Samba - mysql, pridani uzivatele - NULL rows
Filip Flajšar
linux na ssos.cz
Čtvrtek Červenec 21 17:29:59 CEST 2005
Zdravim,
zkousim mysql passdb na samba, ale dostal jsem se k problemu.
Kdyz chci pridat uzivatele, vse probehne korektne,
ale nevyplni se vsechny bunky radku.
Vyplni se mi akorad zaznamy o vyprseni hesla a hesla (jak lm, tak nt).
Zbytek je NULL.
Angie ~ # smbpasswd -a filip -D 255
Netbios name list:-
my_netbios_names[0]="ANGIE"
Trying to load: mysql:sysnet
Attempting to register passdb backend ldapsam
Successfully added passdb backend 'ldapsam'
Attempting to register passdb backend ldapsam_compat
Successfully added passdb backend 'ldapsam_compat'
Attempting to register passdb backend NDS_ldapsam
Successfully added passdb backend 'NDS_ldapsam'
Attempting to register passdb backend NDS_ldapsam_compat
Successfully added passdb backend 'NDS_ldapsam_compat'
Attempting to register passdb backend smbpasswd
Successfully added passdb backend 'smbpasswd'
Attempting to register passdb backend tdbsam
Successfully added passdb backend 'tdbsam'
Attempting to register passdb backend guest
Successfully added passdb backend 'guest'
Attempting to find an passdb backend to match mysql:sysnet (mysql)
No builtin backend found, trying to load plugin
Probing module 'mysql'
Probing module 'mysql': Trying to load from /usr/lib/samba/pdb/mysql.so
Attempting to register passdb backend mysql
Successfully added passdb backend 'mysql'
Module '/usr/lib/samba/pdb/mysql.so' loaded
Found pdb backend mysql
Connecting to database server, host: localhost, user: samba, database:
samba, port: 3306
Connected to mysql db
pdb backend mysql:sysnet has a valid init
Attempting to find an passdb backend to match guest (guest)
Found pdb backend guest
pdb backend guest has a valid init
New SMB password:
Retype new SMB password:
Executing query SELECT
logon_time,logoff_time,kickoff_time,pass_last_set_time,pass_can_change_time,
pass_must_change_time,username,'COOLNET',nt_username,nt_fullname,home_dir,di
r_drive,logon_script,profile_path,acct_desc,workstations,unknown_str,munged_
dial,user_sid,group_sid,lm_pw,nt_pw,NULL,acct_ctrl,logon_divs,hours_len,bad_
password_count,logon_count,unknown_6 FROM user WHERE username = 'filip'
Finding user filip
Trying _Get_Pwnam(), username as lowercase is filip
Get_Pwnam_internals did find user [filip]!
pdb_set_username: setting username filip, was
element 12 -> now SET
pdb_set_full_name: setting full name , was
element 13 -> now SET
pdb_set_unix_homedir: setting home dir /home/filip, was NULL
element 22 -> now SET
pdb_set_domain: setting domain COOLNET, was
element 14 -> now DEFAULT
pdb_set_user_sid: setting user sid
S-1-5-21-2005117214-2496456194-1335296743-3004
element 18 -> now SET
pdb_set_user_sid_from_rid:
setting user sid S-1-5-21-2005117214-2496456194-1335296743-3004 from
rid 3004
tdb_pack(ddff, 1024) -> 24
tdb_pack(ddff, 1024) -> 15
tdb_pack(ddff, 1024) -> 16
tdb_pack(ddff, 1024) -> 21
tdb_pack(ddff, 1024) -> 27
tdb_pack(ddff, 1024) -> 26
tdb_pack(ddff, 1024) -> 25
tdb_pack(ddff, 1024) -> 26
tdb_pack(ddff, 1024) -> 21
