[Pkg-samba-maint] Winbindd_privileged pipe location mismatch
Andrew Bartlett
abartlet at samba.org
Sat Nov 21 18:44:40 UTC 2015
On Fri, 2015-11-20 at 10:37 +0100, Seth Mos wrote:
> Hi,
>
> Problem: The current winbind package creates the winbindd_privileged
> directory in /var/lib/samba/winbindd_privileged and not
> /var/run/samba/winbindd_privileged.
>
> The init script /etc/init.d/winbind specifies the directory for the
> pipe
> as PIDDIR=/var/run/samba
>
> A bit further on line 42 we dont appear to be using this variable
> either, but we do on line 43/44.
> mkdir -p /var/run/samba/winbindd_privileged || return 1
> chgrp winbindd_priv $PIDDIR/winbindd_privileged/ || return 1
> chmod 0750 $PIDDIR/winbindd_privileged/ || return 1
>
> Either way the actual pipe is located in
> /var/lib/samba/winbindd_privileged and not the expected location
> /var/run/samba/winbindd_privileged.
>
> When calling ntlm_auth from Squid3 it expects the pipe to exist in
> the
> location specified in the init script, which is correct.
>
> Workaround: I've solved this by making a symlink from the correct
> location to the errant pipe location.
> ln -s /var/lib/samba/winbindd_privileged/
> /var/run/samba/winbindd_privileged
There is something more odd going on here.
The location should be /var/lib/samba/winbindd_privileged as the
directory needs to have persistent permissions.
The ntlm_auth binary is from the same package, and the location is not
hard-coded in the binary, but obtained from the running winbindd by
asking over the pipe, so the mismatch if any is between the build and
init scripts.
Either way, please file these things as bugs that we can track, not
threads on this list, otherwise it will get lost.
Andrew Bartlett
--
Andrew Bartlett http://samba.org/~abartlet/
Authentication Developer, Samba Team http://samba.org
Samba Developer, Catalyst IT http://catalyst.net.nz/services/samba
More information about the Pkg-samba-maint
mailing list