Slashdot Mirror
Interview with Andrew Tridgell, Samba Man
Henry Griggs
sent us an interesting interview and article with
Andrew Tridgell, aka the Samba Master. He talks about working with, and against Microsoft. I found it interesting that some groups would help, and other wouldn't-although now Samba is a recognized threat. How many of you folks use Samba, at work and such?
...they day i installed linux. I have been using samba at work for almost two years. novell is our primary server os but i like to keep support software on the linux box running samba, that way if a novell client is messed up, i can get the files i need from the samba server.
We use Samba as our MAIN homedirectory-server for our 1700++ students. It has NEVER failed us so far.
FYI: it's "Tridgell", not "Tridgewell". Did you actually read the article, Hemos?
Torvold? Tridgewell?
I use samba too, its also great as a nfs replace ment....
/.'ers here to the rescue? I need help
.AppleDouble stuff is anoyingly wastefull of HDSPACE.
BUT THERE STILL ARE BUGS!!!
When sharing a NT NTFS share, and copying from NT to a shared samba box on linux , all files copied have ZERO bytes in them!, i mean the file might the righ tsize , but all bytes are 0
The event viewer on NT gives me this
"A write-behind operation has failed to the remote server %2. The data contains the amount requested to write and the amount actually written. "
What teh hell is going oN!?!???! someone tell me please!!!!! the mailing list archieves were useless, only one person reported this problem with no one responding....
any
Cheers
Cheekyboy@2-hot.com - if you want to let me know
Adios, all in all, samba 2.02 is GREAT!!!
All it needs now is AppleShare ability, netatalk is a pain to config/setup admin and the
I've been using samba at home for a couple of years now. My box running Debian Linux acts as an ipmasq gateway and file server for the two other puters in the house (my sister's win98 and mum/dad's win95.. a p133 w/ 32MB ram that I wouldn't want to try putting '98 on.. it crashes often enough on my sis' pII-300 w/ 128MB ram)
:)
I must say that the hardest part of setting samba up was the endless rebooting of the windows machines to get the config right at their end (dns, etc) Maybe I'm just dumb and couldn't get it right first time, but it drove me nuts. At the server end however.. can't go past man, vi and a SIGHUP for ease of use
Samba has saved me by allowing me to serve files to my co-workers from a machine colo-located at a major hub point 500 miles from my home.
If I had to use NT instead of FreeBSD/samba I would lose my job to the Blue-Screen-Of-Death.
Thank you Andrew...
He said customers were starting to demand Microsoft be compatible with Samba...
Oh this is just PRICELESS! MS created a set of "standards" that accidentally got out to the real world--and now they're being held to them.
Just a taste of the future, when DOJ makes them release the Win32 API...
I've used a little ol' 486sx/33 with 8 MB of RAM and a 2.5 GB hard drive at home for about a year now. When I was telecommuting with my roommate (doing tech support for an ISP) we used it as an IP masquerading "router" to share the phone line, as a mail server, as a SAMBA server for sharing files, and as a web server for our screenshots and what not.
Now I live alone, but boy is that little 486 a workhorse. I use windows (ack!) on my main computer since there are still some programs that I use that dont' have Linux counterparts (that gap is quickly narrowing though) but I can't stand not having a shell always open, and there are so many things that my 486 can do that my K6/166 running Win95 just can't.
It's not the fastest thing in the world but it's very stable, and Linux definitely breathes new life into old equipment like that. I wouldn't mind a faster box, but I suppose it's like new vs. old cars -- I wouldn't be as emotionally attached to it. *G*
I work at MS and use Samba on my Slackware box to become part of the NT domain structure and thereby gain all of the benefits from the network that my NT boxes have, except for a couple things:
1) There's alot of active-x on the intranet sites...
2) There is still no decent linux MS Proxy clients, so the only app on my linux box that can get out onto the net is netscape. But that's ok.. there's alot of Win32 apps that fail to get out of the proxy even with the proxy client.
Our small-office network was going down twice a day on average. I built a Linux box to be a fileserver/faxserver/dial-on-demand proxy. Total cost: $600. And it has been up since I threw the switch for the first time 81 days ago!
Our neighbors down the hall spent $7,000+ to get the same features with NT and they are constantly having trouble!
...we see an NT fix posted to /. in response to a user's complaints?
Why you would ever spend more for less I don't know. Maybe because if you work someplace they want the "support" given from a big company.
That'll change... soon...
