Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

samba4 installation user group question

Posted on 2014-07-13
7
Medium Priority
?
441 Views
Last Modified: 2014-07-18
I've installed and re-installed samba4 on my Debian system several times for various reasons. I've downloaded the package directly from www.samba.org, current stable release. I do the usual `./configure`, `make`, `make install`.

My issue/question is, the `make install` process create /usr/local/samba/, subdirectories and files with group 50 "staff". Why? I don't see any config options to change the group, so I assume it must be important. However, I have to change /usr/local/samba/private/dns/ and files to group bind and mode g+w or the dhcpd program cannot update the zone and journal files. I get:
Jul 13 12:58:28 mail dhcpd: Unable to add reverse map from 101.0.168.192.in-addr.arpa. to PHONETREE.hprs.local: SERVFAIL

Open in new window

After changing group and group permissions, and restarting samba, bind9 and dhcpd, the update succeeds:
Jul 13 13:51:20 mail dhcpd: Added reverse map from 103.0.168.192.in-addr.arpa. to hplaptop.hprs.local

Open in new window

Is this selection of group 50 arbitrary? Could I change it for future installations without messing up samba in other ways? Why is it set this way?
0
Comment
Question by:jmarkfoley
  • 4
  • 3
7 Comments
 
LVL 62

Expert Comment

by:gheist
ID: 40195721
I wondwr why you dont install with apt-get to have pre-configuration that mostly works?
0
 
LVL 1

Author Comment

by:jmarkfoley
ID: 40195853
Actually, I tried that, but at the time it wouldn't install properly. I forget the error. I'll try again on a dummy box later and see what the issue was. Who knows, maybe "operator error". Is apt-get how you've done it? Does it create the /usr/local/samba/ hierarchy as group 50 or something else? If something else, what?
0
 
LVL 62

Expert Comment

by:gheist
ID: 40196228
GID 50 is staff - i.e all interactive users.
Your manual installation went completely wrong.
0
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

 
LVL 1

Author Comment

by:jmarkfoley
ID: 40196261
Well, it couldn't have gone *completely* wrong. I followed the instructions pretty exactly in https://wiki.samba.org/index.php/Samba_AD_DC_HOWTO, and it is working OK. I can join computers to the domain and can add Active Directory users. I've browsed through the package folder and can't find where it create the /usr/local/samba folder.

What group does your /usr/local/samba belong to?
0
 
LVL 62

Accepted Solution

by:
gheist earned 2000 total points
ID: 40196286
I have no /usr/local/samba
I installed dpkg via apt-get
And all files are group root (gid=0) like rest of system binaries.
0
 
LVL 1

Author Comment

by:jmarkfoley
ID: 40205540
I've changed the group in /usr/local/samba to root. We'll see how it goes. That "Unable to add reverse map" message comes and goes, does not seem related to permissions on the folder. Haven't been able to identify the problem yet. Related to lease expiration time? Don't know will continue to investigate.
0
 
LVL 62

Expert Comment

by:gheist
ID: 40205944
Problem is homemade build of samba which leaves you out of all possible support channels.
0

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

There have been a lot of times when we have seen the need to enter a large number of DNS entries in a forward lookup zone. The standard procedure would be to launch the DNS Manager console, create the Zone and start adding new hosts using the New…
Occasionally you run into the website or two that will not resolve properly using your own DNS servers.  Some people simply set up global forwarders for their DNS server.  I don’t recommend doing this because it can cause problems resolving addresse…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.
Suggested Courses
Course of the Month21 days, 6 hours left to enroll

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question