On Thursday 13 Oct 2011 14:50:18 Roger Oberholtzer wrote:
On Thu, 2011-10-13 at 12:56 +0200, lynn wrote:
On Thursday 13 Oct 2011 12:11:07 Roger Oberholtzer wrote:
On Thu, 2011-10-13 at 11:22 +0200, lynn wrote:
On Thursday 13 Oct 2011 08:10:17 Roger Oberholtzer wrote:
On Wed, 2011-10-12 at 11:28 -0700, John Andersen wrote:
On 10/11/2011 11:59 PM, lynn wrote: > Hi. Thanks. As you say, 'somelinuxuser' is better than root but > my client boxes do not have any users on them.
Huh? That makes no sense at all. How can you have no users defined on a client box and at the same time complain that things are mounted root:root?
With no users defined, what possible other choice would there be.
I suspect there are local users. I know that if an openSUSE box has joined an ActiveDirectory, you can have it so that when a person logs in with their ActiveDirectory credentials, an account and $HOME are automatically created if they do not already exist. Their $HOME is in /home/$WORKGROUP. It really works great.
I know the original poster said they were authenticated with LDAP. Perhaps in that case this does not happen (automatically making a local account and $HOME). But unless all these folk run as root, there must be a local account. If the LDAP method did not set it up automatically, then someone had to do it by hand in advance.
Indeed, I think we are not getting the complete picture.
Lynn, what does a user get if they type: whoami
and
echo $HOME
in a terminal window?
There are no local users on the client. On the client, authenticated via ldap:
whoami lynn
echo $HOME /home/lynn
I created lynn as an ldap user on the server using yast just taking the default values so I don't think this is an ldap problem. I think it's a samba/cifs problem as my current lan works fine using nfs/nis.
Just to be sure:
The client is an openSUSE system?
Yes, 11.4
The server is a SAMBA system?
Yes, 11.4
There is no lynn entry in /etc/passwd?
No on neither client nor server.
Wouldn't your mount command, which was: mount -t cifs //192.168.1.2/users /home -o rw,setuid
mount all the users on the local system? It is the '/home' that I wonder about. Wouldn't it have to be '/home/lynn' if you were only mounting lynn's home with this command?
yes. It does indeed mount all users on the local system. That's what I want. I want ALL my users to be able to login, not just lynn.
I suspect that is the problem. If each user's directory is mounted for that user, then Linux can give that mount point permissions. I think that is because CIFS does not have true per-file permissions. At least it does not appear they are used (if they exist at all) by the Linux CIFS file system. There is only the permissions for the while mount point.
In your mount, I see that you have uid=0. There you have it. Linux will make all files appear to belong to root. This is at the mount level. I doubt some other layer can change that.
I think that you will need to have each user's directory mounted for that user, not a common mount for all. I think it will also be a requirement that the user has a Linux uid/gid, as that is what controls the permissions and would be needed by mount. I don't know what LDAP is doing in this respect.
Since the whole shebange is mounted once, and the client and server are Linux, why CIFS? Why not a file system that has a concept of per-file ownership?
You mean like NFS? I have a 20 user lan with only ubuntu and opensuse boxes. NFS mounts /home from the server on /home on the clients. File permissions are taken care of automagically. NFS allows user:group ownership to be whatever it was on the server. CIFS it seems, will only allow for a single user: either the one who mounted the share or specified in uid and gid. I've managed to get rid of NIS and can now use LDAP for authentication. Soon we will have 10 more client boxes which will be dual boot win7/linux for new users who have to use excel and word. My server is an old amd sempron with only 2GB memory. Running samba and NFS seems to slow down the lan so I guessed that if I could remove nfs and just have cifs that would ease the load on the server. But it seems that I can't. .lnU >
This business of mounting CIFS stores automatically at login and with correct permissions is something I have not sorted out either. I 'only' have the ActiveDirectory user/password and automatic account stuf If the user does not exist, is LDAP assigning some sort of permanent uid/gid to each account? Meaning that if you get a uid/gid one time, would you get the same one the next time?
What is printed in the UID column for this command (change lynn the current user):
ps -lnU lynn
UID is 0 It's root, the user who mounted the share.
If you change the uid= in your mount command to that, the files will belong to lynn. And only lynn...
Yes, you can do that. But then everyone else who logs in apart from lynn also has their new files created as lynn. I've not given up yet. I suppose buying a proper server with more memory would do the trick. Or training new users how to use libreoffice. Yeah. I know what you're thinking. Same here! Thanks for all your time you've spent. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org