What's a Primary Domain Controller do,
anyway?
nt's network directory (nt domain) service provider - it manages the directory and provides authentication for network object uses, probably does other things too...
b-
Open protocols like CIFS take away their advantages, placing MS in
a position where they will have to compete on technical merit.
But they can't.
You can expect future versions to "extend" the protocol.
I love samba... It took me a little while to get the permissions set correctly (but then again, everything involving permissions takes awhile for me... I have some kind of block...), but once I figured it out, it's been working great. Couldn't ask for more (except maybe that it'd make me money somehow...).
-- Extra Anonymous Really Cowardly Coward
I set up samba on the sun stations at work, and everyone loves it! It saves from having ftp things back and forth. I found it very easy to set up, I had everything the way I wanted in a about an hour.
The only thing to worry about much is whether you have gcc. We run Samba on Solaris at work - we moved the main Access (puke, retch) database onto a Sun Ultra 2 off the Dell PowerEdge nt server (hoark, blaggh) because it was too flaky. Another, a sun ultra 5, goes on the road constantly and headlessly. Just plug it in and turn it on and it shares. Anyway, get gcc (www.sunfreeware.com, precompiled) put /usr/ccs/bin in your path (so you can run make) and you can pretty much follow the dox from there. make an /etc/init.d script and link it in /etc/rc2.d etc. etc. good luck!
daaaghh! stupid thing forgot my password
jared jennings liver@soon.com
Am I the only one who thinks it's really cool that, almost immediately after a user posts a bug, a developer from the Samba Team has already posted a fix?
Good work
I first discovered Samba about 3-1/2 years ago when I had to get a couple of monster CD-ROM jukeboxes working with a server. The things had flakey or no NT drivers, but some great drivers and cacheing software for Unix. Samba filled the bill. (The machines accessing the data were runnning a DOS (!) based program). It was also a plus that we could use it as a print server, since the drivers for the printer (high speed printing of TIFF files) were better on Unix than on NT.
More recently I've used it in a joint Unix-NT project, keeping all the project source and doc files (even the Visual C++) safely on the Unix box.
Never had a problem with it, except briefly with the NT encrypted password thing which we quickly found both solutions to.
- Al
Man that is soo cool. Bingo, fix, here it is.
Although now I (some other AC) have another question. When people say apply patch, and give stuff like above (see also Sound Blaster patch in 2.2.0) I don't have a clue on how to actually the 'patch'?
Can someone help me out, or should I actually do some real searching?
:-)
You forgot to say "This is a paid political announcement".
> An bhfuil cead agam dul amach....
Tha bron orm...
Chan eil a'Ghaidhlig na h-Eireann agam.
You shouldn't think of Microsoft as being one giant monolithic company. Microsoft, like all giant companies, is made up of a bunch of little fiefdoms, all going in a million different directions at once. And all primarily concerned with their bottom line.
For some business units, Samba is a definite competitor; for others, it's probably viewed as irrelevant; and for still others it could be viewed as beneficial. And if some business unit thought helping out Samba would help them sell more, by gum they'd do it.
Personally I love using Samba. It is an excellent piece of software and makes a great file server for our office. Unfortunately we can't really use samba for everything... it really has to do with the way unix file permissions work as opposed to NT. The people I work for want some folders and things set up in ways that only an ACL permission model could allow. For instance, my boss wants folder f set up so that users x and y can read, users a and b can read and write, and noone else has any access. There just isn't any way to set permissions up like that on a unix file system.
At the isp i work for, we use hardware trasparent proxy
server -- cacheflow 1000. a bit expensive ($45,000 +) but very very fast!
------------
We used to use Squid on a slow pentium running Linux.
that's pretty stable too. crash maybe once / 2~4 month.
Last two crashes were related to faulty ram though.
At Lucent, Reading, PA, it is installed. I am not sure how much penatration it has in this plant but from the few high ups I have talked to everything seems to be great... they love it (and its price) so far!
Joe
fjr111@psu.edu
Awsome, a fix already :)
:)
Thanks to the wonderfull samba team.
I was almost pulling my hair out... when I copied froms from FAT to samba, it worked, but if I dragged dropped files from NTFS to samba it failed....
IM so glad to see a fix
*hands a bottle of VB beer to samba team(
=Cheekyboy@2-hot.com
Why the hell should we write a proxy client for linux? We write software for the Windows platform, not some shoddy, two-bit operating system that will never take hold anywhere.
FWIW, the name's Tridgell, and since I care not one whit about NT interoperability, he's famous in my world for being the coauthor of rsync.
