[Pkg-samba-maint] Winbindd_privileged pipe location mismatch

Andrew Bartlett abartlet at samba.org
Sat Nov 21 18:44:40 UTC 2015

On Fri, 2015-11-20 at 10:37 +0100, Seth Mos wrote:
> Hi,
> Problem: The current winbind package creates the winbindd_privileged
> directory in /var/lib/samba/winbindd_privileged and not
> /var/run/samba/winbindd_privileged.
> The init script /etc/init.d/winbind specifies the directory for the
> pipe
> as PIDDIR=/var/run/samba
> A bit further on line 42 we dont appear to be using this variable
> either, but we do on line 43/44.
> mkdir -p /var/run/samba/winbindd_privileged || return 1
> chgrp winbindd_priv $PIDDIR/winbindd_privileged/ || return 1
> chmod 0750 $PIDDIR/winbindd_privileged/ || return 1
> Either way the actual pipe is located in
> /var/lib/samba/winbindd_privileged and not the expected location
> /var/run/samba/winbindd_privileged.
> When calling ntlm_auth from Squid3 it expects the pipe to exist in
> the
> location specified in the init script, which is correct.
> Workaround: I've solved this by making a symlink from the correct
> location to the errant pipe location.
> ln -s /var/lib/samba/winbindd_privileged/
> /var/run/samba/winbindd_privileged

There is something more odd going on here.  

The location should be /var/lib/samba/winbindd_privileged as the
directory needs to have persistent permissions.  

The ntlm_auth binary is from the same package, and the location is not
hard-coded in the binary, but obtained from the running winbindd by
asking over the pipe, so the mismatch if any is between the build and
init scripts.

Either way, please file these things as bugs that we can track, not
threads on this list, otherwise it will get lost.

Andrew Bartlett

Andrew Bartlett                       http://samba.org/~abartlet/
Authentication Developer, Samba Team  http://samba.org
Samba Developer, Catalyst IT          http://catalyst.net.nz/services/samba

More information about the Pkg-samba-maint mailing list