vfs.c:851(check_reduced_name) check_reduced_name [.] [/fs1/Бухгалтерия1]
[2017/11/28 10:35:08.740217, 3] smbd/vfs.c:1008(check_reduced_name) check_reduced_name: . reduced to /fs1/Бухгалтерия1
[2017/11/28 10:35:08.740246, 2] smbd/dosmode.c:98(unix_mode) unix_mode(.) inheriting from .
[2017/11/28 10:35:08.740272, 2] smbd/dosmode.c:121(unix_mode) unix_mode(.) inherit mode 40777
[2017/11/28 10:35:08.740292, 3] smbd/dosmode.c:166(unix_mode) unix_mode(.) returning 0766
[2017/11/28 10:35:08.740312, 3] smbd/vfs.c:851(check_reduced_name) check_reduced_name [.] [/fs1/Бухгалтерия1]
[2017/11/28 10:35:08.740334, 3] smbd/vfs.c:1008(check_reduced_name) check_reduced_name: . reduced to /fs1/Бухгалтерия1
[2017/11/28 10:35:08.740820, 3] smbd/process.c:1485(process_smb) Transaction 233 of length 76 (0 toread)
[2017/11/28 10:35:08.740853, 3] smbd/process.c:1294(switch_message) switch message SMBtrans2 (pid 18303) conn 0x2b48b31d7470 [2017/11/28 10:35:08.740878, 3] smbd/trans2.c:5012(call_trans2qfilepathinfo)
call_trans2qfilepathinfo: TRANSACT2_QFILEINFO: level = 1006 [2017/11/28 10:35:08.740912, 3] smbd/trans2.c:5225(call_trans2qfilepathinfo) call_trans2qfilepathinfo . (fnum = 9771) level=1006 call=7 total_data=0
[2017/11/28 10:35:08.741240, 3] smbd/process.c:1485(process_smb) Transaction 234 of length 90 (0 toread)
[2017/11/28 10:35:08.741269, 3] smbd/process.c:1294(switch_message) switch message SMBtrans2 (pid 18303) conn 0x2b48b31d7470
[2017/11/28 10:35:08.741296, 3] smbd/trans2.c:2252(call_trans2findfirst) call_trans2findfirst: dirtype = 16, maxentries = 1366, close_after_first=0, close_if_end = 1 requires_resume_key = 1 level = 0x104, max_data_bytes = 16384
[2017/11/28 10:35:08.741336, 3] smbd/vfs.c:851(check_reduced_name) check_reduced_name

  • [/fs1/Бухгалтерия1]
    [2017/11/28 10:35:08.741373, 3] smbd/vfs.c:1008(check_reduced_name) check_reduced_name: * reduced to /fs1/Бухгалтерия1/*
    [2017/11/28 10:35:08.741395, 3] smbd/vfs.c:851(check_reduced_name) check_reduced_name [./] [/fs1/Бухгалтерия1]
    [2017/11/28 10:35:08.741417, 3] smbd/vfs.c:1008(check_reduced_name) check_reduced_name: ./ reduced to /fs1/Бухгалтерия1
    [2017/11/28 10:35:08.741452, 3] smbd/dir.c:544(dptr_create) creating new dirptr 256 for path ./, expect_close = 1
    [2017/11/28 10:35:08.741503, 3] smbd/dir.c:993(smbd_dirptr_get_entry) smbd_dirptr_get_entry mask=
  • found ./. fname=. (.)
    [2017/11/28 10:35:08.741549, 3] smbd/dir.c:993(smbd_dirptr_get_entry) smbd_dirptr_get_entry mask=
  • found ./.. fname=.. (..)
    [2017/11/28 10:35:08.742361, 3] smbd/dir.c:993(smbd_dirptr_get_entry)

smb.conf

[global] workgroup = TN
netbios aliases = FS
server string = Samba-LDAP PDC Server
passdb backend = ldapsam:ldap://cent.tn.local
log file = /var/log/samba/%m.log
max log size = 50
socket options = TCP_NODELAY SO_RCVBUF=8192 SO_SNDBUF=8192
add machine script = /usr/local/sbin/smbldap-useradd -W «%u»
logon path =
logon drive = Z:
logon home =
domain logons = Yes
os level = 33
preferred master = Yes
domain master = Yes
dns proxy = No
wins server = CENT
wins support = Yes
ldap admin dn = «uid=zmposixroot,cn=appaccts,cn=zimbra»
ldap group suffix = ou=groups
ldap machine suffix = ou=machines
ldap suffix = dc=tn,dc=local
ldap ssl = no
ldap user suffix = ou=people
idmap uid = 9000-20000
idmap gid = 9000-20000
log level = 3 passdb:5 auth:10 winbind:2

[Бухгалтерия] comment = Бухгалтерия
path = /fs1/Бухгалтерия1
admin users = «@domain\Domain Admins», domain\admin
read list = «@domain\Domain Users»
write list = «@domain\Domain Users»
read only = No
create mask = 0666
directory mask = 0777
inherit permissions = Yes
inherit acls = Yes
inherit owner = Yes
map acl inherit = Yes
locking = No

покажи время текущее на самбе и на домен-контроллере?

заходишь по айпи-адресу или днс-имени?

Nurmukh ★★★ ()
Ответ на: комментарий от Nurmukh

Самба и домен контроллер в 1 лице.

как по ip так и dns. [root@cent]# date Втр Ноя 28 12:11:17 MSK 2017

p1pboy ()
Вы не можете добавлять комментарии в эту тему. Тема перемещена в архив.