The rsync algorithm can actually diff two files on different machines without either machine having a full copy of either file, using something called a rolling checksum. It's also a great replacement for rdist both because of its speed (due to the algorithm plus lots of smart decisions about pipelining, etc) and versatility.
Despite the flak I get from unix hardcores, I still like the NT domain model *in concept* - it's just another example of good idea, bad implementation.
Hey... the idea of network domains did not come from Microsoft. Ever heard of NIS domains... (yes.. on Unix). And its a completely open protocol..
I set up a Linux server running Samba 2 years ago (since then, I've added a modem pool, dial-on-demand, web services, etc. all on one 486)... we've only rebooted our server twice in that time for a total of 30 minutes downtime; both times were to add hardware. That's 99.997% availability, folks.
Samba has performed like a charm for our small (10 node network) company. It's saved us money because of the licensing and a lot more money because we don't have to spend any time maintaining it. It just works. I sure hope the core developers are reaping the rewards from producing such a useful piece of software.
I wish you could just "turn it on"! Setting up encrypted passwords is a pain in the neck!
Because we just love
Throw Throw Throwing
Our money and time away away away
http://www.syntax.com/
I've been running samba in a production environment for over a year and haven't had any problems. I got rid of our office's last NT server a month ago. We are NT free! Woohoo!
We've found it to be a much better NT file/print server than NT. The NT boxes got flaky if they didn't have weekly reboots. I have a Linux/Samba server that's been under a pretty good load that's never crashed and hasn't been rebooted in over 240 days (and counting). It would have been a year of uptime if it hadn't been necessary to move the machine 240 days ago.
All that and I'm not even using 2.0 yet. I'd say NT is, at best, a second choice for Windows/SMB file/print server, and I say second because I haven't tried Syntax or Pathworks. Samba is a first rate product and I'd choose it over NT even if the two cost the same.
RTFM (where M == man smb.conf).
Add the following lines to smb.conf for the share in question:
valid users = a, b, x, y
write list = a, b
read list = x, y
We have a share set up like this for our manuals and documentation, which any of us can read but only our tech writers can write.
Yeah, it's interesting to open up the Network Neighborhood on the Corpnet and see how many servers advertise themselves as "Samba 1.9.18p4" or something similar. I'm trying to set one up right now. So far I've managed to create a public share but haven't yet worked out how to have it log into the domain. And then there's the whole password thing . . .
Well, a guy's got to have something to do while he's waiting for the server to come up and do its checks after the crash.
The Guy On The Inside
Someone You Trust Is One Of Us
Has anyone tried doing the following?
From work, be able to connect to your home box over the Internet, where you have Samba running on your Linux box. Have all traffic encrypted back and forth.
I have looked at fwprc (Firewall Pierce, forget the URL, do a search). It was not immediately obvious whether or not I could do this. I do not think fwprc does the encryption transparently for me. I think they recommended running ssh over it, though this is not ssh. What we would need is the SSL to be transparent in the comm stack. SecuRemote does this for NT. Any Linux versions?
Ideas? Comments? Experiences? Commercially available products that already do this? TIA.
If I owe Andrew a pizza, then I also owe one to David Airlie for pam_smb_auth. This wonderful little PAM module let me propose something nobody else at my organization could do with our mix of Windows and Unix: a single password database for Windows networking, POP3 email, and personal ftp/http areas.
Samba allowed me to kill the last NT server in our office, and pam_smb_auth will let me kill the only remaining NT server in our organization. I'm using David's code to write a plug-in to Netscape's Directory Server that will allow the same authentication for the Netscape Calendar too!
Yes, I know SMB authentication isn't exactly the most secure thing in the world but the ease of administration for a single login/passwd network (and the lack of passwords on post-it notes stuck to monitors) makes it worth the risk in our situation.
Thank you Andrew, David, and everyone else on the Samba and pam_smb teams! Thank you John Blair for a good solid reference book on Samba, and for an excellent tutorial at LISA '98!
Can anyone give me any performance stats on SAMBA on different distributions, especially in regards to Stampede vs. Redhat? Thanks.
So does this make it sort of like the NIS master server?
Does samba 2.* have much in the way of user/group accesses to shares? Currently they handle the NT server's shares by just creating 1:1 group:share. Then just add needed users to the group, and then only they can access that share (a few world readable shares, but those are easy). So basically, can you set that only this one group can access a certain share?
If so, I'm sure I can talk the boss into it.
Oh, is there any sort of surveys on how much stress Samba can take on given hardware?
