Slashdot Mirror
Samba 4 Reaches "Susan" Stage
superfebs writes "Some day ago Samba4
reached a pretty serious test stage. Promises are beautiful: full SMB protocol implementation, Active Directory Domain Controller facility, and more; here's a full roadmap."
← Back to Stories (view on slashdot.org)
"Samba 4 Reaches "Susan" Stage"
So what happens when it reaches the "CowboyNeal" stage?
What is a 'sentance'?
Secure messaging: http://quickmsg.vreeken.net/
Just remember, that if it wasn't for Luke Kenneth Casson Leighton, most of the ideas in Samba 4 would never have even been thought of, never mind implemented.
It'd be nice if they gave him some credit somewhere instead of just blanking him out because he 'rocked the boat'.
Andrew Tridgell is the man behind two of the most interesting and usable free software products available; samba and rsync. Samba is truly great, but I find rsync so incredibly useful and smart. Does the Windows world have any kind of rsync-equivalent? (Besides the Windows rsync-ports, which require a lot of extra stuff like Cygwin.) Backing up data with rsync makes me sleep well at night :-)
Thanks Tridgell! :-)
http://www.mralert.com/ - Free web site monitoring
It can be a pain to set up at first because you have to deal with config files, but once it's set up, it Just Works (TM).
My little network at my apartment has two windows machines (roommates), my linux machine, and the xbox with XBMC. I can share movies and music across the network and it always works. The xbox and the windows machines can always see shared directories.
On the other hand, SMB on the windows xp and windows 98SE only works some of the time. I can always count on mine working though.
Good job, samba team!
If you had RTFA, you would realize that it mean that the head developer, Tridge, who started the whole samba thing years ago, go to the place where his wife, Susan, is testing it at home. She has apparently been a tester for ever major release, and she apparently encouraged him to started the Samba project to begin with.
Call me when it gets to the Pamela Anderson stage.
To this day my wife gives me a look when I tell her I need to work on AMANDA.
I presume this something to do with some Windows functionality?
I remember reading Andrew Tridgell's comments in 'The Rebel Code' by Glyn Moody - "...And we try to remain bug-for-bug compatible where it makes sense. There are some cases where it doesn't make sense, and their [MS] bugs are just ridiculous, and you shouldn't emulate them. But in most cases, we emulate the bugs so that we interoperate completely with the Microsoft implementation."
Ever tried to add some Redhat servers to a windows domain with user-account given automagically by Active Directory? Tried for 2 days, gave up...
I certainly hope the configuration is more userfriendly now.
Screw the FSM - Real geeks believe in the Invisible Pink Unicorn
I'd like to extend my heartfelt thanks for working so hard on this.
Thanks again!
Bill Gates
It would be nice if they actually fixed their LDAP code so that it would work with any directory server other than OpenLDAP. The fact of the matter is, I spent the last month trying to get PDC functionality to work with iPlanet Directory Server, and even Netscape Directory Server, which coincidentally Redhat just purchased, and the buggy Samba implementation of LDAP as a storage mechanism for account information just doesn't work with anything other than OpenLDAP. Users on a Windows XP workstation can't authenticate, and sometimes they can authenticate by the XP client gets a BSOD right after authenticating. It's bizzare, it's actually as if Samba is sending the XP client a buffer overflow while authenticating. If someone can prove me wrong I would be happy to hear it.
I spent weeks working with RHEL technical support, and even had one of the Redhat support techs rebuild my environment, and sure enough, his users can't authenticate either (and experience the same BSOD).
I'd love to be able to replace my entire Windows NT 4 domain with Samba running on Linux, but until Samba can actually provide a backup domain controller functionality that works with our existing LDAP infrastructure, I'm sorry, but Samba is not ready for prime-time. Having a single point of failure in your Samba PDC is not acceptable for enterprise use.
Can you believe the only workable enterprise-level solution for Samba is to make the Samba server a domain member of an Active Directory domain? And then you still have to purchase Windows Client Access Licenses (CALs) for all of your workstations, saving you $0!!! (Not to mention your RHEL license and support fees which are more expensive than Windows 2003 Server)....
Fucking ridiculous... If I sound a little pissed off it's because I wasted a month of my time trying to get this buggy software to work properly and even Redhat enterprise support just threw up their hands and said: Sorry, it's not supported and doesn't work.
"When the president does it, that means it's not illegal." - Richard M. Nixon
My solution is to either use ssh and copy the file from the box, or if the two servers/shares are Windows I use AnalogX TS Drop Copy which does exactly what you ask for.
Samba3 is a mess. All the RPC code is hand-written, the SMB parsing logic is all over the place.
Samba4 automates the generate of most of the RPC code (the numbers change frequently, but it's something like 3,000 lines of IDL now replaces 100,000 lines of handcoded C).
Plus, Samba3 took the approach of just doing enough of the protocol so that it worked. You'd see a lot of mysterious += 8 where you'd just skip over chunks of the packet. In Samba4, every field is understand and accounted for.
Samba3 never could have been written as Samba4. Noone knew enough about SMB to understand that Samba4 was needed. This is really just Samba4 growing up.
The biggest user-visible change is going to be better Active Directory support. Active Directory support in Samba3 is painful. Very painful. If Samba4 does get it's own LDAP server, you may seem some extremely good interop in Samba4.
