ranger

ksambaplugin is a better tool (than swat or webmin) for samba. It's in contrib for 9.1

Have you got the audio cable between the cdrom drive and the sound card? I think windows can play CDs digitally, but it's a bit of a waste of CPU .... I really don't understand some of these posts ... granted I have been using Mandrake for some 3+ years, but I didn't do any command-line stuff to get my CD-RW writing CDs, my DVD/CD-RPM playing CD-ROMs and DVDs (with PLF stuff), digital camera's working fine, visor worked out the box. And my machine has on-board sound and SBLive! Value 4.1, and *both* work out the box. Just one note on the SBLive! cards, if you want to get rear speakers working, use alsamixergui (install it if you don't have it), toggle the one at the far right (SB Live Analog output Jack) by clicking on the lock, then adjust the volume of the "wave surround" sliders. If you want to have your settings saved, also install alsa-utils. This is an issue since ALSA has only just been made the default in Mandrake 9.0. I must still get around to having sound-fonts loaded at boot some time so I can play with midi ...

Get to learn nano (or install something better, like vi, which will syntax-highlight bind files), and have a quick read throught the bind-howto. If you can, you may want to try putting webmin on the server, which would make it a bit easier. If you're going to do it manually, make sure to bump the serial any time you make a change, and be very careful with dots ...

Actually has nothing to do with the network config tools, it's just that harddrake2 isn't up to what kudzu was in some areas. Maybe someone would like to open a bug report on this so it is dealt with? Kudzu used to prompt you to remove the configuration ... Is that really such a big problem? Did it unconfigure dhcpcd. There probably is a good reason ... Because it's much easier when things work out the box. You can't have something easier / more user friendly and ask more technical questions. Windows ICS also sets up a mini dhcp server without you asking ... and that's easy enough, isn't it? At least with drakconnect you have the option of putting in custom values for the dhcp ranges, which Windows doesn't do (even win2kpro only allows 192.168.0.0/24 !) Sure, so set up your client box to be static and turn dhcpd off!!!! But how many newbies are going to get their config wrong (like forgetting to setup caching dns ... see below ...) Caching DNS? How else is your client going to get working DNS? Sure, you could manually set the DNS on your client to be your ISPs DNS, but what when it changes? With caching DNS on the server, you can set the DNS server on the clients by way of dhcp. This is the cleanest way of doing it. Yes, one bug, noted in the errata, the incorrect setting of the GATEWAY variable. On the whole, it works quite well, if you bother to read the errata. If you can write better tools, let's see them (and I will stop working on the one I am working on now to easily setup LDAP ..)

Chances are relatively good (say 30%) that it's the firewall. Do a quick test and see. Pull the plug on your external interface (so you're safe) and then clear the firewall, and try again ... Also, check your logs. sshd will tell you when it denies a request (based on entries in hosts.allow etc) in /var/log/syslog, so if you don't see anything like that, chances are it's not even seeing the request, and that your firewall is at fault.

That's gonna give the guy cooker. Are you *really* sure that's advisable for a newbie? And that's going to pull in the whole of KDE3.1rc5 (at present) which has some issues ... I would suggest adding a normal Mandrake source, something like this would work: urpmi.addmedia rpmfind ftp://ftp.rpmfind.net/linux/Mandrake/9.0/i586/Mandrake/RPMS with synthesis.hdlist.cz But, it's easier to use http://plf.zarb.org/~nanardon to find mirrors for urpmi sources. Anyway, I think Mozilla composer is probably currently the best for WYSIWYG support, I use vi ;-).

This looks like you are trying to link objects compiled with one version of gcc (ie 2.96) with libraries compiled with another version (ie gcc-3.2). Which version of gcc are you compiling with? 'gcc -v' would help ... And I don't think that it's Mandrake that has done anything wrong, everything works fine if you don't mix compilers when doing c++ ... and hopefully gcc-3.2 will be forwards-compatible ...

I would suggest just editing the file /etc/samba/smb.conf with an editor you are comfortable with. Easiest way is like this: Start->Applications->File Tools->File Manager (Supoer User mode). hit F9 to get the directory tree, browse to /etc/samba/ and right-click on smb.conf, and choose to edit in an editor you like (Kate is ok). Otherwise, you can also try this copy, which is a minimally modified version of the default config file (only uncommenting the domain controller options). You will want to just change the workgroup: http://ranger.dnsalias.com/mandrake/samba/...controller.conf If you are going to join win2k/winxp pro machines to the domain, you need to add an smbpasswd for root: # smbpasswd -a Then, when joining the machine to the domain, use the username 'root' and the password you entered above. For a bit more on running a domain controller on Mandrake see http://ranger.dnsalias.com/mandrake/muo/co...ct/csamba6.html (it is a bit outdated though).