What sort of a network do you use? At work we use Token Ring, it's sorta fast but I wouldn't say it's faster than a hard drive. My home 100baseT is fast, maybe closer, but I don't think it's that fast...
No formal survey, just my opinions when I've moved large files to & fro both at work and at home.
What all is needed to do roaming profiles? I have logon path = \\%L\%U\.winprofile set, which is all the Samba book says is needed. Yet my Win98s don't ever write their info to there.
:)
On the other hand, a year or more ago I used it and it was fine (for Win95 back then). Then when I wanted to stop it, I removed the one line, and it still would read/write to that directory... Go figure. And yes, I restarted Samba after making the change.
I work at a HUGE corporation, and we have to pay via a 1-900 number to get support from MS. And of course, they always just blame it on some non-MS software that's installed on the PCs.
Then again, our two NT "experts" only have one chant when something goes wrong, "Repair or rebuild, that's all I can think of."
Please, somebody hire me to take me away from this nonsense!!
>Isn't thiat the guy from WHAM?
Nah, that was Andrew Ridgley.
Generally:
cd to the source directory.
type "patch < patchfile"
(Last post had my "<" eaten)
--
--
The early bird catches the worm. The worm that sleeps late lives to see another day.
Kinda makes you stop and wonder what "genius" switched out something that works for something that doesn't. Does MS Marketing really have the power to cloud people's minds?
--
--
The early bird catches the worm. The worm that sleeps late lives to see another day.
And AppleTalk (netatalk etc) as well. Our Linux box basically holds the network together, as it it doing masquerading as well. Samba is great, I'm sure glad it's available for dummy users who don't wanna FTP.
---
Don Rude - AKA - RudeDude
RudeDude
Perl/Linux/PHP hacker
Linux, OSF1, Solaris and FreeBSD. HP-UX soon. All at work, some at home. I can't imagine life without it. :)
Lurking at the bottom of the gravity well, getting old
Samba at work. P-II 350, 64 Megs RAM, 18 gig 40-Mbps SCSI. It is faster to copy from a local hard drive to the Samba server than to another partition on the same drive on the local machine.
...
It's wicked fast, super reliable, and decently easy to administrate. Couldn't ask for anything more, really.
The NT users can't tell the difference between the Linux Samba box and the NT server it replaced, except it's alot faster now
samba is not good enough to replace a production NT server yet. I have done a lot of experimentation with it, its getting better. its got a lot of flexibility, but its not quite there.
Here at the University of Kansas, student mail and web servers (Digital Unix boxes) are running Samba. I'm not sure what the usage is on SMB to these things, but with 25-30,000 students, it's probably WAY more than an NT box could handle.
Also, I'm not sure what experiments you've been running, but I'm never seen an NT box able to keep up with Samba -- performance or stability.
I use samba at work on a Sun U4000 on 1000SX backbone to serve 150 PCs, both general users and software developers. It has no problems handling the load, file locking, file based databases, MS Development tool projects, etc. It works great for sharing the same files via NFS.
We have no NT servers.
I first set up a SAMBA server to support both faculty and student computing at Colorado State around '93. The die-hard MicroSoft sysadmin from hell hated it (he also hated the web server I set up - "Why do we need that, we have a gopher server?". Even back then SAMBA was reliable and fast and it saved our department TENS of thousands of dollars in stupid software, such as PC-NFS, Banyan Vines (barf), and memory managers to try to make it all work.
/. you might not be quite as stupid as you previously displayed.
This early experience with SAMBA was only the first of a series of lessons for me: while MicroSuck markets their supposed solutions, there is usually a much better solution to be found in the unix community, and almost always GNU or opens source in licensing.
Oh, and if the MicroSuck sysadmin from hell (Scott) happens to read this: good - you are reading
I couldn't help it. Maybe Rob could do a story on past sysadmins that we've all hated and what they had in common....
And if that doesn't work, "man patch" and find out what the various options do (hint: --dry-run is your friend!)
-----
The real meaning of the GNU GPL:
"The Source will be with you... Always."
--
We've been using Samba since '95 when it was recommended to me by the sysadmin in Iona Tech. Apart from some flakiness around DST on the older versions (which really pissed off the developers) it's been great and saved us a fortune. It really is amazing the performance you can get from fairly generic machines.
Where I work some of the MVS guys put Samba on a
mainframe, and it works like a charm. We've been
using it for years on production UNIX servers,
and now it looks like Samba on MVS will give
Windows users a pretty impressive alternative to
another flaky NT server...instead they map a
drive to Big Iron. Very cool. Tell your MVS/Cobol guys to check it out.