What is truly amazing about the Samba project is their consistent ability to emulate MS screw up, go "buf for bug" is the term I think is used. To implement something like Active Directory, bugs and, which included 4 or 5 different standard (but not quite) services is amazing. Just look at the problems with write support for NTFS. I don't know if its intentional, but MS products are not exactly easy to reverse engineer. Thanks, release us from the horror that is AD on XP!
Spencer Ogden
The BSD and Apple categories would be just as appropriate. Perhaps Slashdot needs a *nix category ...
Actually, there is a CopyFile SMB. If it's there, Samba4 supports it. However, the burden really falls to the client here. It depends on how smart KDE would be in using the appropriate SMB's. Samba4's client libraries are much richer than Samba3's so the ability to do this would be exposed to them.
So, the short answer is yes, but it would require a much more sophisticated client than what you presently see today.
yes - i wanted to introduce several stand-alone daemons, for several reasons:
... would anyone DREAM of merging postfix, cyrus, nntpd and apache into a single daemon??
1) project manageability.
you tell people that samba is 350,000 lines of code and they freak out. you tell them that they can work on say writing a special samr daemon (e.g. a sql db one) which would be oh about 30-50k lines, and they start to calm down a bit.
2) clear delineation and separation of code at logical boundaries.
the complexity of the samba project was getting out of hand, and it is still out-of-hand.
by introducing separate services, which almost every other implementor of NT-compatible servers have done, you don't end up feeling like you've swallowed a tiger.
3) commercial and other-licensed-projects can interoperate.
sun microsystems would never have bothered to license AT&T's AFPS code [NT 3.5 ported to SysV by microsoft - badly - and bought by AT&T].
or, at least, if they had, they would have chucked away the file-server part of it, and used smbd as the file server, whilst still using the NT-based services from NT 3.5-ported-to-unix!
and they would have used the published interfaces - the ones used to communicate with the external DCE/RPC services.
the reasons i was quoted AGAINST doing separate services were that a) it would be several milliseconds too slow (which is a rubbish argument on a network-based protocol) and b) unix domain sockets cannot be used securely (which, given that they are used in winbind is again rubbish)
no, the real reasons why samba was not turned into separate daemons was a) so that samba could be used to maintain control as a single GPL project b) because i was the one advocating it c) the level of complexity was not understood and i failed to explain it clearly enough.
Well, first off, eDirectory which replaces NDS already runs in a Linux environment. Secondly, Samba is an implementation of SMB, which is what Microsoft uses. Samba would not seek to replace Novell servers, because they don't work using SMB (aka CIFS).
- Andrew: There is a branch tag. Some lines of code has been written, and it can print the word "Samba" in a log file
- Susan: Core things work. That is, you can see a share folder, and when MS-Word crashes, it is not clear, if it is the Samba pile that caused it
- Alpha: Susan threw it out! Andrew is now pestering his paying customers to use it. Status is: what works, works. Features are missing (like reading from files)
- Beta: Paying customers threw it out! Andrew is seeking the Linux distributors to try it out.
- Distro: Some advanced stuff doesn't come out right. The distributors release it anyhow in the hope that some geek will fix it.
- Limbo: The geek fixed it and made an obscure backdoor. He is now using your host for compiling his kernel
- Retro: Most people revert to an earlier version, with a better backdoor. The geek has now a nextdoor neighbor geek to compile X on the host
- Fiasco: Well, yeah. Your drop Windows service.
Sorry, got a bit carried away...:-) = I am happy
:^) = I am happy with my big nose
C:\> = I am happy with my OS
Here is the link M. Coward posted, but fixed, plus my +2 score so more will see it. (Sorry M. Coward, but then, I figure if you're Anonymous, you're not worried about credit or karma.)
0 2-January/018388.html
http://lists.samba.org/archive/samba-technical/20
I don't know the people or the situation enough to judge either one, but I figure it is good to see both sides. The truth, I suspect, is somewhere in the middle, but I say that onlly because it usually is.
dragonhawk@iname.microsoft.com
I do not like Microsoft. Remove them from my email address.
If I'm in a good mood and I want to become angry, all I have to do is click on Network Neighborhood, and I go from happy to pissed off in no time flat. First of all, it practically locks up the entire computer while it SEARCHES for network shares.
In the default configuration, that is pretty common. If you are interested, I can explain how to make it work well.
1. Create a WINS server (NetBIOS name server). Point all your SMB/CIFS clients to the WINS server.
2. Set your NetBIOS Node type to 2 (P-node, or Peer Node -- WINS resolution only).
3. Disable the NetBIOS computer browser service on all but a handful of "reliable server" machines.
To disable the NetBIOS browser on NT, disable the "Computer Browser" service.
On Win 95/98/ME, set the "Master Browser" option to "No" instead of "Auto" in the "Windows File and Printer Sharing" component in Network properties. (I might have the names wrong; I don't use 9X much anymore, and I don't have one handy to check.)
I usually recommend disabling the browser service on all computers expect for domain controller(s). If you do not have a domain, disable said service on all but one or two of your servers. If you do not have any servers, you're hosed, regardless of protocol. Designate a computer "the server" to fix things.
Once this is done, Windows name resolution works pretty well.
dragonhawk@iname.microsoft.com
I do not like Microsoft. Remove them from my email address.