Date: Thu, 7 Aug 2008 18:06:05 +0400 From: "Ginzburg, Oleg" <Oleg.Ginzburg@billing.ru> To: "freebsd-hackers@freebsd.org" <freebsd-hackers@freebsd.org> Subject: Samba, Response too big for UDP, retry with TCP, Kerberos implementation on FreeBSD Message-ID: <04DB0C1CEA12F2449D23EDB4D0A138A8C782794195@srv-exch01.billing.ru>
next in thread | raw e-mail | index | archive | help
//sorry for spamming to another freebsd-ports maillist. This channel is mor= e suitable// Hello, I receive a similar problem in a current configuration (FreeBSD 7.0-Release= amd64, samba-3.0.31_1) like this: http://lists.samba.org/archive/samba/2007-July/133625.html and most likely I assume problems both in Samba and in realization Kerberos= on FreeBSD (IMHO Samba more:) The problem consists that during the generation phase (libads/kerberos.c:cr= eate_local_private_krb5_conf_for_domain) of temporary file /var/db/samba/sm= b_krb5/krb5.conf.<DOMAIN> is lost the instruction for transport protocol (if they present in /etc/krb5.c= onf) So, temporary workaround for this problem looks like: 1) After unsuccessful execution $ net ads join ... Edit a file /var/db/samba/smb_krb5/krb5.conf.<DOMAIN>, having added before = server a "tcp/" (of course, only if tcp proto is necessary tcp also it should be present in/etc/krd5.conf): -- [realms] <DOMAIN> =3D { kdc =3D tcp/<IP> ... } -- 2) Then set forbid modification on a file chflags schg /var/db/samba/smb_krb5/krb5.conf.<DOMAIN> 3) And trying "net join " again, with ignoring of rename error (create_local_private_krb5_conf_for_domain: rename of /var/db/samba/smb_tmp= _krb5.IQraHE to /var/db/samba/smb_krb5/krb5.conf.<DOMAIN> failed. Errno Ope= ration not permitted..) Operation must end with success execution. Question - Whether two (FreeBSD/Samba) problems are valid here? (Samba generate not corrected file)+(Heimdal Kerberos FreeBSD not trying fo= rce a tcp? PS: similar problem are not present in MIT Kerberos (/usr/ports/= security/krb5)) -- CJSC "PETER-SERVICE" =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D Direct: +7 812 3261290 ext. 0423 Tel: +7 812 3261299 Fax: +7 812 3261298 E-mail: Oleg.Ginzburg@billing.ru URL: http://www.billing.ru
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?04DB0C1CEA12F2449D23EDB4D0A138A8C782794195>