I found out a week ago that we have been running Samba under Solaris for over three years. That's an example of good server software: it just works, and nobody knows how or why. When it's time to upgrade the server to handle more users, you have to look all over the place for them. We found the printer server in August, sitting in a small closet somewhere. It was a 486 running OS/2 Warp Server, and it had apparently been running since first installed without any problems. We rebooted the thing and left a small note for the next ones to find it.
War is one of the most horrible things a human can be exposed to. And one of the worlds largest industries.
We do a lot of testing on NT boxes, so SAMBA was a great help to us. We don't have any servers running NT...
Pat
-- Are you an EFF member yet?
Precompiled binaries worked like a charm out of the box on solaris. The only two problems I've
had with Samba were:
1. old versions of Samba couldn't do MS encryption of the passwords (which is on by default on Win98
and WinNT and can be disabled in the registry). If I had only RTFM before I started...
2. If you have a mix of WinXX and Unix and want to browse, turn off NetBEUI on the PCs. WinXX boxes
like to default to NetBEUI if both it and TCP/IP are enabled which leaves TCP/IP only clients like
Unix boxes in the dark.
This would make a great poll topic! Possibly choices like:
+At work +At home +At school +At work & home
etc etc
Actually I D/Led v2 last week and set it up. It is working great! I haven't gotten into it too much, but it is allowing me to do basic directory sharing with my windows box.
If this works out good over the next few months, I may use it when I network a friend's office.
When /. has reached a critical size now. Time to cache links such as this one at /.? Of course after asking for kind permissions. Is this legally possible?
About 18 months ago, I developed the 'itch' to connect my w95 desktop with the departmental AIX box. I had never heard of Samba, but soon turned it up in a web search. IIRC, from the time I hit the search engines with no idea what I would find to the time I had Samba compiled and running was less than a day. Within a couple weeks we were using it all over the dept.
... in the streets of Rio can't be wrong!
-------
Warning: Slashdot may contain traces of nuts.
Been using Samba for nearly a year, but it will never get "officially" used. Ah well. Anyway, I'm using it to give me access to the intranet directories for editing, and have it set up for a global share mapped by username (i.e. roaming private drive: where you log in, it follows.) Pretty handy, since we don't use profiles. But then again, I'm not allowed to map anyone to it or allow them to use it. So I use it as an instantly available backup when I give people new boxes.
BTW, it's on a desktop P133 w/128MB ram, and IDE disks (not using software RAID,) running Caldera 1.3, and it STILL outperforms the P66 10K-RPM SCSI RAID5 NT PDC by a factor of 2. (Enough acronyms in a row for any PHB ;-)
Samba rocks.
Could someone using NetBEUI on a TCP/IP network cause severe disruptions in the network? I remember that my WindowsNT box was suddenly incapable of finding network paths, without resorting to a HOST and WINS Configuration file.
Was talking to my roomate who mentioned that I should use NetBEUI... Of course I use TCP/IP only but the problems persist, no matter what service pack I have.
At first I thought it was SAMBA. But his 98 station gives me the "unable to resolv path" error, so that took the blame off SAMBA.
I use samba @work (a must when you have both linux and NTs). @home for my small network (actually 9 computers on 2 people ain't that low) which serves me and my griddy little brother, mainly for our little new company. Now if I could only find one more place where I can install it... Suggestions are welcome.
I'm using Samba 2.0.2 and setting it up to serve roaming profiles and act as a primary domain controller for a 100 client network.
:-)
It is saving a lot in licensing costs, to say the least.
That's exactly what I'm using it for, as a PDC.
All it does is authenticate passwords, serve roaming profiles, serve files, and serve printers.
The PDC support is very young, you should be able to find help on the samba web site at www.samba.org
It's basically the "main" machine in a WinNT domain - it holds the master password records, decides which Backup Domain Controllers log people on to the network, plus a whole lot of obscure/undocumented stuff, unfortunately. I dunno if you're familiar with the NT domain model, but basically, you need at least a PDC and optionally some BDCs to keep the behind-the-scenes domain stuff going if you're operating in a NT corperate-style domain. Samba has always had the ability to work outside that model, but then you can't do automatic integrated authentication when connecting to shares, etc.
Of course, I can see why MS would want to keep it secret - in their twisted little minds, each SMB connection requires s a User License who (if you're doing per-seat licensing) costs money. Just for the SMB connection, can you believe that?
