Samba Log issues?

[ObiTobi]

Hi,

very often I see in /var/log/messages entries like this one:

Code:

reopen_one_log: Unable to open new log file '/var/log/samba4/log.smbd': Permission denied

I'm not sure is this a TrueNAS issue or permissions to the directory are wrong?
All files in /var/log/samba4 are 666 root:wheel and old.

 

[anodos]

Hi,

very often I see in /var/log/messages entries like this one:

Code:

reopen_one_log: Unable to open new log file '/var/log/samba4/log.smbd': Permission denied

I'm not sure is this a TrueNAS issue or permissions to the directory are wrong?
All files in /var/log/samba4 are 666 root:wheel and old.

What version of TrueNAS is this? Why did you set 666 on /var/log/samba4 (the default is 755)?

 

[ObiTobi]

Version:
TrueNAS-13.0-U6.1

Directory is 755, but files ???

 

[anodos]

Version:
TrueNAS-13.0-U6.1

Directory is 755, but files ???

Files are automatically created with 644 permissions. What is output of testparm -s?

 

[ObiTobi]

I changed the rights for files to 666 because I thought it might be because of that.

Code:

testparm -s
Load smb config files from /usr/local/etc/smb4.conf
lpcfg_do_global_parameter: WARNING: The "blocking locks" option is deprecated
lpcfg_do_service_parameter: WARNING: The "blocking locks" option is deprecated
lpcfg_do_service_parameter: WARNING: The "blocking locks" option is deprecated
lpcfg_do_service_parameter: WARNING: The "blocking locks" option is deprecated
lpcfg_do_service_parameter: WARNING: The "blocking locks" option is deprecated
lpcfg_do_service_parameter: WARNING: The "blocking locks" option is deprecated
lpcfg_do_service_parameter: WARNING: The "blocking locks" option is deprecated
lpcfg_do_service_parameter: WARNING: The "blocking locks" option is deprecated
lpcfg_do_service_parameter: WARNING: The "blocking locks" option is deprecated
Loaded services file OK.
Weak crypto is allowed

WARNING: socket options = TCP_NODELAY SO_RCVBUF=1048576 SO_SNDBUF=1048576 IPTOS_LOWDELAY IPTOS_THROUGHPUT
This warning is printed because you set one of the
following options: SO_SNDBUF, SO_RCVBUF, SO_SNDLOWAT,
SO_RCVLOWAT
Modern server operating systems are tuned for
high network performance in the majority of situations;
when you set 'socket options' you are overriding those
settings.
Linux in particular has an auto-tuning mechanism for
buffer sizes (SO_SNDBUF, SO_RCVBUF) that will be
disabled if you specify a socket buffer size. This can
potentially cripple your TCP/IP stack.

Getting the 'socket options' correct can make a big
difference to your performance, but getting them wrong
can degrade it by just as much. As with any other low
level setting, if you must make changes to it, make
 small changes and test the effect before making any
large changes.

