samba.org · Domains · Slashdot Mirror

Rsync is your friend... by dispensa · 2002-01-20 04:00 · Score: 2, Informative · on Kernel.org Needs Some Help, Perl Foundation Got Some

It's been up on the kernel.org site for a while now, and it only sends binary diffs, so it's quite light. The overhead is like 1%, plus the diffs. In fact, Tridge wrote this exact case (rsyncing the linux kernel) up in one of his early papers on the need for rsync. rsync.samba.org for more information.

doxygen for samba by boots@work · 2002-01-10 17:51 · Score: 1 · on Writing Documentation

Here's a Doxygenated version of the Samba source code. You can see that not much of the source has real documentation yet, so only a few functions have really nice documentation. This actually makes it a nice example for a project thinking about changing across, because even without much markup Doxygen still gives you useful cross-referencing a source browsing.

On the whole, the cross-referencing is less useful than Exuberant-etags and id-utils under emacs, but it's still pretty cool.

Doxygen can produce TeX output, however it doesn't look great, and for a project as big as Samba it can overflow internal limits in the default build of LaTeX. I'm sure you could patch it to look better.

Another weakness is that it does not know about CVS. It's nice to see the history of the code integrated with the current state. LXR will do that for you, but at the cost of a more complicated server-side installation.

--
Martin

Re:Rev-eng feats never cease to amaze me by Jodrell · 2002-01-08 03:34 · Score: 3, Informative · on Samba Turns 10

If there were some way I could contribute monetarily to the Samba project

It's a well known fact that Andrew Tridgell, Samba's creator, accepts Pizza if you feel the urge to be generous. More details in the FAQ:

Andrew doesn't askfor payment, but he does appreciate it when people give him pizza. This calls for a little organisation when the pizza donor is twenty thousand kilometres away, but it has been done. Method 1: Ring up your local branch of an international pizza chain and see if they honour their vouchers internationally. Pizza Hut do, which is how the entire Canberra Linux Users Group got to eat pizza one night, courtesy of someone in the US Method 2: Ring up a local pizza shop in Canberra and quote a credit card number for a certain amount, and tell them that Andrew will be collecting it (don't forget to tell him.) One kind soul from Germany did this. Method 3: Purchase a pizza voucher from your local pizza shop that has no international affiliations and send it to Andrew. It is completely useless but he can hang it on the wall next to the one he already has from Germany :-) Method 4: Air freight him a pizza with your favourite regional flavours. It will probably get stuck in customs or torn apart by hungry sniffer dogs but it will have been a noble gesture.

Re:Yes there is by wfrp01 · 2001-12-30 11:13 · Score: 2 · on Is There a Better Way to do UNIX Workgroups?

Any decent admin worried about security will disable booting from CD (and floppy) and password-protect the BIOS configuration screen.

Except that you don't always have control of all of the workstations. University personally owned computers, for example. What you're suggesting will only work in a rigidly controlled environment. Better to have a more secure filesharing methodology. NFS4, for example. Or I understand AFS to be more secure. However, this would seem to be a difficult system to use in an evironment that must also cooperate with, say, Windows clients.

I hate to say it, but as things stand today, you'll end up with a much more secure shared filesystem if you use samba + windows clients. Unless you use a system like AFS that doesn't play nice with others. This is definitely a chink in the *nix armor.

Maybe I just don't understand AFS well enough. I've been pinning my hopes on NFSv4, but this certainly looks discouraging. Maybe umich will save us. By June 30th, they say... Here's to William, Jim, Kendrick, and Jake!

Re:Sounds like 10 ten pipe dreams to me by omega9 · 2001-12-27 19:43 · Score: 2 · on 10 Linux Predictions For 2002

You haven't done much (if any) research, have you? Actually, if you were half-way involved in a corporate environment that took linux seriously, you might have had a clue in the first place. So let's start building a reply:

The linux desktop is going nowhere fast, and for most of these projections to come true there would have to be a mass migration to the linux desktop which will not happen.

Debatable. But you are probably correct that there will not be a mass migration to a Linux desktop, at least in a short period of time. But you can't deny the efforts being made to push in that direction. With a few moves in the right direction I think Linux has a pretty good chance.

OEMS are stepping away from the linux desktop not towards it, so you will not be seeing "dual boots".

OEMs screwed it up all on their own. I recently ordered a Dell i8k laptop back when they were still "offerring" Linux preinstalled. If I chose Linux, Dell told me it would take 2-3 weeks to ship. However a Windows version could be shiped the next day. And do you seriously think Microsoft would let a OEM ship anything dual-booted with Windows?!?