Despite the flak I get from unix hardcores, I still like the NT domain model *in concept* - it's just another example of good idea, bad implementation.
There is still no decent linux MS Proxy clients, so the only app on my linux box that can get out onto the net is netscape. But that's ok.. there's alot of Win32 apps that fail to get out of the proxy even with the proxy client.
I think the reason there isn't a decent MS Proxy client for Linux is because any decent firewall/socks proxy combo should be able do all the stuff MS Proxy requires a client for. Of course, that's kind of a moot point, 'cause like you pointed out, MS Proxy client for Win32 doesn't work half the time, anyhoo.
Sorry, hit the enter key in haste.
This summer I had the honor of installing SAMBA
on a new O2 the company had for running SurfCAM.
Quick, painless, and frighteningly easy once I
downloaded the package from SGI's freeware site.
Sure beat FTP-ing crap all over the place.
I am my school's webserver admin and we rely on Samba heavily to provide access to all of the terminals running Windows (which is about 95%). My company also uses it to allow shareable resources for the windows boxen. Without it, we'd be screwed.. Oh. And I use it at home.
Long live OSS!
-- A hacker is a machine for turning caffeine into code. G: GU d-(--) s:- a--- C++++(++)$ UL++(+++) P+(++) L++(+++)
Before I started work at ASID, the Website was maintained via FTP -- everyone used a different account (which worked only because our Webserver is on a remote box that runs NT -- soon to change -- and the permissions were looser than a two-dollar hooker). Now people in the office connect to one share per domain name, that contains a mirrored copy of our website. When someone disconnects their session, postexec takes care of FTPing the changes using the wonderful tool sitecopy. Using Unix permissions, I can control who has accesss to overwrite what, and I can keep a log of everything that was changed.
Go samba!
Nothing worth doing is worth doing today.
from this piece.
It shows what kind of world is created when free
software is used: one of mutual trust,
cooperation, and admiration; rather than one
filled with lawyers enforcing dubious claims of
"Intellectual Property".
"Intellectual Property" that will be abandoned
once it is no longer profitable.
The enormous cost to humanity, both financially
and psychologically, of using proprietary
software and protocols has yet to be tallied.
Cheers to all Andrew and all of the Samba
developers!
---------------------------------
"The Internet interprets censorship as damage,
I'm using Samba 2.0 on our IBM S70 boxes (64bit AIX 4.3), and it runs like a dream. And the best part is not having to go through procurement to get it!
with samba and netatalk (both running off a linux box) our network at my job is a pretty happy family of windows nt/95/98, mac, solaris, and linux. it's great for developers who have to use windows or mac beause of some middleware that gets run that don't have an *nix development environment. just filesharing instead of using ftp makes everything so much more rapid.We've been using it (and linux) as a mission critical piece of our setup for about seven months.
the linux box is so stable that samba interruptions from reboots or crashes aren't a factor- they don't happen. i think it's been up for about four months now, and the reason it went down then was the power went out on a weekend and nobody got there by the time the ups pooped out.
Pull out your Dictionary and look up 'Oxymoron'
-- Give him Head? Be a Beacon? :P)
(If you can't figure out how to E-Mail me, Don't.
Andrew Tridgell, perhaps... :)
http://samba.anu.edu.au/~tridge
Quidquid latine dictum sit, altum viditur.
It's all very well setting up multiple shares for each, but we have a situation where we have an NT server with about 50GB of files, 450 shares (each with permissions), and thousands of directories under those shares, most of which have specific permissions granted to one or more groups or individuals. To allow someone to access a particular directory, I need just add them to the appropriate group.
For example: I have a "Budgets" share. Under Budgets are directories for 1997, 1998, 1999 and 2000. Under 1999 there is a separate directory for each of 20 business units. Under the "Networks" business unit directory are 10 subdirectories for each of the departments in Networks. Each departmental manager needs R/W access to his departmental directory. The BU manager needs R/W access to all the departmental directories, and the IT director needs R access to the lot. The Finance group needs R/W access to all the BU directories. The Management team needs R access to everything. Everyone else needs List access to the directories. Certain people may need specific access to particular files anywhere in that directory structure.
I don't think you can get that functionality with Unix and Samba, whereas it's trivial with NT.
Graeme
NT doesn't need Samba because it already has SMB built in. Samba is great if you would like to make files on a Unix box easily available to Windows clients. NT is great if you need permissions on the shared files. Stability isn't a problem with NT if you have decent hardware and NT is properly set up.In a large organisation, the file security is worth the cost of a bigger machine and NT.