A number of things happen: 1)Caching name server is setup, so that queries are resolved sooner, and so you don't have to reconfigure the DNS server on all the clients every time the server connects 2)Firewall rules are setup to allow masquerading (the two iptables lines shown above your latest post) 3)IP forwarding is enabled in the kernel (the echo line in the post above your most recent post) 4)A dhcp server is setup to give all your clients: a)IP/netmask in the masqueraded subnet b)the ICS server as DNS server c)the ICS server as gateway Just setup your ineternet connection first in the Mandrake Control Center, then your internal NIC, then run the ICS tool. Don't do it manually and then complain it's too difficult. Rather do it with the tools, and see afterwards if you can do the same stuff right again.

Actually, it seems nss_wins should be able to work without a WINS server setup, you just need to install it and it should be able to find any server you can find using $ nmblookup servername It looks like it's working here (I have a complex network setup, two firewalls / masquerades, one behind the other, this is on one of them, so the test is with a local netbios alias, but it should work on a real network, it doesn't quite work to another machine in my setup ...) Just to show DNS isn't setup and I haven't entered it in /etc/hosts, and that nmblookup does find it: [bgmilne@bgmilne bgmilne]$ host test2 Host test2 not found: 3(NXDOMAIN) [bgmilne@bgmilne bgmilne]$ grep test2 /etc/hosts [bgmilne@bgmilne bgmilne]$ nmblookup test2 querying test2 on 192.168.0.255 192.168.0.216 test2<00> With nss_wins setup: [bgmilne@bgmilne bgmilne]$ grep wins /etc/nsswitch.conf hosts: files nisplus nis dns wins [bgmilne@bgmilne bgmilne]$ ping -c1 test2 PING test2 (192.168.0.216) from 192.168.0.216 : 56(84) bytes of data. 64 bytes from 192.168.0.216: icmp_seq=1 ttl=64 time=0.143 ms --- test2 ping statistics --- 1 packets transmitted, 1 received, 0% loss, time 0ms rtt min/avg/max/mdev = 0.143/0.143/0.143/0.000 ms Same, but without nss_wins setup: [bgmilne@bgmilne bgmilne]$ grep wins /etc/nsswitch.conf [bgmilne@bgmilne bgmilne]$ ping -c1 test2 ping: unknown host test2 Note that installation of the nss_wins package should add a wins entry to the hosts line of /etc/nsswitch.conf, so it should all work if you just do this: # service smb start (if you didn't have samba running) # urpmi nss_wins (if you didn't have it installed, if you did, but had no wins entry, just 'urpme nss_wins' first). Of course, dynamic dns and WINS would be cooler ....

Actually, it seems that squid-2.5 will do, and I should just have to patch in a newer header for a more recent winbind than squid-2.5 knew about ... BTW, got winbind working yet?

Found some doco on winbind + squid: http://www.squid-cache.org/Doc/FAQ/FAQ-23.html#ss23.5 I will see if I can build a squid-2.6 package that works, may need a new samba-winbind also, since I don't think we have been building with the --with-winbind-auth-challenge, since we hadn't tested it at all .... I guess I could setup a test network (with samba3, winbind from 2.2.x, and squid 2.6) for fun ... I need to play with samba3 to get decent configuration examples anyway.

I haven't tried this before, mostly we run win2k or linux desktops, where users can't change admin-type settings themselves, but this might work: 1)Setup dynamic DNS on the DHCP server, so that a succesful lease will setup up forward and reverse DNS entries on your DNS server 2)Setup a firewall, forcing all internet access through the proxy 3)On the squid proxy, make an acl: acl dhcp_users srcdomain .mydomain.com Only users that have leased an IP should be matched by this ACL, except for static DNS entries 4)In the squid conf, do something like http_access deny all http_access allow dhcp_users Shout if you don't know how to do one of those. Mandrake's SNF/MNF is quite easy so use for the firewall side of the picture (redirecting http traffic to a transparent proxy).

But I am only 8 of the first 10 hits (name, email address, or website) for this google search: http://www.google.com/search?hl=en&ie=UTF-...andrake%20samba Don't know how to displace the other two ... But if you haven't been to http://ranger.dnsalias.com/mandrake/samba , do make a turn. It's not a very creative place (heck, it's just an apache index), but there's quite a bit there ... Currently updating the samba-vscan (on-access virus-scanning with samba) for samba3 RPMs for cooker contrib ...

No, in an ideal world, one person would setup a DHCP server wih Dynamic DNS, and you wouldn't need WINS. This might work in practice if there are no win9x machines. But if you are going to setup WINS, only setup one WINS server, and you can have it broadcast by DHCP to the windows machines (unfortunately not to the linux machines). A combination of WINS and DDNS may be good enough (Stellenbosch)

You need to setup WINS, so your machine registers itself in WINS, so the windows clients can find it. Find out the IP of the WINS server on your network, and set 'wins server = (ip address)' (without the brackets of cuorse) in your /etc/samba/smb.conf (if you haven't mangled it yet, there will be an example). If you want to do things like ping windows machine names, and you have already configured WINS as above, just install 'nss_wins'.