I look back at the NT 4 domain model, and it wasn't great, but its better than anything in the linux camp.

You haven't played much with Samba, have you? Samba can completely replace NT4, Warp, and Netware services. That's the server side. On the client side there's Pam_Smb which can allow Linux to authenticate to NT/2000 domains. Red Hat 7.2 even gives you this option during install now.

And now with AD you have highly scalable enterprise ready directory services and no way to truly integrate linux.

We can argue about your definition of "truly", or I can go back to my Perl scripts that work with AD just fine.

Re:Bollocks. by nyet · 2001-12-23 06:12 · Score: 2 · on OS X Vs. Linux On The Desktop

Dragging and dropping is better than rsync, because with rsync you have to know and type out the name of the directory ahead of time. GUIs provide a nice spatial representation of the directory structure, and are very quick to scan and find.

Do you even KNOW what rsync is used for? Hint: its not a replacement for cp -a. You need learn a bit more about what rsync actually does.

From the features list on rsync.samba.org:

rsync features
rsync is a file transfer program for Unix systems. rsync uses the "rsync algorithm" which provides a very fast method for bringing remote files into sync. It does this by sending just the differences in the files across the link, without requiring that both sets of files are present at one of the ends of the link beforehand.
Some features of rsync include

can update whole directory trees and filesystems

optionally preserves symbolic links, hard links, file ownership, permissions, devices and times

requires no special privilages to install
internal pipelining reduces latency for multiple files

can use rsh, ssh or direct sockets as the transport

supports anonymous rsync which is ideal for mirroring

There are about a million other features your GUI can't even come CLOSE to implementing w/o a maze of tabbed options menus. Fortunately for me, I am capable of LEARNING how to use the tool so I can whip out a one liner in a few seconds that does EXACTLY what I want, every time.

GUIs are great for tasks you only do a few times (or need to learn how to do quickly), but as a front end to a general purpose utility, they simply don't match up to what a CLI can do.

An aside by Rick+the+Red · 2001-12-13 07:33 · Score: 1, Redundant · on Mounting .ISO's Into An NT File System?

You'd have to get fancy to get past 26 drive letters though,

Interestingly enough, in MS-DOS 1.0 you could have 64 block devices. M$ reduced the number to 26 in MS-DOS 2.0 (and then, in perhaps the first known example of their arrogance, claimed that DOS 2 was fully upward compatible with DOS 1) because they couldn't figure out how to identify numbers 27 through 64. I guess they didn't understand ASCII.

Besides, who on earth would want more than 26 block devices? [Uh, maybe the same folks who would want more than 640k of RAM? Naaah.]

So now, as then, if you want something out of the ordinary (i.e., something useful) don't use Micro$soft products. I think the suggestion of using Samba on Linux under VMWare to serve the ISO images to the host W2K box is your best bet.

Hard drive . . . rsync by pete-classic · 2001-12-11 10:00 · Score: 5, Informative · on Affordable Home Backups for 10-100G Systems?

A lot of people have mentioned that disk to disk backup seems to be the best way to go.

I agree.

What hasn't been mentioned is rsync, which makes disk to (local or remote) disk backups fast and easy.

It is trival to set up a second disk that is a "stale" mirror of your primary disk(s) that backs up nightly, and will boot off a floppy. This captures some of the advantage of RAID (quick recovery) while being an actual backup, not just fault tolerance.

Rsync can use ssh as a transport, so you can securely back up remote disks as well.

-Peter

Re:This makes always good news. by leuk_he · 2001-12-06 02:55 · Score: 4, Interesting · on War Driving With The Kids

starbuck.

I was not aware of the starbuck network. google turned up this. It states you have to logon (and pay ) to use their network. I suppose the car is also good for them if you have to pay anyway.

By the way: I was disappointed when i went on vacation to california this summer about public internet access. I found:
-public libraries: 3 out of 4 times there was a waiting list. (reserved days ahead)
-something at a gas station in palm springs.
1 (1) internet cafee at the las vegas strip.

A friend went to peru and in almost every small village they had public (not free) access.

The State of IDS by SkewlD00d · 2001-12-05 06:42 · Score: 3, Interesting · on Future Of IDS

Hi, I currently work in the UC Davis sec lab (current project(s): HACQIT).

The basic problem with all IDS is in the confidence level of determining if something is an attack or just random garbage. Also, IDS have to be fast. If there's too much traffic (if you've been /.'d), you may not be able to check all attacks. Some methodogies start from the approach that deviating from a set of known safe operations is considered suspect. Other IDSes approach it from checking against a known-attack database. We're currently working on genetic algorithms and expert systems to correlate sensors and systems to detect and respond to attacks. The best approach I've seen is a complete kernel-level instrumentation of all system calls that's transparent and mostly undetectable. It would probably be DoS-able as well. The main prob is that you realy gotta have another comp to offload IDS checking.