I have been playing around with samba for about a year, but about three months ago, my Mom's cdrom fried it's self, and they needed to upgrade some of their software, so i created a new share, and mounted it in about 3 min. Personaly, i think samba rocks, i have found that it works perfictly, as long as you dont majorly screw up your hosts file (one mistake i once did).
Within the next few weeks, i will be doing a demo of linux, samba, and squid for one of my mom's coworkers, the network admin where she works. There NT internet proxy has been hacked 3 times that i know of, so i hope to show them that there is an alternitive to winnt, and it's very very bad security. As once said in a file that i read many years ago, OEM's will allways keep bugs so you, the consumer will pay to have them fixed when somebody hacks you.
oh, btw, my linux box hosts 4 windows boxes, and the only problems i have had was minor password problems, and when i screwed up my hosts file.
i hope that samba lives forever.
Long Live Linux, and Samba!
I have a graphical tar client that runs on Windows 95. Part of the Exceed package from Hummingbird. Having a tape deck connected to the linux machine I wanted to use it to back up files from the Windows 95 machine. I created a link from the tape device into a Samba share and simply named it tape. Now a file appears on the Windows 95 box named tape. The tar client reads it and writes it and the tape deck turns. Way cool! Now, could you do that with NT?
-- Some people say they can tell the time by looking at the Sun, but I have trouble seeing the numbers.
SMB dates back to the IBM/MS LanMan era.
Microsoft used to love Samba, they saw it as a way to transition people from unix to NT. Now that it's being used in reverse to move people from NT to Unix, they're not so happy.
As for MS changing the protocol, I doubt they have the balls. Too many big customers are using Samba, OS/2, various DOS clients, WfW, etc. They know SMB is essentially legacy, so their latest efforts revolve distributed file systems, Active-Directory based security, etc.
Business. Numbers. Money. People. Computer World.
We use Samba here at the SEC to transfer gigabytes weekly from a 1.5 terabyte drive.
Thank you for not thinking.
sure beats an NT server...
"Karma can only be portioned out by the cosmos." -- Homer Simpson
you'd spend longer than 14 minutes on hold trying to get help from micro$haft
"Karma can only be portioned out by the cosmos." -- Homer Simpson
You all forgot about Luke. He was the one who was the head of the NTDOM branch - that got Samba to where is it today. I trolled comp.protocols.smb every day for about three years answering and asking questions. One day soon I hope to get back to doing that...
Disclaimer: I have never used Samba personally. I have had (intentionally) limited experience with NT.
NT is not good enough to be a production NT server yet. Even if Samba is flaky, it's not like anyone who's used NT could tell the difference, unless Samba is down more than it is up.
They laughed at Einstein. They laughed at the Wright Brothers. But they also laughed at Bozo the Clown. -- C. Sagan
This is classic. "/. to the rescue".
I was just gathering resources to back up my POV that we should not be using NT for our PDC's, but rather samba. Needless to say, most of the existing doc's were rather dry, but this piece is a great caketopper!
Now let's hope my guys see the proper way of thinking...
"Although we may build the technology that we define as tools, we must be vigilant that those tools do not define us."
"samba is not good enough to replace a production NT server yet."
I'm pretty convinced of the stability of it - we've been using it for years now in varying capacities... The trick for me now is to convince the powers that be that Samba is a viable replacement for NT as a PDC.
It's the same arguement that I have to make in favor of Hylafax. We've had it running on a production server since early '95. But now that we want to use it for our own purposes, everyone wants to know why Hyla is better than Winfax...
In our environment, OS/Linux wares make a ton of sense, but it's sometimes tough to get people to accept that we can't call a 1-800 number an beg for support on it either.
This will change in time, but it makes for interesting challenges from time to time.
OTOH, the job is getting easier. The same people that were asking about Samba/Hyla were also quite impressed with the price on Star Office vs. that of Word.
"Although we may build the technology that we define as tools, we must be vigilant that those tools do not define us."
I use samba at home for our network, works out really well. I am still using version 1.9.18p8, but I'll switch to 2.x once I've got the time, as for right now, what I have works :) I can't seem to get public access to work on some directories, even though they are set to public = yes (it keeps asking for a username/password), but I'm sure that's an error on my part, not a problem with samba.
:)
My site contains 100% GPL'd source code
mcox.com - Useful Information re: IT, Running, Fitness, Finance, or Ann Arbor!