Server role: ROLE_DOMAIN_MEMBER

# Global parameters
[global]
        ads dns update = No
        allow trusted domains = No
        bind interfaces only = Yes
        client ldap sasl wrapping = seal
        disable spoolss = Yes
        dns proxy = No
        domain master = No
        enable web service discovery = Yes
        kerberos method = secrets and keytab
        kernel change notify = No
        load printers = No
        local master = No
        logging = syslog@0 file
        max log size = 5120
        netbios aliases = mynas001
        nsupdate command = /usr/local/bin/samba-nsupdate -g
        preferred master = No
        realm = RJAP.DE
        registry shares = Yes
        restrict anonymous = 2
        security = ADS
        server multi channel support = No
        server role = member server
        server string = My NAS
        socket options = TCP_NODELAY SO_RCVBUF=1048576 SO_SNDBUF=1048576 IPTOS_LOWDELAY IPTOS_THROUGHPUT
        template homedir = /mnt/zpool01/home/%U
        template shell = /bin/sh
        unix extensions = No
        winbind cache time = 7200
        winbind enum groups = Yes
        winbind enum users = Yes
        winbind max domain connections = 20
        winbind nss info = rfc2307
        winbind use default domain = Yes
        workgroup = RJAP
        idmap config *: range = 90000001-100000000
        idmap config rjap: range = 20000-90000000
        idmap config rjap: backend = rid
        fruit:nfs_aces = No
        rpc_server:mdssvc = disabled
        rpc_daemon:mdssd = disabled
        idmap config * : backend = tdb
        aio write behind = yes
        directory name cache size = 0
        dos filemode = Yes
        kernel oplocks = Yes
        veto oplock files = /*.doc/*.DOC/*.docx/*.DOCX/*.docm/*.DOCM/*.dotm/*.DOTM/*.xltm/*.XLTM/*.xltx/*.XLTX/*.xlsx/*.XLSX/*.xlsm/*.XLSM/*.xlsb/*.XLSB/*.xls/*.XLS/*.ppt/*.PPT/*.pst/*.PST/*.mdb/*.MDB/*.ldb/*.LDB/*.vsd/*.VSD/*.mpp/*.MPP/*.qbw/*.QBW/*.qbb/*.QBB/*.qbI/*.qbl/*.dxf/*.DXF/*.dwg/*.DWG/*.cdr/*.CDR/*.bak/*.BAK/*.ord/*.xlo/*.igs/*.ipt/*.ipj/*.slp/*.stp/*.opt/*.xli/*.stl/*.cur/*.sjb/*.log/*.LOG/*.sbs/*.iam/*.idv/*.pcbdoc/*.PcbDoc/*.PCBDOC/*.dbf/*.DBF/*.cdx/*.CDX/*.mrimg/*.MRIMG/*.tmp/*.TMP/*.imd5/*.IMD5/*.db/*.DB


[Home]
        browseable = No
        comment = Home
        path = /mnt/zpool01/home
        read only = No
        smbd max xattr size = 2097152
        vfs objects = zfs_space fruit streams_xattr ixnas zfsacl
        fruit:aapl = yes
        fruit:model = MacSamba
        streams_xattr:store_stream_type = no
        streams_xattr:prefix = user.
        fruit:locking = netatalk
        fruit:resource = file
        fruit:metadata = netatalk
        nfs4:chown = true
        ixnas:dosattrib_xattr = false


[Fotografie]
        browseable = No
        comment = Fotografie
        path = /mnt/zpool01/fotografie
        read only = No
        smbd max xattr size = 2097152
        vfs objects = zfs_space fruit streams_xattr ixnas zfsacl
        fruit:aapl = yes
        fruit:model = MacSamba
        streams_xattr:store_stream_type = no
        streams_xattr:prefix = user.
        fruit:locking = netatalk
        fruit:resource = file
        fruit:metadata = netatalk
        nfs4:chown = true
        ixnas:dosattrib_xattr = false


[Online Banking]
        browseable = No
        comment = Online Banking
        path = /mnt/zpool01/onlinebanking
        read only = No
        smbd max xattr size = 2097152
        vfs objects = zfs_space fruit streams_xattr ixnas zfsacl
        fruit:aapl = yes
        fruit:model = MacSamba
        streams_xattr:store_stream_type = no
        streams_xattr:prefix = user.
        fruit:locking = netatalk
        fruit:resource = file
        fruit:metadata = netatalk
        nfs4:chown = true
        ixnas:dosattrib_xattr = false


[Anwendungsdaten]
        browseable = No
        comment = Anwendungsdaten
        path = /mnt/zpool01/anwendungsdaten
        read only = No
        smbd max xattr size = 2097152
        vfs objects = zfs_space fruit streams_xattr ixnas zfsacl
        fruit:aapl = yes
        fruit:model = MacSamba
        streams_xattr:store_stream_type = no
        streams_xattr:prefix = user.
        fruit:locking = netatalk
        fruit:resource = file
        fruit:metadata = netatalk
        nfs4:chown = true
        ixnas:dosattrib_xattr = false