Right now, nearly all IDSes are extremely primitive and consist of nothing more than snort rules and Perl scripts that call ipchains or something.

Btw, I went to RAID 2001 this year (hosted at UCD), it was fairly interesting.

What about file sharing by wfrp01 · 2001-12-03 09:34 · Score: 2, Insightful · on Constructing a Windows-Less Office

I'm a linux bigot, for sure. But one hurdle that has to be overcome before anyone who's not insane sells this idea to their boss is the utter lack of secure filesharing for a multi-user office. Usernames and passwords, in plain text, in an automount config file is not an option. Experimental filesystems are not an option. NFS is not an option (got root on the client (install cd) you've got access to anything.). OpenAFS maybe, but not exactly a widely discussed or supported system.

NFS4 sounds like the ticket, but the two available open implementations (umich and samba team) are in their infancy.

Until this problem is solved, this whole discussion is moot, as far as I'm concerned.

Re:Before you trash Microsoft, by CTachyon · 2001-11-25 14:41 · Score: 1 · on New Microsoft SQL Server Worm

Luckily, since Win2k, they have been doing a *great* job of testing and working with service packs. Basically now they are just big security fixes (which is great!).

Well, almost. In particular, scroll down to the Samba 2.2.1 release notes (about 60% down the page) where it says this:

5). Fixes to allow Windows 2000 SP2 clients to join a Samba PDC.

This is just the tip of the story, actually. Microsoft used Win2K SP2 to intentionally introduce a bug (or perhaps more properly, a wart) that would break compatibility with a Samba PDC while not breaking a genuine NT 4.0 PDC (which Samba emulates with a good deal of success). It did this by sending a bogus opcode to the server and expecting a very specific error reply.

I do have to admit, however, that MS has been doing much better at keeping the quality of the Win2K service packs much greater than those for previous versions of WinNT.

Re:well... by TheEnglishman · 2001-11-16 04:49 · Score: 1 · on Migrating from IPChains to Netfilters?

Why bother?

Well, if you've got a few minutes on your hands, then taking a look at the stateful capabilities of IPTables/Netfilter over IPChains might be time well spent.

Be aware that the IPChains support in the 2.4 kernels is only a compatiblity layer over the top of netfilter, and in some cases will not just allow you to drop in your existing IPChains ruleset with some work.

I found it trival to rewrite my IPChains ruleset to use IPTables (including some stateful stuff) with the help of Rusty Russell's Unreliable Guides (as already mentioned: see netfilter.samba.org for everything worth knowing about Netfilter.)

man iptable is your friend.

There is a HOWTO for netfilter by kyz · 2001-11-13 23:44 · Score: 5, Informative · on Migrating from IPChains to Netfilters?

I have not been able to find a HOWTO for Netfilters!

There is a HOWTO for netfilter. It's at http://netfilter.samba.org/unreliable-guides/, and it's called the Linux 2.4 Packet Filtering HOWTO. Also look at the Linux 2.4 NAT HOWTO while you're there.

Re:God damned MP3 anti-pirate busybodies... by Anonymous Coward · 2001-11-08 13:11 · Score: 1, Informative · on 80 Gig MP3 Player

If your home computer is online 24/7 (which is presumably is if you're on broadband) t's cooler to use SAMBA, AFS (or here), Coda, InterMezzo, NFS, or the unfinished Lustre. If you're not big on effort, set up an http or ftp (or gopher!) server. That way, you have an automatically up-to-date menu of your mp3s, where you can access all your music any time you can connect to the 'Net.
This box is just itching to be a Coda server.

Re:Australia nothing by Anonymous Coward · 2001-11-08 03:52 · Score: 0 · on Security Auditing for Linux

From the About Samba Page

Samba is maintained by
the Samba Team, who support the original author, Andrew Tridgell.

Tridgell = Australian

Re:Not so fast by hughk · 2001-11-02 21:36 · Score: 1 · on More Details of MS/DOJ Deal

J. No provision of this Final Judgment shall:

1. Require Microsoft to document, disclose or license to third parties: (a) portions of APIs or Documentation or portions or layers of Communications Protocols the disclosure of which would compromise the security of anti-piracy, anti-virus, software licensing, digital rights management, encryption or authentication systems, ...