I've been using Samba/FreeBSD for about 2.5 years to serve about 30 PC's. I took it down once to add new hard dirves/upgrade software, once due to an extended power outage, and now it needs to be upgraded to FreeBSD 3.1. It's sad to take it down with an uptime of 260 days.
I thought it was an article about Samba...
--B
An NT domain is a complex system used to create trust relationships between NT machines, so that accounts which exist on one machine will also automatically exist on the others, so that you don't have to create an account a la Win95 every time you use a different machine in the domain (workplace, lab, whatever), and so that there's better security for network transactions (although it still has its flaws). The PDC is the core of an NT domain; it's the server that all the workstations authenticate against, and is for the most part the single point of configuration for the domain. All of this naturally means that Microsoft charges an arm and a leg for the license.
:)
Now imagine dropping a Unix box into place that can handle running your NT domain. Oh, the convenience... Sweet, happy penguins dancing in the cubicles...
(In my defense, I don't use NT either--I just spend too much time tracking Samba development.
Having TCP/IP listed first isn't sufficient to guarantee good behavior on behalf of the Windows clients. Unless there is an unavoidable reason for having NetBEUI on the network (namely, old clients with no TCP/IP stack), NetBIOS-over-NetBEUI (or over IPX, for that matter) should be disabled.... This isn't only for Samba's sake, Windows networking becomes very fragile any time you have NetBIOS packets traveling around on more than one type of stack...
Well, I *did* use samba at home and at work, but since upgrading to Linux 2.0, it broke. Mabye the new version will work better...
I've wondered this but never got up the nerve to post to a newsgroup, but at least this is on topic. What's a Primary Domain Controller do, anyway? I've never used NT, just Linux and Win95/98. It's obviously something important (and presumably useful). Would someone care to enlighten me?
I am currently trying to set up Solaris - Win95 file sharing using Samba. Our sysadmin wants it, but doesn't want to install it. Since I am the only one in our group who knows or cares about
free software, I have taken on this task. Gosh, I hope I do it well, otherwise it will hurt the reputation of free software around here.
G
"An bfuil cead agam dul amok???"
I use it at home too, because I thought it would be cool to use a Linux server and still haven't managed to ditch all my Win95 legacy apps.
I must admit that it grinds a little on a 20MHz 386 with 8Mb RAM... :)
Vik :v)
Just installed 2.02 on 5 Linux-Boxes.
Very satisfied!
Currently we're using Samba here but the thing that I don't like with our current version is the fact you need to enable clear text passwords with NT. My boss wanted to try another product "AIX connect" It Totally SUCKS!! We were on the phone with IBM for two days straight and we still don't have it working right. I'm lobbying to go to Samba 2.0 instead but we'll see... Once the passwords are all set it's a good solid product though... www.theregistry.org
That was my fault, sorry, not Slashdot's. When I submitted the story, my fingers ran away from my brain and typed some extra letters. Sorry about that.
No offense meant to Andrew. I've sat in an audience in Australia, spellbound, listening to him speak. He packs maximum information into short times, and he's incredibly entertaining.
I run Samba for central storage, web publishing, mail directories, etc, etc, for 38,000+ users...on one machine. Requires quite a bit of computing horsepower for such a large user base, but it has never failed. It has met with such success, I've been hired to setup state school districts with similar setups. It's a powerful viable alternative for nicely interfacing with many many different clients...and I have stats to prove it. :)
Sun Ultra Enterprise 5000, 8 UltraSPARC processors, 6 gigs of ram, with a Sun fiberchannel array hanging off the side. ...had thousands of simultaneous connections and it hasn't phased the machine..so I doubt all of that is completely necessary, but the IBM RS6000 R-30 we had the service running on before couldn't handle it, but I like blaming that on AIX. :)
When I joined our company, actually, even when I worked up at Xerox, everything was PC and Novell, even though our department had a mixed environmnet with Macs, PCs, and Suns. So, wheat better to do than flip to NT to service the PCs and Macs, right? Wrong... best way to go was to install FreeBSD and Samba, Netatalk, and NFS with similar mounts... well, due to Xerox being stuck in the 1950s (still), I left before the master plan could be implemented. However, where I work now I ran into an already installed NT base, an decided it needed to be interoperable with the rest of our web development environment, hence similar filesystesm between PCs and Macs... viola... install the free stuff and away it chugged.... and still is chugging. I can't see why Microsoft makes such a case for thier software having such QUALITY when the most reliable stuff that works with their antiquated idea of an OS runs on UNIX and comes to the user free of charge...