tdb_pack(ddff, 1024) -> 23
tdb_pack(ddff, 1024) -> 22
tdb_pack(ddff, 1024) -> 23
tdb_unpack(ddff, 22) -> 22
tdb_unpack(ddff, 26) -> 26
tdb_unpack(ddff, 21) -> 21
tdb_unpack(ddff, 16) -> 16
tdb_unpack(ddff, 23) -> 23
tdb_unpack(ddff, 21) -> 21
tdb_unpack(ddff, 23) -> 23
tdb_unpack(ddff, 25) -> 25
tdb_unpack(ddff, 24) -> 24
tdb_unpack(ddff, 27) -> 27
tdb_unpack(ddff, 26) -> 26
tdb_unpack(ddff, 15) -> 15
pdb_set_group_sid: setting group sid
S-1-5-21-2005117214-2496456194-1335296743-1883
element 19 -> now SET
pdb_set_group_sid_from_rid:
setting group sid S-1-5-21-2005117214-2496456194-1335296743-1883
from rid 1883
pdb_set_profile_path: setting profile path \\angie\home\profiles, was
element 2 -> now DEFAULT
pdb_set_homedir: setting home dir \\angie\filip, was
element 1 -> now DEFAULT
pdb_set_dir_drive: setting dir drive J:, was NULL
element 3 -> now DEFAULT
pdb_set_logon_script: setting logon script ucitel.bat, was
element 4 -> now DEFAULT
element 20 -> now DEFAULT
pdb_init_sam_new: no RID specified. Generating one via old algorithm
pdb_set_user_sid: setting user sid
S-1-5-21-2005117214-2496456194-1335296743-3004
element 18 -> now SET
pdb_set_user_sid_from_rid:
setting user sid S-1-5-21-2005117214-2496456194-1335296743-3004 from
rid 3004
element 20 -> now CHANGED
element 20 -> now CHANGED
element 33 -> now CHANGED
element 32 -> now CHANGED
element 11 -> now CHANGED
element 21 -> now CHANGED
grant_privilege: S-1-1-0
original privilege mask:
SE_PRIV 0x82239e0 0x817cb2d 0xd 0x80fb310
new privilege mask:
SE_PRIV 0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-544
original privilege mask:
SE_PRIV 0x82239e0 0x817cb2d 0xd 0x80fb310
new privilege mask:
SE_PRIV 0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-548
original privilege mask:
SE_PRIV 0x82239e0 0x817cb2d 0xd 0x80fb310
new privilege mask:
SE_PRIV 0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-549
original privilege mask:
SE_PRIV 0x82239e0 0x817cb2d 0xd 0x80fb310
new privilege mask:
SE_PRIV 0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-550
original privilege mask:
SE_PRIV 0x82239e0 0x817cb2d 0xd 0x80fb310
new privilege mask:
SE_PRIV 0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-551
original privilege mask:
SE_PRIV 0x82239e0 0x817cb2d 0xd 0x80fb310
new privilege mask:
SE_PRIV 0x0 0x0 0x0 0x0
account_policy_get: maximum password age:-1
element 10 -> now CHANGED
account_policy_get: minimum password age:0
element 9 -> now CHANGED
account_policy_get: password history:0
element 34 -> now CHANGED
element 20: SET
element 20: CHANGED
element 5: DEFAULT
element 6: DEFAULT
element 7: DEFAULT
element 9: SET
element 9: CHANGED
element 10: SET
element 10: CHANGED
element 21: SET
element 21: CHANGED
element 16: DEFAULT
element 17: DEFAULT
element 18: SET
element 19: SET
element 12: SET
element 14: DEFAULT
element 12: SET
element 13: SET
element 4: DEFAULT
element 2: DEFAULT
element 3: DEFAULT
element 1: DEFAULT
element 24: DEFAULT
element 25: DEFAULT
element 32: SET
element 32: CHANGED
element 33: SET
element 33: CHANGED
Added user filip.