IANAL, but this seems to be explicitly protecting MS against circumvention. If I want to talk to a PDC/BDC, I still have to go through the right song-and-dance act so having the protocol shouldn't help me. SAMBA should be able to get the necessary information. OTOH, SAMBA's business plan (Open Source) sucks as far as MSFT is concerned so without very good lawyers to argue each disclosure, it will be very difficult to prove anything.

Microsoft, the best law that money can buy!

Re:rsync efficient secure file transfers by cdrudge · 2001-10-30 04:13 · Score: 1 · on A Better FTP?

So if the rsync, the algorithm, was proposed in 1998 (Nov 11 according to the date at the bottom of the page), what was rsync, the program, based off of in earlier versions? According to this page, rsync v.2.2.0 was out by them...the first version was out by June 15, 1996. Just courious.

How about using Samba VFS? by mwaddell · 2001-10-14 20:44 · Score: 3, Interesting · on Filesystems with Transactions?

I was thinking about doing something very similar to this. I haven't gotten around to implementing it yet, but what I want to do is to use the VFS feature of Samba to add CVS-like (possibly by interfacing with a local CVS server?) versioning control to certain directories of files.

Re:Yet Another Unemployed Programmer (TM)? by BacOs · 2001-10-09 02:20 · Score: 5, Informative · on Tridge Speaks Out

According to his home page

Until recently I was a senior engineer in VA Linux Systems. Due to the recent layoffs at VA I am now actively looking for a job.

CreateNamedPipe vs. CreatePipe by KidSock · 2001-10-03 08:10 · Score: 2 · on Who Has Faster Pipes? Linux, Win2000, WinXP Compared

The CreateNamedPipe call creates a pipe that can be connected to a pipe potentially on another host addressed by UNC name. MS admits that this is slow and that sockets should be used instead if raw performace is desired. The benifits are that they are authenticated and mediated by the CIFS networking layer (thus the slow down).

To more accurately compare pipes as IPC mechanisms they should have used the CreatePipe call which creates an anonymous named pipe that only goes through the Kernel and back. These should be quite fast by comparison. Of course a much more interesting comparison would be to compare shared memory -- a much more critical IPC mechanism used by high performace appclications like databases.

BTW if you want to access NamedPipes and TransactNamedPipes in 100% Java the http://jcifs.samba.org project has implemented everything necessary to interoperate with MS NamedPipe servers.

Homebrew Snapserver 4100 by il_seba · 2001-09-19 22:31 · Score: 2, Informative · on Creating Large, Safe, and Cheap Network Attached Servers?

This is my receipe for an "homebrew" Snap4100

1) Get:
- 1U 4bays rack mountable chassis from Sliger Designs
- 3WARE 6410 Escalade IDE controller (Choice of 0/1/0+1/5 Raid) on a 90 PCI riser card
- 4 x 75/100GB ATA100 drives (maybe DiamondMax)
- MicroATX mainboard with NIC and Video integrated on board (invest in RAM not in processing power - 750/850MHZ should be more than sufficient)
- Minimum Linux/*BSD OS booting from a read-only 16 to 64MB flash IDE device, loading kernel and a customised Ramdisk root filesystem, mounting Raid devices in R/W mode, starting SAMBA (and/or Netatalk).
A good starting point is Linux Bootdisk HOWTO

2) Choose 0+1 Raid and you get quick and completely redundant 150/200GB storage that can survive the full failure of one disk.

3) Want remote grafical managment from a standard web browser? Go for Webmin or SWAT.

Homebrew Snapserver 4100 by il_seba · 2001-09-19 22:31 · Score: 2, Informative · on Creating Large, Safe, and Cheap Network Attached Servers?

This is my receipe for an "homebrew" Snap4100

1) Get:
- 1U 4bays rack mountable chassis from Sliger Designs
- 3WARE 6410 Escalade IDE controller (Choice of 0/1/0+1/5 Raid) on a 90 PCI riser card
- 4 x 75/100GB ATA100 drives (maybe DiamondMax)
- MicroATX mainboard with NIC and Video integrated on board (invest in RAM not in processing power - 750/850MHZ should be more than sufficient)
- Minimum Linux/*BSD OS booting from a read-only 16 to 64MB flash IDE device, loading kernel and a customised Ramdisk root filesystem, mounting Raid devices in R/W mode, starting SAMBA (and/or Netatalk).
A good starting point is Linux Bootdisk HOWTO

2) Choose 0+1 Raid and you get quick and completely redundant 150/200GB storage that can survive the full failure of one disk.

3) Want remote grafical managment from a standard web browser? Go for Webmin or SWAT.

Re:In the long run all commercial *nixes gone? by omega9 · 2001-09-06 15:48 · Score: 2, Interesting · on HP+Compaq Deal Could be Great for Linux

Actually, it would seem it's the other way around.