We have seen this also, where all 60 other win2k boxes work fine, but the 2 winxp boxes show "Access Denied", but will print. If they don't print, turn off the XP firewall, which by default firewalls off ports 137-139

Well, active directory is pretty much a standard LDAP implementation (with more comprehensive ACLs and schemas) + Kerberos + Kerberos-style DNS. Unfortunately there is currently really no way to do Kerberos with windows clients, so we will ignore it (and I don't know much about it anyway ;-)). You have 9 domains then?? OK, this is quite a complex network, and one should proceed carefully ;-). In the end, samba-2.2.x really isn't up to this AFAIK (even with LDAP support), and samba3 will be able to do PDC/BDC and trust relationships with NT4. What are you running on the DCs (NT or 2k?). Not necessarily. I think there is no easy way to migrate this away from windows-style stuff, so it's going to require a windows-look-alike DC, so you're going to have to wait for samba3 to switch your DCs, but you can switch your proxy before that. Apparently squid-2.6 can do NTLM auth in conjuntion with winbind from samba-2.2.7 (if compiled with the right option). I think this is a reasonable place to start (and file/print servers can be next). Of course, you will gain the most in CAL fees if you can switch your DCs, but is also higher risk ... POP/IMAP can currently be done easily with WINBIND (I have a production Winbind/postfix/courier server in a small network) authenticating against your windows domain. If you have a windows NT domain, or 2k with anonymous access (aka pre-Windows-2000-compatible), then you can even set Mandrake 9.0 up during installation to authenticate by winbind (must use expert mode for auth setup though). File/print servers with winbind is also trivial, but you will need to modify the smb.conf after installation if you set it up during installation. You can even have ACLs out the box. We didn't ever have a windows server environment, we kept our single win2k server as a member server in our samba domain. If you want to have a go with samba3, I have RPMs for 9.0 that will install alongside 2.2.x cleanly, if you want to experiment. I am not sure if the current samba RPMs for Mandrake 9.0 are built with the options squid requires for NTLM, but if you ask nicely I could build some (heck, I need someone to test this anyway). I suspect we are just getting in the way of everyone else here, so you may want to send me mail (bgmilne at cae dot co dot za) on this matter, and we can possibly pull some other people in on the discussion. RPMS of samba3: http://ranger.dnsalias.com/mandrake/mandra...mba-3.0alpha21/ If you are running something else than 9.0, please rebuild the SRPM from cooker contribs, it should build cleanly on 8.0 or newer, possilbly older releases too. (FYI, we run samba 2.2.x as a DC on LDAP backend, but we may have to go to samba3 to get better LDAP support, such as LDAP referrals for write, before we finish the implementation of our WAN).

You will only get OO.o to return data from LDAP if you are using an OpenOffice.org build, not from the OO.o RPMs that ship with the distro (8.2 or 9.0). I am on a different machine now ... but you really just need to set your LDAP hostname, and your basedn (and possibly whether to search one level or sub, normally you need sub. Uhhh, which howto? You should take a look at the article on LDAP at http://www.mandrakesecure.net (under docs). Many things, because we replicate our LDAP directory to a number of machines (a few servers, plus laptops that run linux), we have samba passwords stored in LDAP, and we also have phpgroupware using LDAP for accounts. If ldapsearch is returning an entry you have put into LDAP, then your server should be working right, you just need to get client settings right. You should try gq (in contibs I think) or ldapbrowser (java, not in the distro) to browse your ldap server, and see things the way they really are.

The correct answer is: For each user who is going to access the samba server, do (as root): # smbpasswd -a <username>

Hmm in that case my intelligence is as low as your post was short. ;-) first I ssh to the box, give the password to get in. ls to find the file scp and now what? scp filename ip-adresOfTheBoxImAt:filename ??? doesn't work. No, don't ssh in. You can use pscp from putty, and you would do (from the client): pscp server:/path/file . (in the simpest form), or using scp if you have the cygwin ssh stuff.

Please clarify what is running on the client, and what is running on the server ... you aren't very clear.

Actually, chances are you didn't fill the domain name in in CAPS, and there is a small bug in the setup, it doesn't capitalise the domain name when making /home/%D So, you could just have fixed this by making the directory /home/%D Please undo the permissions on /home, it should not be world-writeable. Everything else (including the pam_mkhomedir) should be done right by the installation.

They are in contribs, if you don't have a contrib source setup, you are missing half the software. To setup more RPM sources, see: http://nanardon.homelinux.org/urpmi.setup/ and http://plf.zarb.org/~nanardon/index.php

OpenOffice RPMs don't have LDAP support. There are issues with this, the OpenOffice people jump through hoops to get it to work, and no-one else seems to be able to (incl RH). But, Evo and gq work for me. Are you sure your settings are right?