Angie ~ #
Pres pdbedit hlasi, ze uzivatel neexistuje (samozrejme, když ho chci asi
pridat)
Angie ~ # pdbedit -a -u filip -d 255
INFO: Current debug levels:
all: True/255
tdb: False/0
printdrivers: False/0
lanman: False/0
smb: False/0
rpc_parse: False/0
rpc_srv: False/0
rpc_cli: False/0
passdb: False/0
sam: False/0
auth: False/0
winbind: False/0
vfs: False/0
idmap: False/0
quota: False/0
acls: False/0
lp_load: refreshing parameters
Initialising global parameters
params.c:pm_process() - Processing configuration file "/etc/samba/smb.conf"
Processing section "[global]"
doing parameter netbios name = Angie
handle_netbios_name: set global_myname to: ANGIE
doing parameter workgroup = COOLNET
doing parameter os level = 99
doing parameter passdb backend = mysql:sysnet
doing parameter sysnet:mysql host = localhost
doing parameter sysnet:mysql user = samba
doing parameter sysnet:mysql password = heslo
doing parameter sysnet:mysql database = samba
doing parameter sysnet:mysql table = user
doing parameter sysnet:logon time column = logon_time
doing parameter sysnet:logoff time column = logoff_time
doing parameter sysnet:kickoff time column = kickoff_time
doing parameter sysnet:pass last set time column = pass_last_set_time
doing parameter sysnet:pass can change time column = pass_can_change_time
doing parameter sysnet:pass must change time column = pass_must_change_time
doing parameter sysnet:username column = username
doing parameter sysnet:domain column = 'COOLNET':
doing parameter sysnet:nt username column = nt_username
doing parameter sysnet:fullname column = nt_fullname
doing parameter sysnet:home dir column = home_dir
doing parameter sysnet:dir drive column = dir_drive
doing parameter sysnet:logon script column = logon_script
doing parameter sysnet:profile path column = profile_path
doing parameter sysnet:acct desc column = acct_desc
doing parameter sysnet:workstations column = workstations
doing parameter sysnet:unknown string column = unknown_str
doing parameter sysnet:munged dial column = munged_dial
doing parameter sysnet:user sid column = user_sid
doing parameter sysnet:group sid column = group_sid
doing parameter sysnet:lanman pass column = lm_pw
doing parameter sysnet:nt pass column = nt_pw
doing parameter sysnet:acct ctrl column = acct_ctrl
doing parameter sysnet:unknown 3 column = unknown_3
doing parameter sysnet:logon divs column = logon_divs
doing parameter sysnet:hours len column = hours_len
doing parameter sysnet:bad password count column = bad_password_count
doing parameter sysnet:logon count column = logon_count
doing parameter sysnet:unknown 5 column = unknown_5
doing parameter sysnet:unknown 6 column = unknown_6
doing parameter name resolve order = wins bcast hosts
doing parameter private dir = /etc/samba/private
doing parameter admin users = filip
doing parameter time server = Yes
doing parameter logon script = %g.bat
doing parameter max log size = 50
doing parameter log level = 1
doing parameter log file = /var/log/samba/%m
doing parameter profile acls = Yes
doing parameter load printers = No
doing parameter map acl inherit = Yes
doing parameter smb ports = 139 445
doing parameter logon drive = J:
doing parameter map to guest = Bad User
doing parameter domain master = Yes
doing parameter min password length = 4
WARNING: The "min password length" option is deprecated
doing parameter logon home = \\%L\%U
doing parameter wins proxy = Yes
doing parameter wins support = true
doing parameter vfs objects = audit
doing parameter server string = Angie
doing parameter logon path = \\%L\home\profiles
doing parameter syslog = 0
doing parameter domain logons = Yes
pm_process() returned Yes