I was just browsing through a new HP-UX 11i guide, looking at info about CIFS/9000 which is based in large part on Samba. Since it's based on open-source software CIFS/9000 is free to download, but note that it only runs on HP-UX 11.x.

And that seems to be a good system for them: Develop tools based off the work of open-source projects (so the ground work is already done for you), but tailor them to only run on HP-UX. That way re-releasing the new tools for free doesn't hurt you, because the only way for someone to use them is if they are a paying HP-UX customer.

They've got the best of both worlds. The grunt work and benifits of open-source developers, AND they get to keep charging huge ammounts of money for the OS.

Re:Geode SC1200 by maroberts · 2001-08-22 04:34 · Score: 1 · on New Linux Set-Top Project

Thanks for the info on the TiVO GPLed code, maroberts C'est rien.

Sounds like the device has the bits and pieces to do everything required. The TiVo (again IIRC) uses a mere 50MHz PowerPC chip [being RISC, this probably delivers similar performance to a 200MHz Pentium, but a lot of TiVo reverse engineers believe the Tivo gets very near to its processing limits at times] with a number of support chips.
If you're really interested in the TiVo, see the ongoing discussions in the TiVo AVS forum:
http://www.avsforum.com/ubbcgitivo/Ultimate.cgi
Also Andrew Tridgell (of Samba fame) has done some engineering to get the TivO to take a network cardand other goodies. See
http://www.samba.org
for more details.

Re:do i understand this properly? by Ross+C.+Brackett · 2001-08-01 10:56 · Score: 2 · on DotGNU and Mono Continue

i mean, things like the samba project cannot be done anymore, thanks to the DMCA.
please, someone correct me!

Exsqueeze me? Baking powder? Samba is alive and well. If I recall, the DMCA outlaws reverse engineering for the purposes of bypassing copy protection. Now I know SMB is a little crufty, but it is ostensibly an open protocol. It may be de facto copy protected in that it's near impossible to get at the data, but as far as I know, Microsoft has always maintained that it's an open standard. Sheeah! Right! And monkeys might come flying out of my butt!

For those who are keeping track, that's two (2) Wayne's World references. Thank you.

A fair bit of background. by TBBle · 2001-07-25 00:13 · Score: 1 · on Debian GNU/Linux Used in Electronic Voting Trials

Firstly.... Australian Capital _Territory_. :-)

Secondly, and this one's good: The actual project site. GPL requirements mean code's open source. And it is!

Software Improvements is a key player in a very good spot here. One of the principals of SI, Clive Boughton, is an associate Lecturer (or visiting lecturer) at the ANU, where he currently convenes the Software Engineering course. Last year, as well as teaching Software Analysis and Design and Project Management to the 3rd year cohort, he was strongly connected with the 3rd year Software Engineering Group Project.

The group project was to produce an online, web-based voting system. The project was targeted at Federal elections, but apart from the preference counting system, the principle holds.

Out of the project (after 1 academic year) came 12 seperate online voting systems. One of these systems was apparently pitched to the ACT government in response to the Request For Tender they released near the end of the year, which looked an awful lot like the Request For Proposal the teams were given at the beginning of the year.

Amongst the requirements for the project, was that the system be utterly open source (except for the RDBMS) and be delivered as a set of RPMs and SRPMS against Redhat 6.1.

Another important requirement of both projects (and the Australian electoral system) is that a person be able to vote just once, and that once a vote is recorded, it must not be able to be linked to a specific person.

The group project had tougher requirements than the ACT's project, in that the group project was for use in Internet voting, not just computerising polling booths.

Software Improvements can (and in fact has, I am given to understand) draw upon this unique pool of experience to produce what I confidently expect will be a successful product which I look forward to using come the election.

Some trivia:

Although the ANU group project required RedHat 6.1, the two spare machines in the room ran Debian Linux up until the last month or so of the project where they went from spare to testing-platform.
The ANU's past lecturer list includes Andrew Tridgewell, Paul Mackerras and Paul "Rusty" Russell. If you don't recognise the names, think linux-pmac, Samba, Netfilter, rsync, Tivo ethernet card, Tivo in Pal, pppd, just to name a few.

How do I know all this?

I was one of the group leaders for the 3rd year group project. I hold the distinction of having the only RedHat 6.1 computer in the project room which the system testers could not break into without getting a screwdriver from upstairs to clear the bios.

Mind you, that wasn't part of the testing. They just wanted to see our developement machine and figured it would be easier than calling me. Fooled 'em good!

====================
Paul "TBBle" Hampson