[Profile]
        browseable = No
        comment = Profile
        ea support = No
        path = /mnt/zpool01/profile
        read only = No
        smbd max xattr size = 2097152
        vfs objects = zfs_space fruit streams_xattr ixnas zfsacl
        fruit:resource = stream
        fruit:metadata = stream
        nfs4:chown = true
        ixnas:dosattrib_xattr = false


[Windows Sicherung]
        browseable = No
        comment = Windows Sicherung
        ea support = No
        path = /mnt/zpool02/backup/Windows
        read only = No
        smbd max xattr size = 2097152
        vfs objects = zfs_space fruit streams_xattr ixnas zfsacl
        fruit:resource = stream
        fruit:metadata = stream
        nfs4:chown = true
        ixnas:dosattrib_xattr = false


[Multimedia]
        browseable = No
        comment = Multimedia
        path = /mnt/zpool01/multimedia
        read only = No
        smbd max xattr size = 2097152
        vfs objects = zfs_space fruit streams_xattr ixnas zfsacl
        fruit:aapl = yes
        fruit:model = MacSamba
        streams_xattr:store_stream_type = no
        streams_xattr:prefix = user.
        fruit:locking = netatalk
        fruit:resource = file
        fruit:metadata = netatalk
        nfs4:chown = true
        ixnas:dosattrib_xattr = false


[ISO]
        browseable = No
        comment = iso
        path = /mnt/zpool01/iso
        read only = No
        smbd max xattr size = 2097152
        vfs objects = zfs_space fruit streams_xattr ixnas zfsacl
        fruit:aapl = yes
        fruit:model = MacSamba
        streams_xattr:store_stream_type = no
        streams_xattr:prefix = user.
        fruit:locking = netatalk
        fruit:resource = file
        fruit:metadata = netatalk
        nfs4:chown = true
        ixnas:dosattrib_xattr = false


[Download]
        browseable = No
        comment = Download
        path = /mnt/zpool01/download
        read only = No
        smbd max xattr size = 2097152
        vfs objects = zfs_space fruit streams_xattr ixnas zfsacl
        fruit:aapl = yes
        fruit:model = MacSamba
        streams_xattr:store_stream_type = no
        streams_xattr:prefix = user.
        fruit:locking = netatalk
        fruit:resource = file
        fruit:metadata = netatalk
        nfs4:chown = true
        ixnas:dosattrib_xattr = false


[Android]
        browseable = No
        comment = Android Backup
        ea support = No
        path = /mnt/zpool02/backup/Android
        read only = No
        smbd max xattr size = 2097152
        vfs objects = zfs_space fruit streams_xattr ixnas zfsacl
        fruit:resource = stream
        fruit:metadata = stream
        nfs4:chown = true
        ixnas:dosattrib_xattr = false


[TestShare]
        comment = TestShare
        ea support = No
        path = /mnt/zpool01/TestShare
        read only = No
        smbd max xattr size = 2097152
        vfs objects = zfs_space fruit streams_xattr zfsacl
        streams_xattr:store_stream_type = no
        streams_xattr:prefix = user.
        fruit:locking = netatalk
        fruit:resource = file
        fruit:metadata = netatalk
        nfs4:chown = true
        ixnas:dosattrib_xattr = false


[Time Machine]
        blocking locks = No
        comment = Time Machine
        kernel oplocks = No
        level2 oplocks = No
        mangled names = no
        oplocks = No
        path = /mnt/zpool02/backup/OSX
        read only = No
        smbd max xattr size = 2097152
        vfs objects = catia zfs_space fruit streams_xattr ixnas zfsacl
        fruit:advertise_fullsync = true
        fruit:aapl = yes
        fruit:model = MacSamba
        fruit:time machine = yes
        streams_xattr:store_stream_type = no
        streams_xattr:prefix = user.
        fruit:locking = none
        fruit:resource = file
        fruit:metadata = netatalk
        fruit:encoding = native
        nfs4:chown = true
        ixnas:dosattrib_xattr = false