lp_servicenumber: couldn't find homes
set_server_role: role = ROLE_DOMAIN_PDC
Attempting to register new charset UCS-2LE
Registered charset UCS-2LE
Attempting to register new charset UTF-16LE
Registered charset UTF-16LE
Attempting to register new charset UCS-2BE
Registered charset UCS-2BE
Attempting to register new charset UTF-16BE
Registered charset UTF-16BE
Attempting to register new charset UTF8
Registered charset UTF8
Attempting to register new charset UTF-8
Registered charset UTF-8
Attempting to register new charset ASCII
Registered charset ASCII
Attempting to register new charset 646
Registered charset 646
Attempting to register new charset ISO-8859-1
Registered charset ISO-8859-1
Attempting to register new charset UCS2-HEX
Registered charset UCS2-HEX
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Substituting charset 'ANSI_X3.4-1968' for LOCALE
Trying to load: mysql:sysnet
Attempting to register passdb backend ldapsam
Successfully added passdb backend 'ldapsam'
Attempting to register passdb backend ldapsam_compat
Successfully added passdb backend 'ldapsam_compat'
Attempting to register passdb backend NDS_ldapsam
Successfully added passdb backend 'NDS_ldapsam'
Attempting to register passdb backend NDS_ldapsam_compat
Successfully added passdb backend 'NDS_ldapsam_compat'
Attempting to register passdb backend smbpasswd
Successfully added passdb backend 'smbpasswd'
Attempting to register passdb backend tdbsam
Successfully added passdb backend 'tdbsam'
Attempting to register passdb backend guest
Successfully added passdb backend 'guest'
Attempting to find an passdb backend to match mysql:sysnet (mysql)
No builtin backend found, trying to load plugin
Probing module 'mysql'
Probing module 'mysql': Trying to load from /usr/lib/samba/pdb/mysql.so
Attempting to register passdb backend mysql
Successfully added passdb backend 'mysql'
Module '/usr/lib/samba/pdb/mysql.so' loaded
Found pdb backend mysql
Connecting to database server, host: localhost, user: samba, database:
samba, port: 3306
Connected to mysql db
pdb backend mysql:sysnet has a valid init
Attempting to find an passdb backend to match guest (guest)
Found pdb backend guest
pdb backend guest has a valid init
Netbios name list:-
my_netbios_names[0]="ANGIE"
Trying to load: mysql:sysnet
Attempting to find an passdb backend to match mysql:sysnet (mysql)
Found pdb backend mysql
Connecting to database server, host: localhost, user: samba, database:
samba, port: 3306
Connected to mysql db
pdb backend mysql:sysnet has a valid init
Attempting to find an passdb backend to match guest (guest)
Found pdb backend guest
pdb backend guest has a valid init
Finding user filip
Trying _Get_Pwnam(), username as lowercase is filip
Get_Pwnam_internals did find user [filip]!
pdb_set_username: setting username filip, was
element 12 -> now SET
pdb_set_full_name: setting full name , was
element 13 -> now SET
pdb_set_unix_homedir: setting home dir /home/filip, was NULL
element 22 -> now SET
pdb_set_domain: setting domain COOLNET, was
element 14 -> now DEFAULT
pdb_set_user_sid: setting user sid
S-1-5-21-2005117214-2496456194-1335296743-3004
element 18 -> now SET
pdb_set_user_sid_from_rid:
setting user sid S-1-5-21-2005117214-2496456194-1335296743-3004 from
rid 3004
tdb_pack(ddff, 1024) -> 24
tdb_pack(ddff, 1024) -> 15
tdb_pack(ddff, 1024) -> 16
tdb_pack(ddff, 1024) -> 21
tdb_pack(ddff, 1024) -> 27
tdb_pack(ddff, 1024) -> 26
tdb_pack(ddff, 1024) -> 25
tdb_pack(ddff, 1024) -> 26
tdb_pack(ddff, 1024) -> 21
tdb_pack(ddff, 1024) -> 23
tdb_pack(ddff, 1024) -> 22
tdb_pack(ddff, 1024) -> 23
tdb_unpack(ddff, 22) -> 22
tdb_unpack(ddff, 26) -> 26
tdb_unpack(ddff, 21) -> 21
tdb_unpack(ddff, 16) -> 16
