- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- 'Hosts Allow' Section in smb.conf Overflows Parser
Operating System - HP-UX
1755018
Members
3126
Online
108828
Solutions
Forums
Categories
Company
Local Language
юдл
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
юдл
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Go to solution
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-31-2006 05:34 AM
тАО08-31-2006 05:34 AM
Hi,
We have an smb.conf with a long "hosts allow =" section. When I go to add more IP addresses to the right hand side of the assignment statement, running the testparam program reports:
ERROR: string overflow by 52 in safe_strcpy [10.253.11.110 10.254.161.101 10.254.161.102 10.254]
This appears to indicate that the "hosts allow" is choppped off by 52 bytes. Changing the length of the list makes the "52 bytes" get larger or smaller.
I've taken out all the whitespace (tabs, blanks, etc) that I can but the list I need doesn't fit. Is there any strategy for getting more entries to fit?
Thanks
We have an smb.conf with a long "hosts allow =" section. When I go to add more IP addresses to the right hand side of the assignment statement, running the testparam program reports:
ERROR: string overflow by 52 in safe_strcpy [10.253.11.110 10.254.161.101 10.254.161.102 10.254]
This appears to indicate that the "hosts allow" is choppped off by 52 bytes. Changing the length of the list makes the "52 bytes" get larger or smaller.
I've taken out all the whitespace (tabs, blanks, etc) that I can but the list I need doesn't fit. Is there any strategy for getting more entries to fit?
Thanks
Solved! Go to Solution.
6 REPLIES 6
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-31-2006 09:56 AM
тАО08-31-2006 09:56 AM
SolutionYou can use the following to allow servers/hosts that are in the same network:
Allow all IPs in 199.299.*.*
hosts allow = 199.299.
Or, you can allow hosts that match the given network/netmask:
hosts allow = 199.299.19.0/255.255.255.0
If you have a list of hosts that are in the same network, you could certainly shorten the list.
You can also specify hosts netgroup names if your system supports netgroups.
For example, you could allow only hosts in netgroup "mynetgroup"
hosts allow = @mynetgroup
you would then list the allowed hosts in the group mynetgroup, or whatever you call it.
Live life everyday
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-31-2006 10:01 AM
тАО08-31-2006 10:01 AM
Re: 'Hosts Allow' Section in smb.conf Overflows Parser
A name starting with a ├В┬┤@├В┬┤ is interpreted as an NIS netgroup first (if your system supports NIS) and then as a UNIX group if the name was not found in the NIS netgroup database.
A name starting with ├В┬┤+├В┬┤ is interpreted only by looking in the UNIX group database.
A name starting with ├В┬┤&├В┬┤ is interpreted only by looking in the NIS netgroup database (this requires NIS to be working on your system).
The characters ├В┬┤+├В┬┤ and ├В┬┤&├В┬┤ may be used at the start of the name in either order so the value "+&group" means check the UNIX group database, followed by the NIS netgroup database and the value "&+group" means check the NIS net group database, followed by the UNIX group database (the same as the ├В┬┤@├В┬┤ prefix).
A name starting with ├В┬┤+├В┬┤ is interpreted only by looking in the UNIX group database.
A name starting with ├В┬┤&├В┬┤ is interpreted only by looking in the NIS netgroup database (this requires NIS to be working on your system).
The characters ├В┬┤+├В┬┤ and ├В┬┤&├В┬┤ may be used at the start of the name in either order so the value "+&group" means check the UNIX group database, followed by the NIS netgroup database and the value "&+group" means check the NIS net group database, followed by the UNIX group database (the same as the ├В┬┤@├В┬┤ prefix).
Live life everyday
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-01-2006 12:42 AM
тАО09-01-2006 12:42 AM
Re: 'Hosts Allow' Section in smb.conf Overflows Parser
Thanks for the suggestions. I wish I could just turn on NIS just like that but this is production system with change management so I'd have to do a lot of work to promote the idea in order to get approval.
I did notice that some of the IP address in the "hosts allow=" ACL do not respond to ping so I will first try to "garbage collect" them and see if the new additions can fit.
I did notice that some of the IP address in the "hosts allow=" ACL do not respond to ping so I will first try to "garbage collect" them and see if the new additions can fit.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-01-2006 04:24 AM
тАО09-01-2006 04:24 AM
Re: 'Hosts Allow' Section in smb.conf Overflows Parser
You could always use a unix group to define all the hosts you want to grant access to then use +groupname in the cnf file. That way you have one entry instead of a very long text string.
Live life everyday
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-03-2006 06:44 PM
тАО09-03-2006 06:44 PM
Re: 'Hosts Allow' Section in smb.conf Overflows Parser
Hi Ken,
How long was your hosts allow line?
I am asking, because we are using this feature excessiveliy in our environment.
This would help me to do some things in advance before I really hit this problem.
Christian
How long was your hosts allow line?
I am asking, because we are using this feature excessiveliy in our environment.
This would help me to do some things in advance before I really hit this problem.
Christian
never touch a running system
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО09-04-2006 01:56 AM
тАО09-04-2006 01:56 AM
Re: 'Hosts Allow' Section in smb.conf Overflows Parser
It has to be a bit more than 1140 bytes since that's what's working now. Somewhere around 1202 - 1216 bytes.
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
News and Events
Support
© Copyright 2024 Hewlett Packard Enterprise Development LP