tdb_unpack(ddff, 23) -> 23
tdb_unpack(ddff, 21) -> 21
tdb_unpack(ddff, 23) -> 23
tdb_unpack(ddff, 25) -> 25
tdb_unpack(ddff, 24) -> 24
tdb_unpack(ddff, 27) -> 27
tdb_unpack(ddff, 26) -> 26
tdb_unpack(ddff, 15) -> 15
pdb_set_group_sid: setting group sid
S-1-5-21-2005117214-2496456194-1335296743-1883
element 19 -> now SET
pdb_set_group_sid_from_rid:
setting group sid S-1-5-21-2005117214-2496456194-1335296743-1883
from rid 1883
pdb_set_profile_path: setting profile path \\angie\home\profiles, was
element 2 -> now DEFAULT
pdb_set_homedir: setting home dir \\angie\filip, was
element 1 -> now DEFAULT
pdb_set_dir_drive: setting dir drive J:, was NULL
element 3 -> now DEFAULT
pdb_set_logon_script: setting logon script ucitel.bat, was
element 4 -> now DEFAULT
element 20 -> now DEFAULT
pdb_init_sam_new: no RID specified. Generating one via old algorithm
pdb_set_user_sid: setting user sid
S-1-5-21-2005117214-2496456194-1335296743-3004
element 18 -> now SET
pdb_set_user_sid_from_rid:
setting user sid S-1-5-21-2005117214-2496456194-1335296743-3004 from
rid 3004
new password:
retype new password:
element 33 -> now CHANGED
element 32 -> now CHANGED
element 11 -> now CHANGED
element 21 -> now CHANGED
grant_privilege: S-1-1-0
original privilege mask:
SE_PRIV 0x8179af0 0x80d7d2d 0xd 0x80bc3c0
new privilege mask:
SE_PRIV 0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-544
original privilege mask:
SE_PRIV 0x8179af0 0x80d7d2d 0xd 0x80bc3c0
new privilege mask:
SE_PRIV 0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-548
original privilege mask:
SE_PRIV 0x8179af0 0x80d7d2d 0xd 0x80bc3c0
new privilege mask:
SE_PRIV 0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-549
original privilege mask:
SE_PRIV 0x8179af0 0x80d7d2d 0xd 0x80bc3c0
new privilege mask:
SE_PRIV 0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-550
original privilege mask:
SE_PRIV 0x8179af0 0x80d7d2d 0xd 0x80bc3c0
new privilege mask:
SE_PRIV 0x0 0x0 0x0 0x0
grant_privilege: S-1-5-32-551
original privilege mask:
SE_PRIV 0x8179af0 0x80d7d2d 0xd 0x80bc3c0
new privilege mask:
SE_PRIV 0x0 0x0 0x0 0x0
account_policy_get: maximum password age:-1
element 10 -> now CHANGED
account_policy_get: minimum password age:0
element 9 -> now CHANGED
account_policy_get: password history:0
element 34 -> now CHANGED
element 20 -> now CHANGED
element 20: SET
element 20: CHANGED
element 5: DEFAULT
element 6: DEFAULT
element 7: DEFAULT
element 9: SET
element 9: CHANGED
element 10: SET
element 10: CHANGED
element 21: SET
element 21: CHANGED
element 16: DEFAULT
element 17: DEFAULT
element 18: SET
element 19: SET
element 12: SET
element 14: DEFAULT
element 12: SET
element 13: SET
element 4: DEFAULT
element 2: DEFAULT
element 3: DEFAULT
element 1: DEFAULT
element 24: DEFAULT
element 25: DEFAULT
element 32: SET
element 32: CHANGED
element 33: SET
element 33: CHANGED
Executing query SELECT
logon_time,logoff_time,kickoff_time,pass_last_set_time,pass_can_change_time,
pass_must_change_time,username,'COOLNET',nt_username,nt_fullname,home_dir,di
r_drive,logon_script,profile_path,acct_desc,workstations,unknown_str,munged_
dial,user_sid,group_sid,lm_pw,nt_pw,NULL,acct_ctrl,logon_divs,hours_len,bad_
password_count,logon_count,unknown_6 FROM user WHERE username = 'filip'
Username not found!
Angie ~ #
Netusite co s tim? Google mi toho moc neporadil, lists.samba.org také ne.
Stále premyslim o vhodnem passdb backendu, který by umel uchovavat i
informace jako AD. (pass expire atd).
Mysql by byla nejvhodnejsi, protože se bude dobře pasovat do naseho
informacniho systemu.
S LDAPem si nejsem moc jisty, protože ho nezvladam na 100%.
Diky
-- Filip Flajsar
Další informace o konferenci Linux